Action not permitted
Modal body text goes here.
Modal Title
Modal Body
CVE-2026-39821 (GCVE-0-2026-39821)
Vulnerability from cvelistv5 – Published: 2026-05-22 15:01 – Updated: 2026-07-10 12:05- CWE-1289 - Improper Validation of Unsafe Equivalence in Input
| Vendor | Product | Version | |
|---|---|---|---|
| golang.org/x/net | golang.org/x/net/idna |
Affected:
0 , < 0.55.0
(semver)
|
|
| Red Hat | Red Hat OpenShift Container Platform 4.22 |
cpe:/a:redhat:openshift:4.22::el8 cpe:/a:redhat:openshift:4.22::el9 |
|
| Red Hat | RHEM 1.0 for RHEL 9 |
cpe:/a:redhat:edge_manager:1.0::el9 |
|
| Red Hat | Red Hat Enterprise Linux AppStream (v. 10) |
cpe:/o:redhat:enterprise_linux:10.2 |
|
| Red Hat | Red Hat Enterprise Linux AppStream (v. 8) |
cpe:/a:redhat:enterprise_linux:8::appstream |
|
| Red Hat | Red Hat Enterprise Linux AppStream (v. 9) |
cpe:/a:redhat:enterprise_linux:9::appstream |
|
| Red Hat | Cluster Observability Operator 1.5.0 |
cpe:/a:redhat:cluster_observability_operator:1.5::el9 |
|
| Red Hat | DevWorkspace Operator 0.42 |
cpe:/a:redhat:devworkspace:0.42::el9 |
|
| Red Hat | Logging Subsystem for Red Hat OpenShift 6.4 |
cpe:/a:redhat:logging:6.4::el9 |
|
| Red Hat | Red Hat Advanced Cluster Management for Kubernetes 2.13 |
cpe:/a:redhat:acm:2.13::el9 |
|
| Red Hat | Red Hat Advanced Cluster Security for Kubernetes 4.10 |
cpe:/a:redhat:advanced_cluster_security:4.10::el8 |
|
| Red Hat | Red Hat Advanced Cluster Security for Kubernetes 4.11 |
cpe:/a:redhat:advanced_cluster_security:4.11::el9 |
|
| Red Hat | Red Hat Advanced Cluster Security for Kubernetes 4.9 |
cpe:/a:redhat:advanced_cluster_security:4.9::el8 |
|
| Red Hat | Red Hat Edge Manager 1.0 |
cpe:/a:redhat:edge_manager:1.0::el9 |
|
| Red Hat | Red Hat Enterprise Linux AI 3.4 |
cpe:/a:redhat:enterprise_linux_ai:3.4::el9 |
|
| Red Hat | Red Hat Hardened Images |
cpe:/a:redhat:hummingbird:1 |
|
| Red Hat | Red Hat OpenShift Builds 1.7.4 |
cpe:/a:redhat:openshift_builds:1.7::el9 |
|
| Red Hat | Red Hat OpenShift Dev Spaces 3.29 |
cpe:/a:redhat:openshift_devspaces:3.29::el9 |
|
| Red Hat | Red Hat OpenShift GitOps 1.19 |
cpe:/a:redhat:openshift_gitops:1.19::el8 |
|
| Red Hat | Red Hat OpenShift GitOps 1.20 |
cpe:/a:redhat:openshift_gitops:1.20::el9 |
|
| Red Hat | Red Hat OpenShift Service Mesh 2.6 |
cpe:/a:redhat:service_mesh:2.6::el8 |
|
| Red Hat | Red Hat OpenShift Service Mesh 3.1 |
cpe:/a:redhat:service_mesh:3.1::el9 |
|
| Red Hat | Red Hat OpenShift Service Mesh 3.2 |
cpe:/a:redhat:service_mesh:3.2::el9 |
|
| Red Hat | Red Hat OpenShift Service Mesh 3.3 |
cpe:/a:redhat:service_mesh:3.3::el9 |
|
| Red Hat | Red Hat OpenShift Service Mesh 3 |
cpe:/a:redhat:service_mesh:3.0::el9 |
|
| Red Hat | Red Hat Openshift Data Foundation 4.22 |
cpe:/a:redhat:openshift_data_foundation:4.22::el9 |
|
| Red Hat | Red Hat Trusted Artifact Signer 1.4 |
cpe:/a:redhat:trusted_artifact_signer:1.4::el9 |
|
| Red Hat | multicluster engine for Kubernetes 2.6 |
cpe:/a:redhat:multicluster_engine:2.6::el8 |
|
| Red Hat | multicluster engine for Kubernetes 2.8 |
cpe:/a:redhat:multicluster_engine:2.8::el9 |
|
| Red Hat | multicluster engine for Kubernetes 2.9 |
cpe:/a:redhat:multicluster_engine:2.9::el9 |
|
| Red Hat | Assisted Installer for Red Hat OpenShift Container Platform 2 |
cpe:/a:redhat:assisted_installer:2 |
|
| Red Hat | cert-manager Operator for Red Hat OpenShift |
cpe:/a:redhat:cert_manager:1 |
|
| Red Hat | Compliance Operator |
cpe:/a:redhat:openshift_compliance_operator:1 |
|
| Red Hat | Confidential Compute Attestation |
cpe:/a:redhat:confidential_compute_attestation:1 |
|
| Red Hat | Deployment Validation Operator |
cpe:/a:redhat:deployment_validator_operator |
|
| Red Hat | External Secrets Operator for Red Hat OpenShift |
cpe:/a:redhat:external_secrets_operator:1 |
|
| Red Hat | Fence Agents Remediation Operator |
cpe:/a:redhat:workload_availability_far:0 |
|
| Red Hat | File Integrity Operator |
cpe:/a:redhat:openshift_file_integrity_operator:1 |
|
| Red Hat | Gatekeeper 3 |
cpe:/a:redhat:gatekeeper:3 |
|
| Red Hat | Logical Volume Manager Storage |
cpe:/a:redhat:lvms:4 |
|
| Red Hat | Machine Deletion Remediation Operator |
cpe:/a:redhat:workload_availability_mdr:0 |
|
| Red Hat | Migration Toolkit for Applications 8 |
cpe:/a:redhat:migration_toolkit_applications:8 |
|
| Red Hat | Migration Toolkit for Containers |
cpe:/a:redhat:rhmt:1 |
|
| Red Hat | Multiarch Tuning Operator |
cpe:/a:redhat:multiarch_tuning_operator |
|
| Red Hat | Multicluster Engine for Kubernetes |
cpe:/a:redhat:multicluster_engine |
|
| Red Hat | Multicluster Global Hub |
cpe:/a:redhat:multicluster_globalhub |
|
| Red Hat | Network Observability Operator |
cpe:/a:redhat:network_observ_optr:1 |
|
| Red Hat | Node HealthCheck Operator |
cpe:/a:redhat:workload_availability_nhc:0 |
|
| Red Hat | OpenShift API for Data Protection |
cpe:/a:redhat:openshift_api_data_protection:1 |
|
| Red Hat | OpenShift Developer Tools and Services |
cpe:/a:redhat:ocp_tools |
|
| Red Hat | OpenShift Lightspeed |
cpe:/a:redhat:openshift_lightspeed |
|
| Red Hat | OpenShift Pipelines |
cpe:/a:redhat:openshift_pipelines:1 |
|
| Red Hat | OpenShift Serverless |
cpe:/a:redhat:serverless:1 |
|
| Red Hat | Power monitoring for Red Hat OpenShift |
cpe:/a:redhat:openshift_power_monitoring |
|
| Red Hat | Red Hat 3scale API Management Platform 2 |
cpe:/a:redhat:red_hat_3scale_amp:2 |
|
| Red Hat | Red Hat Advanced Cluster Management for Kubernetes 2 |
cpe:/a:redhat:acm:2 |
|
| Red Hat | Red Hat Ansible Automation Platform 2 |
cpe:/a:redhat:ansible_automation_platform:2 |
|
| Red Hat | Red Hat Ceph Storage 5 |
cpe:/a:redhat:ceph_storage:5 |
|
| Red Hat | Red Hat Ceph Storage 6 |
cpe:/a:redhat:ceph_storage:6 |
|
| Red Hat | Red Hat Ceph Storage 8 |
cpe:/a:redhat:ceph_storage:8 |
|
| Red Hat | Red Hat Ceph Storage 9 |
cpe:/a:redhat:ceph_storage:9 |
|
| Red Hat | Red Hat Certification Program for Red Hat Enterprise Linux 9 |
cpe:/a:redhat:certifications:9 |
|
| Red Hat | Red Hat Connectivity Link 1 |
cpe:/a:redhat:connectivity_link:1 |
|
| Red Hat | Red Hat Developer Hub |
cpe:/a:redhat:rhdh:1 |
|
| Red Hat | Red Hat Enterprise Linux 10 |
cpe:/o:redhat:enterprise_linux:10 |
|
| Red Hat | Red Hat Enterprise Linux 7 |
cpe:/o:redhat:enterprise_linux:7 |
|
| Red Hat | Red Hat Enterprise Linux 8 |
cpe:/o:redhat:enterprise_linux:8 |
|
| Red Hat | Red Hat Enterprise Linux 9 |
cpe:/o:redhat:enterprise_linux:9 |
|
| Red Hat | Red Hat Enterprise Linux AI (RHEL AI) 3 |
cpe:/a:redhat:enterprise_linux_ai:3 |
|
| Red Hat | Red Hat Lightspeed for Runtimes Operator |
cpe:/a:redhat:lightspeed_for_runtimes:1 |
|
| Red Hat | Red Hat OpenShift AI (RHOAI) |
cpe:/a:redhat:openshift_ai |
|
| Red Hat | Red Hat OpenShift Cluster Manager CLI |
cpe:/a:redhat:openshift_cluster_manager_cli:1 |
|
| Red Hat | Red Hat OpenShift Container Platform 4 |
cpe:/a:redhat:openshift:4 |
|
| Red Hat | Red Hat OpenShift for Windows Containers |
cpe:/a:redhat:windows_machine_config |
|
| Red Hat | Red Hat OpenShift on AWS |
cpe:/a:redhat:openshift_service_on_aws:1 |
|
| Red Hat | Red Hat OpenShift Virtualization 4 |
cpe:/a:redhat:container_native_virtualization:4 |
|
| Red Hat | Red Hat OpenStack Platform 16.2 |
cpe:/a:redhat:openstack:16.2 |
|
| Red Hat | Red Hat OpenStack Platform 17.1 |
cpe:/a:redhat:openstack:17.1 |
|
| Red Hat | Red Hat Quay 3 |
cpe:/a:redhat:quay:3 |
|
| Red Hat | Red Hat Satellite 6 |
cpe:/a:redhat:satellite:6 |
|
| Red Hat | Red Hat Web Terminal |
cpe:/a:redhat:webterminal:1 |
|
| Red Hat | Security Profiles Operator |
cpe:/a:redhat:openshift_security_profiles_operator:1 |
|
| Red Hat | streams for Apache Kafka 3 |
cpe:/a:redhat:amq_streams:3 |
|
| Red Hat | Zero Trust Workload Identity Manager |
cpe:/a:redhat:zero_trust_workload_identity_manager:1 |
|
| Red Hat | Zero Trust Workload Identity Manager - Tech Preview |
cpe:/a:redhat:zero_trust_workload_identity_manager:0 |
|
| Red Hat | Cryostat 4 |
cpe:/a:redhat:cryostat:4 |
|
| Red Hat | Red Hat OpenStack Platform 18.0 |
cpe:/a:redhat:openstack:18.0 |
|
| Red Hat | Red Hat Service Interconnect 1 |
cpe:/a:redhat:service_interconnect:1 |
|
| Red Hat | Red Hat Service Interconnect 2 |
cpe:/a:redhat:service_interconnect:2 |
{
"containers": {
"adp": [
{
"metrics": [
{
"cvssV3_1": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 9.6,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:N",
"version": "3.1"
}
},
{
"other": {
"content": {
"id": "CVE-2026-39821",
"options": [
{
"Exploitation": "none"
},
{
"Automatable": "no"
},
{
"Technical Impact": "total"
}
],
"role": "CISA Coordinator",
"timestamp": "2026-05-23T03:55:58.522682Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-1289",
"description": "CWE-1289 Improper Validation of Unsafe Equivalence in Input",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2026-05-27T13:13:15.606Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
},
{
"affected": [
{
"cpes": [
"cpe:/a:redhat:openshift:4.22::el8",
"cpe:/a:redhat:openshift:4.22::el9"
],
"defaultStatus": "affected",
"product": "Red Hat OpenShift Container Platform 4.22",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:edge_manager:1.0::el9"
],
"defaultStatus": "affected",
"product": "RHEM 1.0 for RHEL 9",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/o:redhat:enterprise_linux:10.2"
],
"defaultStatus": "affected",
"product": "Red Hat Enterprise Linux AppStream (v. 10)",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:enterprise_linux:8::appstream"
],
"defaultStatus": "affected",
"product": "Red Hat Enterprise Linux AppStream (v. 8)",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:enterprise_linux:9::appstream"
],
"defaultStatus": "affected",
"product": "Red Hat Enterprise Linux AppStream (v. 9)",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:cluster_observability_operator:1.5::el9"
],
"defaultStatus": "affected",
"product": "Cluster Observability Operator 1.5.0",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:devworkspace:0.42::el9"
],
"defaultStatus": "affected",
"product": "DevWorkspace Operator 0.42",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:logging:6.4::el9"
],
"defaultStatus": "affected",
"product": "Logging Subsystem for Red Hat OpenShift 6.4",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:acm:2.13::el9"
],
"defaultStatus": "affected",
"product": "Red Hat Advanced Cluster Management for Kubernetes 2.13",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:advanced_cluster_security:4.10::el8"
],
"defaultStatus": "affected",
"product": "Red Hat Advanced Cluster Security for Kubernetes 4.10",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:advanced_cluster_security:4.11::el9"
],
"defaultStatus": "affected",
"product": "Red Hat Advanced Cluster Security for Kubernetes 4.11",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:advanced_cluster_security:4.9::el8"
],
"defaultStatus": "affected",
"product": "Red Hat Advanced Cluster Security for Kubernetes 4.9",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:edge_manager:1.0::el9"
],
"defaultStatus": "affected",
"product": "Red Hat Edge Manager 1.0",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:enterprise_linux_ai:3.4::el9"
],
"defaultStatus": "affected",
"product": "Red Hat Enterprise Linux AI 3.4",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:hummingbird:1"
],
"defaultStatus": "affected",
"product": "Red Hat Hardened Images",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:openshift_builds:1.7::el9"
],
"defaultStatus": "affected",
"product": "Red Hat OpenShift Builds 1.7.4",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:openshift_devspaces:3.29::el9"
],
"defaultStatus": "affected",
"product": "Red Hat OpenShift Dev Spaces 3.29",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:openshift_gitops:1.19::el8"
],
"defaultStatus": "affected",
"product": "Red Hat OpenShift GitOps 1.19",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:openshift_gitops:1.20::el9"
],
"defaultStatus": "affected",
"product": "Red Hat OpenShift GitOps 1.20",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:service_mesh:2.6::el8"
],
"defaultStatus": "affected",
"product": "Red Hat OpenShift Service Mesh 2.6",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:service_mesh:3.1::el9"
],
"defaultStatus": "affected",
"product": "Red Hat OpenShift Service Mesh 3.1",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:service_mesh:3.2::el9"
],
"defaultStatus": "affected",
"product": "Red Hat OpenShift Service Mesh 3.2",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:service_mesh:3.3::el9"
],
"defaultStatus": "affected",
"product": "Red Hat OpenShift Service Mesh 3.3",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:service_mesh:3.0::el9"
],
"defaultStatus": "affected",
"product": "Red Hat OpenShift Service Mesh 3",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:openshift_data_foundation:4.22::el9"
],
"defaultStatus": "affected",
"product": "Red Hat Openshift Data Foundation 4.22",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:trusted_artifact_signer:1.4::el9"
],
"defaultStatus": "affected",
"product": "Red Hat Trusted Artifact Signer 1.4",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:multicluster_engine:2.6::el8"
],
"defaultStatus": "affected",
"product": "multicluster engine for Kubernetes 2.6",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:multicluster_engine:2.8::el9"
],
"defaultStatus": "affected",
"product": "multicluster engine for Kubernetes 2.8",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:multicluster_engine:2.9::el9"
],
"defaultStatus": "affected",
"product": "multicluster engine for Kubernetes 2.9",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:assisted_installer:2"
],
"defaultStatus": "affected",
"product": "Assisted Installer for Red Hat OpenShift Container Platform 2",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:cert_manager:1"
],
"defaultStatus": "affected",
"product": "cert-manager Operator for Red Hat OpenShift",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:openshift_compliance_operator:1"
],
"defaultStatus": "affected",
"product": "Compliance Operator",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:confidential_compute_attestation:1"
],
"defaultStatus": "affected",
"product": "Confidential Compute Attestation",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:deployment_validator_operator"
],
"defaultStatus": "affected",
"product": "Deployment Validation Operator",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:external_secrets_operator:1"
],
"defaultStatus": "affected",
"product": "External Secrets Operator for Red Hat OpenShift",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:workload_availability_far:0"
],
"defaultStatus": "affected",
"product": "Fence Agents Remediation Operator",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:openshift_file_integrity_operator:1"
],
"defaultStatus": "affected",
"product": "File Integrity Operator",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:gatekeeper:3"
],
"defaultStatus": "affected",
"product": "Gatekeeper 3",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:lvms:4"
],
"defaultStatus": "affected",
"product": "Logical Volume Manager Storage",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:workload_availability_mdr:0"
],
"defaultStatus": "affected",
"product": "Machine Deletion Remediation Operator",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:migration_toolkit_applications:8"
],
"defaultStatus": "affected",
"product": "Migration Toolkit for Applications 8",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:rhmt:1"
],
"defaultStatus": "affected",
"product": "Migration Toolkit for Containers",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:multiarch_tuning_operator"
],
"defaultStatus": "affected",
"product": "Multiarch Tuning Operator",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:multicluster_engine"
],
"defaultStatus": "affected",
"product": "Multicluster Engine for Kubernetes",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:multicluster_globalhub"
],
"defaultStatus": "affected",
"product": "Multicluster Global Hub",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:network_observ_optr:1"
],
"defaultStatus": "affected",
"product": "Network Observability Operator",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:workload_availability_nhc:0"
],
"defaultStatus": "affected",
"product": "Node HealthCheck Operator",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:openshift_api_data_protection:1"
],
"defaultStatus": "affected",
"product": "OpenShift API for Data Protection",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:ocp_tools"
],
"defaultStatus": "affected",
"product": "OpenShift Developer Tools and Services",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:openshift_lightspeed"
],
"defaultStatus": "affected",
"product": "OpenShift Lightspeed",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:openshift_pipelines:1"
],
"defaultStatus": "affected",
"product": "OpenShift Pipelines",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:serverless:1"
],
"defaultStatus": "affected",
"product": "OpenShift Serverless",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:openshift_power_monitoring"
],
"defaultStatus": "affected",
"product": "Power monitoring for Red Hat OpenShift",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:red_hat_3scale_amp:2"
],
"defaultStatus": "affected",
"product": "Red Hat 3scale API Management Platform 2",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:acm:2"
],
"defaultStatus": "affected",
"product": "Red Hat Advanced Cluster Management for Kubernetes 2",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:ansible_automation_platform:2"
],
"defaultStatus": "affected",
"product": "Red Hat Ansible Automation Platform 2",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:ceph_storage:5"
],
"defaultStatus": "affected",
"product": "Red Hat Ceph Storage 5",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:ceph_storage:6"
],
"defaultStatus": "affected",
"product": "Red Hat Ceph Storage 6",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:ceph_storage:8"
],
"defaultStatus": "affected",
"product": "Red Hat Ceph Storage 8",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:ceph_storage:9"
],
"defaultStatus": "affected",
"product": "Red Hat Ceph Storage 9",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:certifications:9"
],
"defaultStatus": "affected",
"product": "Red Hat Certification Program for Red Hat Enterprise Linux 9",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:connectivity_link:1"
],
"defaultStatus": "affected",
"product": "Red Hat Connectivity Link 1",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:rhdh:1"
],
"defaultStatus": "affected",
"product": "Red Hat Developer Hub",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/o:redhat:enterprise_linux:10"
],
"defaultStatus": "affected",
"product": "Red Hat Enterprise Linux 10",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/o:redhat:enterprise_linux:7"
],
"defaultStatus": "affected",
"product": "Red Hat Enterprise Linux 7",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/o:redhat:enterprise_linux:8"
],
"defaultStatus": "affected",
"product": "Red Hat Enterprise Linux 8",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/o:redhat:enterprise_linux:9"
],
"defaultStatus": "affected",
"product": "Red Hat Enterprise Linux 9",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:enterprise_linux_ai:3"
],
"defaultStatus": "affected",
"product": "Red Hat Enterprise Linux AI (RHEL AI) 3",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:lightspeed_for_runtimes:1"
],
"defaultStatus": "affected",
"product": "Red Hat Lightspeed for Runtimes Operator",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:openshift_ai"
],
"defaultStatus": "affected",
"product": "Red Hat OpenShift AI (RHOAI)",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:openshift_cluster_manager_cli:1"
],
"defaultStatus": "affected",
"product": "Red Hat OpenShift Cluster Manager CLI",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:openshift:4"
],
"defaultStatus": "affected",
"product": "Red Hat OpenShift Container Platform 4",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:windows_machine_config"
],
"defaultStatus": "affected",
"product": "Red Hat OpenShift for Windows Containers",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:openshift_service_on_aws:1"
],
"defaultStatus": "affected",
"product": "Red Hat OpenShift on AWS",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:container_native_virtualization:4"
],
"defaultStatus": "affected",
"product": "Red Hat OpenShift Virtualization 4",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:openstack:16.2"
],
"defaultStatus": "affected",
"product": "Red Hat OpenStack Platform 16.2",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:openstack:17.1"
],
"defaultStatus": "affected",
"product": "Red Hat OpenStack Platform 17.1",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:quay:3"
],
"defaultStatus": "affected",
"product": "Red Hat Quay 3",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:satellite:6"
],
"defaultStatus": "affected",
"product": "Red Hat Satellite 6",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:webterminal:1"
],
"defaultStatus": "affected",
"product": "Red Hat Web Terminal",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:openshift_security_profiles_operator:1"
],
"defaultStatus": "affected",
"product": "Security Profiles Operator",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:amq_streams:3"
],
"defaultStatus": "affected",
"product": "streams for Apache Kafka 3",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:zero_trust_workload_identity_manager:1"
],
"defaultStatus": "affected",
"product": "Zero Trust Workload Identity Manager",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:zero_trust_workload_identity_manager:0"
],
"defaultStatus": "affected",
"product": "Zero Trust Workload Identity Manager - Tech Preview",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:cryostat:4"
],
"defaultStatus": "unaffected",
"product": "Cryostat 4",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:openstack:18.0"
],
"defaultStatus": "unaffected",
"product": "Red Hat OpenStack Platform 18.0",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:service_interconnect:1"
],
"defaultStatus": "unaffected",
"product": "Red Hat Service Interconnect 1",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:service_interconnect:2"
],
"defaultStatus": "unaffected",
"product": "Red Hat Service Interconnect 2",
"vendor": "Red Hat"
}
],
"datePublic": "2026-05-22T15:01:21.462Z",
"descriptions": [
{
"lang": "en",
"value": "A flaw was found in golang.org/x/net/idna. ToASCII and ToUnicode incorrectly accept Punycode-encoded labels that decode to an ASCII-only hostname (for example, xn--example-.com returns example.com instead of an error). Applications that validate the ASCII form then convert to Unicode may grant access to a restricted hostname the ASCII check would have rejected."
}
],
"metrics": [
{
"other": {
"content": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"value": "Important"
},
"type": "Red Hat severity rating"
}
},
{
"cvssV3_1": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 8.2,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:N",
"version": "3.1"
},
"format": "CVSS"
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-1289",
"description": "Improper Validation of Unsafe Equivalence in Input",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2026-07-10T12:05:36.478Z",
"orgId": "0b0ca135-0b70-47e7-9f44-1890c2a1c46c",
"shortName": "redhat-SADP"
},
"references": [
{
"tags": [
"vdb-entry",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/security/cve/CVE-2026-39821"
},
{
"name": "RHBZ#2480756",
"tags": [
"issue-tracking",
"x_refsource_REDHAT"
],
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2480756"
},
{
"tags": [
"x_sadp-csaf-vex"
],
"url": "https://security.access.redhat.com/data/csaf/v2/vex/2026/cve-2026-39821.json"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:34789"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:36796"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:30855"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:35827"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:35826"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:34357"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:30853"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:35830"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:35831"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:30854"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:35828"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:35829"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:34359"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:34342"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:36808"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:34364"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:30651"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:26547"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:36207"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:26546"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:36651"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:33531"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:33524"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:23262"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:23264"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:36648"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:36820"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:35994"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:35993"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:33155"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:33163"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:33173"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:33183"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:33160"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:37387"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:36797"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:36105"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:36167"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:30650"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:36883"
}
],
"solutions": [
{
"lang": "en",
"value": "RHSA-2026:34789: Red Hat OpenShift Container Platform 4.22"
},
{
"lang": "en",
"value": "RHSA-2026:36796: RHEM 1.0 for RHEL 9"
},
{
"lang": "en",
"value": "RHSA-2026:30855: Red Hat Enterprise Linux AppStream (v. 10)"
},
{
"lang": "en",
"value": "RHSA-2026:35827: Red Hat Enterprise Linux AppStream (v. 10)"
},
{
"lang": "en",
"value": "RHSA-2026:35826: Red Hat Enterprise Linux AppStream (v. 10)"
},
{
"lang": "en",
"value": "RHSA-2026:34357: Red Hat Enterprise Linux AppStream (v. 10)"
},
{
"lang": "en",
"value": "RHSA-2026:30853: Red Hat Enterprise Linux AppStream (v. 8)"
},
{
"lang": "en",
"value": "RHSA-2026:35830: Red Hat Enterprise Linux AppStream (v. 8)"
},
{
"lang": "en",
"value": "RHSA-2026:35831: Red Hat Enterprise Linux AppStream (v. 8)"
},
{
"lang": "en",
"value": "RHSA-2026:30854: Red Hat Enterprise Linux AppStream (v. 9)"
},
{
"lang": "en",
"value": "RHSA-2026:35828: Red Hat Enterprise Linux AppStream (v. 9)"
},
{
"lang": "en",
"value": "RHSA-2026:35829: Red Hat Enterprise Linux AppStream (v. 9)"
},
{
"lang": "en",
"value": "RHSA-2026:34359: Red Hat Enterprise Linux AppStream (v. 9)"
},
{
"lang": "en",
"value": "RHSA-2026:34342: Cluster Observability Operator 1.5.0"
},
{
"lang": "en",
"value": "RHSA-2026:36808: DevWorkspace Operator 0.42"
},
{
"lang": "en",
"value": "RHSA-2026:34364: Logging Subsystem for Red Hat OpenShift 6.4"
},
{
"lang": "en",
"value": "RHSA-2026:30651: Red Hat Advanced Cluster Management for Kubernetes 2.13"
},
{
"lang": "en",
"value": "RHSA-2026:26547: Red Hat Advanced Cluster Security for Kubernetes 4.10"
},
{
"lang": "en",
"value": "RHSA-2026:36207: Red Hat Advanced Cluster Security for Kubernetes 4.11"
},
{
"lang": "en",
"value": "RHSA-2026:26546: Red Hat Advanced Cluster Security for Kubernetes 4.9"
},
{
"lang": "en",
"value": "RHSA-2026:36651: Red Hat Edge Manager 1.0"
},
{
"lang": "en",
"value": "RHSA-2026:33531: Red Hat Enterprise Linux AI 3.4"
},
{
"lang": "en",
"value": "RHSA-2026:33524: Red Hat Enterprise Linux AI 3.4"
},
{
"lang": "en",
"value": "RHSA-2026:23262: Red Hat Hardened Images"
},
{
"lang": "en",
"value": "RHSA-2026:23264: Red Hat Hardened Images"
},
{
"lang": "en",
"value": "RHSA-2026:36648: Red Hat OpenShift Builds 1.7.4"
},
{
"lang": "en",
"value": "RHSA-2026:36820: Red Hat OpenShift Dev Spaces 3.29"
},
{
"lang": "en",
"value": "RHSA-2026:35994: Red Hat OpenShift GitOps 1.19"
},
{
"lang": "en",
"value": "RHSA-2026:35993: Red Hat OpenShift GitOps 1.20"
},
{
"lang": "en",
"value": "RHSA-2026:33155: Red Hat OpenShift Service Mesh 2.6"
},
{
"lang": "en",
"value": "RHSA-2026:33163: Red Hat OpenShift Service Mesh 3.1"
},
{
"lang": "en",
"value": "RHSA-2026:33173: Red Hat OpenShift Service Mesh 3.2"
},
{
"lang": "en",
"value": "RHSA-2026:33183: Red Hat OpenShift Service Mesh 3.3"
},
{
"lang": "en",
"value": "RHSA-2026:33160: Red Hat OpenShift Service Mesh 3"
},
{
"lang": "en",
"value": "RHSA-2026:37387: Red Hat Openshift Data Foundation 4.22"
},
{
"lang": "en",
"value": "RHSA-2026:36797: Red Hat Trusted Artifact Signer 1.4"
},
{
"lang": "en",
"value": "RHSA-2026:36105: multicluster engine for Kubernetes 2.6"
},
{
"lang": "en",
"value": "RHSA-2026:36167: multicluster engine for Kubernetes 2.6"
},
{
"lang": "en",
"value": "RHSA-2026:30650: multicluster engine for Kubernetes 2.8"
},
{
"lang": "en",
"value": "RHSA-2026:36883: multicluster engine for Kubernetes 2.9"
}
],
"timeline": [
{
"lang": "en",
"time": "2026-05-22T16:00:52.844Z",
"value": "Reported to Red Hat."
},
{
"lang": "en",
"time": "2026-05-22T15:01:21.462Z",
"value": "Made public."
}
],
"title": "golang.org/x/net/idna: golang: golang.org/x/net/idna: Privilege escalation via incorrect Punycode label processing",
"workarounds": [
{
"lang": "en",
"value": "Upgrade to a fixed golang.org/x/net release that includes the idna correction, via updated golang or dependent package rebuilds."
}
],
"x_adpType": "supplier",
"x_generator": {
"engine": "sadp-cli 1.0.0"
}
}
],
"cna": {
"affected": [
{
"collectionURL": "https://pkg.go.dev",
"defaultStatus": "unaffected",
"packageName": "golang.org/x/net/idna",
"product": "golang.org/x/net/idna",
"programRoutines": [
{
"name": "Profile.process"
},
{
"name": "Profile.ToASCII"
},
{
"name": "Profile.ToUnicode"
},
{
"name": "ToASCII"
},
{
"name": "ToUnicode"
}
],
"vendor": "golang.org/x/net",
"versions": [
{
"lessThan": "0.55.0",
"status": "affected",
"version": "0",
"versionType": "semver"
}
]
}
],
"credits": [
{
"lang": "en",
"value": "KC1zs4 (https://github.com/KC1zs4)"
}
],
"descriptions": [
{
"lang": "en",
"value": "The ToASCII and ToUnicode functions incorrectly accept Punycode-encoded labels that decode to an ASCII-only label. For example, ToUnicode(\"xn--example-.com\") incorrectly returns the name \"example.com\" rather than an error. This behavior can lead to privilege escalation in programs using the idna package. For example, a program which performs privilege checks on the ASCII hostname may reject \"example.com\" but permit \"xn--example-.com\". If that program subsequently converts the ASCII hostname to Unicode, it will inadvertently permits access to the Unicode name \"example.com\"."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "CWE-1289: Improper Validation of Unsafe Equivalence in Input",
"lang": "en"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2026-05-22T15:01:21.462Z",
"orgId": "1bb62c36-49e3-4200-9d77-64a1400537cc",
"shortName": "Go"
},
"references": [
{
"url": "https://go.dev/cl/767220"
},
{
"url": "https://go.dev/issue/78760"
},
{
"url": "https://groups.google.com/g/golang-announce/c/iI-mYSI0lu8"
},
{
"url": "https://pkg.go.dev/vuln/GO-2026-5026"
}
],
"title": "Invoking failure to reject ASCII-only Punycode-encoded labels in golang.org/x/net/idna"
}
},
"cveMetadata": {
"assignerOrgId": "1bb62c36-49e3-4200-9d77-64a1400537cc",
"assignerShortName": "Go",
"cveId": "CVE-2026-39821",
"datePublished": "2026-05-22T15:01:21.462Z",
"dateReserved": "2026-04-07T18:13:03.526Z",
"dateUpdated": "2026-07-10T12:05:36.478Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.2",
"vulnerability-lookup:meta": {
"epss": {
"cve": "CVE-2026-39821",
"date": "2026-07-12",
"epss": "0.00478",
"percentile": "0.37973"
},
"microsoft_vex": {
"current_release_date": "2026-06-19T14:40:22.000Z",
"cve": "CVE-2026-39821",
"id": "msrc_CVE-2026-39821",
"initial_release_date": "2026-05-02T00:00:00.000Z",
"product_status:fixed": "50",
"product_status:known_affected": "52",
"product_status:known_not_affected": "4",
"source": "Microsoft CSAF VEX",
"status": "final",
"title": "Invoking failure to reject ASCII-only Punycode-encoded labels in golang.org/x/net/idna",
"url": "https://msrc.microsoft.com/csaf/vex/2026/msrc_cve-2026-39821.json",
"version": "11"
},
"nvd": "{\"cve\":{\"id\":\"CVE-2026-39821\",\"sourceIdentifier\":\"security@golang.org\",\"published\":\"2026-05-22T16:16:20.410\",\"lastModified\":\"2026-07-10T12:16:44.313\",\"vulnStatus\":\"Modified\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"The ToASCII and ToUnicode functions incorrectly accept Punycode-encoded labels that decode to an ASCII-only label. For example, ToUnicode(\\\"xn--example-.com\\\") incorrectly returns the name \\\"example.com\\\" rather than an error. This behavior can lead to privilege escalation in programs using the idna package. For example, a program which performs privilege checks on the ASCII hostname may reject \\\"example.com\\\" but permit \\\"xn--example-.com\\\". If that program subsequently converts the ASCII hostname to Unicode, it will inadvertently permits access to the Unicode name \\\"example.com\\\".\"}],\"affected\":[{\"source\":\"security@golang.org\",\"affectedData\":[{\"vendor\":\"golang.org/x/net\",\"product\":\"golang.org/x/net/idna\",\"defaultStatus\":\"unaffected\",\"collectionURL\":\"https://pkg.go.dev\",\"packageName\":\"golang.org/x/net/idna\",\"programRoutines\":[{\"name\":\"Profile.process\"},{\"name\":\"Profile.ToASCII\"},{\"name\":\"Profile.ToUnicode\"},{\"name\":\"ToASCII\"},{\"name\":\"ToUnicode\"}],\"versions\":[{\"version\":\"0\",\"lessThan\":\"0.55.0\",\"versionType\":\"semver\",\"status\":\"affected\"}]}]},{\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\",\"affectedData\":[{\"vendor\":\"Red Hat\",\"product\":\"Red Hat OpenShift Container Platform 4.22\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:openshift:4.22::el8\",\"cpe:/a:redhat:openshift:4.22::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"RHEM 1.0 for RHEL 9\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:edge_manager:1.0::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Enterprise Linux AppStream (v. 10)\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/o:redhat:enterprise_linux:10.2\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Enterprise Linux AppStream (v. 8)\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:enterprise_linux:8::appstream\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Enterprise Linux AppStream (v. 9)\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:enterprise_linux:9::appstream\"]},{\"vendor\":\"Red Hat\",\"product\":\"Cluster Observability Operator 1.5.0\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:cluster_observability_operator:1.5::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"DevWorkspace Operator 0.42\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:devworkspace:0.42::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Logging Subsystem for Red Hat OpenShift 6.4\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:logging:6.4::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Advanced Cluster Management for Kubernetes 2.13\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:acm:2.13::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Advanced Cluster Security for Kubernetes 4.10\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:advanced_cluster_security:4.10::el8\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Advanced Cluster Security for Kubernetes 4.11\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:advanced_cluster_security:4.11::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Advanced Cluster Security for Kubernetes 4.9\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:advanced_cluster_security:4.9::el8\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Edge Manager 1.0\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:edge_manager:1.0::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Enterprise Linux AI 3.4\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:enterprise_linux_ai:3.4::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Hardened Images\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:hummingbird:1\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat OpenShift Builds 1.7.4\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:openshift_builds:1.7::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat OpenShift Dev Spaces 3.29\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:openshift_devspaces:3.29::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat OpenShift GitOps 1.19\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:openshift_gitops:1.19::el8\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat OpenShift GitOps 1.20\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:openshift_gitops:1.20::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat OpenShift Service Mesh 2.6\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:service_mesh:2.6::el8\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat OpenShift Service Mesh 3.1\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:service_mesh:3.1::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat OpenShift Service Mesh 3.2\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:service_mesh:3.2::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat OpenShift Service Mesh 3.3\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:service_mesh:3.3::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat OpenShift Service Mesh 3\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:service_mesh:3.0::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Openshift Data Foundation 4.22\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:openshift_data_foundation:4.22::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Trusted Artifact Signer 1.4\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:trusted_artifact_signer:1.4::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"multicluster engine for Kubernetes 2.6\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:multicluster_engine:2.6::el8\"]},{\"vendor\":\"Red Hat\",\"product\":\"multicluster engine for Kubernetes 2.8\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:multicluster_engine:2.8::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"multicluster engine for Kubernetes 2.9\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:multicluster_engine:2.9::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Assisted Installer for Red Hat OpenShift Container Platform 2\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:assisted_installer:2\"]},{\"vendor\":\"Red Hat\",\"product\":\"cert-manager Operator for Red Hat OpenShift\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:cert_manager:1\"]},{\"vendor\":\"Red Hat\",\"product\":\"Compliance Operator\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:openshift_compliance_operator:1\"]},{\"vendor\":\"Red Hat\",\"product\":\"Confidential Compute Attestation\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:confidential_compute_attestation:1\"]},{\"vendor\":\"Red Hat\",\"product\":\"Deployment Validation Operator\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:deployment_validator_operator\"]},{\"vendor\":\"Red Hat\",\"product\":\"External Secrets Operator for Red Hat OpenShift\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:external_secrets_operator:1\"]},{\"vendor\":\"Red Hat\",\"product\":\"Fence Agents Remediation Operator\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:workload_availability_far:0\"]},{\"vendor\":\"Red Hat\",\"product\":\"File Integrity Operator\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:openshift_file_integrity_operator:1\"]},{\"vendor\":\"Red Hat\",\"product\":\"Gatekeeper 3\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:gatekeeper:3\"]},{\"vendor\":\"Red Hat\",\"product\":\"Logical Volume Manager Storage\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:lvms:4\"]},{\"vendor\":\"Red Hat\",\"product\":\"Machine Deletion Remediation Operator\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:workload_availability_mdr:0\"]},{\"vendor\":\"Red Hat\",\"product\":\"Migration Toolkit for Applications 8\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:migration_toolkit_applications:8\"]},{\"vendor\":\"Red Hat\",\"product\":\"Migration Toolkit for Containers\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:rhmt:1\"]},{\"vendor\":\"Red Hat\",\"product\":\"Multiarch Tuning Operator\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:multiarch_tuning_operator\"]},{\"vendor\":\"Red Hat\",\"product\":\"Multicluster Engine for Kubernetes\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:multicluster_engine\"]},{\"vendor\":\"Red Hat\",\"product\":\"Multicluster Global Hub\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:multicluster_globalhub\"]},{\"vendor\":\"Red Hat\",\"product\":\"Network Observability Operator\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:network_observ_optr:1\"]},{\"vendor\":\"Red Hat\",\"product\":\"Node HealthCheck Operator\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:workload_availability_nhc:0\"]},{\"vendor\":\"Red Hat\",\"product\":\"OpenShift API for Data Protection\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:openshift_api_data_protection:1\"]},{\"vendor\":\"Red Hat\",\"product\":\"OpenShift Developer Tools and Services\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:ocp_tools\"]},{\"vendor\":\"Red Hat\",\"product\":\"OpenShift Lightspeed\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:openshift_lightspeed\"]},{\"vendor\":\"Red Hat\",\"product\":\"OpenShift Pipelines\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:openshift_pipelines:1\"]},{\"vendor\":\"Red Hat\",\"product\":\"OpenShift Serverless\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:serverless:1\"]},{\"vendor\":\"Red Hat\",\"product\":\"Power monitoring for Red Hat OpenShift\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:openshift_power_monitoring\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat 3scale API Management Platform 2\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:red_hat_3scale_amp:2\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Advanced Cluster Management for Kubernetes 2\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:acm:2\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Ansible Automation Platform 2\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:ansible_automation_platform:2\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Ceph Storage 5\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:ceph_storage:5\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Ceph Storage 6\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:ceph_storage:6\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Ceph Storage 8\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:ceph_storage:8\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Ceph Storage 9\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:ceph_storage:9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Certification Program for Red Hat Enterprise Linux 9\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:certifications:9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Connectivity Link 1\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:connectivity_link:1\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Developer Hub\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:rhdh:1\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Enterprise Linux 10\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/o:redhat:enterprise_linux:10\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Enterprise Linux 7\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/o:redhat:enterprise_linux:7\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Enterprise Linux 8\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/o:redhat:enterprise_linux:8\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Enterprise Linux 9\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/o:redhat:enterprise_linux:9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Enterprise Linux AI (RHEL AI) 3\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:enterprise_linux_ai:3\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Lightspeed for Runtimes Operator\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:lightspeed_for_runtimes:1\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat OpenShift AI (RHOAI)\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:openshift_ai\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat OpenShift Cluster Manager CLI\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:openshift_cluster_manager_cli:1\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat OpenShift Container Platform 4\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:openshift:4\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat OpenShift for Windows Containers\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:windows_machine_config\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat OpenShift on AWS\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:openshift_service_on_aws:1\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat OpenShift Virtualization 4\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:container_native_virtualization:4\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat OpenStack Platform 16.2\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:openstack:16.2\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat OpenStack Platform 17.1\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:openstack:17.1\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Quay 3\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:quay:3\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Satellite 6\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:satellite:6\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Web Terminal\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:webterminal:1\"]},{\"vendor\":\"Red Hat\",\"product\":\"Security Profiles Operator\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:openshift_security_profiles_operator:1\"]},{\"vendor\":\"Red Hat\",\"product\":\"streams for Apache Kafka 3\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:amq_streams:3\"]},{\"vendor\":\"Red Hat\",\"product\":\"Zero Trust Workload Identity Manager\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:zero_trust_workload_identity_manager:1\"]},{\"vendor\":\"Red Hat\",\"product\":\"Zero Trust Workload Identity Manager - Tech Preview\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:zero_trust_workload_identity_manager:0\"]},{\"vendor\":\"Red Hat\",\"product\":\"Cryostat 4\",\"defaultStatus\":\"unaffected\",\"cpes\":[\"cpe:/a:redhat:cryostat:4\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat OpenStack Platform 18.0\",\"defaultStatus\":\"unaffected\",\"cpes\":[\"cpe:/a:redhat:openstack:18.0\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Service Interconnect 1\",\"defaultStatus\":\"unaffected\",\"cpes\":[\"cpe:/a:redhat:service_interconnect:1\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Service Interconnect 2\",\"defaultStatus\":\"unaffected\",\"cpes\":[\"cpe:/a:redhat:service_interconnect:2\"]}]}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"134c704f-9b21-4f2e-91b3-4a467353bcc0\",\"type\":\"Secondary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:N\",\"baseScore\":9.6,\"baseSeverity\":\"CRITICAL\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"LOW\",\"userInteraction\":\"NONE\",\"scope\":\"CHANGED\",\"confidentialityImpact\":\"HIGH\",\"integrityImpact\":\"HIGH\",\"availabilityImpact\":\"NONE\"},\"exploitabilityScore\":3.1,\"impactScore\":5.8},{\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\",\"type\":\"Secondary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:N\",\"baseScore\":8.2,\"baseSeverity\":\"HIGH\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"HIGH\",\"privilegesRequired\":\"LOW\",\"userInteraction\":\"NONE\",\"scope\":\"CHANGED\",\"confidentialityImpact\":\"HIGH\",\"integrityImpact\":\"HIGH\",\"availabilityImpact\":\"NONE\"},\"exploitabilityScore\":1.8,\"impactScore\":5.8}],\"ssvcV203\":[{\"source\":\"134c704f-9b21-4f2e-91b3-4a467353bcc0\",\"ssvcData\":{\"timestamp\":\"2026-05-23T03:55:58.522682Z\",\"id\":\"CVE-2026-39821\",\"options\":[{\"exploitation\":\"none\"},{\"automatable\":\"no\"},{\"technicalImpact\":\"total\"}],\"role\":\"CISA Coordinator\",\"version\":\"2.0.3\"}}]},\"weaknesses\":[{\"source\":\"134c704f-9b21-4f2e-91b3-4a467353bcc0\",\"type\":\"Secondary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-1289\"}]},{\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\",\"type\":\"Secondary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-1289\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:golang:net:*:*:*:*:*:go:*:*\",\"versionEndExcluding\":\"0.55.0\",\"matchCriteriaId\":\"38C86E7B-A1CA-4670-B113-FC9585261F6F\"}]}]}],\"references\":[{\"url\":\"https://go.dev/cl/767220\",\"source\":\"security@golang.org\",\"tags\":[\"Issue Tracking\"]},{\"url\":\"https://go.dev/issue/78760\",\"source\":\"security@golang.org\",\"tags\":[\"Issue Tracking\"]},{\"url\":\"https://groups.google.com/g/golang-announce/c/iI-mYSI0lu8\",\"source\":\"security@golang.org\",\"tags\":[\"Mailing List\"]},{\"url\":\"https://pkg.go.dev/vuln/GO-2026-5026\",\"source\":\"security@golang.org\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:23262\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:23264\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:26546\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:26547\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:30650\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:30651\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:30853\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:30854\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:30855\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:33155\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:33160\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:33163\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:33173\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:33183\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:33524\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:33531\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:34342\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:34357\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:34359\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:34364\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:34789\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:35826\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:35827\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:35828\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:35829\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:35830\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:35831\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:35993\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:35994\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:36105\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:36167\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:36207\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:36648\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:36651\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:36796\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:36797\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:36808\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:36820\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:36883\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:37387\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/security/cve/CVE-2026-39821\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://bugzilla.redhat.com/show_bug.cgi?id=2480756\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://security.access.redhat.com/data/csaf/v2/vex/2026/cve-2026-39821.json\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"}]}}",
"redhat_vex": {
"aggregate_severity": "Important",
"current_release_date": "2026-07-10T16:47:01+00:00",
"cve": "CVE-2026-39821",
"id": "CVE-2026-39821",
"initial_release_date": "2026-05-22T15:01:21.462000+00:00",
"product_status:fixed": "526",
"product_status:known_affected": "276",
"product_status:known_not_affected": "1001",
"source": "Red Hat CSAF VEX",
"status": "final",
"title": "golang.org/x/net/idna: golang: golang.org/x/net/idna: Privilege escalation via incorrect Punycode label processing",
"url": "https://security.access.redhat.com/data/csaf/v2/vex/2026/cve-2026-39821.json",
"version": "3"
},
"vulnrichment": {
"containers": "{\"adp\": [{\"title\": \"golang.org/x/net/idna: golang: golang.org/x/net/idna: Privilege escalation via incorrect Punycode label processing\", \"metrics\": [{\"other\": {\"type\": \"Red Hat severity rating\", \"content\": {\"value\": \"Important\", \"namespace\": \"https://access.redhat.com/security/updates/classification/\"}}}, {\"format\": \"CVSS\", \"cvssV3_1\": {\"scope\": \"CHANGED\", \"version\": \"3.1\", \"baseScore\": 8.2, \"attackVector\": \"NETWORK\", \"baseSeverity\": \"HIGH\", \"vectorString\": \"CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:N\", \"integrityImpact\": \"HIGH\", \"userInteraction\": \"NONE\", \"attackComplexity\": \"HIGH\", \"availabilityImpact\": \"NONE\", \"privilegesRequired\": \"LOW\", \"confidentialityImpact\": \"HIGH\"}}], \"affected\": [{\"cpes\": [\"cpe:/a:redhat:openshift:4.22::el8\", \"cpe:/a:redhat:openshift:4.22::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Container Platform 4.22\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:edge_manager:1.0::el9\"], \"vendor\": \"Red Hat\", \"product\": \"RHEM 1.0 for RHEL 9\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/o:redhat:enterprise_linux:10.2\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux AppStream (v. 10)\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:enterprise_linux:8::appstream\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux AppStream (v. 8)\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:enterprise_linux:9::appstream\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux AppStream (v. 9)\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:cluster_observability_operator:1.5::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Cluster Observability Operator 1.5.0\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:devworkspace:0.42::el9\"], \"vendor\": \"Red Hat\", \"product\": \"DevWorkspace Operator 0.42\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:logging:6.4::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Logging Subsystem for Red Hat OpenShift 6.4\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:acm:2.13::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Advanced Cluster Management for Kubernetes 2.13\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:advanced_cluster_security:4.10::el8\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Advanced Cluster Security for Kubernetes 4.10\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:advanced_cluster_security:4.11::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Advanced Cluster Security for Kubernetes 4.11\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:advanced_cluster_security:4.9::el8\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Advanced Cluster Security for Kubernetes 4.9\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:edge_manager:1.0::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Edge Manager 1.0\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:enterprise_linux_ai:3.4::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux AI 3.4\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:hummingbird:1\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Hardened Images\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift_builds:1.7::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Builds 1.7.4\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift_devspaces:3.29::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Dev Spaces 3.29\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift_gitops:1.19::el8\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift GitOps 1.19\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift_gitops:1.20::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift GitOps 1.20\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:service_mesh:2.6::el8\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Service Mesh 2.6\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:service_mesh:3.1::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Service Mesh 3.1\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:service_mesh:3.2::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Service Mesh 3.2\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:service_mesh:3.3::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Service Mesh 3.3\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:service_mesh:3.0::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Service Mesh 3\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift_data_foundation:4.22::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Openshift Data Foundation 4.22\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:trusted_artifact_signer:1.4::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Trusted Artifact Signer 1.4\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:multicluster_engine:2.6::el8\"], \"vendor\": \"Red Hat\", \"product\": \"multicluster engine for Kubernetes 2.6\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:multicluster_engine:2.8::el9\"], \"vendor\": \"Red Hat\", \"product\": \"multicluster engine for Kubernetes 2.8\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:multicluster_engine:2.9::el9\"], \"vendor\": \"Red Hat\", \"product\": \"multicluster engine for Kubernetes 2.9\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:assisted_installer:2\"], \"vendor\": \"Red Hat\", \"product\": \"Assisted Installer for Red Hat OpenShift Container Platform 2\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:cert_manager:1\"], \"vendor\": \"Red Hat\", \"product\": \"cert-manager Operator for Red Hat OpenShift\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift_compliance_operator:1\"], \"vendor\": \"Red Hat\", \"product\": \"Compliance Operator\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:confidential_compute_attestation:1\"], \"vendor\": \"Red Hat\", \"product\": \"Confidential Compute Attestation\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:deployment_validator_operator\"], \"vendor\": \"Red Hat\", \"product\": \"Deployment Validation Operator\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:external_secrets_operator:1\"], \"vendor\": \"Red Hat\", \"product\": \"External Secrets Operator for Red Hat OpenShift\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:workload_availability_far:0\"], \"vendor\": \"Red Hat\", \"product\": \"Fence Agents Remediation Operator\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift_file_integrity_operator:1\"], \"vendor\": \"Red Hat\", \"product\": \"File Integrity Operator\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:gatekeeper:3\"], \"vendor\": \"Red Hat\", \"product\": \"Gatekeeper 3\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:lvms:4\"], \"vendor\": \"Red Hat\", \"product\": \"Logical Volume Manager Storage\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:workload_availability_mdr:0\"], \"vendor\": \"Red Hat\", \"product\": \"Machine Deletion Remediation Operator\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:migration_toolkit_applications:8\"], \"vendor\": \"Red Hat\", \"product\": \"Migration Toolkit for Applications 8\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:rhmt:1\"], \"vendor\": \"Red Hat\", \"product\": \"Migration Toolkit for Containers\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:multiarch_tuning_operator\"], \"vendor\": \"Red Hat\", \"product\": \"Multiarch Tuning Operator\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:multicluster_engine\"], \"vendor\": \"Red Hat\", \"product\": \"Multicluster Engine for Kubernetes\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:multicluster_globalhub\"], \"vendor\": \"Red Hat\", \"product\": \"Multicluster Global Hub\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:network_observ_optr:1\"], \"vendor\": \"Red Hat\", \"product\": \"Network Observability Operator\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:workload_availability_nhc:0\"], \"vendor\": \"Red Hat\", \"product\": \"Node HealthCheck Operator\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift_api_data_protection:1\"], \"vendor\": \"Red Hat\", \"product\": \"OpenShift API for Data Protection\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:ocp_tools\"], \"vendor\": \"Red Hat\", \"product\": \"OpenShift Developer Tools and Services\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift_lightspeed\"], \"vendor\": \"Red Hat\", \"product\": \"OpenShift Lightspeed\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift_pipelines:1\"], \"vendor\": \"Red Hat\", \"product\": \"OpenShift Pipelines\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:serverless:1\"], \"vendor\": \"Red Hat\", \"product\": \"OpenShift Serverless\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift_power_monitoring\"], \"vendor\": \"Red Hat\", \"product\": \"Power monitoring for Red Hat OpenShift\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:red_hat_3scale_amp:2\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat 3scale API Management Platform 2\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:acm:2\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Advanced Cluster Management for Kubernetes 2\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:ansible_automation_platform:2\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Ansible Automation Platform 2\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:ceph_storage:5\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Ceph Storage 5\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:ceph_storage:6\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Ceph Storage 6\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:ceph_storage:8\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Ceph Storage 8\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:ceph_storage:9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Ceph Storage 9\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:certifications:9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Certification Program for Red Hat Enterprise Linux 9\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:connectivity_link:1\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Connectivity Link 1\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:rhdh:1\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Developer Hub\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/o:redhat:enterprise_linux:10\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux 10\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/o:redhat:enterprise_linux:7\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux 7\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/o:redhat:enterprise_linux:8\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux 8\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/o:redhat:enterprise_linux:9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux 9\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:enterprise_linux_ai:3\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux AI (RHEL AI) 3\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:lightspeed_for_runtimes:1\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Lightspeed for Runtimes Operator\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift_ai\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift AI (RHOAI)\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift_cluster_manager_cli:1\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Cluster Manager CLI\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift:4\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Container Platform 4\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:windows_machine_config\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift for Windows Containers\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift_service_on_aws:1\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift on AWS\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:container_native_virtualization:4\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Virtualization 4\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openstack:16.2\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenStack Platform 16.2\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openstack:17.1\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenStack Platform 17.1\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:quay:3\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Quay 3\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:satellite:6\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Satellite 6\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:webterminal:1\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Web Terminal\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift_security_profiles_operator:1\"], \"vendor\": \"Red Hat\", \"product\": \"Security Profiles Operator\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:amq_streams:3\"], \"vendor\": \"Red Hat\", \"product\": \"streams for Apache Kafka 3\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:zero_trust_workload_identity_manager:1\"], \"vendor\": \"Red Hat\", \"product\": \"Zero Trust Workload Identity Manager\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:zero_trust_workload_identity_manager:0\"], \"vendor\": \"Red Hat\", \"product\": \"Zero Trust Workload Identity Manager - Tech Preview\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:cryostat:4\"], \"vendor\": \"Red Hat\", \"product\": \"Cryostat 4\", \"defaultStatus\": \"unaffected\"}, {\"cpes\": [\"cpe:/a:redhat:openstack:18.0\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenStack Platform 18.0\", \"defaultStatus\": \"unaffected\"}, {\"cpes\": [\"cpe:/a:redhat:service_interconnect:1\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Service Interconnect 1\", \"defaultStatus\": \"unaffected\"}, {\"cpes\": [\"cpe:/a:redhat:service_interconnect:2\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Service Interconnect 2\", \"defaultStatus\": \"unaffected\"}], \"timeline\": [{\"lang\": \"en\", \"time\": \"2026-05-22T16:00:52.844Z\", \"value\": \"Reported to Red Hat.\"}, {\"lang\": \"en\", \"time\": \"2026-05-22T15:01:21.462Z\", \"value\": \"Made public.\"}], \"solutions\": [{\"lang\": \"en\", \"value\": \"RHSA-2026:34789: Red Hat OpenShift Container Platform 4.22\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:36796: RHEM 1.0 for RHEL 9\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:30855: Red Hat Enterprise Linux AppStream (v. 10)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:35827: Red Hat Enterprise Linux AppStream (v. 10)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:35826: Red Hat Enterprise Linux AppStream (v. 10)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:34357: Red Hat Enterprise Linux AppStream (v. 10)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:30853: Red Hat Enterprise Linux AppStream (v. 8)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:35830: Red Hat Enterprise Linux AppStream (v. 8)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:35831: Red Hat Enterprise Linux AppStream (v. 8)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:30854: Red Hat Enterprise Linux AppStream (v. 9)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:35828: Red Hat Enterprise Linux AppStream (v. 9)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:35829: Red Hat Enterprise Linux AppStream (v. 9)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:34359: Red Hat Enterprise Linux AppStream (v. 9)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:34342: Cluster Observability Operator 1.5.0\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:36808: DevWorkspace Operator 0.42\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:34364: Logging Subsystem for Red Hat OpenShift 6.4\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:30651: Red Hat Advanced Cluster Management for Kubernetes 2.13\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:26547: Red Hat Advanced Cluster Security for Kubernetes 4.10\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:36207: Red Hat Advanced Cluster Security for Kubernetes 4.11\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:26546: Red Hat Advanced Cluster Security for Kubernetes 4.9\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:36651: Red Hat Edge Manager 1.0\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:33531: Red Hat Enterprise Linux AI 3.4\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:33524: Red Hat Enterprise Linux AI 3.4\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:23262: Red Hat Hardened Images\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:23264: Red Hat Hardened Images\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:36648: Red Hat OpenShift Builds 1.7.4\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:36820: Red Hat OpenShift Dev Spaces 3.29\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:35994: Red Hat OpenShift GitOps 1.19\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:35993: Red Hat OpenShift GitOps 1.20\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:33155: Red Hat OpenShift Service Mesh 2.6\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:33163: Red Hat OpenShift Service Mesh 3.1\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:33173: Red Hat OpenShift Service Mesh 3.2\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:33183: Red Hat OpenShift Service Mesh 3.3\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:33160: Red Hat OpenShift Service Mesh 3\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:37387: Red Hat Openshift Data Foundation 4.22\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:36797: Red Hat Trusted Artifact Signer 1.4\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:36105: multicluster engine for Kubernetes 2.6\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:36167: multicluster engine for Kubernetes 2.6\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:30650: multicluster engine for Kubernetes 2.8\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:36883: multicluster engine for Kubernetes 2.9\"}], \"x_adpType\": \"supplier\", \"datePublic\": \"2026-05-22T15:01:21.462Z\", \"references\": [{\"url\": \"https://access.redhat.com/security/cve/CVE-2026-39821\", \"tags\": [\"vdb-entry\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://bugzilla.redhat.com/show_bug.cgi?id=2480756\", \"name\": \"RHBZ#2480756\", \"tags\": [\"issue-tracking\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://security.access.redhat.com/data/csaf/v2/vex/2026/cve-2026-39821.json\", \"tags\": [\"x_sadp-csaf-vex\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:34789\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:36796\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:30855\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:35827\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:35826\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:34357\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:30853\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:35830\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:35831\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:30854\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:35828\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:35829\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:34359\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:34342\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:36808\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:34364\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:30651\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:26547\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:36207\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:26546\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:36651\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:33531\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:33524\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:23262\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:23264\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:36648\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:36820\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:35994\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:35993\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:33155\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:33163\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:33173\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:33183\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:33160\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:37387\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:36797\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:36105\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:36167\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:30650\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:36883\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}], \"workarounds\": [{\"lang\": \"en\", \"value\": \"Upgrade to a fixed golang.org/x/net release that includes the idna correction, via updated golang or dependent package rebuilds.\"}], \"x_generator\": {\"engine\": \"sadp-cli 1.0.0\"}, \"descriptions\": [{\"lang\": \"en\", \"value\": \"A flaw was found in golang.org/x/net/idna. ToASCII and ToUnicode incorrectly accept Punycode-encoded labels that decode to an ASCII-only hostname (for example, xn--example-.com returns example.com instead of an error). Applications that validate the ASCII form then convert to Unicode may grant access to a restricted hostname the ASCII check would have rejected.\"}], \"problemTypes\": [{\"descriptions\": [{\"lang\": \"en\", \"type\": \"CWE\", \"cweId\": \"CWE-1289\", \"description\": \"Improper Validation of Unsafe Equivalence in Input\"}]}], \"providerMetadata\": {\"orgId\": \"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\", \"shortName\": \"redhat-SADP\", \"dateUpdated\": \"2026-07-10T12:05:36.478Z\"}}, {\"title\": \"CISA ADP Vulnrichment\", \"metrics\": [{\"cvssV3_1\": {\"scope\": \"CHANGED\", \"version\": \"3.1\", \"baseScore\": 9.6, \"attackVector\": \"NETWORK\", \"baseSeverity\": \"CRITICAL\", \"vectorString\": \"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:N\", \"integrityImpact\": \"HIGH\", \"userInteraction\": \"NONE\", \"attackComplexity\": \"LOW\", \"availabilityImpact\": \"NONE\", \"privilegesRequired\": \"LOW\", \"confidentialityImpact\": \"HIGH\"}}, {\"other\": {\"type\": \"ssvc\", \"content\": {\"id\": \"CVE-2026-39821\", \"role\": \"CISA Coordinator\", \"options\": [{\"Exploitation\": \"none\"}, {\"Automatable\": \"no\"}, {\"Technical Impact\": \"total\"}], \"version\": \"2.0.3\", \"timestamp\": \"2026-05-23T03:55:58.522682Z\"}}}], \"problemTypes\": [{\"descriptions\": [{\"lang\": \"en\", \"type\": \"CWE\", \"cweId\": \"CWE-1289\", \"description\": \"CWE-1289 Improper Validation of Unsafe Equivalence in Input\"}]}], \"providerMetadata\": {\"orgId\": \"134c704f-9b21-4f2e-91b3-4a467353bcc0\", \"shortName\": \"CISA-ADP\", \"dateUpdated\": \"2026-05-22T18:01:10.401Z\"}}], \"cna\": {\"title\": \"Invoking failure to reject ASCII-only Punycode-encoded labels in golang.org/x/net/idna\", \"credits\": [{\"lang\": \"en\", \"value\": \"KC1zs4 (https://github.com/KC1zs4)\"}], \"affected\": [{\"vendor\": \"golang.org/x/net\", \"product\": \"golang.org/x/net/idna\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"0.55.0\", \"versionType\": \"semver\"}], \"packageName\": \"golang.org/x/net/idna\", \"collectionURL\": \"https://pkg.go.dev\", \"defaultStatus\": \"unaffected\", \"programRoutines\": [{\"name\": \"Profile.process\"}, {\"name\": \"Profile.ToASCII\"}, {\"name\": \"Profile.ToUnicode\"}, {\"name\": \"ToASCII\"}, {\"name\": \"ToUnicode\"}]}], \"references\": [{\"url\": \"https://go.dev/cl/767220\"}, {\"url\": \"https://go.dev/issue/78760\"}, {\"url\": \"https://groups.google.com/g/golang-announce/c/iI-mYSI0lu8\"}, {\"url\": \"https://pkg.go.dev/vuln/GO-2026-5026\"}], \"descriptions\": [{\"lang\": \"en\", \"value\": \"The ToASCII and ToUnicode functions incorrectly accept Punycode-encoded labels that decode to an ASCII-only label. For example, ToUnicode(\\\"xn--example-.com\\\") incorrectly returns the name \\\"example.com\\\" rather than an error. This behavior can lead to privilege escalation in programs using the idna package. For example, a program which performs privilege checks on the ASCII hostname may reject \\\"example.com\\\" but permit \\\"xn--example-.com\\\". If that program subsequently converts the ASCII hostname to Unicode, it will inadvertently permits access to the Unicode name \\\"example.com\\\".\"}], \"problemTypes\": [{\"descriptions\": [{\"lang\": \"en\", \"description\": \"CWE-1289: Improper Validation of Unsafe Equivalence in Input\"}]}], \"providerMetadata\": {\"orgId\": \"1bb62c36-49e3-4200-9d77-64a1400537cc\", \"shortName\": \"Go\", \"dateUpdated\": \"2026-05-22T15:01:21.462Z\"}}}",
"cveMetadata": "{\"cveId\": \"CVE-2026-39821\", \"state\": \"PUBLISHED\", \"dateUpdated\": \"2026-07-10T12:05:36.478Z\", \"dateReserved\": \"2026-04-07T18:13:03.526Z\", \"assignerOrgId\": \"1bb62c36-49e3-4200-9d77-64a1400537cc\", \"datePublished\": \"2026-05-22T15:01:21.462Z\", \"assignerShortName\": \"Go\"}",
"dataType": "CVE_RECORD",
"dataVersion": "5.2"
}
}
}
RHSA-2026:35994
Vulnerability from csaf_redhat - Published: 2026-07-06 15:19 - Updated: 2026-07-10 16:54A flaw was found in the `net` package of Go (golang), specifically when using the `LookupCNAME` function with the `cgo` DNS resolver. A remote attacker could exploit this by providing a very long Canonical Name (CNAME) response. This can trigger a double-free of C memory, leading to a crash and a Denial of Service (DoS) for the affected application.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/dex-rhel8@sha256:1186f9afe02ad55310874f86544e7c966a4e3eddcab664ec363030ac4b6fed4f_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/dex-rhel8@sha256:3713138e73d479f2532f5380b065af0379d236596455448dbe8a1a17bc5780d2_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/dex-rhel8@sha256:480a339ce9d622d6371d4ef75f4ddf7840a2dda6d512496eaf6d930654ffb58a_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/dex-rhel8@sha256:6ffae033f5816f4448fb9bbc79359a1319251e5c1baab2bb9fdd60289ba542b8_arm64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argo-rollouts-rhel8@sha256:142f81e07068cb43fa22b798e3fd1f1cd0b54f2820bf8008f1c61114632be9a9_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argo-rollouts-rhel8@sha256:2b3f86ba682cce1753ca2abc3538c330ec78026863ace0a7303fb36f8530a09a_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argo-rollouts-rhel8@sha256:77341d5f25030515eed25537d224c4a8701322a58db9181cdfc925d4cab28eca_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argo-rollouts-rhel8@sha256:8cf8a6ae5212d2206bfca8033862a4fd812e41bd6683696a3f2c974a9fb5dd56_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argocd-agent-rhel8@sha256:11d452ecde021dd5bcf0aa79c01c49074c0fcaa4561f71b1e71f940f99b6fc77_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argocd-agent-rhel8@sha256:392359aa59f69afe8860a82a951659990437548916f92c97f4ec4cdaded2d0b0_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argocd-agent-rhel8@sha256:86e42d5047b3dfe9be543c43f06d9fc5c8d8ecaa2529b58ad47f30be9a4cd77f_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argocd-agent-rhel8@sha256:b3cf24392920aaa725f287938d5e77d1525825d49ebd05b2ed3c7c0d4ed7a823_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argocd-extensions-rhel8@sha256:06a57559d48b63dcb7e0b939f9c9303aa5a3f5c32616c47c48c8161da5d8b530_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argocd-extensions-rhel8@sha256:3f6492a7edfdaa1282837277a83e4c247f4b689a9f9ac16766b3b0d8415330b1_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argocd-extensions-rhel8@sha256:786fcd7035e4e59926bb74ffa23628cd8c328b1eb890cd948fee216e563a272c_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argocd-extensions-rhel8@sha256:e424fd18276656ca4f7a29f3ca7c4184f51655c22d8136fbac49195201271a9e_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argocd-image-updater-rhel8@sha256:1318ceaefef8c5e2ce3f7ae04e938a4458a5c0120eb77b7628ebbd1770edbd67_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argocd-image-updater-rhel8@sha256:2046a561a59f47f856e40e138561586978d1d473a3fcd6eaea95fbca5d62eb66_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argocd-image-updater-rhel8@sha256:8312842c2ae5637a43b3c1a933d47d148cd2ea2544978e55d9640d59523174b1_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argocd-image-updater-rhel8@sha256:d35ec5054ec806575e13854da072a39e47ed431260002f8ce2eaa09c67e454d0_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argocd-rhel8@sha256:3061b1d84759aa1c46379875593b0503a961930f9b18a5566866dd533cb5157e_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argocd-rhel8@sha256:a8b1fad3743f82ff1df3b6daed36096eabd827070b9426a76cb2bffa73d23f8e_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argocd-rhel8@sha256:b69311dff750e993a9b4b0bdc5756012f32c0a644e8bac213267b6729addbf3c_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argocd-rhel8@sha256:d34b5b4cb79db418674b9210036d6acb12a35abb894e58ac56ac49e2dabbd7c3_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argocd-rhel9@sha256:13007a387398626756a013d64b64f941e548b9207fba487f1f2110c6ef7a2143_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argocd-rhel9@sha256:909e2f26afee68521775cf31d13dfaa3d16fdf736f7e7097aba987e15bba4183_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argocd-rhel9@sha256:9553897b4c43a1df0e15339cdb1a953d72963c400f47572fb04555ec49b5ad44_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argocd-rhel9@sha256:c5317561de5e3c65588016e320afdcc9d1a8ae9a27a8f64fe03bf62e2e6914bf_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/console-plugin-rhel8@sha256:554da1fb02ef3e4870cac383b50d2ab0374a9d8c42827cb909ca17121cd2d674_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/console-plugin-rhel8@sha256:840cddc6e9803845f8216c670e251f3e412cecbdef40d543dabcee0e4d83bf4d_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/console-plugin-rhel8@sha256:bc53ecb8ce0ab3d2a955c21f9e0b84b55e7d297f77b2ead6a71f3f7f58670691_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/console-plugin-rhel8@sha256:e21cad6af52b3ca67013d723df4a5b1b7e63044e83a5402b2fb365eeb5978635_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/gitops-operator-bundle@sha256:22419f173ef1d31a83d226bc3b23fb283db62a9693c8f1df0a5e2fb4b3b38df4_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/gitops-rhel8-operator@sha256:e106c87be2d6834217435a7583b40c3bc1a9ab92624cd1ad4219913cfe4b6463_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/gitops-rhel8-operator@sha256:f324070b67fe44e3f4d7862f10fbcafb4dcabcfa4beb8b5e4ffe062800ab5989_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/gitops-rhel8-operator@sha256:f38c4f32c9c4eaa50ae99b8cb38e58aaf0c0c7eaa8275e211b3f81b023ddc0c0_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/gitops-rhel8-operator@sha256:fbe2b3bb5242f2d118d60dcd449858e7968d9eaff8c5ba5efcb2b36201ce8e0a_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/gitops-rhel8@sha256:2513bd207d6ef60f16637b9a18dce2437844703afde603becdc50113823d8728_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/gitops-rhel8@sha256:4c81a4f0d5a90edfc1da474af937e8c276579f0e1a87c77b93352f2ee7550eac_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/gitops-rhel8@sha256:940596cd69f441ccd2dc6aedf77e0cdac328a55532734304703429e78f80f206_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/gitops-rhel8@sha256:a66508fb7b17486246be16bf381f0c629993482a7858f0b5f9ae2b2340d02ea1_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/must-gather-rhel8@sha256:1afe78f60cfeb8380eb63eae988b34354cd1de47dd07cf69defd272292e296db_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/must-gather-rhel8@sha256:6fd7d8c42604912b271d672b159c7b5d43955d19afdbaa2b95f11fce589ce9da_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/must-gather-rhel8@sha256:b8c045203993fbb2e653c8bb8453254b1d9383827337e1148cf99f1aef00cf6e_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/must-gather-rhel8@sha256:bf83003061015154a7bf8c0a56c1ab639ae725bc7985ee296c341530dfd81650_s390x | — |
Workaround
|
A flaw was found in golang.org/x/net/idna. ToASCII and ToUnicode incorrectly accept Punycode-encoded labels that decode to an ASCII-only hostname (for example, xn--example-.com returns example.com instead of an error). Applications that validate the ASCII form then convert to Unicode may grant access to a restricted hostname the ASCII check would have rejected.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/dex-rhel8@sha256:1186f9afe02ad55310874f86544e7c966a4e3eddcab664ec363030ac4b6fed4f_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/dex-rhel8@sha256:3713138e73d479f2532f5380b065af0379d236596455448dbe8a1a17bc5780d2_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/dex-rhel8@sha256:480a339ce9d622d6371d4ef75f4ddf7840a2dda6d512496eaf6d930654ffb58a_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/dex-rhel8@sha256:6ffae033f5816f4448fb9bbc79359a1319251e5c1baab2bb9fdd60289ba542b8_arm64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argo-rollouts-rhel8@sha256:142f81e07068cb43fa22b798e3fd1f1cd0b54f2820bf8008f1c61114632be9a9_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argo-rollouts-rhel8@sha256:2b3f86ba682cce1753ca2abc3538c330ec78026863ace0a7303fb36f8530a09a_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argo-rollouts-rhel8@sha256:77341d5f25030515eed25537d224c4a8701322a58db9181cdfc925d4cab28eca_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argo-rollouts-rhel8@sha256:8cf8a6ae5212d2206bfca8033862a4fd812e41bd6683696a3f2c974a9fb5dd56_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argocd-agent-rhel8@sha256:11d452ecde021dd5bcf0aa79c01c49074c0fcaa4561f71b1e71f940f99b6fc77_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argocd-agent-rhel8@sha256:392359aa59f69afe8860a82a951659990437548916f92c97f4ec4cdaded2d0b0_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argocd-agent-rhel8@sha256:86e42d5047b3dfe9be543c43f06d9fc5c8d8ecaa2529b58ad47f30be9a4cd77f_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argocd-agent-rhel8@sha256:b3cf24392920aaa725f287938d5e77d1525825d49ebd05b2ed3c7c0d4ed7a823_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argocd-extensions-rhel8@sha256:06a57559d48b63dcb7e0b939f9c9303aa5a3f5c32616c47c48c8161da5d8b530_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argocd-extensions-rhel8@sha256:3f6492a7edfdaa1282837277a83e4c247f4b689a9f9ac16766b3b0d8415330b1_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argocd-extensions-rhel8@sha256:786fcd7035e4e59926bb74ffa23628cd8c328b1eb890cd948fee216e563a272c_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argocd-extensions-rhel8@sha256:e424fd18276656ca4f7a29f3ca7c4184f51655c22d8136fbac49195201271a9e_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argocd-image-updater-rhel8@sha256:1318ceaefef8c5e2ce3f7ae04e938a4458a5c0120eb77b7628ebbd1770edbd67_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argocd-image-updater-rhel8@sha256:2046a561a59f47f856e40e138561586978d1d473a3fcd6eaea95fbca5d62eb66_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argocd-image-updater-rhel8@sha256:8312842c2ae5637a43b3c1a933d47d148cd2ea2544978e55d9640d59523174b1_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argocd-image-updater-rhel8@sha256:d35ec5054ec806575e13854da072a39e47ed431260002f8ce2eaa09c67e454d0_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argocd-rhel8@sha256:3061b1d84759aa1c46379875593b0503a961930f9b18a5566866dd533cb5157e_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argocd-rhel8@sha256:a8b1fad3743f82ff1df3b6daed36096eabd827070b9426a76cb2bffa73d23f8e_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argocd-rhel8@sha256:b69311dff750e993a9b4b0bdc5756012f32c0a644e8bac213267b6729addbf3c_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argocd-rhel8@sha256:d34b5b4cb79db418674b9210036d6acb12a35abb894e58ac56ac49e2dabbd7c3_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argocd-rhel9@sha256:13007a387398626756a013d64b64f941e548b9207fba487f1f2110c6ef7a2143_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argocd-rhel9@sha256:909e2f26afee68521775cf31d13dfaa3d16fdf736f7e7097aba987e15bba4183_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argocd-rhel9@sha256:9553897b4c43a1df0e15339cdb1a953d72963c400f47572fb04555ec49b5ad44_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argocd-rhel9@sha256:c5317561de5e3c65588016e320afdcc9d1a8ae9a27a8f64fe03bf62e2e6914bf_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/console-plugin-rhel8@sha256:554da1fb02ef3e4870cac383b50d2ab0374a9d8c42827cb909ca17121cd2d674_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/console-plugin-rhel8@sha256:840cddc6e9803845f8216c670e251f3e412cecbdef40d543dabcee0e4d83bf4d_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/console-plugin-rhel8@sha256:bc53ecb8ce0ab3d2a955c21f9e0b84b55e7d297f77b2ead6a71f3f7f58670691_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/console-plugin-rhel8@sha256:e21cad6af52b3ca67013d723df4a5b1b7e63044e83a5402b2fb365eeb5978635_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/gitops-operator-bundle@sha256:22419f173ef1d31a83d226bc3b23fb283db62a9693c8f1df0a5e2fb4b3b38df4_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/gitops-rhel8-operator@sha256:e106c87be2d6834217435a7583b40c3bc1a9ab92624cd1ad4219913cfe4b6463_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/gitops-rhel8-operator@sha256:f324070b67fe44e3f4d7862f10fbcafb4dcabcfa4beb8b5e4ffe062800ab5989_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/gitops-rhel8-operator@sha256:f38c4f32c9c4eaa50ae99b8cb38e58aaf0c0c7eaa8275e211b3f81b023ddc0c0_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/gitops-rhel8-operator@sha256:fbe2b3bb5242f2d118d60dcd449858e7968d9eaff8c5ba5efcb2b36201ce8e0a_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/gitops-rhel8@sha256:2513bd207d6ef60f16637b9a18dce2437844703afde603becdc50113823d8728_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/gitops-rhel8@sha256:4c81a4f0d5a90edfc1da474af937e8c276579f0e1a87c77b93352f2ee7550eac_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/gitops-rhel8@sha256:940596cd69f441ccd2dc6aedf77e0cdac328a55532734304703429e78f80f206_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/gitops-rhel8@sha256:a66508fb7b17486246be16bf381f0c629993482a7858f0b5f9ae2b2340d02ea1_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/must-gather-rhel8@sha256:1afe78f60cfeb8380eb63eae988b34354cd1de47dd07cf69defd272292e296db_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/must-gather-rhel8@sha256:6fd7d8c42604912b271d672b159c7b5d43955d19afdbaa2b95f11fce589ce9da_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/must-gather-rhel8@sha256:b8c045203993fbb2e653c8bb8453254b1d9383827337e1148cf99f1aef00cf6e_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/must-gather-rhel8@sha256:bf83003061015154a7bf8c0a56c1ab639ae725bc7985ee296c341530dfd81650_s390x | — |
Workaround
|
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Important: Red Hat OpenShift GitOps v1.19.5 security update",
"title": "Topic"
},
{
"category": "general",
"text": "An update is now available for Red Hat OpenShift GitOps.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2026:35994",
"url": "https://access.redhat.com/errata/RHSA-2026:35994"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-33811",
"url": "https://access.redhat.com/security/cve/CVE-2026-33811"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-39821",
"url": "https://access.redhat.com/security/cve/CVE-2026-39821"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/",
"url": "https://access.redhat.com/security/updates/classification/"
},
{
"category": "external",
"summary": "https://docs.redhat.com/en/documentation/red_hat_openshift_gitops/1.19/",
"url": "https://docs.redhat.com/en/documentation/red_hat_openshift_gitops/1.19/"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2026/rhsa-2026_35994.json"
}
],
"title": "Red Hat Security Advisory: Red Hat OpenShift GitOps v1.19.5 security update",
"tracking": {
"current_release_date": "2026-07-10T16:54:27+00:00",
"generator": {
"date": "2026-07-10T16:54:27+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "5.3.2"
}
},
"id": "RHSA-2026:35994",
"initial_release_date": "2026-07-06T15:19:12+00:00",
"revision_history": [
{
"date": "2026-07-06T15:19:12+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2026-07-06T15:19:15+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2026-07-10T16:54:27+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat OpenShift GitOps 1.19",
"product": {
"name": "Red Hat OpenShift GitOps 1.19",
"product_id": "Red Hat OpenShift GitOps 1.19",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:openshift_gitops:1.19::el8"
}
}
}
],
"category": "product_family",
"name": "Red Hat OpenShift GitOps"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/openshift-gitops-1/dex-rhel8@sha256:6ffae033f5816f4448fb9bbc79359a1319251e5c1baab2bb9fdd60289ba542b8_arm64",
"product": {
"name": "registry.redhat.io/openshift-gitops-1/dex-rhel8@sha256:6ffae033f5816f4448fb9bbc79359a1319251e5c1baab2bb9fdd60289ba542b8_arm64",
"product_id": "registry.redhat.io/openshift-gitops-1/dex-rhel8@sha256:6ffae033f5816f4448fb9bbc79359a1319251e5c1baab2bb9fdd60289ba542b8_arm64",
"product_identification_helper": {
"purl": "pkg:oci/dex-rhel8@sha256%3A6ffae033f5816f4448fb9bbc79359a1319251e5c1baab2bb9fdd60289ba542b8?arch=arm64\u0026repository_url=registry.redhat.io/openshift-gitops-1/dex-rhel8\u0026tag=1782292352"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-gitops-1/argo-rollouts-rhel8@sha256:142f81e07068cb43fa22b798e3fd1f1cd0b54f2820bf8008f1c61114632be9a9_arm64",
"product": {
"name": "registry.redhat.io/openshift-gitops-1/argo-rollouts-rhel8@sha256:142f81e07068cb43fa22b798e3fd1f1cd0b54f2820bf8008f1c61114632be9a9_arm64",
"product_id": "registry.redhat.io/openshift-gitops-1/argo-rollouts-rhel8@sha256:142f81e07068cb43fa22b798e3fd1f1cd0b54f2820bf8008f1c61114632be9a9_arm64",
"product_identification_helper": {
"purl": "pkg:oci/argo-rollouts-rhel8@sha256%3A142f81e07068cb43fa22b798e3fd1f1cd0b54f2820bf8008f1c61114632be9a9?arch=arm64\u0026repository_url=registry.redhat.io/openshift-gitops-1/argo-rollouts-rhel8\u0026tag=1782291525"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-gitops-1/argocd-rhel8@sha256:b69311dff750e993a9b4b0bdc5756012f32c0a644e8bac213267b6729addbf3c_arm64",
"product": {
"name": "registry.redhat.io/openshift-gitops-1/argocd-rhel8@sha256:b69311dff750e993a9b4b0bdc5756012f32c0a644e8bac213267b6729addbf3c_arm64",
"product_id": "registry.redhat.io/openshift-gitops-1/argocd-rhel8@sha256:b69311dff750e993a9b4b0bdc5756012f32c0a644e8bac213267b6729addbf3c_arm64",
"product_identification_helper": {
"purl": "pkg:oci/argocd-rhel8@sha256%3Ab69311dff750e993a9b4b0bdc5756012f32c0a644e8bac213267b6729addbf3c?arch=arm64\u0026repository_url=registry.redhat.io/openshift-gitops-1/argocd-rhel8\u0026tag=1782292031"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-gitops-1/argocd-agent-rhel8@sha256:86e42d5047b3dfe9be543c43f06d9fc5c8d8ecaa2529b58ad47f30be9a4cd77f_arm64",
"product": {
"name": "registry.redhat.io/openshift-gitops-1/argocd-agent-rhel8@sha256:86e42d5047b3dfe9be543c43f06d9fc5c8d8ecaa2529b58ad47f30be9a4cd77f_arm64",
"product_id": "registry.redhat.io/openshift-gitops-1/argocd-agent-rhel8@sha256:86e42d5047b3dfe9be543c43f06d9fc5c8d8ecaa2529b58ad47f30be9a4cd77f_arm64",
"product_identification_helper": {
"purl": "pkg:oci/argocd-agent-rhel8@sha256%3A86e42d5047b3dfe9be543c43f06d9fc5c8d8ecaa2529b58ad47f30be9a4cd77f?arch=arm64\u0026repository_url=registry.redhat.io/openshift-gitops-1/argocd-agent-rhel8\u0026tag=1782293105"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-gitops-1/argocd-extensions-rhel8@sha256:786fcd7035e4e59926bb74ffa23628cd8c328b1eb890cd948fee216e563a272c_arm64",
"product": {
"name": "registry.redhat.io/openshift-gitops-1/argocd-extensions-rhel8@sha256:786fcd7035e4e59926bb74ffa23628cd8c328b1eb890cd948fee216e563a272c_arm64",
"product_id": "registry.redhat.io/openshift-gitops-1/argocd-extensions-rhel8@sha256:786fcd7035e4e59926bb74ffa23628cd8c328b1eb890cd948fee216e563a272c_arm64",
"product_identification_helper": {
"purl": "pkg:oci/argocd-extensions-rhel8@sha256%3A786fcd7035e4e59926bb74ffa23628cd8c328b1eb890cd948fee216e563a272c?arch=arm64\u0026repository_url=registry.redhat.io/openshift-gitops-1/argocd-extensions-rhel8\u0026tag=1782290950"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-gitops-1/argocd-image-updater-rhel8@sha256:1318ceaefef8c5e2ce3f7ae04e938a4458a5c0120eb77b7628ebbd1770edbd67_arm64",
"product": {
"name": "registry.redhat.io/openshift-gitops-1/argocd-image-updater-rhel8@sha256:1318ceaefef8c5e2ce3f7ae04e938a4458a5c0120eb77b7628ebbd1770edbd67_arm64",
"product_id": "registry.redhat.io/openshift-gitops-1/argocd-image-updater-rhel8@sha256:1318ceaefef8c5e2ce3f7ae04e938a4458a5c0120eb77b7628ebbd1770edbd67_arm64",
"product_identification_helper": {
"purl": "pkg:oci/argocd-image-updater-rhel8@sha256%3A1318ceaefef8c5e2ce3f7ae04e938a4458a5c0120eb77b7628ebbd1770edbd67?arch=arm64\u0026repository_url=registry.redhat.io/openshift-gitops-1/argocd-image-updater-rhel8\u0026tag=1782291351"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-gitops-1/argocd-rhel9@sha256:c5317561de5e3c65588016e320afdcc9d1a8ae9a27a8f64fe03bf62e2e6914bf_arm64",
"product": {
"name": "registry.redhat.io/openshift-gitops-1/argocd-rhel9@sha256:c5317561de5e3c65588016e320afdcc9d1a8ae9a27a8f64fe03bf62e2e6914bf_arm64",
"product_id": "registry.redhat.io/openshift-gitops-1/argocd-rhel9@sha256:c5317561de5e3c65588016e320afdcc9d1a8ae9a27a8f64fe03bf62e2e6914bf_arm64",
"product_identification_helper": {
"purl": "pkg:oci/argocd-rhel9@sha256%3Ac5317561de5e3c65588016e320afdcc9d1a8ae9a27a8f64fe03bf62e2e6914bf?arch=arm64\u0026repository_url=registry.redhat.io/openshift-gitops-1/argocd-rhel9\u0026tag=1782290387"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-gitops-1/console-plugin-rhel8@sha256:bc53ecb8ce0ab3d2a955c21f9e0b84b55e7d297f77b2ead6a71f3f7f58670691_arm64",
"product": {
"name": "registry.redhat.io/openshift-gitops-1/console-plugin-rhel8@sha256:bc53ecb8ce0ab3d2a955c21f9e0b84b55e7d297f77b2ead6a71f3f7f58670691_arm64",
"product_id": "registry.redhat.io/openshift-gitops-1/console-plugin-rhel8@sha256:bc53ecb8ce0ab3d2a955c21f9e0b84b55e7d297f77b2ead6a71f3f7f58670691_arm64",
"product_identification_helper": {
"purl": "pkg:oci/console-plugin-rhel8@sha256%3Abc53ecb8ce0ab3d2a955c21f9e0b84b55e7d297f77b2ead6a71f3f7f58670691?arch=arm64\u0026repository_url=registry.redhat.io/openshift-gitops-1/console-plugin-rhel8\u0026tag=1782290215"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-gitops-1/gitops-rhel8@sha256:940596cd69f441ccd2dc6aedf77e0cdac328a55532734304703429e78f80f206_arm64",
"product": {
"name": "registry.redhat.io/openshift-gitops-1/gitops-rhel8@sha256:940596cd69f441ccd2dc6aedf77e0cdac328a55532734304703429e78f80f206_arm64",
"product_id": "registry.redhat.io/openshift-gitops-1/gitops-rhel8@sha256:940596cd69f441ccd2dc6aedf77e0cdac328a55532734304703429e78f80f206_arm64",
"product_identification_helper": {
"purl": "pkg:oci/gitops-rhel8@sha256%3A940596cd69f441ccd2dc6aedf77e0cdac328a55532734304703429e78f80f206?arch=arm64\u0026repository_url=registry.redhat.io/openshift-gitops-1/gitops-rhel8\u0026tag=1782291052"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-gitops-1/gitops-rhel8-operator@sha256:f324070b67fe44e3f4d7862f10fbcafb4dcabcfa4beb8b5e4ffe062800ab5989_arm64",
"product": {
"name": "registry.redhat.io/openshift-gitops-1/gitops-rhel8-operator@sha256:f324070b67fe44e3f4d7862f10fbcafb4dcabcfa4beb8b5e4ffe062800ab5989_arm64",
"product_id": "registry.redhat.io/openshift-gitops-1/gitops-rhel8-operator@sha256:f324070b67fe44e3f4d7862f10fbcafb4dcabcfa4beb8b5e4ffe062800ab5989_arm64",
"product_identification_helper": {
"purl": "pkg:oci/gitops-rhel8-operator@sha256%3Af324070b67fe44e3f4d7862f10fbcafb4dcabcfa4beb8b5e4ffe062800ab5989?arch=arm64\u0026repository_url=registry.redhat.io/openshift-gitops-1/gitops-rhel8-operator\u0026tag=1782290000"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-gitops-1/must-gather-rhel8@sha256:1afe78f60cfeb8380eb63eae988b34354cd1de47dd07cf69defd272292e296db_arm64",
"product": {
"name": "registry.redhat.io/openshift-gitops-1/must-gather-rhel8@sha256:1afe78f60cfeb8380eb63eae988b34354cd1de47dd07cf69defd272292e296db_arm64",
"product_id": "registry.redhat.io/openshift-gitops-1/must-gather-rhel8@sha256:1afe78f60cfeb8380eb63eae988b34354cd1de47dd07cf69defd272292e296db_arm64",
"product_identification_helper": {
"purl": "pkg:oci/must-gather-rhel8@sha256%3A1afe78f60cfeb8380eb63eae988b34354cd1de47dd07cf69defd272292e296db?arch=arm64\u0026repository_url=registry.redhat.io/openshift-gitops-1/must-gather-rhel8\u0026tag=1782291973"
}
}
}
],
"category": "architecture",
"name": "arm64"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/openshift-gitops-1/argo-rollouts-rhel8@sha256:77341d5f25030515eed25537d224c4a8701322a58db9181cdfc925d4cab28eca_amd64",
"product": {
"name": "registry.redhat.io/openshift-gitops-1/argo-rollouts-rhel8@sha256:77341d5f25030515eed25537d224c4a8701322a58db9181cdfc925d4cab28eca_amd64",
"product_id": "registry.redhat.io/openshift-gitops-1/argo-rollouts-rhel8@sha256:77341d5f25030515eed25537d224c4a8701322a58db9181cdfc925d4cab28eca_amd64",
"product_identification_helper": {
"purl": "pkg:oci/argo-rollouts-rhel8@sha256%3A77341d5f25030515eed25537d224c4a8701322a58db9181cdfc925d4cab28eca?arch=amd64\u0026repository_url=registry.redhat.io/openshift-gitops-1/argo-rollouts-rhel8\u0026tag=1782291525"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-gitops-1/argocd-rhel8@sha256:a8b1fad3743f82ff1df3b6daed36096eabd827070b9426a76cb2bffa73d23f8e_amd64",
"product": {
"name": "registry.redhat.io/openshift-gitops-1/argocd-rhel8@sha256:a8b1fad3743f82ff1df3b6daed36096eabd827070b9426a76cb2bffa73d23f8e_amd64",
"product_id": "registry.redhat.io/openshift-gitops-1/argocd-rhel8@sha256:a8b1fad3743f82ff1df3b6daed36096eabd827070b9426a76cb2bffa73d23f8e_amd64",
"product_identification_helper": {
"purl": "pkg:oci/argocd-rhel8@sha256%3Aa8b1fad3743f82ff1df3b6daed36096eabd827070b9426a76cb2bffa73d23f8e?arch=amd64\u0026repository_url=registry.redhat.io/openshift-gitops-1/argocd-rhel8\u0026tag=1782292031"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-gitops-1/argocd-agent-rhel8@sha256:392359aa59f69afe8860a82a951659990437548916f92c97f4ec4cdaded2d0b0_amd64",
"product": {
"name": "registry.redhat.io/openshift-gitops-1/argocd-agent-rhel8@sha256:392359aa59f69afe8860a82a951659990437548916f92c97f4ec4cdaded2d0b0_amd64",
"product_id": "registry.redhat.io/openshift-gitops-1/argocd-agent-rhel8@sha256:392359aa59f69afe8860a82a951659990437548916f92c97f4ec4cdaded2d0b0_amd64",
"product_identification_helper": {
"purl": "pkg:oci/argocd-agent-rhel8@sha256%3A392359aa59f69afe8860a82a951659990437548916f92c97f4ec4cdaded2d0b0?arch=amd64\u0026repository_url=registry.redhat.io/openshift-gitops-1/argocd-agent-rhel8\u0026tag=1782293105"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-gitops-1/argocd-extensions-rhel8@sha256:06a57559d48b63dcb7e0b939f9c9303aa5a3f5c32616c47c48c8161da5d8b530_amd64",
"product": {
"name": "registry.redhat.io/openshift-gitops-1/argocd-extensions-rhel8@sha256:06a57559d48b63dcb7e0b939f9c9303aa5a3f5c32616c47c48c8161da5d8b530_amd64",
"product_id": "registry.redhat.io/openshift-gitops-1/argocd-extensions-rhel8@sha256:06a57559d48b63dcb7e0b939f9c9303aa5a3f5c32616c47c48c8161da5d8b530_amd64",
"product_identification_helper": {
"purl": "pkg:oci/argocd-extensions-rhel8@sha256%3A06a57559d48b63dcb7e0b939f9c9303aa5a3f5c32616c47c48c8161da5d8b530?arch=amd64\u0026repository_url=registry.redhat.io/openshift-gitops-1/argocd-extensions-rhel8\u0026tag=1782290950"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-gitops-1/argocd-image-updater-rhel8@sha256:8312842c2ae5637a43b3c1a933d47d148cd2ea2544978e55d9640d59523174b1_amd64",
"product": {
"name": "registry.redhat.io/openshift-gitops-1/argocd-image-updater-rhel8@sha256:8312842c2ae5637a43b3c1a933d47d148cd2ea2544978e55d9640d59523174b1_amd64",
"product_id": "registry.redhat.io/openshift-gitops-1/argocd-image-updater-rhel8@sha256:8312842c2ae5637a43b3c1a933d47d148cd2ea2544978e55d9640d59523174b1_amd64",
"product_identification_helper": {
"purl": "pkg:oci/argocd-image-updater-rhel8@sha256%3A8312842c2ae5637a43b3c1a933d47d148cd2ea2544978e55d9640d59523174b1?arch=amd64\u0026repository_url=registry.redhat.io/openshift-gitops-1/argocd-image-updater-rhel8\u0026tag=1782291351"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-gitops-1/argocd-rhel9@sha256:909e2f26afee68521775cf31d13dfaa3d16fdf736f7e7097aba987e15bba4183_amd64",
"product": {
"name": "registry.redhat.io/openshift-gitops-1/argocd-rhel9@sha256:909e2f26afee68521775cf31d13dfaa3d16fdf736f7e7097aba987e15bba4183_amd64",
"product_id": "registry.redhat.io/openshift-gitops-1/argocd-rhel9@sha256:909e2f26afee68521775cf31d13dfaa3d16fdf736f7e7097aba987e15bba4183_amd64",
"product_identification_helper": {
"purl": "pkg:oci/argocd-rhel9@sha256%3A909e2f26afee68521775cf31d13dfaa3d16fdf736f7e7097aba987e15bba4183?arch=amd64\u0026repository_url=registry.redhat.io/openshift-gitops-1/argocd-rhel9\u0026tag=1782290387"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-gitops-1/console-plugin-rhel8@sha256:554da1fb02ef3e4870cac383b50d2ab0374a9d8c42827cb909ca17121cd2d674_amd64",
"product": {
"name": "registry.redhat.io/openshift-gitops-1/console-plugin-rhel8@sha256:554da1fb02ef3e4870cac383b50d2ab0374a9d8c42827cb909ca17121cd2d674_amd64",
"product_id": "registry.redhat.io/openshift-gitops-1/console-plugin-rhel8@sha256:554da1fb02ef3e4870cac383b50d2ab0374a9d8c42827cb909ca17121cd2d674_amd64",
"product_identification_helper": {
"purl": "pkg:oci/console-plugin-rhel8@sha256%3A554da1fb02ef3e4870cac383b50d2ab0374a9d8c42827cb909ca17121cd2d674?arch=amd64\u0026repository_url=registry.redhat.io/openshift-gitops-1/console-plugin-rhel8\u0026tag=1782290215"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-gitops-1/dex-rhel8@sha256:480a339ce9d622d6371d4ef75f4ddf7840a2dda6d512496eaf6d930654ffb58a_amd64",
"product": {
"name": "registry.redhat.io/openshift-gitops-1/dex-rhel8@sha256:480a339ce9d622d6371d4ef75f4ddf7840a2dda6d512496eaf6d930654ffb58a_amd64",
"product_id": "registry.redhat.io/openshift-gitops-1/dex-rhel8@sha256:480a339ce9d622d6371d4ef75f4ddf7840a2dda6d512496eaf6d930654ffb58a_amd64",
"product_identification_helper": {
"purl": "pkg:oci/dex-rhel8@sha256%3A480a339ce9d622d6371d4ef75f4ddf7840a2dda6d512496eaf6d930654ffb58a?arch=amd64\u0026repository_url=registry.redhat.io/openshift-gitops-1/dex-rhel8\u0026tag=1782292352"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-gitops-1/gitops-rhel8@sha256:a66508fb7b17486246be16bf381f0c629993482a7858f0b5f9ae2b2340d02ea1_amd64",
"product": {
"name": "registry.redhat.io/openshift-gitops-1/gitops-rhel8@sha256:a66508fb7b17486246be16bf381f0c629993482a7858f0b5f9ae2b2340d02ea1_amd64",
"product_id": "registry.redhat.io/openshift-gitops-1/gitops-rhel8@sha256:a66508fb7b17486246be16bf381f0c629993482a7858f0b5f9ae2b2340d02ea1_amd64",
"product_identification_helper": {
"purl": "pkg:oci/gitops-rhel8@sha256%3Aa66508fb7b17486246be16bf381f0c629993482a7858f0b5f9ae2b2340d02ea1?arch=amd64\u0026repository_url=registry.redhat.io/openshift-gitops-1/gitops-rhel8\u0026tag=1782291052"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-gitops-1/gitops-rhel8-operator@sha256:f38c4f32c9c4eaa50ae99b8cb38e58aaf0c0c7eaa8275e211b3f81b023ddc0c0_amd64",
"product": {
"name": "registry.redhat.io/openshift-gitops-1/gitops-rhel8-operator@sha256:f38c4f32c9c4eaa50ae99b8cb38e58aaf0c0c7eaa8275e211b3f81b023ddc0c0_amd64",
"product_id": "registry.redhat.io/openshift-gitops-1/gitops-rhel8-operator@sha256:f38c4f32c9c4eaa50ae99b8cb38e58aaf0c0c7eaa8275e211b3f81b023ddc0c0_amd64",
"product_identification_helper": {
"purl": "pkg:oci/gitops-rhel8-operator@sha256%3Af38c4f32c9c4eaa50ae99b8cb38e58aaf0c0c7eaa8275e211b3f81b023ddc0c0?arch=amd64\u0026repository_url=registry.redhat.io/openshift-gitops-1/gitops-rhel8-operator\u0026tag=1782290000"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-gitops-1/gitops-operator-bundle@sha256:22419f173ef1d31a83d226bc3b23fb283db62a9693c8f1df0a5e2fb4b3b38df4_amd64",
"product": {
"name": "registry.redhat.io/openshift-gitops-1/gitops-operator-bundle@sha256:22419f173ef1d31a83d226bc3b23fb283db62a9693c8f1df0a5e2fb4b3b38df4_amd64",
"product_id": "registry.redhat.io/openshift-gitops-1/gitops-operator-bundle@sha256:22419f173ef1d31a83d226bc3b23fb283db62a9693c8f1df0a5e2fb4b3b38df4_amd64",
"product_identification_helper": {
"purl": "pkg:oci/gitops-operator-bundle@sha256%3A22419f173ef1d31a83d226bc3b23fb283db62a9693c8f1df0a5e2fb4b3b38df4?arch=amd64\u0026repository_url=registry.redhat.io/openshift-gitops-1/gitops-operator-bundle\u0026tag=1782313555"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-gitops-1/must-gather-rhel8@sha256:b8c045203993fbb2e653c8bb8453254b1d9383827337e1148cf99f1aef00cf6e_amd64",
"product": {
"name": "registry.redhat.io/openshift-gitops-1/must-gather-rhel8@sha256:b8c045203993fbb2e653c8bb8453254b1d9383827337e1148cf99f1aef00cf6e_amd64",
"product_id": "registry.redhat.io/openshift-gitops-1/must-gather-rhel8@sha256:b8c045203993fbb2e653c8bb8453254b1d9383827337e1148cf99f1aef00cf6e_amd64",
"product_identification_helper": {
"purl": "pkg:oci/must-gather-rhel8@sha256%3Ab8c045203993fbb2e653c8bb8453254b1d9383827337e1148cf99f1aef00cf6e?arch=amd64\u0026repository_url=registry.redhat.io/openshift-gitops-1/must-gather-rhel8\u0026tag=1782291973"
}
}
}
],
"category": "architecture",
"name": "amd64"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/openshift-gitops-1/argo-rollouts-rhel8@sha256:2b3f86ba682cce1753ca2abc3538c330ec78026863ace0a7303fb36f8530a09a_ppc64le",
"product": {
"name": "registry.redhat.io/openshift-gitops-1/argo-rollouts-rhel8@sha256:2b3f86ba682cce1753ca2abc3538c330ec78026863ace0a7303fb36f8530a09a_ppc64le",
"product_id": "registry.redhat.io/openshift-gitops-1/argo-rollouts-rhel8@sha256:2b3f86ba682cce1753ca2abc3538c330ec78026863ace0a7303fb36f8530a09a_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/argo-rollouts-rhel8@sha256%3A2b3f86ba682cce1753ca2abc3538c330ec78026863ace0a7303fb36f8530a09a?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-gitops-1/argo-rollouts-rhel8\u0026tag=1782291525"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-gitops-1/argocd-rhel8@sha256:3061b1d84759aa1c46379875593b0503a961930f9b18a5566866dd533cb5157e_ppc64le",
"product": {
"name": "registry.redhat.io/openshift-gitops-1/argocd-rhel8@sha256:3061b1d84759aa1c46379875593b0503a961930f9b18a5566866dd533cb5157e_ppc64le",
"product_id": "registry.redhat.io/openshift-gitops-1/argocd-rhel8@sha256:3061b1d84759aa1c46379875593b0503a961930f9b18a5566866dd533cb5157e_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/argocd-rhel8@sha256%3A3061b1d84759aa1c46379875593b0503a961930f9b18a5566866dd533cb5157e?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-gitops-1/argocd-rhel8\u0026tag=1782292031"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-gitops-1/argocd-agent-rhel8@sha256:b3cf24392920aaa725f287938d5e77d1525825d49ebd05b2ed3c7c0d4ed7a823_ppc64le",
"product": {
"name": "registry.redhat.io/openshift-gitops-1/argocd-agent-rhel8@sha256:b3cf24392920aaa725f287938d5e77d1525825d49ebd05b2ed3c7c0d4ed7a823_ppc64le",
"product_id": "registry.redhat.io/openshift-gitops-1/argocd-agent-rhel8@sha256:b3cf24392920aaa725f287938d5e77d1525825d49ebd05b2ed3c7c0d4ed7a823_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/argocd-agent-rhel8@sha256%3Ab3cf24392920aaa725f287938d5e77d1525825d49ebd05b2ed3c7c0d4ed7a823?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-gitops-1/argocd-agent-rhel8\u0026tag=1782293105"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-gitops-1/argocd-extensions-rhel8@sha256:3f6492a7edfdaa1282837277a83e4c247f4b689a9f9ac16766b3b0d8415330b1_ppc64le",
"product": {
"name": "registry.redhat.io/openshift-gitops-1/argocd-extensions-rhel8@sha256:3f6492a7edfdaa1282837277a83e4c247f4b689a9f9ac16766b3b0d8415330b1_ppc64le",
"product_id": "registry.redhat.io/openshift-gitops-1/argocd-extensions-rhel8@sha256:3f6492a7edfdaa1282837277a83e4c247f4b689a9f9ac16766b3b0d8415330b1_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/argocd-extensions-rhel8@sha256%3A3f6492a7edfdaa1282837277a83e4c247f4b689a9f9ac16766b3b0d8415330b1?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-gitops-1/argocd-extensions-rhel8\u0026tag=1782290950"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-gitops-1/argocd-image-updater-rhel8@sha256:2046a561a59f47f856e40e138561586978d1d473a3fcd6eaea95fbca5d62eb66_ppc64le",
"product": {
"name": "registry.redhat.io/openshift-gitops-1/argocd-image-updater-rhel8@sha256:2046a561a59f47f856e40e138561586978d1d473a3fcd6eaea95fbca5d62eb66_ppc64le",
"product_id": "registry.redhat.io/openshift-gitops-1/argocd-image-updater-rhel8@sha256:2046a561a59f47f856e40e138561586978d1d473a3fcd6eaea95fbca5d62eb66_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/argocd-image-updater-rhel8@sha256%3A2046a561a59f47f856e40e138561586978d1d473a3fcd6eaea95fbca5d62eb66?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-gitops-1/argocd-image-updater-rhel8\u0026tag=1782291351"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-gitops-1/argocd-rhel9@sha256:13007a387398626756a013d64b64f941e548b9207fba487f1f2110c6ef7a2143_ppc64le",
"product": {
"name": "registry.redhat.io/openshift-gitops-1/argocd-rhel9@sha256:13007a387398626756a013d64b64f941e548b9207fba487f1f2110c6ef7a2143_ppc64le",
"product_id": "registry.redhat.io/openshift-gitops-1/argocd-rhel9@sha256:13007a387398626756a013d64b64f941e548b9207fba487f1f2110c6ef7a2143_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/argocd-rhel9@sha256%3A13007a387398626756a013d64b64f941e548b9207fba487f1f2110c6ef7a2143?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-gitops-1/argocd-rhel9\u0026tag=1782290387"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-gitops-1/console-plugin-rhel8@sha256:840cddc6e9803845f8216c670e251f3e412cecbdef40d543dabcee0e4d83bf4d_ppc64le",
"product": {
"name": "registry.redhat.io/openshift-gitops-1/console-plugin-rhel8@sha256:840cddc6e9803845f8216c670e251f3e412cecbdef40d543dabcee0e4d83bf4d_ppc64le",
"product_id": "registry.redhat.io/openshift-gitops-1/console-plugin-rhel8@sha256:840cddc6e9803845f8216c670e251f3e412cecbdef40d543dabcee0e4d83bf4d_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/console-plugin-rhel8@sha256%3A840cddc6e9803845f8216c670e251f3e412cecbdef40d543dabcee0e4d83bf4d?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-gitops-1/console-plugin-rhel8\u0026tag=1782290215"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-gitops-1/dex-rhel8@sha256:3713138e73d479f2532f5380b065af0379d236596455448dbe8a1a17bc5780d2_ppc64le",
"product": {
"name": "registry.redhat.io/openshift-gitops-1/dex-rhel8@sha256:3713138e73d479f2532f5380b065af0379d236596455448dbe8a1a17bc5780d2_ppc64le",
"product_id": "registry.redhat.io/openshift-gitops-1/dex-rhel8@sha256:3713138e73d479f2532f5380b065af0379d236596455448dbe8a1a17bc5780d2_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/dex-rhel8@sha256%3A3713138e73d479f2532f5380b065af0379d236596455448dbe8a1a17bc5780d2?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-gitops-1/dex-rhel8\u0026tag=1782292352"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-gitops-1/gitops-rhel8@sha256:4c81a4f0d5a90edfc1da474af937e8c276579f0e1a87c77b93352f2ee7550eac_ppc64le",
"product": {
"name": "registry.redhat.io/openshift-gitops-1/gitops-rhel8@sha256:4c81a4f0d5a90edfc1da474af937e8c276579f0e1a87c77b93352f2ee7550eac_ppc64le",
"product_id": "registry.redhat.io/openshift-gitops-1/gitops-rhel8@sha256:4c81a4f0d5a90edfc1da474af937e8c276579f0e1a87c77b93352f2ee7550eac_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/gitops-rhel8@sha256%3A4c81a4f0d5a90edfc1da474af937e8c276579f0e1a87c77b93352f2ee7550eac?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-gitops-1/gitops-rhel8\u0026tag=1782291052"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-gitops-1/gitops-rhel8-operator@sha256:e106c87be2d6834217435a7583b40c3bc1a9ab92624cd1ad4219913cfe4b6463_ppc64le",
"product": {
"name": "registry.redhat.io/openshift-gitops-1/gitops-rhel8-operator@sha256:e106c87be2d6834217435a7583b40c3bc1a9ab92624cd1ad4219913cfe4b6463_ppc64le",
"product_id": "registry.redhat.io/openshift-gitops-1/gitops-rhel8-operator@sha256:e106c87be2d6834217435a7583b40c3bc1a9ab92624cd1ad4219913cfe4b6463_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/gitops-rhel8-operator@sha256%3Ae106c87be2d6834217435a7583b40c3bc1a9ab92624cd1ad4219913cfe4b6463?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-gitops-1/gitops-rhel8-operator\u0026tag=1782290000"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-gitops-1/must-gather-rhel8@sha256:6fd7d8c42604912b271d672b159c7b5d43955d19afdbaa2b95f11fce589ce9da_ppc64le",
"product": {
"name": "registry.redhat.io/openshift-gitops-1/must-gather-rhel8@sha256:6fd7d8c42604912b271d672b159c7b5d43955d19afdbaa2b95f11fce589ce9da_ppc64le",
"product_id": "registry.redhat.io/openshift-gitops-1/must-gather-rhel8@sha256:6fd7d8c42604912b271d672b159c7b5d43955d19afdbaa2b95f11fce589ce9da_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/must-gather-rhel8@sha256%3A6fd7d8c42604912b271d672b159c7b5d43955d19afdbaa2b95f11fce589ce9da?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-gitops-1/must-gather-rhel8\u0026tag=1782291973"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/openshift-gitops-1/argo-rollouts-rhel8@sha256:8cf8a6ae5212d2206bfca8033862a4fd812e41bd6683696a3f2c974a9fb5dd56_s390x",
"product": {
"name": "registry.redhat.io/openshift-gitops-1/argo-rollouts-rhel8@sha256:8cf8a6ae5212d2206bfca8033862a4fd812e41bd6683696a3f2c974a9fb5dd56_s390x",
"product_id": "registry.redhat.io/openshift-gitops-1/argo-rollouts-rhel8@sha256:8cf8a6ae5212d2206bfca8033862a4fd812e41bd6683696a3f2c974a9fb5dd56_s390x",
"product_identification_helper": {
"purl": "pkg:oci/argo-rollouts-rhel8@sha256%3A8cf8a6ae5212d2206bfca8033862a4fd812e41bd6683696a3f2c974a9fb5dd56?arch=s390x\u0026repository_url=registry.redhat.io/openshift-gitops-1/argo-rollouts-rhel8\u0026tag=1782291525"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-gitops-1/argocd-rhel8@sha256:d34b5b4cb79db418674b9210036d6acb12a35abb894e58ac56ac49e2dabbd7c3_s390x",
"product": {
"name": "registry.redhat.io/openshift-gitops-1/argocd-rhel8@sha256:d34b5b4cb79db418674b9210036d6acb12a35abb894e58ac56ac49e2dabbd7c3_s390x",
"product_id": "registry.redhat.io/openshift-gitops-1/argocd-rhel8@sha256:d34b5b4cb79db418674b9210036d6acb12a35abb894e58ac56ac49e2dabbd7c3_s390x",
"product_identification_helper": {
"purl": "pkg:oci/argocd-rhel8@sha256%3Ad34b5b4cb79db418674b9210036d6acb12a35abb894e58ac56ac49e2dabbd7c3?arch=s390x\u0026repository_url=registry.redhat.io/openshift-gitops-1/argocd-rhel8\u0026tag=1782292031"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-gitops-1/argocd-agent-rhel8@sha256:11d452ecde021dd5bcf0aa79c01c49074c0fcaa4561f71b1e71f940f99b6fc77_s390x",
"product": {
"name": "registry.redhat.io/openshift-gitops-1/argocd-agent-rhel8@sha256:11d452ecde021dd5bcf0aa79c01c49074c0fcaa4561f71b1e71f940f99b6fc77_s390x",
"product_id": "registry.redhat.io/openshift-gitops-1/argocd-agent-rhel8@sha256:11d452ecde021dd5bcf0aa79c01c49074c0fcaa4561f71b1e71f940f99b6fc77_s390x",
"product_identification_helper": {
"purl": "pkg:oci/argocd-agent-rhel8@sha256%3A11d452ecde021dd5bcf0aa79c01c49074c0fcaa4561f71b1e71f940f99b6fc77?arch=s390x\u0026repository_url=registry.redhat.io/openshift-gitops-1/argocd-agent-rhel8\u0026tag=1782293105"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-gitops-1/argocd-extensions-rhel8@sha256:e424fd18276656ca4f7a29f3ca7c4184f51655c22d8136fbac49195201271a9e_s390x",
"product": {
"name": "registry.redhat.io/openshift-gitops-1/argocd-extensions-rhel8@sha256:e424fd18276656ca4f7a29f3ca7c4184f51655c22d8136fbac49195201271a9e_s390x",
"product_id": "registry.redhat.io/openshift-gitops-1/argocd-extensions-rhel8@sha256:e424fd18276656ca4f7a29f3ca7c4184f51655c22d8136fbac49195201271a9e_s390x",
"product_identification_helper": {
"purl": "pkg:oci/argocd-extensions-rhel8@sha256%3Ae424fd18276656ca4f7a29f3ca7c4184f51655c22d8136fbac49195201271a9e?arch=s390x\u0026repository_url=registry.redhat.io/openshift-gitops-1/argocd-extensions-rhel8\u0026tag=1782290950"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-gitops-1/argocd-image-updater-rhel8@sha256:d35ec5054ec806575e13854da072a39e47ed431260002f8ce2eaa09c67e454d0_s390x",
"product": {
"name": "registry.redhat.io/openshift-gitops-1/argocd-image-updater-rhel8@sha256:d35ec5054ec806575e13854da072a39e47ed431260002f8ce2eaa09c67e454d0_s390x",
"product_id": "registry.redhat.io/openshift-gitops-1/argocd-image-updater-rhel8@sha256:d35ec5054ec806575e13854da072a39e47ed431260002f8ce2eaa09c67e454d0_s390x",
"product_identification_helper": {
"purl": "pkg:oci/argocd-image-updater-rhel8@sha256%3Ad35ec5054ec806575e13854da072a39e47ed431260002f8ce2eaa09c67e454d0?arch=s390x\u0026repository_url=registry.redhat.io/openshift-gitops-1/argocd-image-updater-rhel8\u0026tag=1782291351"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-gitops-1/argocd-rhel9@sha256:9553897b4c43a1df0e15339cdb1a953d72963c400f47572fb04555ec49b5ad44_s390x",
"product": {
"name": "registry.redhat.io/openshift-gitops-1/argocd-rhel9@sha256:9553897b4c43a1df0e15339cdb1a953d72963c400f47572fb04555ec49b5ad44_s390x",
"product_id": "registry.redhat.io/openshift-gitops-1/argocd-rhel9@sha256:9553897b4c43a1df0e15339cdb1a953d72963c400f47572fb04555ec49b5ad44_s390x",
"product_identification_helper": {
"purl": "pkg:oci/argocd-rhel9@sha256%3A9553897b4c43a1df0e15339cdb1a953d72963c400f47572fb04555ec49b5ad44?arch=s390x\u0026repository_url=registry.redhat.io/openshift-gitops-1/argocd-rhel9\u0026tag=1782290387"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-gitops-1/console-plugin-rhel8@sha256:e21cad6af52b3ca67013d723df4a5b1b7e63044e83a5402b2fb365eeb5978635_s390x",
"product": {
"name": "registry.redhat.io/openshift-gitops-1/console-plugin-rhel8@sha256:e21cad6af52b3ca67013d723df4a5b1b7e63044e83a5402b2fb365eeb5978635_s390x",
"product_id": "registry.redhat.io/openshift-gitops-1/console-plugin-rhel8@sha256:e21cad6af52b3ca67013d723df4a5b1b7e63044e83a5402b2fb365eeb5978635_s390x",
"product_identification_helper": {
"purl": "pkg:oci/console-plugin-rhel8@sha256%3Ae21cad6af52b3ca67013d723df4a5b1b7e63044e83a5402b2fb365eeb5978635?arch=s390x\u0026repository_url=registry.redhat.io/openshift-gitops-1/console-plugin-rhel8\u0026tag=1782290215"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-gitops-1/dex-rhel8@sha256:1186f9afe02ad55310874f86544e7c966a4e3eddcab664ec363030ac4b6fed4f_s390x",
"product": {
"name": "registry.redhat.io/openshift-gitops-1/dex-rhel8@sha256:1186f9afe02ad55310874f86544e7c966a4e3eddcab664ec363030ac4b6fed4f_s390x",
"product_id": "registry.redhat.io/openshift-gitops-1/dex-rhel8@sha256:1186f9afe02ad55310874f86544e7c966a4e3eddcab664ec363030ac4b6fed4f_s390x",
"product_identification_helper": {
"purl": "pkg:oci/dex-rhel8@sha256%3A1186f9afe02ad55310874f86544e7c966a4e3eddcab664ec363030ac4b6fed4f?arch=s390x\u0026repository_url=registry.redhat.io/openshift-gitops-1/dex-rhel8\u0026tag=1782292352"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-gitops-1/gitops-rhel8@sha256:2513bd207d6ef60f16637b9a18dce2437844703afde603becdc50113823d8728_s390x",
"product": {
"name": "registry.redhat.io/openshift-gitops-1/gitops-rhel8@sha256:2513bd207d6ef60f16637b9a18dce2437844703afde603becdc50113823d8728_s390x",
"product_id": "registry.redhat.io/openshift-gitops-1/gitops-rhel8@sha256:2513bd207d6ef60f16637b9a18dce2437844703afde603becdc50113823d8728_s390x",
"product_identification_helper": {
"purl": "pkg:oci/gitops-rhel8@sha256%3A2513bd207d6ef60f16637b9a18dce2437844703afde603becdc50113823d8728?arch=s390x\u0026repository_url=registry.redhat.io/openshift-gitops-1/gitops-rhel8\u0026tag=1782291052"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-gitops-1/gitops-rhel8-operator@sha256:fbe2b3bb5242f2d118d60dcd449858e7968d9eaff8c5ba5efcb2b36201ce8e0a_s390x",
"product": {
"name": "registry.redhat.io/openshift-gitops-1/gitops-rhel8-operator@sha256:fbe2b3bb5242f2d118d60dcd449858e7968d9eaff8c5ba5efcb2b36201ce8e0a_s390x",
"product_id": "registry.redhat.io/openshift-gitops-1/gitops-rhel8-operator@sha256:fbe2b3bb5242f2d118d60dcd449858e7968d9eaff8c5ba5efcb2b36201ce8e0a_s390x",
"product_identification_helper": {
"purl": "pkg:oci/gitops-rhel8-operator@sha256%3Afbe2b3bb5242f2d118d60dcd449858e7968d9eaff8c5ba5efcb2b36201ce8e0a?arch=s390x\u0026repository_url=registry.redhat.io/openshift-gitops-1/gitops-rhel8-operator\u0026tag=1782290000"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-gitops-1/must-gather-rhel8@sha256:bf83003061015154a7bf8c0a56c1ab639ae725bc7985ee296c341530dfd81650_s390x",
"product": {
"name": "registry.redhat.io/openshift-gitops-1/must-gather-rhel8@sha256:bf83003061015154a7bf8c0a56c1ab639ae725bc7985ee296c341530dfd81650_s390x",
"product_id": "registry.redhat.io/openshift-gitops-1/must-gather-rhel8@sha256:bf83003061015154a7bf8c0a56c1ab639ae725bc7985ee296c341530dfd81650_s390x",
"product_identification_helper": {
"purl": "pkg:oci/must-gather-rhel8@sha256%3Abf83003061015154a7bf8c0a56c1ab639ae725bc7985ee296c341530dfd81650?arch=s390x\u0026repository_url=registry.redhat.io/openshift-gitops-1/must-gather-rhel8\u0026tag=1782291973"
}
}
}
],
"category": "architecture",
"name": "s390x"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-gitops-1/argo-rollouts-rhel8@sha256:142f81e07068cb43fa22b798e3fd1f1cd0b54f2820bf8008f1c61114632be9a9_arm64 as a component of Red Hat OpenShift GitOps 1.19",
"product_id": "Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argo-rollouts-rhel8@sha256:142f81e07068cb43fa22b798e3fd1f1cd0b54f2820bf8008f1c61114632be9a9_arm64"
},
"product_reference": "registry.redhat.io/openshift-gitops-1/argo-rollouts-rhel8@sha256:142f81e07068cb43fa22b798e3fd1f1cd0b54f2820bf8008f1c61114632be9a9_arm64",
"relates_to_product_reference": "Red Hat OpenShift GitOps 1.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-gitops-1/argo-rollouts-rhel8@sha256:2b3f86ba682cce1753ca2abc3538c330ec78026863ace0a7303fb36f8530a09a_ppc64le as a component of Red Hat OpenShift GitOps 1.19",
"product_id": "Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argo-rollouts-rhel8@sha256:2b3f86ba682cce1753ca2abc3538c330ec78026863ace0a7303fb36f8530a09a_ppc64le"
},
"product_reference": "registry.redhat.io/openshift-gitops-1/argo-rollouts-rhel8@sha256:2b3f86ba682cce1753ca2abc3538c330ec78026863ace0a7303fb36f8530a09a_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift GitOps 1.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-gitops-1/argo-rollouts-rhel8@sha256:77341d5f25030515eed25537d224c4a8701322a58db9181cdfc925d4cab28eca_amd64 as a component of Red Hat OpenShift GitOps 1.19",
"product_id": "Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argo-rollouts-rhel8@sha256:77341d5f25030515eed25537d224c4a8701322a58db9181cdfc925d4cab28eca_amd64"
},
"product_reference": "registry.redhat.io/openshift-gitops-1/argo-rollouts-rhel8@sha256:77341d5f25030515eed25537d224c4a8701322a58db9181cdfc925d4cab28eca_amd64",
"relates_to_product_reference": "Red Hat OpenShift GitOps 1.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-gitops-1/argo-rollouts-rhel8@sha256:8cf8a6ae5212d2206bfca8033862a4fd812e41bd6683696a3f2c974a9fb5dd56_s390x as a component of Red Hat OpenShift GitOps 1.19",
"product_id": "Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argo-rollouts-rhel8@sha256:8cf8a6ae5212d2206bfca8033862a4fd812e41bd6683696a3f2c974a9fb5dd56_s390x"
},
"product_reference": "registry.redhat.io/openshift-gitops-1/argo-rollouts-rhel8@sha256:8cf8a6ae5212d2206bfca8033862a4fd812e41bd6683696a3f2c974a9fb5dd56_s390x",
"relates_to_product_reference": "Red Hat OpenShift GitOps 1.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-gitops-1/argocd-agent-rhel8@sha256:11d452ecde021dd5bcf0aa79c01c49074c0fcaa4561f71b1e71f940f99b6fc77_s390x as a component of Red Hat OpenShift GitOps 1.19",
"product_id": "Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argocd-agent-rhel8@sha256:11d452ecde021dd5bcf0aa79c01c49074c0fcaa4561f71b1e71f940f99b6fc77_s390x"
},
"product_reference": "registry.redhat.io/openshift-gitops-1/argocd-agent-rhel8@sha256:11d452ecde021dd5bcf0aa79c01c49074c0fcaa4561f71b1e71f940f99b6fc77_s390x",
"relates_to_product_reference": "Red Hat OpenShift GitOps 1.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-gitops-1/argocd-agent-rhel8@sha256:392359aa59f69afe8860a82a951659990437548916f92c97f4ec4cdaded2d0b0_amd64 as a component of Red Hat OpenShift GitOps 1.19",
"product_id": "Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argocd-agent-rhel8@sha256:392359aa59f69afe8860a82a951659990437548916f92c97f4ec4cdaded2d0b0_amd64"
},
"product_reference": "registry.redhat.io/openshift-gitops-1/argocd-agent-rhel8@sha256:392359aa59f69afe8860a82a951659990437548916f92c97f4ec4cdaded2d0b0_amd64",
"relates_to_product_reference": "Red Hat OpenShift GitOps 1.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-gitops-1/argocd-agent-rhel8@sha256:86e42d5047b3dfe9be543c43f06d9fc5c8d8ecaa2529b58ad47f30be9a4cd77f_arm64 as a component of Red Hat OpenShift GitOps 1.19",
"product_id": "Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argocd-agent-rhel8@sha256:86e42d5047b3dfe9be543c43f06d9fc5c8d8ecaa2529b58ad47f30be9a4cd77f_arm64"
},
"product_reference": "registry.redhat.io/openshift-gitops-1/argocd-agent-rhel8@sha256:86e42d5047b3dfe9be543c43f06d9fc5c8d8ecaa2529b58ad47f30be9a4cd77f_arm64",
"relates_to_product_reference": "Red Hat OpenShift GitOps 1.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-gitops-1/argocd-agent-rhel8@sha256:b3cf24392920aaa725f287938d5e77d1525825d49ebd05b2ed3c7c0d4ed7a823_ppc64le as a component of Red Hat OpenShift GitOps 1.19",
"product_id": "Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argocd-agent-rhel8@sha256:b3cf24392920aaa725f287938d5e77d1525825d49ebd05b2ed3c7c0d4ed7a823_ppc64le"
},
"product_reference": "registry.redhat.io/openshift-gitops-1/argocd-agent-rhel8@sha256:b3cf24392920aaa725f287938d5e77d1525825d49ebd05b2ed3c7c0d4ed7a823_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift GitOps 1.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-gitops-1/argocd-extensions-rhel8@sha256:06a57559d48b63dcb7e0b939f9c9303aa5a3f5c32616c47c48c8161da5d8b530_amd64 as a component of Red Hat OpenShift GitOps 1.19",
"product_id": "Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argocd-extensions-rhel8@sha256:06a57559d48b63dcb7e0b939f9c9303aa5a3f5c32616c47c48c8161da5d8b530_amd64"
},
"product_reference": "registry.redhat.io/openshift-gitops-1/argocd-extensions-rhel8@sha256:06a57559d48b63dcb7e0b939f9c9303aa5a3f5c32616c47c48c8161da5d8b530_amd64",
"relates_to_product_reference": "Red Hat OpenShift GitOps 1.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-gitops-1/argocd-extensions-rhel8@sha256:3f6492a7edfdaa1282837277a83e4c247f4b689a9f9ac16766b3b0d8415330b1_ppc64le as a component of Red Hat OpenShift GitOps 1.19",
"product_id": "Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argocd-extensions-rhel8@sha256:3f6492a7edfdaa1282837277a83e4c247f4b689a9f9ac16766b3b0d8415330b1_ppc64le"
},
"product_reference": "registry.redhat.io/openshift-gitops-1/argocd-extensions-rhel8@sha256:3f6492a7edfdaa1282837277a83e4c247f4b689a9f9ac16766b3b0d8415330b1_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift GitOps 1.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-gitops-1/argocd-extensions-rhel8@sha256:786fcd7035e4e59926bb74ffa23628cd8c328b1eb890cd948fee216e563a272c_arm64 as a component of Red Hat OpenShift GitOps 1.19",
"product_id": "Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argocd-extensions-rhel8@sha256:786fcd7035e4e59926bb74ffa23628cd8c328b1eb890cd948fee216e563a272c_arm64"
},
"product_reference": "registry.redhat.io/openshift-gitops-1/argocd-extensions-rhel8@sha256:786fcd7035e4e59926bb74ffa23628cd8c328b1eb890cd948fee216e563a272c_arm64",
"relates_to_product_reference": "Red Hat OpenShift GitOps 1.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-gitops-1/argocd-extensions-rhel8@sha256:e424fd18276656ca4f7a29f3ca7c4184f51655c22d8136fbac49195201271a9e_s390x as a component of Red Hat OpenShift GitOps 1.19",
"product_id": "Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argocd-extensions-rhel8@sha256:e424fd18276656ca4f7a29f3ca7c4184f51655c22d8136fbac49195201271a9e_s390x"
},
"product_reference": "registry.redhat.io/openshift-gitops-1/argocd-extensions-rhel8@sha256:e424fd18276656ca4f7a29f3ca7c4184f51655c22d8136fbac49195201271a9e_s390x",
"relates_to_product_reference": "Red Hat OpenShift GitOps 1.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-gitops-1/argocd-image-updater-rhel8@sha256:1318ceaefef8c5e2ce3f7ae04e938a4458a5c0120eb77b7628ebbd1770edbd67_arm64 as a component of Red Hat OpenShift GitOps 1.19",
"product_id": "Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argocd-image-updater-rhel8@sha256:1318ceaefef8c5e2ce3f7ae04e938a4458a5c0120eb77b7628ebbd1770edbd67_arm64"
},
"product_reference": "registry.redhat.io/openshift-gitops-1/argocd-image-updater-rhel8@sha256:1318ceaefef8c5e2ce3f7ae04e938a4458a5c0120eb77b7628ebbd1770edbd67_arm64",
"relates_to_product_reference": "Red Hat OpenShift GitOps 1.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-gitops-1/argocd-image-updater-rhel8@sha256:2046a561a59f47f856e40e138561586978d1d473a3fcd6eaea95fbca5d62eb66_ppc64le as a component of Red Hat OpenShift GitOps 1.19",
"product_id": "Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argocd-image-updater-rhel8@sha256:2046a561a59f47f856e40e138561586978d1d473a3fcd6eaea95fbca5d62eb66_ppc64le"
},
"product_reference": "registry.redhat.io/openshift-gitops-1/argocd-image-updater-rhel8@sha256:2046a561a59f47f856e40e138561586978d1d473a3fcd6eaea95fbca5d62eb66_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift GitOps 1.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-gitops-1/argocd-image-updater-rhel8@sha256:8312842c2ae5637a43b3c1a933d47d148cd2ea2544978e55d9640d59523174b1_amd64 as a component of Red Hat OpenShift GitOps 1.19",
"product_id": "Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argocd-image-updater-rhel8@sha256:8312842c2ae5637a43b3c1a933d47d148cd2ea2544978e55d9640d59523174b1_amd64"
},
"product_reference": "registry.redhat.io/openshift-gitops-1/argocd-image-updater-rhel8@sha256:8312842c2ae5637a43b3c1a933d47d148cd2ea2544978e55d9640d59523174b1_amd64",
"relates_to_product_reference": "Red Hat OpenShift GitOps 1.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-gitops-1/argocd-image-updater-rhel8@sha256:d35ec5054ec806575e13854da072a39e47ed431260002f8ce2eaa09c67e454d0_s390x as a component of Red Hat OpenShift GitOps 1.19",
"product_id": "Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argocd-image-updater-rhel8@sha256:d35ec5054ec806575e13854da072a39e47ed431260002f8ce2eaa09c67e454d0_s390x"
},
"product_reference": "registry.redhat.io/openshift-gitops-1/argocd-image-updater-rhel8@sha256:d35ec5054ec806575e13854da072a39e47ed431260002f8ce2eaa09c67e454d0_s390x",
"relates_to_product_reference": "Red Hat OpenShift GitOps 1.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-gitops-1/argocd-rhel8@sha256:3061b1d84759aa1c46379875593b0503a961930f9b18a5566866dd533cb5157e_ppc64le as a component of Red Hat OpenShift GitOps 1.19",
"product_id": "Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argocd-rhel8@sha256:3061b1d84759aa1c46379875593b0503a961930f9b18a5566866dd533cb5157e_ppc64le"
},
"product_reference": "registry.redhat.io/openshift-gitops-1/argocd-rhel8@sha256:3061b1d84759aa1c46379875593b0503a961930f9b18a5566866dd533cb5157e_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift GitOps 1.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-gitops-1/argocd-rhel8@sha256:a8b1fad3743f82ff1df3b6daed36096eabd827070b9426a76cb2bffa73d23f8e_amd64 as a component of Red Hat OpenShift GitOps 1.19",
"product_id": "Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argocd-rhel8@sha256:a8b1fad3743f82ff1df3b6daed36096eabd827070b9426a76cb2bffa73d23f8e_amd64"
},
"product_reference": "registry.redhat.io/openshift-gitops-1/argocd-rhel8@sha256:a8b1fad3743f82ff1df3b6daed36096eabd827070b9426a76cb2bffa73d23f8e_amd64",
"relates_to_product_reference": "Red Hat OpenShift GitOps 1.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-gitops-1/argocd-rhel8@sha256:b69311dff750e993a9b4b0bdc5756012f32c0a644e8bac213267b6729addbf3c_arm64 as a component of Red Hat OpenShift GitOps 1.19",
"product_id": "Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argocd-rhel8@sha256:b69311dff750e993a9b4b0bdc5756012f32c0a644e8bac213267b6729addbf3c_arm64"
},
"product_reference": "registry.redhat.io/openshift-gitops-1/argocd-rhel8@sha256:b69311dff750e993a9b4b0bdc5756012f32c0a644e8bac213267b6729addbf3c_arm64",
"relates_to_product_reference": "Red Hat OpenShift GitOps 1.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-gitops-1/argocd-rhel8@sha256:d34b5b4cb79db418674b9210036d6acb12a35abb894e58ac56ac49e2dabbd7c3_s390x as a component of Red Hat OpenShift GitOps 1.19",
"product_id": "Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argocd-rhel8@sha256:d34b5b4cb79db418674b9210036d6acb12a35abb894e58ac56ac49e2dabbd7c3_s390x"
},
"product_reference": "registry.redhat.io/openshift-gitops-1/argocd-rhel8@sha256:d34b5b4cb79db418674b9210036d6acb12a35abb894e58ac56ac49e2dabbd7c3_s390x",
"relates_to_product_reference": "Red Hat OpenShift GitOps 1.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-gitops-1/argocd-rhel9@sha256:13007a387398626756a013d64b64f941e548b9207fba487f1f2110c6ef7a2143_ppc64le as a component of Red Hat OpenShift GitOps 1.19",
"product_id": "Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argocd-rhel9@sha256:13007a387398626756a013d64b64f941e548b9207fba487f1f2110c6ef7a2143_ppc64le"
},
"product_reference": "registry.redhat.io/openshift-gitops-1/argocd-rhel9@sha256:13007a387398626756a013d64b64f941e548b9207fba487f1f2110c6ef7a2143_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift GitOps 1.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-gitops-1/argocd-rhel9@sha256:909e2f26afee68521775cf31d13dfaa3d16fdf736f7e7097aba987e15bba4183_amd64 as a component of Red Hat OpenShift GitOps 1.19",
"product_id": "Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argocd-rhel9@sha256:909e2f26afee68521775cf31d13dfaa3d16fdf736f7e7097aba987e15bba4183_amd64"
},
"product_reference": "registry.redhat.io/openshift-gitops-1/argocd-rhel9@sha256:909e2f26afee68521775cf31d13dfaa3d16fdf736f7e7097aba987e15bba4183_amd64",
"relates_to_product_reference": "Red Hat OpenShift GitOps 1.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-gitops-1/argocd-rhel9@sha256:9553897b4c43a1df0e15339cdb1a953d72963c400f47572fb04555ec49b5ad44_s390x as a component of Red Hat OpenShift GitOps 1.19",
"product_id": "Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argocd-rhel9@sha256:9553897b4c43a1df0e15339cdb1a953d72963c400f47572fb04555ec49b5ad44_s390x"
},
"product_reference": "registry.redhat.io/openshift-gitops-1/argocd-rhel9@sha256:9553897b4c43a1df0e15339cdb1a953d72963c400f47572fb04555ec49b5ad44_s390x",
"relates_to_product_reference": "Red Hat OpenShift GitOps 1.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-gitops-1/argocd-rhel9@sha256:c5317561de5e3c65588016e320afdcc9d1a8ae9a27a8f64fe03bf62e2e6914bf_arm64 as a component of Red Hat OpenShift GitOps 1.19",
"product_id": "Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argocd-rhel9@sha256:c5317561de5e3c65588016e320afdcc9d1a8ae9a27a8f64fe03bf62e2e6914bf_arm64"
},
"product_reference": "registry.redhat.io/openshift-gitops-1/argocd-rhel9@sha256:c5317561de5e3c65588016e320afdcc9d1a8ae9a27a8f64fe03bf62e2e6914bf_arm64",
"relates_to_product_reference": "Red Hat OpenShift GitOps 1.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-gitops-1/console-plugin-rhel8@sha256:554da1fb02ef3e4870cac383b50d2ab0374a9d8c42827cb909ca17121cd2d674_amd64 as a component of Red Hat OpenShift GitOps 1.19",
"product_id": "Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/console-plugin-rhel8@sha256:554da1fb02ef3e4870cac383b50d2ab0374a9d8c42827cb909ca17121cd2d674_amd64"
},
"product_reference": "registry.redhat.io/openshift-gitops-1/console-plugin-rhel8@sha256:554da1fb02ef3e4870cac383b50d2ab0374a9d8c42827cb909ca17121cd2d674_amd64",
"relates_to_product_reference": "Red Hat OpenShift GitOps 1.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-gitops-1/console-plugin-rhel8@sha256:840cddc6e9803845f8216c670e251f3e412cecbdef40d543dabcee0e4d83bf4d_ppc64le as a component of Red Hat OpenShift GitOps 1.19",
"product_id": "Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/console-plugin-rhel8@sha256:840cddc6e9803845f8216c670e251f3e412cecbdef40d543dabcee0e4d83bf4d_ppc64le"
},
"product_reference": "registry.redhat.io/openshift-gitops-1/console-plugin-rhel8@sha256:840cddc6e9803845f8216c670e251f3e412cecbdef40d543dabcee0e4d83bf4d_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift GitOps 1.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-gitops-1/console-plugin-rhel8@sha256:bc53ecb8ce0ab3d2a955c21f9e0b84b55e7d297f77b2ead6a71f3f7f58670691_arm64 as a component of Red Hat OpenShift GitOps 1.19",
"product_id": "Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/console-plugin-rhel8@sha256:bc53ecb8ce0ab3d2a955c21f9e0b84b55e7d297f77b2ead6a71f3f7f58670691_arm64"
},
"product_reference": "registry.redhat.io/openshift-gitops-1/console-plugin-rhel8@sha256:bc53ecb8ce0ab3d2a955c21f9e0b84b55e7d297f77b2ead6a71f3f7f58670691_arm64",
"relates_to_product_reference": "Red Hat OpenShift GitOps 1.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-gitops-1/console-plugin-rhel8@sha256:e21cad6af52b3ca67013d723df4a5b1b7e63044e83a5402b2fb365eeb5978635_s390x as a component of Red Hat OpenShift GitOps 1.19",
"product_id": "Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/console-plugin-rhel8@sha256:e21cad6af52b3ca67013d723df4a5b1b7e63044e83a5402b2fb365eeb5978635_s390x"
},
"product_reference": "registry.redhat.io/openshift-gitops-1/console-plugin-rhel8@sha256:e21cad6af52b3ca67013d723df4a5b1b7e63044e83a5402b2fb365eeb5978635_s390x",
"relates_to_product_reference": "Red Hat OpenShift GitOps 1.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-gitops-1/dex-rhel8@sha256:1186f9afe02ad55310874f86544e7c966a4e3eddcab664ec363030ac4b6fed4f_s390x as a component of Red Hat OpenShift GitOps 1.19",
"product_id": "Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/dex-rhel8@sha256:1186f9afe02ad55310874f86544e7c966a4e3eddcab664ec363030ac4b6fed4f_s390x"
},
"product_reference": "registry.redhat.io/openshift-gitops-1/dex-rhel8@sha256:1186f9afe02ad55310874f86544e7c966a4e3eddcab664ec363030ac4b6fed4f_s390x",
"relates_to_product_reference": "Red Hat OpenShift GitOps 1.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-gitops-1/dex-rhel8@sha256:3713138e73d479f2532f5380b065af0379d236596455448dbe8a1a17bc5780d2_ppc64le as a component of Red Hat OpenShift GitOps 1.19",
"product_id": "Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/dex-rhel8@sha256:3713138e73d479f2532f5380b065af0379d236596455448dbe8a1a17bc5780d2_ppc64le"
},
"product_reference": "registry.redhat.io/openshift-gitops-1/dex-rhel8@sha256:3713138e73d479f2532f5380b065af0379d236596455448dbe8a1a17bc5780d2_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift GitOps 1.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-gitops-1/dex-rhel8@sha256:480a339ce9d622d6371d4ef75f4ddf7840a2dda6d512496eaf6d930654ffb58a_amd64 as a component of Red Hat OpenShift GitOps 1.19",
"product_id": "Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/dex-rhel8@sha256:480a339ce9d622d6371d4ef75f4ddf7840a2dda6d512496eaf6d930654ffb58a_amd64"
},
"product_reference": "registry.redhat.io/openshift-gitops-1/dex-rhel8@sha256:480a339ce9d622d6371d4ef75f4ddf7840a2dda6d512496eaf6d930654ffb58a_amd64",
"relates_to_product_reference": "Red Hat OpenShift GitOps 1.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-gitops-1/dex-rhel8@sha256:6ffae033f5816f4448fb9bbc79359a1319251e5c1baab2bb9fdd60289ba542b8_arm64 as a component of Red Hat OpenShift GitOps 1.19",
"product_id": "Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/dex-rhel8@sha256:6ffae033f5816f4448fb9bbc79359a1319251e5c1baab2bb9fdd60289ba542b8_arm64"
},
"product_reference": "registry.redhat.io/openshift-gitops-1/dex-rhel8@sha256:6ffae033f5816f4448fb9bbc79359a1319251e5c1baab2bb9fdd60289ba542b8_arm64",
"relates_to_product_reference": "Red Hat OpenShift GitOps 1.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-gitops-1/gitops-operator-bundle@sha256:22419f173ef1d31a83d226bc3b23fb283db62a9693c8f1df0a5e2fb4b3b38df4_amd64 as a component of Red Hat OpenShift GitOps 1.19",
"product_id": "Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/gitops-operator-bundle@sha256:22419f173ef1d31a83d226bc3b23fb283db62a9693c8f1df0a5e2fb4b3b38df4_amd64"
},
"product_reference": "registry.redhat.io/openshift-gitops-1/gitops-operator-bundle@sha256:22419f173ef1d31a83d226bc3b23fb283db62a9693c8f1df0a5e2fb4b3b38df4_amd64",
"relates_to_product_reference": "Red Hat OpenShift GitOps 1.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-gitops-1/gitops-rhel8-operator@sha256:e106c87be2d6834217435a7583b40c3bc1a9ab92624cd1ad4219913cfe4b6463_ppc64le as a component of Red Hat OpenShift GitOps 1.19",
"product_id": "Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/gitops-rhel8-operator@sha256:e106c87be2d6834217435a7583b40c3bc1a9ab92624cd1ad4219913cfe4b6463_ppc64le"
},
"product_reference": "registry.redhat.io/openshift-gitops-1/gitops-rhel8-operator@sha256:e106c87be2d6834217435a7583b40c3bc1a9ab92624cd1ad4219913cfe4b6463_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift GitOps 1.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-gitops-1/gitops-rhel8-operator@sha256:f324070b67fe44e3f4d7862f10fbcafb4dcabcfa4beb8b5e4ffe062800ab5989_arm64 as a component of Red Hat OpenShift GitOps 1.19",
"product_id": "Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/gitops-rhel8-operator@sha256:f324070b67fe44e3f4d7862f10fbcafb4dcabcfa4beb8b5e4ffe062800ab5989_arm64"
},
"product_reference": "registry.redhat.io/openshift-gitops-1/gitops-rhel8-operator@sha256:f324070b67fe44e3f4d7862f10fbcafb4dcabcfa4beb8b5e4ffe062800ab5989_arm64",
"relates_to_product_reference": "Red Hat OpenShift GitOps 1.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-gitops-1/gitops-rhel8-operator@sha256:f38c4f32c9c4eaa50ae99b8cb38e58aaf0c0c7eaa8275e211b3f81b023ddc0c0_amd64 as a component of Red Hat OpenShift GitOps 1.19",
"product_id": "Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/gitops-rhel8-operator@sha256:f38c4f32c9c4eaa50ae99b8cb38e58aaf0c0c7eaa8275e211b3f81b023ddc0c0_amd64"
},
"product_reference": "registry.redhat.io/openshift-gitops-1/gitops-rhel8-operator@sha256:f38c4f32c9c4eaa50ae99b8cb38e58aaf0c0c7eaa8275e211b3f81b023ddc0c0_amd64",
"relates_to_product_reference": "Red Hat OpenShift GitOps 1.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-gitops-1/gitops-rhel8-operator@sha256:fbe2b3bb5242f2d118d60dcd449858e7968d9eaff8c5ba5efcb2b36201ce8e0a_s390x as a component of Red Hat OpenShift GitOps 1.19",
"product_id": "Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/gitops-rhel8-operator@sha256:fbe2b3bb5242f2d118d60dcd449858e7968d9eaff8c5ba5efcb2b36201ce8e0a_s390x"
},
"product_reference": "registry.redhat.io/openshift-gitops-1/gitops-rhel8-operator@sha256:fbe2b3bb5242f2d118d60dcd449858e7968d9eaff8c5ba5efcb2b36201ce8e0a_s390x",
"relates_to_product_reference": "Red Hat OpenShift GitOps 1.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-gitops-1/gitops-rhel8@sha256:2513bd207d6ef60f16637b9a18dce2437844703afde603becdc50113823d8728_s390x as a component of Red Hat OpenShift GitOps 1.19",
"product_id": "Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/gitops-rhel8@sha256:2513bd207d6ef60f16637b9a18dce2437844703afde603becdc50113823d8728_s390x"
},
"product_reference": "registry.redhat.io/openshift-gitops-1/gitops-rhel8@sha256:2513bd207d6ef60f16637b9a18dce2437844703afde603becdc50113823d8728_s390x",
"relates_to_product_reference": "Red Hat OpenShift GitOps 1.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-gitops-1/gitops-rhel8@sha256:4c81a4f0d5a90edfc1da474af937e8c276579f0e1a87c77b93352f2ee7550eac_ppc64le as a component of Red Hat OpenShift GitOps 1.19",
"product_id": "Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/gitops-rhel8@sha256:4c81a4f0d5a90edfc1da474af937e8c276579f0e1a87c77b93352f2ee7550eac_ppc64le"
},
"product_reference": "registry.redhat.io/openshift-gitops-1/gitops-rhel8@sha256:4c81a4f0d5a90edfc1da474af937e8c276579f0e1a87c77b93352f2ee7550eac_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift GitOps 1.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-gitops-1/gitops-rhel8@sha256:940596cd69f441ccd2dc6aedf77e0cdac328a55532734304703429e78f80f206_arm64 as a component of Red Hat OpenShift GitOps 1.19",
"product_id": "Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/gitops-rhel8@sha256:940596cd69f441ccd2dc6aedf77e0cdac328a55532734304703429e78f80f206_arm64"
},
"product_reference": "registry.redhat.io/openshift-gitops-1/gitops-rhel8@sha256:940596cd69f441ccd2dc6aedf77e0cdac328a55532734304703429e78f80f206_arm64",
"relates_to_product_reference": "Red Hat OpenShift GitOps 1.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-gitops-1/gitops-rhel8@sha256:a66508fb7b17486246be16bf381f0c629993482a7858f0b5f9ae2b2340d02ea1_amd64 as a component of Red Hat OpenShift GitOps 1.19",
"product_id": "Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/gitops-rhel8@sha256:a66508fb7b17486246be16bf381f0c629993482a7858f0b5f9ae2b2340d02ea1_amd64"
},
"product_reference": "registry.redhat.io/openshift-gitops-1/gitops-rhel8@sha256:a66508fb7b17486246be16bf381f0c629993482a7858f0b5f9ae2b2340d02ea1_amd64",
"relates_to_product_reference": "Red Hat OpenShift GitOps 1.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-gitops-1/must-gather-rhel8@sha256:1afe78f60cfeb8380eb63eae988b34354cd1de47dd07cf69defd272292e296db_arm64 as a component of Red Hat OpenShift GitOps 1.19",
"product_id": "Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/must-gather-rhel8@sha256:1afe78f60cfeb8380eb63eae988b34354cd1de47dd07cf69defd272292e296db_arm64"
},
"product_reference": "registry.redhat.io/openshift-gitops-1/must-gather-rhel8@sha256:1afe78f60cfeb8380eb63eae988b34354cd1de47dd07cf69defd272292e296db_arm64",
"relates_to_product_reference": "Red Hat OpenShift GitOps 1.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-gitops-1/must-gather-rhel8@sha256:6fd7d8c42604912b271d672b159c7b5d43955d19afdbaa2b95f11fce589ce9da_ppc64le as a component of Red Hat OpenShift GitOps 1.19",
"product_id": "Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/must-gather-rhel8@sha256:6fd7d8c42604912b271d672b159c7b5d43955d19afdbaa2b95f11fce589ce9da_ppc64le"
},
"product_reference": "registry.redhat.io/openshift-gitops-1/must-gather-rhel8@sha256:6fd7d8c42604912b271d672b159c7b5d43955d19afdbaa2b95f11fce589ce9da_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift GitOps 1.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-gitops-1/must-gather-rhel8@sha256:b8c045203993fbb2e653c8bb8453254b1d9383827337e1148cf99f1aef00cf6e_amd64 as a component of Red Hat OpenShift GitOps 1.19",
"product_id": "Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/must-gather-rhel8@sha256:b8c045203993fbb2e653c8bb8453254b1d9383827337e1148cf99f1aef00cf6e_amd64"
},
"product_reference": "registry.redhat.io/openshift-gitops-1/must-gather-rhel8@sha256:b8c045203993fbb2e653c8bb8453254b1d9383827337e1148cf99f1aef00cf6e_amd64",
"relates_to_product_reference": "Red Hat OpenShift GitOps 1.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-gitops-1/must-gather-rhel8@sha256:bf83003061015154a7bf8c0a56c1ab639ae725bc7985ee296c341530dfd81650_s390x as a component of Red Hat OpenShift GitOps 1.19",
"product_id": "Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/must-gather-rhel8@sha256:bf83003061015154a7bf8c0a56c1ab639ae725bc7985ee296c341530dfd81650_s390x"
},
"product_reference": "registry.redhat.io/openshift-gitops-1/must-gather-rhel8@sha256:bf83003061015154a7bf8c0a56c1ab639ae725bc7985ee296c341530dfd81650_s390x",
"relates_to_product_reference": "Red Hat OpenShift GitOps 1.19"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2026-33811",
"cwe": {
"id": "CWE-1341",
"name": "Multiple Releases of Same Resource or Handle"
},
"discovery_date": "2026-05-07T20:01:34.913869+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argo-rollouts-rhel8@sha256:142f81e07068cb43fa22b798e3fd1f1cd0b54f2820bf8008f1c61114632be9a9_arm64",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argo-rollouts-rhel8@sha256:2b3f86ba682cce1753ca2abc3538c330ec78026863ace0a7303fb36f8530a09a_ppc64le",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argo-rollouts-rhel8@sha256:77341d5f25030515eed25537d224c4a8701322a58db9181cdfc925d4cab28eca_amd64",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argo-rollouts-rhel8@sha256:8cf8a6ae5212d2206bfca8033862a4fd812e41bd6683696a3f2c974a9fb5dd56_s390x",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argocd-agent-rhel8@sha256:11d452ecde021dd5bcf0aa79c01c49074c0fcaa4561f71b1e71f940f99b6fc77_s390x",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argocd-agent-rhel8@sha256:392359aa59f69afe8860a82a951659990437548916f92c97f4ec4cdaded2d0b0_amd64",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argocd-agent-rhel8@sha256:86e42d5047b3dfe9be543c43f06d9fc5c8d8ecaa2529b58ad47f30be9a4cd77f_arm64",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argocd-agent-rhel8@sha256:b3cf24392920aaa725f287938d5e77d1525825d49ebd05b2ed3c7c0d4ed7a823_ppc64le",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argocd-extensions-rhel8@sha256:06a57559d48b63dcb7e0b939f9c9303aa5a3f5c32616c47c48c8161da5d8b530_amd64",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argocd-extensions-rhel8@sha256:3f6492a7edfdaa1282837277a83e4c247f4b689a9f9ac16766b3b0d8415330b1_ppc64le",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argocd-extensions-rhel8@sha256:786fcd7035e4e59926bb74ffa23628cd8c328b1eb890cd948fee216e563a272c_arm64",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argocd-extensions-rhel8@sha256:e424fd18276656ca4f7a29f3ca7c4184f51655c22d8136fbac49195201271a9e_s390x",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argocd-image-updater-rhel8@sha256:1318ceaefef8c5e2ce3f7ae04e938a4458a5c0120eb77b7628ebbd1770edbd67_arm64",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argocd-image-updater-rhel8@sha256:2046a561a59f47f856e40e138561586978d1d473a3fcd6eaea95fbca5d62eb66_ppc64le",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argocd-image-updater-rhel8@sha256:8312842c2ae5637a43b3c1a933d47d148cd2ea2544978e55d9640d59523174b1_amd64",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argocd-image-updater-rhel8@sha256:d35ec5054ec806575e13854da072a39e47ed431260002f8ce2eaa09c67e454d0_s390x",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argocd-rhel8@sha256:3061b1d84759aa1c46379875593b0503a961930f9b18a5566866dd533cb5157e_ppc64le",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argocd-rhel8@sha256:a8b1fad3743f82ff1df3b6daed36096eabd827070b9426a76cb2bffa73d23f8e_amd64",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argocd-rhel8@sha256:b69311dff750e993a9b4b0bdc5756012f32c0a644e8bac213267b6729addbf3c_arm64",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argocd-rhel8@sha256:d34b5b4cb79db418674b9210036d6acb12a35abb894e58ac56ac49e2dabbd7c3_s390x",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argocd-rhel9@sha256:13007a387398626756a013d64b64f941e548b9207fba487f1f2110c6ef7a2143_ppc64le",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argocd-rhel9@sha256:909e2f26afee68521775cf31d13dfaa3d16fdf736f7e7097aba987e15bba4183_amd64",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argocd-rhel9@sha256:9553897b4c43a1df0e15339cdb1a953d72963c400f47572fb04555ec49b5ad44_s390x",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argocd-rhel9@sha256:c5317561de5e3c65588016e320afdcc9d1a8ae9a27a8f64fe03bf62e2e6914bf_arm64",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/console-plugin-rhel8@sha256:554da1fb02ef3e4870cac383b50d2ab0374a9d8c42827cb909ca17121cd2d674_amd64",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/console-plugin-rhel8@sha256:840cddc6e9803845f8216c670e251f3e412cecbdef40d543dabcee0e4d83bf4d_ppc64le",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/console-plugin-rhel8@sha256:bc53ecb8ce0ab3d2a955c21f9e0b84b55e7d297f77b2ead6a71f3f7f58670691_arm64",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/console-plugin-rhel8@sha256:e21cad6af52b3ca67013d723df4a5b1b7e63044e83a5402b2fb365eeb5978635_s390x",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/gitops-operator-bundle@sha256:22419f173ef1d31a83d226bc3b23fb283db62a9693c8f1df0a5e2fb4b3b38df4_amd64",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/gitops-rhel8-operator@sha256:e106c87be2d6834217435a7583b40c3bc1a9ab92624cd1ad4219913cfe4b6463_ppc64le",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/gitops-rhel8-operator@sha256:f324070b67fe44e3f4d7862f10fbcafb4dcabcfa4beb8b5e4ffe062800ab5989_arm64",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/gitops-rhel8-operator@sha256:f38c4f32c9c4eaa50ae99b8cb38e58aaf0c0c7eaa8275e211b3f81b023ddc0c0_amd64",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/gitops-rhel8-operator@sha256:fbe2b3bb5242f2d118d60dcd449858e7968d9eaff8c5ba5efcb2b36201ce8e0a_s390x",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/gitops-rhel8@sha256:2513bd207d6ef60f16637b9a18dce2437844703afde603becdc50113823d8728_s390x",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/gitops-rhel8@sha256:4c81a4f0d5a90edfc1da474af937e8c276579f0e1a87c77b93352f2ee7550eac_ppc64le",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/gitops-rhel8@sha256:940596cd69f441ccd2dc6aedf77e0cdac328a55532734304703429e78f80f206_arm64",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/gitops-rhel8@sha256:a66508fb7b17486246be16bf381f0c629993482a7858f0b5f9ae2b2340d02ea1_amd64",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/must-gather-rhel8@sha256:1afe78f60cfeb8380eb63eae988b34354cd1de47dd07cf69defd272292e296db_arm64",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/must-gather-rhel8@sha256:6fd7d8c42604912b271d672b159c7b5d43955d19afdbaa2b95f11fce589ce9da_ppc64le",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/must-gather-rhel8@sha256:b8c045203993fbb2e653c8bb8453254b1d9383827337e1148cf99f1aef00cf6e_amd64",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/must-gather-rhel8@sha256:bf83003061015154a7bf8c0a56c1ab639ae725bc7985ee296c341530dfd81650_s390x"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2467822"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the `net` package of Go (golang), specifically when using the `LookupCNAME` function with the `cgo` DNS resolver. A remote attacker could exploit this by providing a very long Canonical Name (CNAME) response. This can trigger a double-free of C memory, leading to a crash and a Denial of Service (DoS) for the affected application.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "net: golang: Go net package: Denial of Service via long CNAME response in LookupCNAME",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This is an Important denial of service vulnerability in the Go `net` package, affecting applications configured to use the `cgo` DNS resolver. A remote attacker could trigger a double-free memory error by providing a very long CNAME response, leading to a crash of the vulnerable application and impacting service availability.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/dex-rhel8@sha256:1186f9afe02ad55310874f86544e7c966a4e3eddcab664ec363030ac4b6fed4f_s390x",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/dex-rhel8@sha256:3713138e73d479f2532f5380b065af0379d236596455448dbe8a1a17bc5780d2_ppc64le",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/dex-rhel8@sha256:480a339ce9d622d6371d4ef75f4ddf7840a2dda6d512496eaf6d930654ffb58a_amd64",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/dex-rhel8@sha256:6ffae033f5816f4448fb9bbc79359a1319251e5c1baab2bb9fdd60289ba542b8_arm64"
],
"known_not_affected": [
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argo-rollouts-rhel8@sha256:142f81e07068cb43fa22b798e3fd1f1cd0b54f2820bf8008f1c61114632be9a9_arm64",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argo-rollouts-rhel8@sha256:2b3f86ba682cce1753ca2abc3538c330ec78026863ace0a7303fb36f8530a09a_ppc64le",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argo-rollouts-rhel8@sha256:77341d5f25030515eed25537d224c4a8701322a58db9181cdfc925d4cab28eca_amd64",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argo-rollouts-rhel8@sha256:8cf8a6ae5212d2206bfca8033862a4fd812e41bd6683696a3f2c974a9fb5dd56_s390x",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argocd-agent-rhel8@sha256:11d452ecde021dd5bcf0aa79c01c49074c0fcaa4561f71b1e71f940f99b6fc77_s390x",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argocd-agent-rhel8@sha256:392359aa59f69afe8860a82a951659990437548916f92c97f4ec4cdaded2d0b0_amd64",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argocd-agent-rhel8@sha256:86e42d5047b3dfe9be543c43f06d9fc5c8d8ecaa2529b58ad47f30be9a4cd77f_arm64",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argocd-agent-rhel8@sha256:b3cf24392920aaa725f287938d5e77d1525825d49ebd05b2ed3c7c0d4ed7a823_ppc64le",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argocd-extensions-rhel8@sha256:06a57559d48b63dcb7e0b939f9c9303aa5a3f5c32616c47c48c8161da5d8b530_amd64",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argocd-extensions-rhel8@sha256:3f6492a7edfdaa1282837277a83e4c247f4b689a9f9ac16766b3b0d8415330b1_ppc64le",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argocd-extensions-rhel8@sha256:786fcd7035e4e59926bb74ffa23628cd8c328b1eb890cd948fee216e563a272c_arm64",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argocd-extensions-rhel8@sha256:e424fd18276656ca4f7a29f3ca7c4184f51655c22d8136fbac49195201271a9e_s390x",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argocd-image-updater-rhel8@sha256:1318ceaefef8c5e2ce3f7ae04e938a4458a5c0120eb77b7628ebbd1770edbd67_arm64",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argocd-image-updater-rhel8@sha256:2046a561a59f47f856e40e138561586978d1d473a3fcd6eaea95fbca5d62eb66_ppc64le",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argocd-image-updater-rhel8@sha256:8312842c2ae5637a43b3c1a933d47d148cd2ea2544978e55d9640d59523174b1_amd64",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argocd-image-updater-rhel8@sha256:d35ec5054ec806575e13854da072a39e47ed431260002f8ce2eaa09c67e454d0_s390x",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argocd-rhel8@sha256:3061b1d84759aa1c46379875593b0503a961930f9b18a5566866dd533cb5157e_ppc64le",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argocd-rhel8@sha256:a8b1fad3743f82ff1df3b6daed36096eabd827070b9426a76cb2bffa73d23f8e_amd64",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argocd-rhel8@sha256:b69311dff750e993a9b4b0bdc5756012f32c0a644e8bac213267b6729addbf3c_arm64",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argocd-rhel8@sha256:d34b5b4cb79db418674b9210036d6acb12a35abb894e58ac56ac49e2dabbd7c3_s390x",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argocd-rhel9@sha256:13007a387398626756a013d64b64f941e548b9207fba487f1f2110c6ef7a2143_ppc64le",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argocd-rhel9@sha256:909e2f26afee68521775cf31d13dfaa3d16fdf736f7e7097aba987e15bba4183_amd64",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argocd-rhel9@sha256:9553897b4c43a1df0e15339cdb1a953d72963c400f47572fb04555ec49b5ad44_s390x",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argocd-rhel9@sha256:c5317561de5e3c65588016e320afdcc9d1a8ae9a27a8f64fe03bf62e2e6914bf_arm64",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/console-plugin-rhel8@sha256:554da1fb02ef3e4870cac383b50d2ab0374a9d8c42827cb909ca17121cd2d674_amd64",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/console-plugin-rhel8@sha256:840cddc6e9803845f8216c670e251f3e412cecbdef40d543dabcee0e4d83bf4d_ppc64le",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/console-plugin-rhel8@sha256:bc53ecb8ce0ab3d2a955c21f9e0b84b55e7d297f77b2ead6a71f3f7f58670691_arm64",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/console-plugin-rhel8@sha256:e21cad6af52b3ca67013d723df4a5b1b7e63044e83a5402b2fb365eeb5978635_s390x",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/gitops-operator-bundle@sha256:22419f173ef1d31a83d226bc3b23fb283db62a9693c8f1df0a5e2fb4b3b38df4_amd64",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/gitops-rhel8-operator@sha256:e106c87be2d6834217435a7583b40c3bc1a9ab92624cd1ad4219913cfe4b6463_ppc64le",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/gitops-rhel8-operator@sha256:f324070b67fe44e3f4d7862f10fbcafb4dcabcfa4beb8b5e4ffe062800ab5989_arm64",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/gitops-rhel8-operator@sha256:f38c4f32c9c4eaa50ae99b8cb38e58aaf0c0c7eaa8275e211b3f81b023ddc0c0_amd64",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/gitops-rhel8-operator@sha256:fbe2b3bb5242f2d118d60dcd449858e7968d9eaff8c5ba5efcb2b36201ce8e0a_s390x",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/gitops-rhel8@sha256:2513bd207d6ef60f16637b9a18dce2437844703afde603becdc50113823d8728_s390x",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/gitops-rhel8@sha256:4c81a4f0d5a90edfc1da474af937e8c276579f0e1a87c77b93352f2ee7550eac_ppc64le",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/gitops-rhel8@sha256:940596cd69f441ccd2dc6aedf77e0cdac328a55532734304703429e78f80f206_arm64",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/gitops-rhel8@sha256:a66508fb7b17486246be16bf381f0c629993482a7858f0b5f9ae2b2340d02ea1_amd64",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/must-gather-rhel8@sha256:1afe78f60cfeb8380eb63eae988b34354cd1de47dd07cf69defd272292e296db_arm64",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/must-gather-rhel8@sha256:6fd7d8c42604912b271d672b159c7b5d43955d19afdbaa2b95f11fce589ce9da_ppc64le",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/must-gather-rhel8@sha256:b8c045203993fbb2e653c8bb8453254b1d9383827337e1148cf99f1aef00cf6e_amd64",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/must-gather-rhel8@sha256:bf83003061015154a7bf8c0a56c1ab639ae725bc7985ee296c341530dfd81650_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-33811"
},
{
"category": "external",
"summary": "RHBZ#2467822",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2467822"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-33811",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-33811"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-33811",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-33811"
},
{
"category": "external",
"summary": "https://go.dev/cl/767860",
"url": "https://go.dev/cl/767860"
},
{
"category": "external",
"summary": "https://go.dev/issue/78803",
"url": "https://go.dev/issue/78803"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/qcCIEXso47M",
"url": "https://groups.google.com/g/golang-announce/c/qcCIEXso47M"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-4981",
"url": "https://pkg.go.dev/vuln/GO-2026-4981"
}
],
"release_date": "2026-05-07T19:41:19.285000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-06T15:19:12+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/dex-rhel8@sha256:1186f9afe02ad55310874f86544e7c966a4e3eddcab664ec363030ac4b6fed4f_s390x",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/dex-rhel8@sha256:3713138e73d479f2532f5380b065af0379d236596455448dbe8a1a17bc5780d2_ppc64le",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/dex-rhel8@sha256:480a339ce9d622d6371d4ef75f4ddf7840a2dda6d512496eaf6d930654ffb58a_amd64",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/dex-rhel8@sha256:6ffae033f5816f4448fb9bbc79359a1319251e5c1baab2bb9fdd60289ba542b8_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:35994"
},
{
"category": "workaround",
"details": "To mitigate this issue, applications can be configured to use the pure Go DNS resolver instead of the `cgo` DNS resolver. This can be achieved by setting the `GODEBUG` environment variable to `netdns=go`. For example, to run a Go application with this mitigation: `GODEBUG=netdns=go /path/to/your/go/application`. This change may require restarting affected applications or services to take effect. Users should verify that this change does not negatively impact DNS resolution for their specific application environment.",
"product_ids": [
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argo-rollouts-rhel8@sha256:142f81e07068cb43fa22b798e3fd1f1cd0b54f2820bf8008f1c61114632be9a9_arm64",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argo-rollouts-rhel8@sha256:2b3f86ba682cce1753ca2abc3538c330ec78026863ace0a7303fb36f8530a09a_ppc64le",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argo-rollouts-rhel8@sha256:77341d5f25030515eed25537d224c4a8701322a58db9181cdfc925d4cab28eca_amd64",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argo-rollouts-rhel8@sha256:8cf8a6ae5212d2206bfca8033862a4fd812e41bd6683696a3f2c974a9fb5dd56_s390x",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argocd-agent-rhel8@sha256:11d452ecde021dd5bcf0aa79c01c49074c0fcaa4561f71b1e71f940f99b6fc77_s390x",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argocd-agent-rhel8@sha256:392359aa59f69afe8860a82a951659990437548916f92c97f4ec4cdaded2d0b0_amd64",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argocd-agent-rhel8@sha256:86e42d5047b3dfe9be543c43f06d9fc5c8d8ecaa2529b58ad47f30be9a4cd77f_arm64",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argocd-agent-rhel8@sha256:b3cf24392920aaa725f287938d5e77d1525825d49ebd05b2ed3c7c0d4ed7a823_ppc64le",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argocd-extensions-rhel8@sha256:06a57559d48b63dcb7e0b939f9c9303aa5a3f5c32616c47c48c8161da5d8b530_amd64",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argocd-extensions-rhel8@sha256:3f6492a7edfdaa1282837277a83e4c247f4b689a9f9ac16766b3b0d8415330b1_ppc64le",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argocd-extensions-rhel8@sha256:786fcd7035e4e59926bb74ffa23628cd8c328b1eb890cd948fee216e563a272c_arm64",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argocd-extensions-rhel8@sha256:e424fd18276656ca4f7a29f3ca7c4184f51655c22d8136fbac49195201271a9e_s390x",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argocd-image-updater-rhel8@sha256:1318ceaefef8c5e2ce3f7ae04e938a4458a5c0120eb77b7628ebbd1770edbd67_arm64",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argocd-image-updater-rhel8@sha256:2046a561a59f47f856e40e138561586978d1d473a3fcd6eaea95fbca5d62eb66_ppc64le",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argocd-image-updater-rhel8@sha256:8312842c2ae5637a43b3c1a933d47d148cd2ea2544978e55d9640d59523174b1_amd64",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argocd-image-updater-rhel8@sha256:d35ec5054ec806575e13854da072a39e47ed431260002f8ce2eaa09c67e454d0_s390x",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argocd-rhel8@sha256:3061b1d84759aa1c46379875593b0503a961930f9b18a5566866dd533cb5157e_ppc64le",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argocd-rhel8@sha256:a8b1fad3743f82ff1df3b6daed36096eabd827070b9426a76cb2bffa73d23f8e_amd64",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argocd-rhel8@sha256:b69311dff750e993a9b4b0bdc5756012f32c0a644e8bac213267b6729addbf3c_arm64",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argocd-rhel8@sha256:d34b5b4cb79db418674b9210036d6acb12a35abb894e58ac56ac49e2dabbd7c3_s390x",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argocd-rhel9@sha256:13007a387398626756a013d64b64f941e548b9207fba487f1f2110c6ef7a2143_ppc64le",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argocd-rhel9@sha256:909e2f26afee68521775cf31d13dfaa3d16fdf736f7e7097aba987e15bba4183_amd64",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argocd-rhel9@sha256:9553897b4c43a1df0e15339cdb1a953d72963c400f47572fb04555ec49b5ad44_s390x",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argocd-rhel9@sha256:c5317561de5e3c65588016e320afdcc9d1a8ae9a27a8f64fe03bf62e2e6914bf_arm64",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/console-plugin-rhel8@sha256:554da1fb02ef3e4870cac383b50d2ab0374a9d8c42827cb909ca17121cd2d674_amd64",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/console-plugin-rhel8@sha256:840cddc6e9803845f8216c670e251f3e412cecbdef40d543dabcee0e4d83bf4d_ppc64le",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/console-plugin-rhel8@sha256:bc53ecb8ce0ab3d2a955c21f9e0b84b55e7d297f77b2ead6a71f3f7f58670691_arm64",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/console-plugin-rhel8@sha256:e21cad6af52b3ca67013d723df4a5b1b7e63044e83a5402b2fb365eeb5978635_s390x",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/dex-rhel8@sha256:1186f9afe02ad55310874f86544e7c966a4e3eddcab664ec363030ac4b6fed4f_s390x",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/dex-rhel8@sha256:3713138e73d479f2532f5380b065af0379d236596455448dbe8a1a17bc5780d2_ppc64le",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/dex-rhel8@sha256:480a339ce9d622d6371d4ef75f4ddf7840a2dda6d512496eaf6d930654ffb58a_amd64",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/dex-rhel8@sha256:6ffae033f5816f4448fb9bbc79359a1319251e5c1baab2bb9fdd60289ba542b8_arm64",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/gitops-operator-bundle@sha256:22419f173ef1d31a83d226bc3b23fb283db62a9693c8f1df0a5e2fb4b3b38df4_amd64",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/gitops-rhel8-operator@sha256:e106c87be2d6834217435a7583b40c3bc1a9ab92624cd1ad4219913cfe4b6463_ppc64le",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/gitops-rhel8-operator@sha256:f324070b67fe44e3f4d7862f10fbcafb4dcabcfa4beb8b5e4ffe062800ab5989_arm64",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/gitops-rhel8-operator@sha256:f38c4f32c9c4eaa50ae99b8cb38e58aaf0c0c7eaa8275e211b3f81b023ddc0c0_amd64",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/gitops-rhel8-operator@sha256:fbe2b3bb5242f2d118d60dcd449858e7968d9eaff8c5ba5efcb2b36201ce8e0a_s390x",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/gitops-rhel8@sha256:2513bd207d6ef60f16637b9a18dce2437844703afde603becdc50113823d8728_s390x",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/gitops-rhel8@sha256:4c81a4f0d5a90edfc1da474af937e8c276579f0e1a87c77b93352f2ee7550eac_ppc64le",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/gitops-rhel8@sha256:940596cd69f441ccd2dc6aedf77e0cdac328a55532734304703429e78f80f206_arm64",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/gitops-rhel8@sha256:a66508fb7b17486246be16bf381f0c629993482a7858f0b5f9ae2b2340d02ea1_amd64",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/must-gather-rhel8@sha256:1afe78f60cfeb8380eb63eae988b34354cd1de47dd07cf69defd272292e296db_arm64",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/must-gather-rhel8@sha256:6fd7d8c42604912b271d672b159c7b5d43955d19afdbaa2b95f11fce589ce9da_ppc64le",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/must-gather-rhel8@sha256:b8c045203993fbb2e653c8bb8453254b1d9383827337e1148cf99f1aef00cf6e_amd64",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/must-gather-rhel8@sha256:bf83003061015154a7bf8c0a56c1ab639ae725bc7985ee296c341530dfd81650_s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argo-rollouts-rhel8@sha256:142f81e07068cb43fa22b798e3fd1f1cd0b54f2820bf8008f1c61114632be9a9_arm64",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argo-rollouts-rhel8@sha256:2b3f86ba682cce1753ca2abc3538c330ec78026863ace0a7303fb36f8530a09a_ppc64le",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argo-rollouts-rhel8@sha256:77341d5f25030515eed25537d224c4a8701322a58db9181cdfc925d4cab28eca_amd64",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argo-rollouts-rhel8@sha256:8cf8a6ae5212d2206bfca8033862a4fd812e41bd6683696a3f2c974a9fb5dd56_s390x",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argocd-agent-rhel8@sha256:11d452ecde021dd5bcf0aa79c01c49074c0fcaa4561f71b1e71f940f99b6fc77_s390x",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argocd-agent-rhel8@sha256:392359aa59f69afe8860a82a951659990437548916f92c97f4ec4cdaded2d0b0_amd64",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argocd-agent-rhel8@sha256:86e42d5047b3dfe9be543c43f06d9fc5c8d8ecaa2529b58ad47f30be9a4cd77f_arm64",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argocd-agent-rhel8@sha256:b3cf24392920aaa725f287938d5e77d1525825d49ebd05b2ed3c7c0d4ed7a823_ppc64le",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argocd-extensions-rhel8@sha256:06a57559d48b63dcb7e0b939f9c9303aa5a3f5c32616c47c48c8161da5d8b530_amd64",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argocd-extensions-rhel8@sha256:3f6492a7edfdaa1282837277a83e4c247f4b689a9f9ac16766b3b0d8415330b1_ppc64le",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argocd-extensions-rhel8@sha256:786fcd7035e4e59926bb74ffa23628cd8c328b1eb890cd948fee216e563a272c_arm64",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argocd-extensions-rhel8@sha256:e424fd18276656ca4f7a29f3ca7c4184f51655c22d8136fbac49195201271a9e_s390x",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argocd-image-updater-rhel8@sha256:1318ceaefef8c5e2ce3f7ae04e938a4458a5c0120eb77b7628ebbd1770edbd67_arm64",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argocd-image-updater-rhel8@sha256:2046a561a59f47f856e40e138561586978d1d473a3fcd6eaea95fbca5d62eb66_ppc64le",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argocd-image-updater-rhel8@sha256:8312842c2ae5637a43b3c1a933d47d148cd2ea2544978e55d9640d59523174b1_amd64",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argocd-image-updater-rhel8@sha256:d35ec5054ec806575e13854da072a39e47ed431260002f8ce2eaa09c67e454d0_s390x",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argocd-rhel8@sha256:3061b1d84759aa1c46379875593b0503a961930f9b18a5566866dd533cb5157e_ppc64le",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argocd-rhel8@sha256:a8b1fad3743f82ff1df3b6daed36096eabd827070b9426a76cb2bffa73d23f8e_amd64",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argocd-rhel8@sha256:b69311dff750e993a9b4b0bdc5756012f32c0a644e8bac213267b6729addbf3c_arm64",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argocd-rhel8@sha256:d34b5b4cb79db418674b9210036d6acb12a35abb894e58ac56ac49e2dabbd7c3_s390x",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argocd-rhel9@sha256:13007a387398626756a013d64b64f941e548b9207fba487f1f2110c6ef7a2143_ppc64le",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argocd-rhel9@sha256:909e2f26afee68521775cf31d13dfaa3d16fdf736f7e7097aba987e15bba4183_amd64",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argocd-rhel9@sha256:9553897b4c43a1df0e15339cdb1a953d72963c400f47572fb04555ec49b5ad44_s390x",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argocd-rhel9@sha256:c5317561de5e3c65588016e320afdcc9d1a8ae9a27a8f64fe03bf62e2e6914bf_arm64",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/console-plugin-rhel8@sha256:554da1fb02ef3e4870cac383b50d2ab0374a9d8c42827cb909ca17121cd2d674_amd64",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/console-plugin-rhel8@sha256:840cddc6e9803845f8216c670e251f3e412cecbdef40d543dabcee0e4d83bf4d_ppc64le",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/console-plugin-rhel8@sha256:bc53ecb8ce0ab3d2a955c21f9e0b84b55e7d297f77b2ead6a71f3f7f58670691_arm64",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/console-plugin-rhel8@sha256:e21cad6af52b3ca67013d723df4a5b1b7e63044e83a5402b2fb365eeb5978635_s390x",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/dex-rhel8@sha256:1186f9afe02ad55310874f86544e7c966a4e3eddcab664ec363030ac4b6fed4f_s390x",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/dex-rhel8@sha256:3713138e73d479f2532f5380b065af0379d236596455448dbe8a1a17bc5780d2_ppc64le",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/dex-rhel8@sha256:480a339ce9d622d6371d4ef75f4ddf7840a2dda6d512496eaf6d930654ffb58a_amd64",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/dex-rhel8@sha256:6ffae033f5816f4448fb9bbc79359a1319251e5c1baab2bb9fdd60289ba542b8_arm64",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/gitops-operator-bundle@sha256:22419f173ef1d31a83d226bc3b23fb283db62a9693c8f1df0a5e2fb4b3b38df4_amd64",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/gitops-rhel8-operator@sha256:e106c87be2d6834217435a7583b40c3bc1a9ab92624cd1ad4219913cfe4b6463_ppc64le",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/gitops-rhel8-operator@sha256:f324070b67fe44e3f4d7862f10fbcafb4dcabcfa4beb8b5e4ffe062800ab5989_arm64",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/gitops-rhel8-operator@sha256:f38c4f32c9c4eaa50ae99b8cb38e58aaf0c0c7eaa8275e211b3f81b023ddc0c0_amd64",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/gitops-rhel8-operator@sha256:fbe2b3bb5242f2d118d60dcd449858e7968d9eaff8c5ba5efcb2b36201ce8e0a_s390x",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/gitops-rhel8@sha256:2513bd207d6ef60f16637b9a18dce2437844703afde603becdc50113823d8728_s390x",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/gitops-rhel8@sha256:4c81a4f0d5a90edfc1da474af937e8c276579f0e1a87c77b93352f2ee7550eac_ppc64le",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/gitops-rhel8@sha256:940596cd69f441ccd2dc6aedf77e0cdac328a55532734304703429e78f80f206_arm64",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/gitops-rhel8@sha256:a66508fb7b17486246be16bf381f0c629993482a7858f0b5f9ae2b2340d02ea1_amd64",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/must-gather-rhel8@sha256:1afe78f60cfeb8380eb63eae988b34354cd1de47dd07cf69defd272292e296db_arm64",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/must-gather-rhel8@sha256:6fd7d8c42604912b271d672b159c7b5d43955d19afdbaa2b95f11fce589ce9da_ppc64le",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/must-gather-rhel8@sha256:b8c045203993fbb2e653c8bb8453254b1d9383827337e1148cf99f1aef00cf6e_amd64",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/must-gather-rhel8@sha256:bf83003061015154a7bf8c0a56c1ab639ae725bc7985ee296c341530dfd81650_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "net: golang: Go net package: Denial of Service via long CNAME response in LookupCNAME"
},
{
"cve": "CVE-2026-39821",
"cwe": {
"id": "CWE-1289",
"name": "Improper Validation of Unsafe Equivalence in Input"
},
"discovery_date": "2026-05-22T16:00:52.844126+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argo-rollouts-rhel8@sha256:142f81e07068cb43fa22b798e3fd1f1cd0b54f2820bf8008f1c61114632be9a9_arm64",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argo-rollouts-rhel8@sha256:2b3f86ba682cce1753ca2abc3538c330ec78026863ace0a7303fb36f8530a09a_ppc64le",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argo-rollouts-rhel8@sha256:77341d5f25030515eed25537d224c4a8701322a58db9181cdfc925d4cab28eca_amd64",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argo-rollouts-rhel8@sha256:8cf8a6ae5212d2206bfca8033862a4fd812e41bd6683696a3f2c974a9fb5dd56_s390x",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argocd-agent-rhel8@sha256:11d452ecde021dd5bcf0aa79c01c49074c0fcaa4561f71b1e71f940f99b6fc77_s390x",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argocd-agent-rhel8@sha256:392359aa59f69afe8860a82a951659990437548916f92c97f4ec4cdaded2d0b0_amd64",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argocd-agent-rhel8@sha256:86e42d5047b3dfe9be543c43f06d9fc5c8d8ecaa2529b58ad47f30be9a4cd77f_arm64",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argocd-agent-rhel8@sha256:b3cf24392920aaa725f287938d5e77d1525825d49ebd05b2ed3c7c0d4ed7a823_ppc64le",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argocd-extensions-rhel8@sha256:06a57559d48b63dcb7e0b939f9c9303aa5a3f5c32616c47c48c8161da5d8b530_amd64",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argocd-extensions-rhel8@sha256:3f6492a7edfdaa1282837277a83e4c247f4b689a9f9ac16766b3b0d8415330b1_ppc64le",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argocd-extensions-rhel8@sha256:786fcd7035e4e59926bb74ffa23628cd8c328b1eb890cd948fee216e563a272c_arm64",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argocd-extensions-rhel8@sha256:e424fd18276656ca4f7a29f3ca7c4184f51655c22d8136fbac49195201271a9e_s390x",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argocd-image-updater-rhel8@sha256:1318ceaefef8c5e2ce3f7ae04e938a4458a5c0120eb77b7628ebbd1770edbd67_arm64",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argocd-image-updater-rhel8@sha256:2046a561a59f47f856e40e138561586978d1d473a3fcd6eaea95fbca5d62eb66_ppc64le",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argocd-image-updater-rhel8@sha256:8312842c2ae5637a43b3c1a933d47d148cd2ea2544978e55d9640d59523174b1_amd64",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argocd-image-updater-rhel8@sha256:d35ec5054ec806575e13854da072a39e47ed431260002f8ce2eaa09c67e454d0_s390x",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argocd-rhel8@sha256:3061b1d84759aa1c46379875593b0503a961930f9b18a5566866dd533cb5157e_ppc64le",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argocd-rhel8@sha256:a8b1fad3743f82ff1df3b6daed36096eabd827070b9426a76cb2bffa73d23f8e_amd64",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argocd-rhel8@sha256:b69311dff750e993a9b4b0bdc5756012f32c0a644e8bac213267b6729addbf3c_arm64",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argocd-rhel8@sha256:d34b5b4cb79db418674b9210036d6acb12a35abb894e58ac56ac49e2dabbd7c3_s390x",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argocd-rhel9@sha256:13007a387398626756a013d64b64f941e548b9207fba487f1f2110c6ef7a2143_ppc64le",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argocd-rhel9@sha256:909e2f26afee68521775cf31d13dfaa3d16fdf736f7e7097aba987e15bba4183_amd64",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argocd-rhel9@sha256:9553897b4c43a1df0e15339cdb1a953d72963c400f47572fb04555ec49b5ad44_s390x",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argocd-rhel9@sha256:c5317561de5e3c65588016e320afdcc9d1a8ae9a27a8f64fe03bf62e2e6914bf_arm64",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/console-plugin-rhel8@sha256:554da1fb02ef3e4870cac383b50d2ab0374a9d8c42827cb909ca17121cd2d674_amd64",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/console-plugin-rhel8@sha256:840cddc6e9803845f8216c670e251f3e412cecbdef40d543dabcee0e4d83bf4d_ppc64le",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/console-plugin-rhel8@sha256:bc53ecb8ce0ab3d2a955c21f9e0b84b55e7d297f77b2ead6a71f3f7f58670691_arm64",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/console-plugin-rhel8@sha256:e21cad6af52b3ca67013d723df4a5b1b7e63044e83a5402b2fb365eeb5978635_s390x",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/gitops-operator-bundle@sha256:22419f173ef1d31a83d226bc3b23fb283db62a9693c8f1df0a5e2fb4b3b38df4_amd64",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/gitops-rhel8-operator@sha256:e106c87be2d6834217435a7583b40c3bc1a9ab92624cd1ad4219913cfe4b6463_ppc64le",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/gitops-rhel8-operator@sha256:f324070b67fe44e3f4d7862f10fbcafb4dcabcfa4beb8b5e4ffe062800ab5989_arm64",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/gitops-rhel8-operator@sha256:f38c4f32c9c4eaa50ae99b8cb38e58aaf0c0c7eaa8275e211b3f81b023ddc0c0_amd64",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/gitops-rhel8-operator@sha256:fbe2b3bb5242f2d118d60dcd449858e7968d9eaff8c5ba5efcb2b36201ce8e0a_s390x",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/gitops-rhel8@sha256:2513bd207d6ef60f16637b9a18dce2437844703afde603becdc50113823d8728_s390x",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/gitops-rhel8@sha256:4c81a4f0d5a90edfc1da474af937e8c276579f0e1a87c77b93352f2ee7550eac_ppc64le",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/gitops-rhel8@sha256:940596cd69f441ccd2dc6aedf77e0cdac328a55532734304703429e78f80f206_arm64",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/gitops-rhel8@sha256:a66508fb7b17486246be16bf381f0c629993482a7858f0b5f9ae2b2340d02ea1_amd64",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/must-gather-rhel8@sha256:1afe78f60cfeb8380eb63eae988b34354cd1de47dd07cf69defd272292e296db_arm64",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/must-gather-rhel8@sha256:6fd7d8c42604912b271d672b159c7b5d43955d19afdbaa2b95f11fce589ce9da_ppc64le",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/must-gather-rhel8@sha256:b8c045203993fbb2e653c8bb8453254b1d9383827337e1148cf99f1aef00cf6e_amd64",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/must-gather-rhel8@sha256:bf83003061015154a7bf8c0a56c1ab639ae725bc7985ee296c341530dfd81650_s390x"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2480756"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in golang.org/x/net/idna. ToASCII and ToUnicode incorrectly accept Punycode-encoded labels that decode to an ASCII-only hostname (for example, xn--example-.com returns example.com instead of an error). Applications that validate the ASCII form then convert to Unicode may grant access to a restricted hostname the ASCII check would have rejected.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang.org/x/net/idna: golang: golang.org/x/net/idna: Privilege escalation via incorrect Punycode label processing",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "golang.org/x/net/idna is vulnerable to privilege escalation through incorrect Punycode label handling in ToASCII and ToUnicode. An attacker who can supply a Punycode hostname that passes an ASCII-only authorization check may have it normalized to a restricted ASCII name the application intended to block. Red Hat exposure is broad across products shipping the Go toolchain or bundling golang.org/x/net, including RHEL and RHEL-AI golang RPMs, hummingbird Go runtimes, OpenShift and ODF container builds, and Ceph/OpenShift components compiled against affected x/net versions.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/dex-rhel8@sha256:1186f9afe02ad55310874f86544e7c966a4e3eddcab664ec363030ac4b6fed4f_s390x",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/dex-rhel8@sha256:3713138e73d479f2532f5380b065af0379d236596455448dbe8a1a17bc5780d2_ppc64le",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/dex-rhel8@sha256:480a339ce9d622d6371d4ef75f4ddf7840a2dda6d512496eaf6d930654ffb58a_amd64",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/dex-rhel8@sha256:6ffae033f5816f4448fb9bbc79359a1319251e5c1baab2bb9fdd60289ba542b8_arm64"
],
"known_not_affected": [
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argo-rollouts-rhel8@sha256:142f81e07068cb43fa22b798e3fd1f1cd0b54f2820bf8008f1c61114632be9a9_arm64",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argo-rollouts-rhel8@sha256:2b3f86ba682cce1753ca2abc3538c330ec78026863ace0a7303fb36f8530a09a_ppc64le",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argo-rollouts-rhel8@sha256:77341d5f25030515eed25537d224c4a8701322a58db9181cdfc925d4cab28eca_amd64",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argo-rollouts-rhel8@sha256:8cf8a6ae5212d2206bfca8033862a4fd812e41bd6683696a3f2c974a9fb5dd56_s390x",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argocd-agent-rhel8@sha256:11d452ecde021dd5bcf0aa79c01c49074c0fcaa4561f71b1e71f940f99b6fc77_s390x",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argocd-agent-rhel8@sha256:392359aa59f69afe8860a82a951659990437548916f92c97f4ec4cdaded2d0b0_amd64",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argocd-agent-rhel8@sha256:86e42d5047b3dfe9be543c43f06d9fc5c8d8ecaa2529b58ad47f30be9a4cd77f_arm64",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argocd-agent-rhel8@sha256:b3cf24392920aaa725f287938d5e77d1525825d49ebd05b2ed3c7c0d4ed7a823_ppc64le",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argocd-extensions-rhel8@sha256:06a57559d48b63dcb7e0b939f9c9303aa5a3f5c32616c47c48c8161da5d8b530_amd64",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argocd-extensions-rhel8@sha256:3f6492a7edfdaa1282837277a83e4c247f4b689a9f9ac16766b3b0d8415330b1_ppc64le",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argocd-extensions-rhel8@sha256:786fcd7035e4e59926bb74ffa23628cd8c328b1eb890cd948fee216e563a272c_arm64",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argocd-extensions-rhel8@sha256:e424fd18276656ca4f7a29f3ca7c4184f51655c22d8136fbac49195201271a9e_s390x",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argocd-image-updater-rhel8@sha256:1318ceaefef8c5e2ce3f7ae04e938a4458a5c0120eb77b7628ebbd1770edbd67_arm64",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argocd-image-updater-rhel8@sha256:2046a561a59f47f856e40e138561586978d1d473a3fcd6eaea95fbca5d62eb66_ppc64le",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argocd-image-updater-rhel8@sha256:8312842c2ae5637a43b3c1a933d47d148cd2ea2544978e55d9640d59523174b1_amd64",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argocd-image-updater-rhel8@sha256:d35ec5054ec806575e13854da072a39e47ed431260002f8ce2eaa09c67e454d0_s390x",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argocd-rhel8@sha256:3061b1d84759aa1c46379875593b0503a961930f9b18a5566866dd533cb5157e_ppc64le",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argocd-rhel8@sha256:a8b1fad3743f82ff1df3b6daed36096eabd827070b9426a76cb2bffa73d23f8e_amd64",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argocd-rhel8@sha256:b69311dff750e993a9b4b0bdc5756012f32c0a644e8bac213267b6729addbf3c_arm64",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argocd-rhel8@sha256:d34b5b4cb79db418674b9210036d6acb12a35abb894e58ac56ac49e2dabbd7c3_s390x",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argocd-rhel9@sha256:13007a387398626756a013d64b64f941e548b9207fba487f1f2110c6ef7a2143_ppc64le",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argocd-rhel9@sha256:909e2f26afee68521775cf31d13dfaa3d16fdf736f7e7097aba987e15bba4183_amd64",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argocd-rhel9@sha256:9553897b4c43a1df0e15339cdb1a953d72963c400f47572fb04555ec49b5ad44_s390x",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argocd-rhel9@sha256:c5317561de5e3c65588016e320afdcc9d1a8ae9a27a8f64fe03bf62e2e6914bf_arm64",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/console-plugin-rhel8@sha256:554da1fb02ef3e4870cac383b50d2ab0374a9d8c42827cb909ca17121cd2d674_amd64",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/console-plugin-rhel8@sha256:840cddc6e9803845f8216c670e251f3e412cecbdef40d543dabcee0e4d83bf4d_ppc64le",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/console-plugin-rhel8@sha256:bc53ecb8ce0ab3d2a955c21f9e0b84b55e7d297f77b2ead6a71f3f7f58670691_arm64",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/console-plugin-rhel8@sha256:e21cad6af52b3ca67013d723df4a5b1b7e63044e83a5402b2fb365eeb5978635_s390x",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/gitops-operator-bundle@sha256:22419f173ef1d31a83d226bc3b23fb283db62a9693c8f1df0a5e2fb4b3b38df4_amd64",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/gitops-rhel8-operator@sha256:e106c87be2d6834217435a7583b40c3bc1a9ab92624cd1ad4219913cfe4b6463_ppc64le",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/gitops-rhel8-operator@sha256:f324070b67fe44e3f4d7862f10fbcafb4dcabcfa4beb8b5e4ffe062800ab5989_arm64",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/gitops-rhel8-operator@sha256:f38c4f32c9c4eaa50ae99b8cb38e58aaf0c0c7eaa8275e211b3f81b023ddc0c0_amd64",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/gitops-rhel8-operator@sha256:fbe2b3bb5242f2d118d60dcd449858e7968d9eaff8c5ba5efcb2b36201ce8e0a_s390x",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/gitops-rhel8@sha256:2513bd207d6ef60f16637b9a18dce2437844703afde603becdc50113823d8728_s390x",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/gitops-rhel8@sha256:4c81a4f0d5a90edfc1da474af937e8c276579f0e1a87c77b93352f2ee7550eac_ppc64le",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/gitops-rhel8@sha256:940596cd69f441ccd2dc6aedf77e0cdac328a55532734304703429e78f80f206_arm64",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/gitops-rhel8@sha256:a66508fb7b17486246be16bf381f0c629993482a7858f0b5f9ae2b2340d02ea1_amd64",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/must-gather-rhel8@sha256:1afe78f60cfeb8380eb63eae988b34354cd1de47dd07cf69defd272292e296db_arm64",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/must-gather-rhel8@sha256:6fd7d8c42604912b271d672b159c7b5d43955d19afdbaa2b95f11fce589ce9da_ppc64le",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/must-gather-rhel8@sha256:b8c045203993fbb2e653c8bb8453254b1d9383827337e1148cf99f1aef00cf6e_amd64",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/must-gather-rhel8@sha256:bf83003061015154a7bf8c0a56c1ab639ae725bc7985ee296c341530dfd81650_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-39821"
},
{
"category": "external",
"summary": "RHBZ#2480756",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2480756"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-39821",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-39821"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-39821",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-39821"
},
{
"category": "external",
"summary": "https://go.dev/cl/767220",
"url": "https://go.dev/cl/767220"
},
{
"category": "external",
"summary": "https://go.dev/issue/78760",
"url": "https://go.dev/issue/78760"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/iI-mYSI0lu8",
"url": "https://groups.google.com/g/golang-announce/c/iI-mYSI0lu8"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-5026",
"url": "https://pkg.go.dev/vuln/GO-2026-5026"
}
],
"release_date": "2026-05-22T15:01:21.462000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-06T15:19:12+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/dex-rhel8@sha256:1186f9afe02ad55310874f86544e7c966a4e3eddcab664ec363030ac4b6fed4f_s390x",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/dex-rhel8@sha256:3713138e73d479f2532f5380b065af0379d236596455448dbe8a1a17bc5780d2_ppc64le",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/dex-rhel8@sha256:480a339ce9d622d6371d4ef75f4ddf7840a2dda6d512496eaf6d930654ffb58a_amd64",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/dex-rhel8@sha256:6ffae033f5816f4448fb9bbc79359a1319251e5c1baab2bb9fdd60289ba542b8_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:35994"
},
{
"category": "workaround",
"details": "Upgrade to a fixed golang.org/x/net release that includes the idna correction, via updated golang or dependent package rebuilds.",
"product_ids": [
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argo-rollouts-rhel8@sha256:142f81e07068cb43fa22b798e3fd1f1cd0b54f2820bf8008f1c61114632be9a9_arm64",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argo-rollouts-rhel8@sha256:2b3f86ba682cce1753ca2abc3538c330ec78026863ace0a7303fb36f8530a09a_ppc64le",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argo-rollouts-rhel8@sha256:77341d5f25030515eed25537d224c4a8701322a58db9181cdfc925d4cab28eca_amd64",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argo-rollouts-rhel8@sha256:8cf8a6ae5212d2206bfca8033862a4fd812e41bd6683696a3f2c974a9fb5dd56_s390x",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argocd-agent-rhel8@sha256:11d452ecde021dd5bcf0aa79c01c49074c0fcaa4561f71b1e71f940f99b6fc77_s390x",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argocd-agent-rhel8@sha256:392359aa59f69afe8860a82a951659990437548916f92c97f4ec4cdaded2d0b0_amd64",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argocd-agent-rhel8@sha256:86e42d5047b3dfe9be543c43f06d9fc5c8d8ecaa2529b58ad47f30be9a4cd77f_arm64",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argocd-agent-rhel8@sha256:b3cf24392920aaa725f287938d5e77d1525825d49ebd05b2ed3c7c0d4ed7a823_ppc64le",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argocd-extensions-rhel8@sha256:06a57559d48b63dcb7e0b939f9c9303aa5a3f5c32616c47c48c8161da5d8b530_amd64",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argocd-extensions-rhel8@sha256:3f6492a7edfdaa1282837277a83e4c247f4b689a9f9ac16766b3b0d8415330b1_ppc64le",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argocd-extensions-rhel8@sha256:786fcd7035e4e59926bb74ffa23628cd8c328b1eb890cd948fee216e563a272c_arm64",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argocd-extensions-rhel8@sha256:e424fd18276656ca4f7a29f3ca7c4184f51655c22d8136fbac49195201271a9e_s390x",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argocd-image-updater-rhel8@sha256:1318ceaefef8c5e2ce3f7ae04e938a4458a5c0120eb77b7628ebbd1770edbd67_arm64",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argocd-image-updater-rhel8@sha256:2046a561a59f47f856e40e138561586978d1d473a3fcd6eaea95fbca5d62eb66_ppc64le",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argocd-image-updater-rhel8@sha256:8312842c2ae5637a43b3c1a933d47d148cd2ea2544978e55d9640d59523174b1_amd64",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argocd-image-updater-rhel8@sha256:d35ec5054ec806575e13854da072a39e47ed431260002f8ce2eaa09c67e454d0_s390x",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argocd-rhel8@sha256:3061b1d84759aa1c46379875593b0503a961930f9b18a5566866dd533cb5157e_ppc64le",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argocd-rhel8@sha256:a8b1fad3743f82ff1df3b6daed36096eabd827070b9426a76cb2bffa73d23f8e_amd64",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argocd-rhel8@sha256:b69311dff750e993a9b4b0bdc5756012f32c0a644e8bac213267b6729addbf3c_arm64",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argocd-rhel8@sha256:d34b5b4cb79db418674b9210036d6acb12a35abb894e58ac56ac49e2dabbd7c3_s390x",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argocd-rhel9@sha256:13007a387398626756a013d64b64f941e548b9207fba487f1f2110c6ef7a2143_ppc64le",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argocd-rhel9@sha256:909e2f26afee68521775cf31d13dfaa3d16fdf736f7e7097aba987e15bba4183_amd64",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argocd-rhel9@sha256:9553897b4c43a1df0e15339cdb1a953d72963c400f47572fb04555ec49b5ad44_s390x",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argocd-rhel9@sha256:c5317561de5e3c65588016e320afdcc9d1a8ae9a27a8f64fe03bf62e2e6914bf_arm64",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/console-plugin-rhel8@sha256:554da1fb02ef3e4870cac383b50d2ab0374a9d8c42827cb909ca17121cd2d674_amd64",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/console-plugin-rhel8@sha256:840cddc6e9803845f8216c670e251f3e412cecbdef40d543dabcee0e4d83bf4d_ppc64le",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/console-plugin-rhel8@sha256:bc53ecb8ce0ab3d2a955c21f9e0b84b55e7d297f77b2ead6a71f3f7f58670691_arm64",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/console-plugin-rhel8@sha256:e21cad6af52b3ca67013d723df4a5b1b7e63044e83a5402b2fb365eeb5978635_s390x",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/dex-rhel8@sha256:1186f9afe02ad55310874f86544e7c966a4e3eddcab664ec363030ac4b6fed4f_s390x",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/dex-rhel8@sha256:3713138e73d479f2532f5380b065af0379d236596455448dbe8a1a17bc5780d2_ppc64le",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/dex-rhel8@sha256:480a339ce9d622d6371d4ef75f4ddf7840a2dda6d512496eaf6d930654ffb58a_amd64",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/dex-rhel8@sha256:6ffae033f5816f4448fb9bbc79359a1319251e5c1baab2bb9fdd60289ba542b8_arm64",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/gitops-operator-bundle@sha256:22419f173ef1d31a83d226bc3b23fb283db62a9693c8f1df0a5e2fb4b3b38df4_amd64",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/gitops-rhel8-operator@sha256:e106c87be2d6834217435a7583b40c3bc1a9ab92624cd1ad4219913cfe4b6463_ppc64le",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/gitops-rhel8-operator@sha256:f324070b67fe44e3f4d7862f10fbcafb4dcabcfa4beb8b5e4ffe062800ab5989_arm64",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/gitops-rhel8-operator@sha256:f38c4f32c9c4eaa50ae99b8cb38e58aaf0c0c7eaa8275e211b3f81b023ddc0c0_amd64",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/gitops-rhel8-operator@sha256:fbe2b3bb5242f2d118d60dcd449858e7968d9eaff8c5ba5efcb2b36201ce8e0a_s390x",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/gitops-rhel8@sha256:2513bd207d6ef60f16637b9a18dce2437844703afde603becdc50113823d8728_s390x",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/gitops-rhel8@sha256:4c81a4f0d5a90edfc1da474af937e8c276579f0e1a87c77b93352f2ee7550eac_ppc64le",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/gitops-rhel8@sha256:940596cd69f441ccd2dc6aedf77e0cdac328a55532734304703429e78f80f206_arm64",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/gitops-rhel8@sha256:a66508fb7b17486246be16bf381f0c629993482a7858f0b5f9ae2b2340d02ea1_amd64",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/must-gather-rhel8@sha256:1afe78f60cfeb8380eb63eae988b34354cd1de47dd07cf69defd272292e296db_arm64",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/must-gather-rhel8@sha256:6fd7d8c42604912b271d672b159c7b5d43955d19afdbaa2b95f11fce589ce9da_ppc64le",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/must-gather-rhel8@sha256:b8c045203993fbb2e653c8bb8453254b1d9383827337e1148cf99f1aef00cf6e_amd64",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/must-gather-rhel8@sha256:bf83003061015154a7bf8c0a56c1ab639ae725bc7985ee296c341530dfd81650_s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 8.2,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argo-rollouts-rhel8@sha256:142f81e07068cb43fa22b798e3fd1f1cd0b54f2820bf8008f1c61114632be9a9_arm64",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argo-rollouts-rhel8@sha256:2b3f86ba682cce1753ca2abc3538c330ec78026863ace0a7303fb36f8530a09a_ppc64le",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argo-rollouts-rhel8@sha256:77341d5f25030515eed25537d224c4a8701322a58db9181cdfc925d4cab28eca_amd64",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argo-rollouts-rhel8@sha256:8cf8a6ae5212d2206bfca8033862a4fd812e41bd6683696a3f2c974a9fb5dd56_s390x",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argocd-agent-rhel8@sha256:11d452ecde021dd5bcf0aa79c01c49074c0fcaa4561f71b1e71f940f99b6fc77_s390x",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argocd-agent-rhel8@sha256:392359aa59f69afe8860a82a951659990437548916f92c97f4ec4cdaded2d0b0_amd64",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argocd-agent-rhel8@sha256:86e42d5047b3dfe9be543c43f06d9fc5c8d8ecaa2529b58ad47f30be9a4cd77f_arm64",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argocd-agent-rhel8@sha256:b3cf24392920aaa725f287938d5e77d1525825d49ebd05b2ed3c7c0d4ed7a823_ppc64le",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argocd-extensions-rhel8@sha256:06a57559d48b63dcb7e0b939f9c9303aa5a3f5c32616c47c48c8161da5d8b530_amd64",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argocd-extensions-rhel8@sha256:3f6492a7edfdaa1282837277a83e4c247f4b689a9f9ac16766b3b0d8415330b1_ppc64le",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argocd-extensions-rhel8@sha256:786fcd7035e4e59926bb74ffa23628cd8c328b1eb890cd948fee216e563a272c_arm64",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argocd-extensions-rhel8@sha256:e424fd18276656ca4f7a29f3ca7c4184f51655c22d8136fbac49195201271a9e_s390x",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argocd-image-updater-rhel8@sha256:1318ceaefef8c5e2ce3f7ae04e938a4458a5c0120eb77b7628ebbd1770edbd67_arm64",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argocd-image-updater-rhel8@sha256:2046a561a59f47f856e40e138561586978d1d473a3fcd6eaea95fbca5d62eb66_ppc64le",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argocd-image-updater-rhel8@sha256:8312842c2ae5637a43b3c1a933d47d148cd2ea2544978e55d9640d59523174b1_amd64",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argocd-image-updater-rhel8@sha256:d35ec5054ec806575e13854da072a39e47ed431260002f8ce2eaa09c67e454d0_s390x",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argocd-rhel8@sha256:3061b1d84759aa1c46379875593b0503a961930f9b18a5566866dd533cb5157e_ppc64le",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argocd-rhel8@sha256:a8b1fad3743f82ff1df3b6daed36096eabd827070b9426a76cb2bffa73d23f8e_amd64",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argocd-rhel8@sha256:b69311dff750e993a9b4b0bdc5756012f32c0a644e8bac213267b6729addbf3c_arm64",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argocd-rhel8@sha256:d34b5b4cb79db418674b9210036d6acb12a35abb894e58ac56ac49e2dabbd7c3_s390x",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argocd-rhel9@sha256:13007a387398626756a013d64b64f941e548b9207fba487f1f2110c6ef7a2143_ppc64le",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argocd-rhel9@sha256:909e2f26afee68521775cf31d13dfaa3d16fdf736f7e7097aba987e15bba4183_amd64",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argocd-rhel9@sha256:9553897b4c43a1df0e15339cdb1a953d72963c400f47572fb04555ec49b5ad44_s390x",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/argocd-rhel9@sha256:c5317561de5e3c65588016e320afdcc9d1a8ae9a27a8f64fe03bf62e2e6914bf_arm64",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/console-plugin-rhel8@sha256:554da1fb02ef3e4870cac383b50d2ab0374a9d8c42827cb909ca17121cd2d674_amd64",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/console-plugin-rhel8@sha256:840cddc6e9803845f8216c670e251f3e412cecbdef40d543dabcee0e4d83bf4d_ppc64le",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/console-plugin-rhel8@sha256:bc53ecb8ce0ab3d2a955c21f9e0b84b55e7d297f77b2ead6a71f3f7f58670691_arm64",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/console-plugin-rhel8@sha256:e21cad6af52b3ca67013d723df4a5b1b7e63044e83a5402b2fb365eeb5978635_s390x",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/dex-rhel8@sha256:1186f9afe02ad55310874f86544e7c966a4e3eddcab664ec363030ac4b6fed4f_s390x",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/dex-rhel8@sha256:3713138e73d479f2532f5380b065af0379d236596455448dbe8a1a17bc5780d2_ppc64le",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/dex-rhel8@sha256:480a339ce9d622d6371d4ef75f4ddf7840a2dda6d512496eaf6d930654ffb58a_amd64",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/dex-rhel8@sha256:6ffae033f5816f4448fb9bbc79359a1319251e5c1baab2bb9fdd60289ba542b8_arm64",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/gitops-operator-bundle@sha256:22419f173ef1d31a83d226bc3b23fb283db62a9693c8f1df0a5e2fb4b3b38df4_amd64",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/gitops-rhel8-operator@sha256:e106c87be2d6834217435a7583b40c3bc1a9ab92624cd1ad4219913cfe4b6463_ppc64le",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/gitops-rhel8-operator@sha256:f324070b67fe44e3f4d7862f10fbcafb4dcabcfa4beb8b5e4ffe062800ab5989_arm64",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/gitops-rhel8-operator@sha256:f38c4f32c9c4eaa50ae99b8cb38e58aaf0c0c7eaa8275e211b3f81b023ddc0c0_amd64",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/gitops-rhel8-operator@sha256:fbe2b3bb5242f2d118d60dcd449858e7968d9eaff8c5ba5efcb2b36201ce8e0a_s390x",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/gitops-rhel8@sha256:2513bd207d6ef60f16637b9a18dce2437844703afde603becdc50113823d8728_s390x",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/gitops-rhel8@sha256:4c81a4f0d5a90edfc1da474af937e8c276579f0e1a87c77b93352f2ee7550eac_ppc64le",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/gitops-rhel8@sha256:940596cd69f441ccd2dc6aedf77e0cdac328a55532734304703429e78f80f206_arm64",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/gitops-rhel8@sha256:a66508fb7b17486246be16bf381f0c629993482a7858f0b5f9ae2b2340d02ea1_amd64",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/must-gather-rhel8@sha256:1afe78f60cfeb8380eb63eae988b34354cd1de47dd07cf69defd272292e296db_arm64",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/must-gather-rhel8@sha256:6fd7d8c42604912b271d672b159c7b5d43955d19afdbaa2b95f11fce589ce9da_ppc64le",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/must-gather-rhel8@sha256:b8c045203993fbb2e653c8bb8453254b1d9383827337e1148cf99f1aef00cf6e_amd64",
"Red Hat OpenShift GitOps 1.19:registry.redhat.io/openshift-gitops-1/must-gather-rhel8@sha256:bf83003061015154a7bf8c0a56c1ab639ae725bc7985ee296c341530dfd81650_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang.org/x/net/idna: golang: golang.org/x/net/idna: Privilege escalation via incorrect Punycode label processing"
}
]
}
RHSA-2026:36105
Vulnerability from csaf_redhat - Published: 2026-07-07 07:55 - Updated: 2026-07-10 18:40A flaw was found in golang.org/x/net/idna. ToASCII and ToUnicode incorrectly accept Punycode-encoded labels that decode to an ASCII-only hostname (for example, xn--example-.com returns example.com instead of an error). Applications that validate the ASCII form then convert to Unicode may grant access to a restricted hostname the ASCII check would have rejected.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-service-8-rhel8@sha256:26ab409373069765e56e7b056702ac3d5e527191da6937e547fe4ab934fac1e4_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-service-8-rhel8@sha256:7d2d22ecbe79b676d7e08eb9675645212f06b1975bf6b320a53f2c83913e79dd_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-service-8-rhel8@sha256:9c57a27b244c777a94846abc3c7738efe972ae1d39453bc6363a417a6587f1d9_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-service-8-rhel8@sha256:a7ed7fb0b19759c868ff4c6453753b2d80596802c182b5da76e6ff706fc18551_s390x | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-installer-controller-rhel8@sha256:13af28ec463e2877e106c0f36881e26033532a7681a282de6b988d2cddf74f7d_ppc64le | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-installer-controller-rhel8@sha256:15066fae8152efb67cd9f839af234cb21d1f88e3d75c0419c0563c5d0f1dd692_amd64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-installer-controller-rhel8@sha256:2cbf7b3ece78f963ffb9fc60b2ecf4c4440361750d4d3964142ef8bdac527379_arm64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-installer-controller-rhel8@sha256:887035814ff7e6e0ff72019eed37277aa535389de65971fd6a4fac3acd32a84c_s390x | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-installer-rhel8@sha256:26ba753fd18a3d966755a548331401e68abc2791a077ad370f2a955a32d7677f_arm64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-installer-rhel8@sha256:6e76d785acd383c4123195401363e1c4a9ea00fba18a25bc4ef98f33f29c5083_s390x | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-installer-rhel8@sha256:99978f203298eee00bf5eb951506630115d1e9afae26469c98ff6cd271a4d1fe_ppc64le | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-installer-rhel8@sha256:b1eb0d2804359d83c18c8eec4dc663001b7f89e954a31fd2c47053c27cb4437e_amd64 | — |
Workaround
|
A flaw was found in golang.org/x/crypto/ssh. A remote attacker could exploit this vulnerability when an SSH server authentication callback returned a PartialSuccessError with non-nil permissions. This flaw caused these permissions to be silently discarded, potentially bypassing certificate restrictions, such as a force-command, after a second authentication factor succeeded. This could lead to unauthorized command execution or access.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-service-8-rhel8@sha256:26ab409373069765e56e7b056702ac3d5e527191da6937e547fe4ab934fac1e4_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-service-8-rhel8@sha256:7d2d22ecbe79b676d7e08eb9675645212f06b1975bf6b320a53f2c83913e79dd_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-service-8-rhel8@sha256:9c57a27b244c777a94846abc3c7738efe972ae1d39453bc6363a417a6587f1d9_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-service-8-rhel8@sha256:a7ed7fb0b19759c868ff4c6453753b2d80596802c182b5da76e6ff706fc18551_s390x | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-installer-controller-rhel8@sha256:13af28ec463e2877e106c0f36881e26033532a7681a282de6b988d2cddf74f7d_ppc64le | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-installer-controller-rhel8@sha256:15066fae8152efb67cd9f839af234cb21d1f88e3d75c0419c0563c5d0f1dd692_amd64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-installer-controller-rhel8@sha256:2cbf7b3ece78f963ffb9fc60b2ecf4c4440361750d4d3964142ef8bdac527379_arm64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-installer-controller-rhel8@sha256:887035814ff7e6e0ff72019eed37277aa535389de65971fd6a4fac3acd32a84c_s390x | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-installer-rhel8@sha256:26ba753fd18a3d966755a548331401e68abc2791a077ad370f2a955a32d7677f_arm64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-installer-rhel8@sha256:6e76d785acd383c4123195401363e1c4a9ea00fba18a25bc4ef98f33f29c5083_s390x | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-installer-rhel8@sha256:99978f203298eee00bf5eb951506630115d1e9afae26469c98ff6cd271a4d1fe_ppc64le | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-installer-rhel8@sha256:b1eb0d2804359d83c18c8eec4dc663001b7f89e954a31fd2c47053c27cb4437e_amd64 | — |
Workaround
|
A flaw was found in containerd, an open-source container runtime. The Container Runtime Interface (CRI) plugin, which manages container operations, fails to validate labels propagated from an image configuration to a container. This oversight could enable an attacker to execute arbitrary commands on the host system through a plugin that processes these unvalidated labels. The primary impact is host-root command execution, allowing unauthorized control over the underlying system.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-installer-controller-rhel8@sha256:13af28ec463e2877e106c0f36881e26033532a7681a282de6b988d2cddf74f7d_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-installer-controller-rhel8@sha256:15066fae8152efb67cd9f839af234cb21d1f88e3d75c0419c0563c5d0f1dd692_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-installer-controller-rhel8@sha256:2cbf7b3ece78f963ffb9fc60b2ecf4c4440361750d4d3964142ef8bdac527379_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-installer-controller-rhel8@sha256:887035814ff7e6e0ff72019eed37277aa535389de65971fd6a4fac3acd32a84c_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-installer-rhel8@sha256:26ba753fd18a3d966755a548331401e68abc2791a077ad370f2a955a32d7677f_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-installer-rhel8@sha256:6e76d785acd383c4123195401363e1c4a9ea00fba18a25bc4ef98f33f29c5083_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-installer-rhel8@sha256:99978f203298eee00bf5eb951506630115d1e9afae26469c98ff6cd271a4d1fe_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-installer-rhel8@sha256:b1eb0d2804359d83c18c8eec4dc663001b7f89e954a31fd2c47053c27cb4437e_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-service-8-rhel8@sha256:26ab409373069765e56e7b056702ac3d5e527191da6937e547fe4ab934fac1e4_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-service-8-rhel8@sha256:7d2d22ecbe79b676d7e08eb9675645212f06b1975bf6b320a53f2c83913e79dd_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-service-8-rhel8@sha256:9c57a27b244c777a94846abc3c7738efe972ae1d39453bc6363a417a6587f1d9_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-service-8-rhel8@sha256:a7ed7fb0b19759c868ff4c6453753b2d80596802c182b5da76e6ff706fc18551_s390x | — |
Vendor Fix
fix
Workaround
|
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Assisted installer RHEL 8 components for the multicluster engine for Kubernetes 2.6.12 General Availability release, with updates to container images.",
"title": "Topic"
},
{
"category": "general",
"text": "Assisted Installer RHEL 8 integrates components for the general multicluster engine\nfor Kubernetes 2.6.12 release that simplify the process of deploying OpenShift Container\nPlatform clusters.\n\nThe multicluster engine for Kubernetes provides the foundational components\nthat are necessary for the centralized management of multiple\nKubernetes-based clusters across data centers, public clouds, and private\nclouds.\n\nYou can use the engine to create new Red Hat OpenShift Container Platform\nclusters, or to import existing Kubernetes-based clusters for management.\n\nAfter the clusters are managed, you can use the APIs that\nare provided by the engine to distribute configuration based on placement\npolicy.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2026:36105",
"url": "https://access.redhat.com/errata/RHSA-2026:36105"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-39821",
"url": "https://access.redhat.com/security/cve/CVE-2026-39821"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-39828",
"url": "https://access.redhat.com/security/cve/CVE-2026-39828"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-53488",
"url": "https://access.redhat.com/security/cve/CVE-2026-53488"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/",
"url": "https://access.redhat.com/security/updates/classification/"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2026/rhsa-2026_36105.json"
}
],
"title": "Red Hat Security Advisory: Assisted Installer RHEL 8 components for Multicluster Engine for Kubernetes 2.6.12",
"tracking": {
"current_release_date": "2026-07-10T18:40:52+00:00",
"generator": {
"date": "2026-07-10T18:40:52+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "5.3.2"
}
},
"id": "RHSA-2026:36105",
"initial_release_date": "2026-07-07T07:55:03+00:00",
"revision_history": [
{
"date": "2026-07-07T07:55:03+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2026-07-07T07:55:09+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2026-07-10T18:40:52+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "multicluster engine for Kubernetes 2.6",
"product": {
"name": "multicluster engine for Kubernetes 2.6",
"product_id": "multicluster engine for Kubernetes 2.6",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:multicluster_engine:2.6::el8"
}
}
}
],
"category": "product_family",
"name": "multicluster engine for Kubernetes"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/multicluster-engine/assisted-installer-rhel8@sha256:b1eb0d2804359d83c18c8eec4dc663001b7f89e954a31fd2c47053c27cb4437e_amd64",
"product": {
"name": "registry.redhat.io/multicluster-engine/assisted-installer-rhel8@sha256:b1eb0d2804359d83c18c8eec4dc663001b7f89e954a31fd2c47053c27cb4437e_amd64",
"product_id": "registry.redhat.io/multicluster-engine/assisted-installer-rhel8@sha256:b1eb0d2804359d83c18c8eec4dc663001b7f89e954a31fd2c47053c27cb4437e_amd64",
"product_identification_helper": {
"purl": "pkg:oci/assisted-installer-rhel8@sha256%3Ab1eb0d2804359d83c18c8eec4dc663001b7f89e954a31fd2c47053c27cb4437e?arch=amd64\u0026repository_url=registry.redhat.io/multicluster-engine/assisted-installer-rhel8\u0026tag=1783407900"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/multicluster-engine/assisted-installer-controller-rhel8@sha256:15066fae8152efb67cd9f839af234cb21d1f88e3d75c0419c0563c5d0f1dd692_amd64",
"product": {
"name": "registry.redhat.io/multicluster-engine/assisted-installer-controller-rhel8@sha256:15066fae8152efb67cd9f839af234cb21d1f88e3d75c0419c0563c5d0f1dd692_amd64",
"product_id": "registry.redhat.io/multicluster-engine/assisted-installer-controller-rhel8@sha256:15066fae8152efb67cd9f839af234cb21d1f88e3d75c0419c0563c5d0f1dd692_amd64",
"product_identification_helper": {
"purl": "pkg:oci/assisted-installer-controller-rhel8@sha256%3A15066fae8152efb67cd9f839af234cb21d1f88e3d75c0419c0563c5d0f1dd692?arch=amd64\u0026repository_url=registry.redhat.io/multicluster-engine/assisted-installer-controller-rhel8\u0026tag=1783407939"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/multicluster-engine/assisted-service-8-rhel8@sha256:9c57a27b244c777a94846abc3c7738efe972ae1d39453bc6363a417a6587f1d9_amd64",
"product": {
"name": "registry.redhat.io/multicluster-engine/assisted-service-8-rhel8@sha256:9c57a27b244c777a94846abc3c7738efe972ae1d39453bc6363a417a6587f1d9_amd64",
"product_id": "registry.redhat.io/multicluster-engine/assisted-service-8-rhel8@sha256:9c57a27b244c777a94846abc3c7738efe972ae1d39453bc6363a417a6587f1d9_amd64",
"product_identification_helper": {
"purl": "pkg:oci/assisted-service-8-rhel8@sha256%3A9c57a27b244c777a94846abc3c7738efe972ae1d39453bc6363a417a6587f1d9?arch=amd64\u0026repository_url=registry.redhat.io/multicluster-engine/assisted-service-8-rhel8\u0026tag=1783332008"
}
}
}
],
"category": "architecture",
"name": "amd64"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/multicluster-engine/assisted-installer-rhel8@sha256:26ba753fd18a3d966755a548331401e68abc2791a077ad370f2a955a32d7677f_arm64",
"product": {
"name": "registry.redhat.io/multicluster-engine/assisted-installer-rhel8@sha256:26ba753fd18a3d966755a548331401e68abc2791a077ad370f2a955a32d7677f_arm64",
"product_id": "registry.redhat.io/multicluster-engine/assisted-installer-rhel8@sha256:26ba753fd18a3d966755a548331401e68abc2791a077ad370f2a955a32d7677f_arm64",
"product_identification_helper": {
"purl": "pkg:oci/assisted-installer-rhel8@sha256%3A26ba753fd18a3d966755a548331401e68abc2791a077ad370f2a955a32d7677f?arch=arm64\u0026repository_url=registry.redhat.io/multicluster-engine/assisted-installer-rhel8\u0026tag=1783407900"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/multicluster-engine/assisted-installer-controller-rhel8@sha256:2cbf7b3ece78f963ffb9fc60b2ecf4c4440361750d4d3964142ef8bdac527379_arm64",
"product": {
"name": "registry.redhat.io/multicluster-engine/assisted-installer-controller-rhel8@sha256:2cbf7b3ece78f963ffb9fc60b2ecf4c4440361750d4d3964142ef8bdac527379_arm64",
"product_id": "registry.redhat.io/multicluster-engine/assisted-installer-controller-rhel8@sha256:2cbf7b3ece78f963ffb9fc60b2ecf4c4440361750d4d3964142ef8bdac527379_arm64",
"product_identification_helper": {
"purl": "pkg:oci/assisted-installer-controller-rhel8@sha256%3A2cbf7b3ece78f963ffb9fc60b2ecf4c4440361750d4d3964142ef8bdac527379?arch=arm64\u0026repository_url=registry.redhat.io/multicluster-engine/assisted-installer-controller-rhel8\u0026tag=1783407939"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/multicluster-engine/assisted-service-8-rhel8@sha256:26ab409373069765e56e7b056702ac3d5e527191da6937e547fe4ab934fac1e4_arm64",
"product": {
"name": "registry.redhat.io/multicluster-engine/assisted-service-8-rhel8@sha256:26ab409373069765e56e7b056702ac3d5e527191da6937e547fe4ab934fac1e4_arm64",
"product_id": "registry.redhat.io/multicluster-engine/assisted-service-8-rhel8@sha256:26ab409373069765e56e7b056702ac3d5e527191da6937e547fe4ab934fac1e4_arm64",
"product_identification_helper": {
"purl": "pkg:oci/assisted-service-8-rhel8@sha256%3A26ab409373069765e56e7b056702ac3d5e527191da6937e547fe4ab934fac1e4?arch=arm64\u0026repository_url=registry.redhat.io/multicluster-engine/assisted-service-8-rhel8\u0026tag=1783332008"
}
}
}
],
"category": "architecture",
"name": "arm64"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/multicluster-engine/assisted-installer-rhel8@sha256:99978f203298eee00bf5eb951506630115d1e9afae26469c98ff6cd271a4d1fe_ppc64le",
"product": {
"name": "registry.redhat.io/multicluster-engine/assisted-installer-rhel8@sha256:99978f203298eee00bf5eb951506630115d1e9afae26469c98ff6cd271a4d1fe_ppc64le",
"product_id": "registry.redhat.io/multicluster-engine/assisted-installer-rhel8@sha256:99978f203298eee00bf5eb951506630115d1e9afae26469c98ff6cd271a4d1fe_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/assisted-installer-rhel8@sha256%3A99978f203298eee00bf5eb951506630115d1e9afae26469c98ff6cd271a4d1fe?arch=ppc64le\u0026repository_url=registry.redhat.io/multicluster-engine/assisted-installer-rhel8\u0026tag=1783407900"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/multicluster-engine/assisted-installer-controller-rhel8@sha256:13af28ec463e2877e106c0f36881e26033532a7681a282de6b988d2cddf74f7d_ppc64le",
"product": {
"name": "registry.redhat.io/multicluster-engine/assisted-installer-controller-rhel8@sha256:13af28ec463e2877e106c0f36881e26033532a7681a282de6b988d2cddf74f7d_ppc64le",
"product_id": "registry.redhat.io/multicluster-engine/assisted-installer-controller-rhel8@sha256:13af28ec463e2877e106c0f36881e26033532a7681a282de6b988d2cddf74f7d_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/assisted-installer-controller-rhel8@sha256%3A13af28ec463e2877e106c0f36881e26033532a7681a282de6b988d2cddf74f7d?arch=ppc64le\u0026repository_url=registry.redhat.io/multicluster-engine/assisted-installer-controller-rhel8\u0026tag=1783407939"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/multicluster-engine/assisted-service-8-rhel8@sha256:7d2d22ecbe79b676d7e08eb9675645212f06b1975bf6b320a53f2c83913e79dd_ppc64le",
"product": {
"name": "registry.redhat.io/multicluster-engine/assisted-service-8-rhel8@sha256:7d2d22ecbe79b676d7e08eb9675645212f06b1975bf6b320a53f2c83913e79dd_ppc64le",
"product_id": "registry.redhat.io/multicluster-engine/assisted-service-8-rhel8@sha256:7d2d22ecbe79b676d7e08eb9675645212f06b1975bf6b320a53f2c83913e79dd_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/assisted-service-8-rhel8@sha256%3A7d2d22ecbe79b676d7e08eb9675645212f06b1975bf6b320a53f2c83913e79dd?arch=ppc64le\u0026repository_url=registry.redhat.io/multicluster-engine/assisted-service-8-rhel8\u0026tag=1783332008"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/multicluster-engine/assisted-installer-rhel8@sha256:6e76d785acd383c4123195401363e1c4a9ea00fba18a25bc4ef98f33f29c5083_s390x",
"product": {
"name": "registry.redhat.io/multicluster-engine/assisted-installer-rhel8@sha256:6e76d785acd383c4123195401363e1c4a9ea00fba18a25bc4ef98f33f29c5083_s390x",
"product_id": "registry.redhat.io/multicluster-engine/assisted-installer-rhel8@sha256:6e76d785acd383c4123195401363e1c4a9ea00fba18a25bc4ef98f33f29c5083_s390x",
"product_identification_helper": {
"purl": "pkg:oci/assisted-installer-rhel8@sha256%3A6e76d785acd383c4123195401363e1c4a9ea00fba18a25bc4ef98f33f29c5083?arch=s390x\u0026repository_url=registry.redhat.io/multicluster-engine/assisted-installer-rhel8\u0026tag=1783407900"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/multicluster-engine/assisted-installer-controller-rhel8@sha256:887035814ff7e6e0ff72019eed37277aa535389de65971fd6a4fac3acd32a84c_s390x",
"product": {
"name": "registry.redhat.io/multicluster-engine/assisted-installer-controller-rhel8@sha256:887035814ff7e6e0ff72019eed37277aa535389de65971fd6a4fac3acd32a84c_s390x",
"product_id": "registry.redhat.io/multicluster-engine/assisted-installer-controller-rhel8@sha256:887035814ff7e6e0ff72019eed37277aa535389de65971fd6a4fac3acd32a84c_s390x",
"product_identification_helper": {
"purl": "pkg:oci/assisted-installer-controller-rhel8@sha256%3A887035814ff7e6e0ff72019eed37277aa535389de65971fd6a4fac3acd32a84c?arch=s390x\u0026repository_url=registry.redhat.io/multicluster-engine/assisted-installer-controller-rhel8\u0026tag=1783407939"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/multicluster-engine/assisted-service-8-rhel8@sha256:a7ed7fb0b19759c868ff4c6453753b2d80596802c182b5da76e6ff706fc18551_s390x",
"product": {
"name": "registry.redhat.io/multicluster-engine/assisted-service-8-rhel8@sha256:a7ed7fb0b19759c868ff4c6453753b2d80596802c182b5da76e6ff706fc18551_s390x",
"product_id": "registry.redhat.io/multicluster-engine/assisted-service-8-rhel8@sha256:a7ed7fb0b19759c868ff4c6453753b2d80596802c182b5da76e6ff706fc18551_s390x",
"product_identification_helper": {
"purl": "pkg:oci/assisted-service-8-rhel8@sha256%3Aa7ed7fb0b19759c868ff4c6453753b2d80596802c182b5da76e6ff706fc18551?arch=s390x\u0026repository_url=registry.redhat.io/multicluster-engine/assisted-service-8-rhel8\u0026tag=1783332008"
}
}
}
],
"category": "architecture",
"name": "s390x"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/multicluster-engine/assisted-installer-controller-rhel8@sha256:13af28ec463e2877e106c0f36881e26033532a7681a282de6b988d2cddf74f7d_ppc64le as a component of multicluster engine for Kubernetes 2.6",
"product_id": "multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-installer-controller-rhel8@sha256:13af28ec463e2877e106c0f36881e26033532a7681a282de6b988d2cddf74f7d_ppc64le"
},
"product_reference": "registry.redhat.io/multicluster-engine/assisted-installer-controller-rhel8@sha256:13af28ec463e2877e106c0f36881e26033532a7681a282de6b988d2cddf74f7d_ppc64le",
"relates_to_product_reference": "multicluster engine for Kubernetes 2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/multicluster-engine/assisted-installer-controller-rhel8@sha256:15066fae8152efb67cd9f839af234cb21d1f88e3d75c0419c0563c5d0f1dd692_amd64 as a component of multicluster engine for Kubernetes 2.6",
"product_id": "multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-installer-controller-rhel8@sha256:15066fae8152efb67cd9f839af234cb21d1f88e3d75c0419c0563c5d0f1dd692_amd64"
},
"product_reference": "registry.redhat.io/multicluster-engine/assisted-installer-controller-rhel8@sha256:15066fae8152efb67cd9f839af234cb21d1f88e3d75c0419c0563c5d0f1dd692_amd64",
"relates_to_product_reference": "multicluster engine for Kubernetes 2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/multicluster-engine/assisted-installer-controller-rhel8@sha256:2cbf7b3ece78f963ffb9fc60b2ecf4c4440361750d4d3964142ef8bdac527379_arm64 as a component of multicluster engine for Kubernetes 2.6",
"product_id": "multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-installer-controller-rhel8@sha256:2cbf7b3ece78f963ffb9fc60b2ecf4c4440361750d4d3964142ef8bdac527379_arm64"
},
"product_reference": "registry.redhat.io/multicluster-engine/assisted-installer-controller-rhel8@sha256:2cbf7b3ece78f963ffb9fc60b2ecf4c4440361750d4d3964142ef8bdac527379_arm64",
"relates_to_product_reference": "multicluster engine for Kubernetes 2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/multicluster-engine/assisted-installer-controller-rhel8@sha256:887035814ff7e6e0ff72019eed37277aa535389de65971fd6a4fac3acd32a84c_s390x as a component of multicluster engine for Kubernetes 2.6",
"product_id": "multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-installer-controller-rhel8@sha256:887035814ff7e6e0ff72019eed37277aa535389de65971fd6a4fac3acd32a84c_s390x"
},
"product_reference": "registry.redhat.io/multicluster-engine/assisted-installer-controller-rhel8@sha256:887035814ff7e6e0ff72019eed37277aa535389de65971fd6a4fac3acd32a84c_s390x",
"relates_to_product_reference": "multicluster engine for Kubernetes 2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/multicluster-engine/assisted-installer-rhel8@sha256:26ba753fd18a3d966755a548331401e68abc2791a077ad370f2a955a32d7677f_arm64 as a component of multicluster engine for Kubernetes 2.6",
"product_id": "multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-installer-rhel8@sha256:26ba753fd18a3d966755a548331401e68abc2791a077ad370f2a955a32d7677f_arm64"
},
"product_reference": "registry.redhat.io/multicluster-engine/assisted-installer-rhel8@sha256:26ba753fd18a3d966755a548331401e68abc2791a077ad370f2a955a32d7677f_arm64",
"relates_to_product_reference": "multicluster engine for Kubernetes 2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/multicluster-engine/assisted-installer-rhel8@sha256:6e76d785acd383c4123195401363e1c4a9ea00fba18a25bc4ef98f33f29c5083_s390x as a component of multicluster engine for Kubernetes 2.6",
"product_id": "multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-installer-rhel8@sha256:6e76d785acd383c4123195401363e1c4a9ea00fba18a25bc4ef98f33f29c5083_s390x"
},
"product_reference": "registry.redhat.io/multicluster-engine/assisted-installer-rhel8@sha256:6e76d785acd383c4123195401363e1c4a9ea00fba18a25bc4ef98f33f29c5083_s390x",
"relates_to_product_reference": "multicluster engine for Kubernetes 2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/multicluster-engine/assisted-installer-rhel8@sha256:99978f203298eee00bf5eb951506630115d1e9afae26469c98ff6cd271a4d1fe_ppc64le as a component of multicluster engine for Kubernetes 2.6",
"product_id": "multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-installer-rhel8@sha256:99978f203298eee00bf5eb951506630115d1e9afae26469c98ff6cd271a4d1fe_ppc64le"
},
"product_reference": "registry.redhat.io/multicluster-engine/assisted-installer-rhel8@sha256:99978f203298eee00bf5eb951506630115d1e9afae26469c98ff6cd271a4d1fe_ppc64le",
"relates_to_product_reference": "multicluster engine for Kubernetes 2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/multicluster-engine/assisted-installer-rhel8@sha256:b1eb0d2804359d83c18c8eec4dc663001b7f89e954a31fd2c47053c27cb4437e_amd64 as a component of multicluster engine for Kubernetes 2.6",
"product_id": "multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-installer-rhel8@sha256:b1eb0d2804359d83c18c8eec4dc663001b7f89e954a31fd2c47053c27cb4437e_amd64"
},
"product_reference": "registry.redhat.io/multicluster-engine/assisted-installer-rhel8@sha256:b1eb0d2804359d83c18c8eec4dc663001b7f89e954a31fd2c47053c27cb4437e_amd64",
"relates_to_product_reference": "multicluster engine for Kubernetes 2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/multicluster-engine/assisted-service-8-rhel8@sha256:26ab409373069765e56e7b056702ac3d5e527191da6937e547fe4ab934fac1e4_arm64 as a component of multicluster engine for Kubernetes 2.6",
"product_id": "multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-service-8-rhel8@sha256:26ab409373069765e56e7b056702ac3d5e527191da6937e547fe4ab934fac1e4_arm64"
},
"product_reference": "registry.redhat.io/multicluster-engine/assisted-service-8-rhel8@sha256:26ab409373069765e56e7b056702ac3d5e527191da6937e547fe4ab934fac1e4_arm64",
"relates_to_product_reference": "multicluster engine for Kubernetes 2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/multicluster-engine/assisted-service-8-rhel8@sha256:7d2d22ecbe79b676d7e08eb9675645212f06b1975bf6b320a53f2c83913e79dd_ppc64le as a component of multicluster engine for Kubernetes 2.6",
"product_id": "multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-service-8-rhel8@sha256:7d2d22ecbe79b676d7e08eb9675645212f06b1975bf6b320a53f2c83913e79dd_ppc64le"
},
"product_reference": "registry.redhat.io/multicluster-engine/assisted-service-8-rhel8@sha256:7d2d22ecbe79b676d7e08eb9675645212f06b1975bf6b320a53f2c83913e79dd_ppc64le",
"relates_to_product_reference": "multicluster engine for Kubernetes 2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/multicluster-engine/assisted-service-8-rhel8@sha256:9c57a27b244c777a94846abc3c7738efe972ae1d39453bc6363a417a6587f1d9_amd64 as a component of multicluster engine for Kubernetes 2.6",
"product_id": "multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-service-8-rhel8@sha256:9c57a27b244c777a94846abc3c7738efe972ae1d39453bc6363a417a6587f1d9_amd64"
},
"product_reference": "registry.redhat.io/multicluster-engine/assisted-service-8-rhel8@sha256:9c57a27b244c777a94846abc3c7738efe972ae1d39453bc6363a417a6587f1d9_amd64",
"relates_to_product_reference": "multicluster engine for Kubernetes 2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/multicluster-engine/assisted-service-8-rhel8@sha256:a7ed7fb0b19759c868ff4c6453753b2d80596802c182b5da76e6ff706fc18551_s390x as a component of multicluster engine for Kubernetes 2.6",
"product_id": "multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-service-8-rhel8@sha256:a7ed7fb0b19759c868ff4c6453753b2d80596802c182b5da76e6ff706fc18551_s390x"
},
"product_reference": "registry.redhat.io/multicluster-engine/assisted-service-8-rhel8@sha256:a7ed7fb0b19759c868ff4c6453753b2d80596802c182b5da76e6ff706fc18551_s390x",
"relates_to_product_reference": "multicluster engine for Kubernetes 2.6"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2026-39821",
"cwe": {
"id": "CWE-1289",
"name": "Improper Validation of Unsafe Equivalence in Input"
},
"discovery_date": "2026-05-22T16:00:52.844126+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-installer-controller-rhel8@sha256:13af28ec463e2877e106c0f36881e26033532a7681a282de6b988d2cddf74f7d_ppc64le",
"multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-installer-controller-rhel8@sha256:15066fae8152efb67cd9f839af234cb21d1f88e3d75c0419c0563c5d0f1dd692_amd64",
"multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-installer-controller-rhel8@sha256:2cbf7b3ece78f963ffb9fc60b2ecf4c4440361750d4d3964142ef8bdac527379_arm64",
"multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-installer-controller-rhel8@sha256:887035814ff7e6e0ff72019eed37277aa535389de65971fd6a4fac3acd32a84c_s390x",
"multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-installer-rhel8@sha256:26ba753fd18a3d966755a548331401e68abc2791a077ad370f2a955a32d7677f_arm64",
"multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-installer-rhel8@sha256:6e76d785acd383c4123195401363e1c4a9ea00fba18a25bc4ef98f33f29c5083_s390x",
"multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-installer-rhel8@sha256:99978f203298eee00bf5eb951506630115d1e9afae26469c98ff6cd271a4d1fe_ppc64le",
"multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-installer-rhel8@sha256:b1eb0d2804359d83c18c8eec4dc663001b7f89e954a31fd2c47053c27cb4437e_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2480756"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in golang.org/x/net/idna. ToASCII and ToUnicode incorrectly accept Punycode-encoded labels that decode to an ASCII-only hostname (for example, xn--example-.com returns example.com instead of an error). Applications that validate the ASCII form then convert to Unicode may grant access to a restricted hostname the ASCII check would have rejected.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang.org/x/net/idna: golang: golang.org/x/net/idna: Privilege escalation via incorrect Punycode label processing",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "golang.org/x/net/idna is vulnerable to privilege escalation through incorrect Punycode label handling in ToASCII and ToUnicode. An attacker who can supply a Punycode hostname that passes an ASCII-only authorization check may have it normalized to a restricted ASCII name the application intended to block. Red Hat exposure is broad across products shipping the Go toolchain or bundling golang.org/x/net, including RHEL and RHEL-AI golang RPMs, hummingbird Go runtimes, OpenShift and ODF container builds, and Ceph/OpenShift components compiled against affected x/net versions.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-service-8-rhel8@sha256:26ab409373069765e56e7b056702ac3d5e527191da6937e547fe4ab934fac1e4_arm64",
"multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-service-8-rhel8@sha256:7d2d22ecbe79b676d7e08eb9675645212f06b1975bf6b320a53f2c83913e79dd_ppc64le",
"multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-service-8-rhel8@sha256:9c57a27b244c777a94846abc3c7738efe972ae1d39453bc6363a417a6587f1d9_amd64",
"multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-service-8-rhel8@sha256:a7ed7fb0b19759c868ff4c6453753b2d80596802c182b5da76e6ff706fc18551_s390x"
],
"known_not_affected": [
"multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-installer-controller-rhel8@sha256:13af28ec463e2877e106c0f36881e26033532a7681a282de6b988d2cddf74f7d_ppc64le",
"multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-installer-controller-rhel8@sha256:15066fae8152efb67cd9f839af234cb21d1f88e3d75c0419c0563c5d0f1dd692_amd64",
"multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-installer-controller-rhel8@sha256:2cbf7b3ece78f963ffb9fc60b2ecf4c4440361750d4d3964142ef8bdac527379_arm64",
"multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-installer-controller-rhel8@sha256:887035814ff7e6e0ff72019eed37277aa535389de65971fd6a4fac3acd32a84c_s390x",
"multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-installer-rhel8@sha256:26ba753fd18a3d966755a548331401e68abc2791a077ad370f2a955a32d7677f_arm64",
"multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-installer-rhel8@sha256:6e76d785acd383c4123195401363e1c4a9ea00fba18a25bc4ef98f33f29c5083_s390x",
"multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-installer-rhel8@sha256:99978f203298eee00bf5eb951506630115d1e9afae26469c98ff6cd271a4d1fe_ppc64le",
"multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-installer-rhel8@sha256:b1eb0d2804359d83c18c8eec4dc663001b7f89e954a31fd2c47053c27cb4437e_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-39821"
},
{
"category": "external",
"summary": "RHBZ#2480756",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2480756"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-39821",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-39821"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-39821",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-39821"
},
{
"category": "external",
"summary": "https://go.dev/cl/767220",
"url": "https://go.dev/cl/767220"
},
{
"category": "external",
"summary": "https://go.dev/issue/78760",
"url": "https://go.dev/issue/78760"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/iI-mYSI0lu8",
"url": "https://groups.google.com/g/golang-announce/c/iI-mYSI0lu8"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-5026",
"url": "https://pkg.go.dev/vuln/GO-2026-5026"
}
],
"release_date": "2026-05-22T15:01:21.462000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-07T07:55:03+00:00",
"details": "For more information about Assisted Installer, see the following documentation:\n\nhttps://docs.redhat.com/en/documentation/red_hat_advanced_cluster_management_for_kubernetes/2.11/html/clusters/cluster_mce_overview#cim-intro\n\nFor multicluster engine for Kubernetes, see the following documentation for\ndetails on how to install the images:\n\nhttps://docs.redhat.com/en/documentation/red_hat_advanced_cluster_management_for_kubernetes/2.11/html/clusters/cluster_mce_overview#mce-install-intro\n\nThis documentation will be available after the general availability release of Red Hat Advanced Cluster Management 2.11.",
"product_ids": [
"multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-service-8-rhel8@sha256:26ab409373069765e56e7b056702ac3d5e527191da6937e547fe4ab934fac1e4_arm64",
"multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-service-8-rhel8@sha256:7d2d22ecbe79b676d7e08eb9675645212f06b1975bf6b320a53f2c83913e79dd_ppc64le",
"multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-service-8-rhel8@sha256:9c57a27b244c777a94846abc3c7738efe972ae1d39453bc6363a417a6587f1d9_amd64",
"multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-service-8-rhel8@sha256:a7ed7fb0b19759c868ff4c6453753b2d80596802c182b5da76e6ff706fc18551_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36105"
},
{
"category": "workaround",
"details": "Upgrade to a fixed golang.org/x/net release that includes the idna correction, via updated golang or dependent package rebuilds.",
"product_ids": [
"multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-installer-controller-rhel8@sha256:13af28ec463e2877e106c0f36881e26033532a7681a282de6b988d2cddf74f7d_ppc64le",
"multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-installer-controller-rhel8@sha256:15066fae8152efb67cd9f839af234cb21d1f88e3d75c0419c0563c5d0f1dd692_amd64",
"multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-installer-controller-rhel8@sha256:2cbf7b3ece78f963ffb9fc60b2ecf4c4440361750d4d3964142ef8bdac527379_arm64",
"multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-installer-controller-rhel8@sha256:887035814ff7e6e0ff72019eed37277aa535389de65971fd6a4fac3acd32a84c_s390x",
"multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-installer-rhel8@sha256:26ba753fd18a3d966755a548331401e68abc2791a077ad370f2a955a32d7677f_arm64",
"multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-installer-rhel8@sha256:6e76d785acd383c4123195401363e1c4a9ea00fba18a25bc4ef98f33f29c5083_s390x",
"multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-installer-rhel8@sha256:99978f203298eee00bf5eb951506630115d1e9afae26469c98ff6cd271a4d1fe_ppc64le",
"multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-installer-rhel8@sha256:b1eb0d2804359d83c18c8eec4dc663001b7f89e954a31fd2c47053c27cb4437e_amd64",
"multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-service-8-rhel8@sha256:26ab409373069765e56e7b056702ac3d5e527191da6937e547fe4ab934fac1e4_arm64",
"multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-service-8-rhel8@sha256:7d2d22ecbe79b676d7e08eb9675645212f06b1975bf6b320a53f2c83913e79dd_ppc64le",
"multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-service-8-rhel8@sha256:9c57a27b244c777a94846abc3c7738efe972ae1d39453bc6363a417a6587f1d9_amd64",
"multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-service-8-rhel8@sha256:a7ed7fb0b19759c868ff4c6453753b2d80596802c182b5da76e6ff706fc18551_s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 8.2,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-installer-controller-rhel8@sha256:13af28ec463e2877e106c0f36881e26033532a7681a282de6b988d2cddf74f7d_ppc64le",
"multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-installer-controller-rhel8@sha256:15066fae8152efb67cd9f839af234cb21d1f88e3d75c0419c0563c5d0f1dd692_amd64",
"multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-installer-controller-rhel8@sha256:2cbf7b3ece78f963ffb9fc60b2ecf4c4440361750d4d3964142ef8bdac527379_arm64",
"multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-installer-controller-rhel8@sha256:887035814ff7e6e0ff72019eed37277aa535389de65971fd6a4fac3acd32a84c_s390x",
"multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-installer-rhel8@sha256:26ba753fd18a3d966755a548331401e68abc2791a077ad370f2a955a32d7677f_arm64",
"multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-installer-rhel8@sha256:6e76d785acd383c4123195401363e1c4a9ea00fba18a25bc4ef98f33f29c5083_s390x",
"multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-installer-rhel8@sha256:99978f203298eee00bf5eb951506630115d1e9afae26469c98ff6cd271a4d1fe_ppc64le",
"multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-installer-rhel8@sha256:b1eb0d2804359d83c18c8eec4dc663001b7f89e954a31fd2c47053c27cb4437e_amd64",
"multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-service-8-rhel8@sha256:26ab409373069765e56e7b056702ac3d5e527191da6937e547fe4ab934fac1e4_arm64",
"multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-service-8-rhel8@sha256:7d2d22ecbe79b676d7e08eb9675645212f06b1975bf6b320a53f2c83913e79dd_ppc64le",
"multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-service-8-rhel8@sha256:9c57a27b244c777a94846abc3c7738efe972ae1d39453bc6363a417a6587f1d9_amd64",
"multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-service-8-rhel8@sha256:a7ed7fb0b19759c868ff4c6453753b2d80596802c182b5da76e6ff706fc18551_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang.org/x/net/idna: golang: golang.org/x/net/idna: Privilege escalation via incorrect Punycode label processing"
},
{
"cve": "CVE-2026-39828",
"cwe": {
"id": "CWE-281",
"name": "Improper Preservation of Permissions"
},
"discovery_date": "2026-05-22T04:01:46.775641+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-installer-controller-rhel8@sha256:13af28ec463e2877e106c0f36881e26033532a7681a282de6b988d2cddf74f7d_ppc64le",
"multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-installer-controller-rhel8@sha256:15066fae8152efb67cd9f839af234cb21d1f88e3d75c0419c0563c5d0f1dd692_amd64",
"multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-installer-controller-rhel8@sha256:2cbf7b3ece78f963ffb9fc60b2ecf4c4440361750d4d3964142ef8bdac527379_arm64",
"multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-installer-controller-rhel8@sha256:887035814ff7e6e0ff72019eed37277aa535389de65971fd6a4fac3acd32a84c_s390x",
"multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-installer-rhel8@sha256:26ba753fd18a3d966755a548331401e68abc2791a077ad370f2a955a32d7677f_arm64",
"multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-installer-rhel8@sha256:6e76d785acd383c4123195401363e1c4a9ea00fba18a25bc4ef98f33f29c5083_s390x",
"multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-installer-rhel8@sha256:99978f203298eee00bf5eb951506630115d1e9afae26469c98ff6cd271a4d1fe_ppc64le",
"multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-installer-rhel8@sha256:b1eb0d2804359d83c18c8eec4dc663001b7f89e954a31fd2c47053c27cb4437e_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2480687"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in golang.org/x/crypto/ssh. A remote attacker could exploit this vulnerability when an SSH server authentication callback returned a PartialSuccessError with non-nil permissions. This flaw caused these permissions to be silently discarded, potentially bypassing certificate restrictions, such as a force-command, after a second authentication factor succeeded. This could lead to unauthorized command execution or access.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang.org/x/crypto/ssh: golang.org/x/crypto/ssh: Unauthorized command execution via discarded SSH permissions",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This is an Important security flaw in the `golang.org/x/crypto/ssh` library. When an SSH server utilizing this library is configured with specific authentication callbacks that return a `PartialSuccessError` with non-nil permissions, an attacker could bypass intended certificate restrictions, such as `force-command`. This bypass could lead to unauthorized command execution or access on affected Red Hat systems configured with multi-factor authentication and certificate-based access controls.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-service-8-rhel8@sha256:26ab409373069765e56e7b056702ac3d5e527191da6937e547fe4ab934fac1e4_arm64",
"multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-service-8-rhel8@sha256:7d2d22ecbe79b676d7e08eb9675645212f06b1975bf6b320a53f2c83913e79dd_ppc64le",
"multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-service-8-rhel8@sha256:9c57a27b244c777a94846abc3c7738efe972ae1d39453bc6363a417a6587f1d9_amd64",
"multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-service-8-rhel8@sha256:a7ed7fb0b19759c868ff4c6453753b2d80596802c182b5da76e6ff706fc18551_s390x"
],
"known_not_affected": [
"multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-installer-controller-rhel8@sha256:13af28ec463e2877e106c0f36881e26033532a7681a282de6b988d2cddf74f7d_ppc64le",
"multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-installer-controller-rhel8@sha256:15066fae8152efb67cd9f839af234cb21d1f88e3d75c0419c0563c5d0f1dd692_amd64",
"multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-installer-controller-rhel8@sha256:2cbf7b3ece78f963ffb9fc60b2ecf4c4440361750d4d3964142ef8bdac527379_arm64",
"multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-installer-controller-rhel8@sha256:887035814ff7e6e0ff72019eed37277aa535389de65971fd6a4fac3acd32a84c_s390x",
"multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-installer-rhel8@sha256:26ba753fd18a3d966755a548331401e68abc2791a077ad370f2a955a32d7677f_arm64",
"multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-installer-rhel8@sha256:6e76d785acd383c4123195401363e1c4a9ea00fba18a25bc4ef98f33f29c5083_s390x",
"multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-installer-rhel8@sha256:99978f203298eee00bf5eb951506630115d1e9afae26469c98ff6cd271a4d1fe_ppc64le",
"multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-installer-rhel8@sha256:b1eb0d2804359d83c18c8eec4dc663001b7f89e954a31fd2c47053c27cb4437e_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-39828"
},
{
"category": "external",
"summary": "RHBZ#2480687",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2480687"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-39828",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-39828"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-39828",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-39828"
},
{
"category": "external",
"summary": "https://go.dev/cl/781621",
"url": "https://go.dev/cl/781621"
},
{
"category": "external",
"summary": "https://go.dev/issue/79562",
"url": "https://go.dev/issue/79562"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/a082jnz-LvI",
"url": "https://groups.google.com/g/golang-announce/c/a082jnz-LvI"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-5014",
"url": "https://pkg.go.dev/vuln/GO-2026-5014"
}
],
"release_date": "2026-05-22T02:31:26.883000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-07T07:55:03+00:00",
"details": "For more information about Assisted Installer, see the following documentation:\n\nhttps://docs.redhat.com/en/documentation/red_hat_advanced_cluster_management_for_kubernetes/2.11/html/clusters/cluster_mce_overview#cim-intro\n\nFor multicluster engine for Kubernetes, see the following documentation for\ndetails on how to install the images:\n\nhttps://docs.redhat.com/en/documentation/red_hat_advanced_cluster_management_for_kubernetes/2.11/html/clusters/cluster_mce_overview#mce-install-intro\n\nThis documentation will be available after the general availability release of Red Hat Advanced Cluster Management 2.11.",
"product_ids": [
"multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-service-8-rhel8@sha256:26ab409373069765e56e7b056702ac3d5e527191da6937e547fe4ab934fac1e4_arm64",
"multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-service-8-rhel8@sha256:7d2d22ecbe79b676d7e08eb9675645212f06b1975bf6b320a53f2c83913e79dd_ppc64le",
"multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-service-8-rhel8@sha256:9c57a27b244c777a94846abc3c7738efe972ae1d39453bc6363a417a6587f1d9_amd64",
"multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-service-8-rhel8@sha256:a7ed7fb0b19759c868ff4c6453753b2d80596802c182b5da76e6ff706fc18551_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36105"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability.",
"product_ids": [
"multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-installer-controller-rhel8@sha256:13af28ec463e2877e106c0f36881e26033532a7681a282de6b988d2cddf74f7d_ppc64le",
"multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-installer-controller-rhel8@sha256:15066fae8152efb67cd9f839af234cb21d1f88e3d75c0419c0563c5d0f1dd692_amd64",
"multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-installer-controller-rhel8@sha256:2cbf7b3ece78f963ffb9fc60b2ecf4c4440361750d4d3964142ef8bdac527379_arm64",
"multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-installer-controller-rhel8@sha256:887035814ff7e6e0ff72019eed37277aa535389de65971fd6a4fac3acd32a84c_s390x",
"multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-installer-rhel8@sha256:26ba753fd18a3d966755a548331401e68abc2791a077ad370f2a955a32d7677f_arm64",
"multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-installer-rhel8@sha256:6e76d785acd383c4123195401363e1c4a9ea00fba18a25bc4ef98f33f29c5083_s390x",
"multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-installer-rhel8@sha256:99978f203298eee00bf5eb951506630115d1e9afae26469c98ff6cd271a4d1fe_ppc64le",
"multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-installer-rhel8@sha256:b1eb0d2804359d83c18c8eec4dc663001b7f89e954a31fd2c47053c27cb4437e_amd64",
"multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-service-8-rhel8@sha256:26ab409373069765e56e7b056702ac3d5e527191da6937e547fe4ab934fac1e4_arm64",
"multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-service-8-rhel8@sha256:7d2d22ecbe79b676d7e08eb9675645212f06b1975bf6b320a53f2c83913e79dd_ppc64le",
"multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-service-8-rhel8@sha256:9c57a27b244c777a94846abc3c7738efe972ae1d39453bc6363a417a6587f1d9_amd64",
"multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-service-8-rhel8@sha256:a7ed7fb0b19759c868ff4c6453753b2d80596802c182b5da76e6ff706fc18551_s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-installer-controller-rhel8@sha256:13af28ec463e2877e106c0f36881e26033532a7681a282de6b988d2cddf74f7d_ppc64le",
"multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-installer-controller-rhel8@sha256:15066fae8152efb67cd9f839af234cb21d1f88e3d75c0419c0563c5d0f1dd692_amd64",
"multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-installer-controller-rhel8@sha256:2cbf7b3ece78f963ffb9fc60b2ecf4c4440361750d4d3964142ef8bdac527379_arm64",
"multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-installer-controller-rhel8@sha256:887035814ff7e6e0ff72019eed37277aa535389de65971fd6a4fac3acd32a84c_s390x",
"multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-installer-rhel8@sha256:26ba753fd18a3d966755a548331401e68abc2791a077ad370f2a955a32d7677f_arm64",
"multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-installer-rhel8@sha256:6e76d785acd383c4123195401363e1c4a9ea00fba18a25bc4ef98f33f29c5083_s390x",
"multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-installer-rhel8@sha256:99978f203298eee00bf5eb951506630115d1e9afae26469c98ff6cd271a4d1fe_ppc64le",
"multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-installer-rhel8@sha256:b1eb0d2804359d83c18c8eec4dc663001b7f89e954a31fd2c47053c27cb4437e_amd64",
"multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-service-8-rhel8@sha256:26ab409373069765e56e7b056702ac3d5e527191da6937e547fe4ab934fac1e4_arm64",
"multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-service-8-rhel8@sha256:7d2d22ecbe79b676d7e08eb9675645212f06b1975bf6b320a53f2c83913e79dd_ppc64le",
"multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-service-8-rhel8@sha256:9c57a27b244c777a94846abc3c7738efe972ae1d39453bc6363a417a6587f1d9_amd64",
"multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-service-8-rhel8@sha256:a7ed7fb0b19759c868ff4c6453753b2d80596802c182b5da76e6ff706fc18551_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang.org/x/crypto/ssh: golang.org/x/crypto/ssh: Unauthorized command execution via discarded SSH permissions"
},
{
"cve": "CVE-2026-53488",
"cwe": {
"id": "CWE-78",
"name": "Improper Neutralization of Special Elements used in an OS Command (\u0027OS Command Injection\u0027)"
},
"discovery_date": "2026-07-01T02:01:09.589815+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2495815"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in containerd, an open-source container runtime. The Container Runtime Interface (CRI) plugin, which manages container operations, fails to validate labels propagated from an image configuration to a container. This oversight could enable an attacker to execute arbitrary commands on the host system through a plugin that processes these unvalidated labels. The primary impact is host-root command execution, allowing unauthorized control over the underlying system.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "github.com/containerd/containerd: containerd: Host-root command execution via unvalidated image config labels in CRI plugin",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "A flaw was found in containerd where the CRI plugin propagates labels from an image configuration (LABEL instruction in a Dockerfile) to a container without validation. This may result in executing an arbitrary command on the host via a plugin that consumes container labels for operations, such as the restart-monitor binary:// logger. An attacker who can cause a crafted container image to be pulled and run can achieve host-level code execution.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-installer-controller-rhel8@sha256:13af28ec463e2877e106c0f36881e26033532a7681a282de6b988d2cddf74f7d_ppc64le",
"multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-installer-controller-rhel8@sha256:15066fae8152efb67cd9f839af234cb21d1f88e3d75c0419c0563c5d0f1dd692_amd64",
"multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-installer-controller-rhel8@sha256:2cbf7b3ece78f963ffb9fc60b2ecf4c4440361750d4d3964142ef8bdac527379_arm64",
"multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-installer-controller-rhel8@sha256:887035814ff7e6e0ff72019eed37277aa535389de65971fd6a4fac3acd32a84c_s390x",
"multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-installer-rhel8@sha256:26ba753fd18a3d966755a548331401e68abc2791a077ad370f2a955a32d7677f_arm64",
"multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-installer-rhel8@sha256:6e76d785acd383c4123195401363e1c4a9ea00fba18a25bc4ef98f33f29c5083_s390x",
"multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-installer-rhel8@sha256:99978f203298eee00bf5eb951506630115d1e9afae26469c98ff6cd271a4d1fe_ppc64le",
"multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-installer-rhel8@sha256:b1eb0d2804359d83c18c8eec4dc663001b7f89e954a31fd2c47053c27cb4437e_amd64",
"multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-service-8-rhel8@sha256:26ab409373069765e56e7b056702ac3d5e527191da6937e547fe4ab934fac1e4_arm64",
"multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-service-8-rhel8@sha256:7d2d22ecbe79b676d7e08eb9675645212f06b1975bf6b320a53f2c83913e79dd_ppc64le",
"multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-service-8-rhel8@sha256:9c57a27b244c777a94846abc3c7738efe972ae1d39453bc6363a417a6587f1d9_amd64",
"multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-service-8-rhel8@sha256:a7ed7fb0b19759c868ff4c6453753b2d80596802c182b5da76e6ff706fc18551_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-53488"
},
{
"category": "external",
"summary": "RHBZ#2495815",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2495815"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-53488",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-53488"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-53488",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-53488"
},
{
"category": "external",
"summary": "https://github.com/containerd/containerd/security/advisories/GHSA-xhf5-7wjv-pqxp",
"url": "https://github.com/containerd/containerd/security/advisories/GHSA-xhf5-7wjv-pqxp"
}
],
"release_date": "2026-07-01T00:11:20.610000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-07T07:55:03+00:00",
"details": "For more information about Assisted Installer, see the following documentation:\n\nhttps://docs.redhat.com/en/documentation/red_hat_advanced_cluster_management_for_kubernetes/2.11/html/clusters/cluster_mce_overview#cim-intro\n\nFor multicluster engine for Kubernetes, see the following documentation for\ndetails on how to install the images:\n\nhttps://docs.redhat.com/en/documentation/red_hat_advanced_cluster_management_for_kubernetes/2.11/html/clusters/cluster_mce_overview#mce-install-intro\n\nThis documentation will be available after the general availability release of Red Hat Advanced Cluster Management 2.11.",
"product_ids": [
"multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-installer-controller-rhel8@sha256:13af28ec463e2877e106c0f36881e26033532a7681a282de6b988d2cddf74f7d_ppc64le",
"multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-installer-controller-rhel8@sha256:15066fae8152efb67cd9f839af234cb21d1f88e3d75c0419c0563c5d0f1dd692_amd64",
"multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-installer-controller-rhel8@sha256:2cbf7b3ece78f963ffb9fc60b2ecf4c4440361750d4d3964142ef8bdac527379_arm64",
"multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-installer-controller-rhel8@sha256:887035814ff7e6e0ff72019eed37277aa535389de65971fd6a4fac3acd32a84c_s390x",
"multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-installer-rhel8@sha256:26ba753fd18a3d966755a548331401e68abc2791a077ad370f2a955a32d7677f_arm64",
"multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-installer-rhel8@sha256:6e76d785acd383c4123195401363e1c4a9ea00fba18a25bc4ef98f33f29c5083_s390x",
"multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-installer-rhel8@sha256:99978f203298eee00bf5eb951506630115d1e9afae26469c98ff6cd271a4d1fe_ppc64le",
"multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-installer-rhel8@sha256:b1eb0d2804359d83c18c8eec4dc663001b7f89e954a31fd2c47053c27cb4437e_amd64",
"multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-service-8-rhel8@sha256:26ab409373069765e56e7b056702ac3d5e527191da6937e547fe4ab934fac1e4_arm64",
"multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-service-8-rhel8@sha256:7d2d22ecbe79b676d7e08eb9675645212f06b1975bf6b320a53f2c83913e79dd_ppc64le",
"multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-service-8-rhel8@sha256:9c57a27b244c777a94846abc3c7738efe972ae1d39453bc6363a417a6587f1d9_amd64",
"multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-service-8-rhel8@sha256:a7ed7fb0b19759c868ff4c6453753b2d80596802c182b5da76e6ff706fc18551_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36105"
},
{
"category": "workaround",
"details": "Restrict container image pulls to trusted registries using admission policies or image signature verification. Where containerd is used as the container runtime, disable or restrict the binary:// logger URI scheme in the containerd configuration to prevent the label-to-logger attack path.",
"product_ids": [
"multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-installer-controller-rhel8@sha256:13af28ec463e2877e106c0f36881e26033532a7681a282de6b988d2cddf74f7d_ppc64le",
"multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-installer-controller-rhel8@sha256:15066fae8152efb67cd9f839af234cb21d1f88e3d75c0419c0563c5d0f1dd692_amd64",
"multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-installer-controller-rhel8@sha256:2cbf7b3ece78f963ffb9fc60b2ecf4c4440361750d4d3964142ef8bdac527379_arm64",
"multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-installer-controller-rhel8@sha256:887035814ff7e6e0ff72019eed37277aa535389de65971fd6a4fac3acd32a84c_s390x",
"multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-installer-rhel8@sha256:26ba753fd18a3d966755a548331401e68abc2791a077ad370f2a955a32d7677f_arm64",
"multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-installer-rhel8@sha256:6e76d785acd383c4123195401363e1c4a9ea00fba18a25bc4ef98f33f29c5083_s390x",
"multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-installer-rhel8@sha256:99978f203298eee00bf5eb951506630115d1e9afae26469c98ff6cd271a4d1fe_ppc64le",
"multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-installer-rhel8@sha256:b1eb0d2804359d83c18c8eec4dc663001b7f89e954a31fd2c47053c27cb4437e_amd64",
"multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-service-8-rhel8@sha256:26ab409373069765e56e7b056702ac3d5e527191da6937e547fe4ab934fac1e4_arm64",
"multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-service-8-rhel8@sha256:7d2d22ecbe79b676d7e08eb9675645212f06b1975bf6b320a53f2c83913e79dd_ppc64le",
"multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-service-8-rhel8@sha256:9c57a27b244c777a94846abc3c7738efe972ae1d39453bc6363a417a6587f1d9_amd64",
"multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-service-8-rhel8@sha256:a7ed7fb0b19759c868ff4c6453753b2d80596802c182b5da76e6ff706fc18551_s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 8.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-installer-controller-rhel8@sha256:13af28ec463e2877e106c0f36881e26033532a7681a282de6b988d2cddf74f7d_ppc64le",
"multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-installer-controller-rhel8@sha256:15066fae8152efb67cd9f839af234cb21d1f88e3d75c0419c0563c5d0f1dd692_amd64",
"multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-installer-controller-rhel8@sha256:2cbf7b3ece78f963ffb9fc60b2ecf4c4440361750d4d3964142ef8bdac527379_arm64",
"multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-installer-controller-rhel8@sha256:887035814ff7e6e0ff72019eed37277aa535389de65971fd6a4fac3acd32a84c_s390x",
"multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-installer-rhel8@sha256:26ba753fd18a3d966755a548331401e68abc2791a077ad370f2a955a32d7677f_arm64",
"multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-installer-rhel8@sha256:6e76d785acd383c4123195401363e1c4a9ea00fba18a25bc4ef98f33f29c5083_s390x",
"multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-installer-rhel8@sha256:99978f203298eee00bf5eb951506630115d1e9afae26469c98ff6cd271a4d1fe_ppc64le",
"multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-installer-rhel8@sha256:b1eb0d2804359d83c18c8eec4dc663001b7f89e954a31fd2c47053c27cb4437e_amd64",
"multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-service-8-rhel8@sha256:26ab409373069765e56e7b056702ac3d5e527191da6937e547fe4ab934fac1e4_arm64",
"multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-service-8-rhel8@sha256:7d2d22ecbe79b676d7e08eb9675645212f06b1975bf6b320a53f2c83913e79dd_ppc64le",
"multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-service-8-rhel8@sha256:9c57a27b244c777a94846abc3c7738efe972ae1d39453bc6363a417a6587f1d9_amd64",
"multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-service-8-rhel8@sha256:a7ed7fb0b19759c868ff4c6453753b2d80596802c182b5da76e6ff706fc18551_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "github.com/containerd/containerd: containerd: Host-root command execution via unvalidated image config labels in CRI plugin"
}
]
}
RHSA-2026:36167
Vulnerability from csaf_redhat - Published: 2026-07-07 08:06 - Updated: 2026-07-10 18:40A flaw was found in golang.org/x/net/idna. ToASCII and ToUnicode incorrectly accept Punycode-encoded labels that decode to an ASCII-only hostname (for example, xn--example-.com returns example.com instead of an error). Applications that validate the ASCII form then convert to Unicode may grant access to a restricted hostname the ASCII check would have rejected.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-service-9-rhel9@sha256:0dea3f88818977c2392172f46f00c2298360811d7f1d8a8878a947ee986f68e9_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-service-9-rhel9@sha256:88a25f8f2cc5c935b8b6f7ffda5beac8d58e3370051cb704dcba9f7fc2c446c4_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-service-9-rhel9@sha256:d9d180f6958fbaf250b99cb10d3c955dde07037c01fc39936b74e9cd2484d486_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-service-9-rhel9@sha256:ea5ac20c57933b17e55ae6e629ec272f385c3c61d12d0cf91678b6bda12396c8_s390x | — |
Vendor Fix
fix
Workaround
|
A flaw was found in golang.org/x/crypto/ssh. A remote attacker could exploit this vulnerability when an SSH server authentication callback returned a PartialSuccessError with non-nil permissions. This flaw caused these permissions to be silently discarded, potentially bypassing certificate restrictions, such as a force-command, after a second authentication factor succeeded. This could lead to unauthorized command execution or access.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-service-9-rhel9@sha256:0dea3f88818977c2392172f46f00c2298360811d7f1d8a8878a947ee986f68e9_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-service-9-rhel9@sha256:88a25f8f2cc5c935b8b6f7ffda5beac8d58e3370051cb704dcba9f7fc2c446c4_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-service-9-rhel9@sha256:d9d180f6958fbaf250b99cb10d3c955dde07037c01fc39936b74e9cd2484d486_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-service-9-rhel9@sha256:ea5ac20c57933b17e55ae6e629ec272f385c3c61d12d0cf91678b6bda12396c8_s390x | — |
Vendor Fix
fix
Workaround
|
A flaw was found in containerd, an open-source container runtime. The Container Runtime Interface (CRI) plugin, which manages container operations, fails to validate labels propagated from an image configuration to a container. This oversight could enable an attacker to execute arbitrary commands on the host system through a plugin that processes these unvalidated labels. The primary impact is host-root command execution, allowing unauthorized control over the underlying system.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-service-9-rhel9@sha256:0dea3f88818977c2392172f46f00c2298360811d7f1d8a8878a947ee986f68e9_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-service-9-rhel9@sha256:88a25f8f2cc5c935b8b6f7ffda5beac8d58e3370051cb704dcba9f7fc2c446c4_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-service-9-rhel9@sha256:d9d180f6958fbaf250b99cb10d3c955dde07037c01fc39936b74e9cd2484d486_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-service-9-rhel9@sha256:ea5ac20c57933b17e55ae6e629ec272f385c3c61d12d0cf91678b6bda12396c8_s390x | — |
Vendor Fix
fix
Workaround
|
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Assisted installer RHEL 9 components for the multicluster engine for Kubernetes 2.6.12 General Availability release, with updates to container images.",
"title": "Topic"
},
{
"category": "general",
"text": "Assisted Installer RHEL 9 integrates components for the general multicluster engine\nfor Kubernetes 2.6.12 release that simplify the process of deploying OpenShift Container\nPlatform clusters.\n\nThe multicluster engine for Kubernetes provides the foundational components\nthat are necessary for the centralized management of multiple\nKubernetes-based clusters across data centers, public clouds, and private\nclouds.\n\nYou can use the engine to create new Red Hat OpenShift Container Platform\nclusters, or to import existing Kubernetes-based clusters for management.\n\nAfter the clusters are managed, you can use the APIs that\nare provided by the engine to distribute configuration based on placement\npolicy.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2026:36167",
"url": "https://access.redhat.com/errata/RHSA-2026:36167"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-39821",
"url": "https://access.redhat.com/security/cve/CVE-2026-39821"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-39828",
"url": "https://access.redhat.com/security/cve/CVE-2026-39828"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-53488",
"url": "https://access.redhat.com/security/cve/CVE-2026-53488"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/",
"url": "https://access.redhat.com/security/updates/classification/"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2026/rhsa-2026_36167.json"
}
],
"title": "Red Hat Security Advisory: Assisted Installer RHEL 9 components for Multicluster Engine for Kubernetes 2.6.12",
"tracking": {
"current_release_date": "2026-07-10T18:40:54+00:00",
"generator": {
"date": "2026-07-10T18:40:54+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "5.3.2"
}
},
"id": "RHSA-2026:36167",
"initial_release_date": "2026-07-07T08:06:49+00:00",
"revision_history": [
{
"date": "2026-07-07T08:06:49+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2026-07-07T08:06:55+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2026-07-10T18:40:54+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "multicluster engine for Kubernetes 2.6",
"product": {
"name": "multicluster engine for Kubernetes 2.6",
"product_id": "multicluster engine for Kubernetes 2.6",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:multicluster_engine:2.6::el9"
}
}
}
],
"category": "product_family",
"name": "multicluster engine for Kubernetes"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/multicluster-engine/assisted-service-9-rhel9@sha256:0dea3f88818977c2392172f46f00c2298360811d7f1d8a8878a947ee986f68e9_amd64",
"product": {
"name": "registry.redhat.io/multicluster-engine/assisted-service-9-rhel9@sha256:0dea3f88818977c2392172f46f00c2298360811d7f1d8a8878a947ee986f68e9_amd64",
"product_id": "registry.redhat.io/multicluster-engine/assisted-service-9-rhel9@sha256:0dea3f88818977c2392172f46f00c2298360811d7f1d8a8878a947ee986f68e9_amd64",
"product_identification_helper": {
"purl": "pkg:oci/assisted-service-9-rhel9@sha256%3A0dea3f88818977c2392172f46f00c2298360811d7f1d8a8878a947ee986f68e9?arch=amd64\u0026repository_url=registry.redhat.io/multicluster-engine/assisted-service-9-rhel9\u0026tag=1783333268"
}
}
}
],
"category": "architecture",
"name": "amd64"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/multicluster-engine/assisted-service-9-rhel9@sha256:d9d180f6958fbaf250b99cb10d3c955dde07037c01fc39936b74e9cd2484d486_arm64",
"product": {
"name": "registry.redhat.io/multicluster-engine/assisted-service-9-rhel9@sha256:d9d180f6958fbaf250b99cb10d3c955dde07037c01fc39936b74e9cd2484d486_arm64",
"product_id": "registry.redhat.io/multicluster-engine/assisted-service-9-rhel9@sha256:d9d180f6958fbaf250b99cb10d3c955dde07037c01fc39936b74e9cd2484d486_arm64",
"product_identification_helper": {
"purl": "pkg:oci/assisted-service-9-rhel9@sha256%3Ad9d180f6958fbaf250b99cb10d3c955dde07037c01fc39936b74e9cd2484d486?arch=arm64\u0026repository_url=registry.redhat.io/multicluster-engine/assisted-service-9-rhel9\u0026tag=1783333268"
}
}
}
],
"category": "architecture",
"name": "arm64"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/multicluster-engine/assisted-service-9-rhel9@sha256:88a25f8f2cc5c935b8b6f7ffda5beac8d58e3370051cb704dcba9f7fc2c446c4_ppc64le",
"product": {
"name": "registry.redhat.io/multicluster-engine/assisted-service-9-rhel9@sha256:88a25f8f2cc5c935b8b6f7ffda5beac8d58e3370051cb704dcba9f7fc2c446c4_ppc64le",
"product_id": "registry.redhat.io/multicluster-engine/assisted-service-9-rhel9@sha256:88a25f8f2cc5c935b8b6f7ffda5beac8d58e3370051cb704dcba9f7fc2c446c4_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/assisted-service-9-rhel9@sha256%3A88a25f8f2cc5c935b8b6f7ffda5beac8d58e3370051cb704dcba9f7fc2c446c4?arch=ppc64le\u0026repository_url=registry.redhat.io/multicluster-engine/assisted-service-9-rhel9\u0026tag=1783333268"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/multicluster-engine/assisted-service-9-rhel9@sha256:ea5ac20c57933b17e55ae6e629ec272f385c3c61d12d0cf91678b6bda12396c8_s390x",
"product": {
"name": "registry.redhat.io/multicluster-engine/assisted-service-9-rhel9@sha256:ea5ac20c57933b17e55ae6e629ec272f385c3c61d12d0cf91678b6bda12396c8_s390x",
"product_id": "registry.redhat.io/multicluster-engine/assisted-service-9-rhel9@sha256:ea5ac20c57933b17e55ae6e629ec272f385c3c61d12d0cf91678b6bda12396c8_s390x",
"product_identification_helper": {
"purl": "pkg:oci/assisted-service-9-rhel9@sha256%3Aea5ac20c57933b17e55ae6e629ec272f385c3c61d12d0cf91678b6bda12396c8?arch=s390x\u0026repository_url=registry.redhat.io/multicluster-engine/assisted-service-9-rhel9\u0026tag=1783333268"
}
}
}
],
"category": "architecture",
"name": "s390x"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/multicluster-engine/assisted-service-9-rhel9@sha256:0dea3f88818977c2392172f46f00c2298360811d7f1d8a8878a947ee986f68e9_amd64 as a component of multicluster engine for Kubernetes 2.6",
"product_id": "multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-service-9-rhel9@sha256:0dea3f88818977c2392172f46f00c2298360811d7f1d8a8878a947ee986f68e9_amd64"
},
"product_reference": "registry.redhat.io/multicluster-engine/assisted-service-9-rhel9@sha256:0dea3f88818977c2392172f46f00c2298360811d7f1d8a8878a947ee986f68e9_amd64",
"relates_to_product_reference": "multicluster engine for Kubernetes 2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/multicluster-engine/assisted-service-9-rhel9@sha256:88a25f8f2cc5c935b8b6f7ffda5beac8d58e3370051cb704dcba9f7fc2c446c4_ppc64le as a component of multicluster engine for Kubernetes 2.6",
"product_id": "multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-service-9-rhel9@sha256:88a25f8f2cc5c935b8b6f7ffda5beac8d58e3370051cb704dcba9f7fc2c446c4_ppc64le"
},
"product_reference": "registry.redhat.io/multicluster-engine/assisted-service-9-rhel9@sha256:88a25f8f2cc5c935b8b6f7ffda5beac8d58e3370051cb704dcba9f7fc2c446c4_ppc64le",
"relates_to_product_reference": "multicluster engine for Kubernetes 2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/multicluster-engine/assisted-service-9-rhel9@sha256:d9d180f6958fbaf250b99cb10d3c955dde07037c01fc39936b74e9cd2484d486_arm64 as a component of multicluster engine for Kubernetes 2.6",
"product_id": "multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-service-9-rhel9@sha256:d9d180f6958fbaf250b99cb10d3c955dde07037c01fc39936b74e9cd2484d486_arm64"
},
"product_reference": "registry.redhat.io/multicluster-engine/assisted-service-9-rhel9@sha256:d9d180f6958fbaf250b99cb10d3c955dde07037c01fc39936b74e9cd2484d486_arm64",
"relates_to_product_reference": "multicluster engine for Kubernetes 2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/multicluster-engine/assisted-service-9-rhel9@sha256:ea5ac20c57933b17e55ae6e629ec272f385c3c61d12d0cf91678b6bda12396c8_s390x as a component of multicluster engine for Kubernetes 2.6",
"product_id": "multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-service-9-rhel9@sha256:ea5ac20c57933b17e55ae6e629ec272f385c3c61d12d0cf91678b6bda12396c8_s390x"
},
"product_reference": "registry.redhat.io/multicluster-engine/assisted-service-9-rhel9@sha256:ea5ac20c57933b17e55ae6e629ec272f385c3c61d12d0cf91678b6bda12396c8_s390x",
"relates_to_product_reference": "multicluster engine for Kubernetes 2.6"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2026-39821",
"cwe": {
"id": "CWE-1289",
"name": "Improper Validation of Unsafe Equivalence in Input"
},
"discovery_date": "2026-05-22T16:00:52.844126+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2480756"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in golang.org/x/net/idna. ToASCII and ToUnicode incorrectly accept Punycode-encoded labels that decode to an ASCII-only hostname (for example, xn--example-.com returns example.com instead of an error). Applications that validate the ASCII form then convert to Unicode may grant access to a restricted hostname the ASCII check would have rejected.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang.org/x/net/idna: golang: golang.org/x/net/idna: Privilege escalation via incorrect Punycode label processing",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "golang.org/x/net/idna is vulnerable to privilege escalation through incorrect Punycode label handling in ToASCII and ToUnicode. An attacker who can supply a Punycode hostname that passes an ASCII-only authorization check may have it normalized to a restricted ASCII name the application intended to block. Red Hat exposure is broad across products shipping the Go toolchain or bundling golang.org/x/net, including RHEL and RHEL-AI golang RPMs, hummingbird Go runtimes, OpenShift and ODF container builds, and Ceph/OpenShift components compiled against affected x/net versions.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-service-9-rhel9@sha256:0dea3f88818977c2392172f46f00c2298360811d7f1d8a8878a947ee986f68e9_amd64",
"multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-service-9-rhel9@sha256:88a25f8f2cc5c935b8b6f7ffda5beac8d58e3370051cb704dcba9f7fc2c446c4_ppc64le",
"multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-service-9-rhel9@sha256:d9d180f6958fbaf250b99cb10d3c955dde07037c01fc39936b74e9cd2484d486_arm64",
"multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-service-9-rhel9@sha256:ea5ac20c57933b17e55ae6e629ec272f385c3c61d12d0cf91678b6bda12396c8_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-39821"
},
{
"category": "external",
"summary": "RHBZ#2480756",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2480756"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-39821",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-39821"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-39821",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-39821"
},
{
"category": "external",
"summary": "https://go.dev/cl/767220",
"url": "https://go.dev/cl/767220"
},
{
"category": "external",
"summary": "https://go.dev/issue/78760",
"url": "https://go.dev/issue/78760"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/iI-mYSI0lu8",
"url": "https://groups.google.com/g/golang-announce/c/iI-mYSI0lu8"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-5026",
"url": "https://pkg.go.dev/vuln/GO-2026-5026"
}
],
"release_date": "2026-05-22T15:01:21.462000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-07T08:06:49+00:00",
"details": "For more information about Assisted Installer, see the following documentation:\n\nhttps://docs.redhat.com/en/documentation/red_hat_advanced_cluster_management_for_kubernetes/2.11/html/clusters/cluster_mce_overview#cim-intro\n\nFor multicluster engine for Kubernetes, see the following documentation for\ndetails on how to install the images:\n\nhttps://docs.redhat.com/en/documentation/red_hat_advanced_cluster_management_for_kubernetes/2.11/html/clusters/cluster_mce_overview#mce-install-intro\n\nThis documentation will be available after the general availability release of Red Hat Advanced Cluster Management 2.11.",
"product_ids": [
"multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-service-9-rhel9@sha256:0dea3f88818977c2392172f46f00c2298360811d7f1d8a8878a947ee986f68e9_amd64",
"multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-service-9-rhel9@sha256:88a25f8f2cc5c935b8b6f7ffda5beac8d58e3370051cb704dcba9f7fc2c446c4_ppc64le",
"multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-service-9-rhel9@sha256:d9d180f6958fbaf250b99cb10d3c955dde07037c01fc39936b74e9cd2484d486_arm64",
"multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-service-9-rhel9@sha256:ea5ac20c57933b17e55ae6e629ec272f385c3c61d12d0cf91678b6bda12396c8_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36167"
},
{
"category": "workaround",
"details": "Upgrade to a fixed golang.org/x/net release that includes the idna correction, via updated golang or dependent package rebuilds.",
"product_ids": [
"multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-service-9-rhel9@sha256:0dea3f88818977c2392172f46f00c2298360811d7f1d8a8878a947ee986f68e9_amd64",
"multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-service-9-rhel9@sha256:88a25f8f2cc5c935b8b6f7ffda5beac8d58e3370051cb704dcba9f7fc2c446c4_ppc64le",
"multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-service-9-rhel9@sha256:d9d180f6958fbaf250b99cb10d3c955dde07037c01fc39936b74e9cd2484d486_arm64",
"multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-service-9-rhel9@sha256:ea5ac20c57933b17e55ae6e629ec272f385c3c61d12d0cf91678b6bda12396c8_s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 8.2,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-service-9-rhel9@sha256:0dea3f88818977c2392172f46f00c2298360811d7f1d8a8878a947ee986f68e9_amd64",
"multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-service-9-rhel9@sha256:88a25f8f2cc5c935b8b6f7ffda5beac8d58e3370051cb704dcba9f7fc2c446c4_ppc64le",
"multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-service-9-rhel9@sha256:d9d180f6958fbaf250b99cb10d3c955dde07037c01fc39936b74e9cd2484d486_arm64",
"multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-service-9-rhel9@sha256:ea5ac20c57933b17e55ae6e629ec272f385c3c61d12d0cf91678b6bda12396c8_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang.org/x/net/idna: golang: golang.org/x/net/idna: Privilege escalation via incorrect Punycode label processing"
},
{
"cve": "CVE-2026-39828",
"cwe": {
"id": "CWE-281",
"name": "Improper Preservation of Permissions"
},
"discovery_date": "2026-05-22T04:01:46.775641+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2480687"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in golang.org/x/crypto/ssh. A remote attacker could exploit this vulnerability when an SSH server authentication callback returned a PartialSuccessError with non-nil permissions. This flaw caused these permissions to be silently discarded, potentially bypassing certificate restrictions, such as a force-command, after a second authentication factor succeeded. This could lead to unauthorized command execution or access.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang.org/x/crypto/ssh: golang.org/x/crypto/ssh: Unauthorized command execution via discarded SSH permissions",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This is an Important security flaw in the `golang.org/x/crypto/ssh` library. When an SSH server utilizing this library is configured with specific authentication callbacks that return a `PartialSuccessError` with non-nil permissions, an attacker could bypass intended certificate restrictions, such as `force-command`. This bypass could lead to unauthorized command execution or access on affected Red Hat systems configured with multi-factor authentication and certificate-based access controls.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-service-9-rhel9@sha256:0dea3f88818977c2392172f46f00c2298360811d7f1d8a8878a947ee986f68e9_amd64",
"multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-service-9-rhel9@sha256:88a25f8f2cc5c935b8b6f7ffda5beac8d58e3370051cb704dcba9f7fc2c446c4_ppc64le",
"multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-service-9-rhel9@sha256:d9d180f6958fbaf250b99cb10d3c955dde07037c01fc39936b74e9cd2484d486_arm64",
"multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-service-9-rhel9@sha256:ea5ac20c57933b17e55ae6e629ec272f385c3c61d12d0cf91678b6bda12396c8_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-39828"
},
{
"category": "external",
"summary": "RHBZ#2480687",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2480687"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-39828",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-39828"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-39828",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-39828"
},
{
"category": "external",
"summary": "https://go.dev/cl/781621",
"url": "https://go.dev/cl/781621"
},
{
"category": "external",
"summary": "https://go.dev/issue/79562",
"url": "https://go.dev/issue/79562"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/a082jnz-LvI",
"url": "https://groups.google.com/g/golang-announce/c/a082jnz-LvI"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-5014",
"url": "https://pkg.go.dev/vuln/GO-2026-5014"
}
],
"release_date": "2026-05-22T02:31:26.883000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-07T08:06:49+00:00",
"details": "For more information about Assisted Installer, see the following documentation:\n\nhttps://docs.redhat.com/en/documentation/red_hat_advanced_cluster_management_for_kubernetes/2.11/html/clusters/cluster_mce_overview#cim-intro\n\nFor multicluster engine for Kubernetes, see the following documentation for\ndetails on how to install the images:\n\nhttps://docs.redhat.com/en/documentation/red_hat_advanced_cluster_management_for_kubernetes/2.11/html/clusters/cluster_mce_overview#mce-install-intro\n\nThis documentation will be available after the general availability release of Red Hat Advanced Cluster Management 2.11.",
"product_ids": [
"multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-service-9-rhel9@sha256:0dea3f88818977c2392172f46f00c2298360811d7f1d8a8878a947ee986f68e9_amd64",
"multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-service-9-rhel9@sha256:88a25f8f2cc5c935b8b6f7ffda5beac8d58e3370051cb704dcba9f7fc2c446c4_ppc64le",
"multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-service-9-rhel9@sha256:d9d180f6958fbaf250b99cb10d3c955dde07037c01fc39936b74e9cd2484d486_arm64",
"multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-service-9-rhel9@sha256:ea5ac20c57933b17e55ae6e629ec272f385c3c61d12d0cf91678b6bda12396c8_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36167"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability.",
"product_ids": [
"multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-service-9-rhel9@sha256:0dea3f88818977c2392172f46f00c2298360811d7f1d8a8878a947ee986f68e9_amd64",
"multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-service-9-rhel9@sha256:88a25f8f2cc5c935b8b6f7ffda5beac8d58e3370051cb704dcba9f7fc2c446c4_ppc64le",
"multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-service-9-rhel9@sha256:d9d180f6958fbaf250b99cb10d3c955dde07037c01fc39936b74e9cd2484d486_arm64",
"multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-service-9-rhel9@sha256:ea5ac20c57933b17e55ae6e629ec272f385c3c61d12d0cf91678b6bda12396c8_s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-service-9-rhel9@sha256:0dea3f88818977c2392172f46f00c2298360811d7f1d8a8878a947ee986f68e9_amd64",
"multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-service-9-rhel9@sha256:88a25f8f2cc5c935b8b6f7ffda5beac8d58e3370051cb704dcba9f7fc2c446c4_ppc64le",
"multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-service-9-rhel9@sha256:d9d180f6958fbaf250b99cb10d3c955dde07037c01fc39936b74e9cd2484d486_arm64",
"multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-service-9-rhel9@sha256:ea5ac20c57933b17e55ae6e629ec272f385c3c61d12d0cf91678b6bda12396c8_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang.org/x/crypto/ssh: golang.org/x/crypto/ssh: Unauthorized command execution via discarded SSH permissions"
},
{
"cve": "CVE-2026-53488",
"cwe": {
"id": "CWE-78",
"name": "Improper Neutralization of Special Elements used in an OS Command (\u0027OS Command Injection\u0027)"
},
"discovery_date": "2026-07-01T02:01:09.589815+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2495815"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in containerd, an open-source container runtime. The Container Runtime Interface (CRI) plugin, which manages container operations, fails to validate labels propagated from an image configuration to a container. This oversight could enable an attacker to execute arbitrary commands on the host system through a plugin that processes these unvalidated labels. The primary impact is host-root command execution, allowing unauthorized control over the underlying system.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "github.com/containerd/containerd: containerd: Host-root command execution via unvalidated image config labels in CRI plugin",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "A flaw was found in containerd where the CRI plugin propagates labels from an image configuration (LABEL instruction in a Dockerfile) to a container without validation. This may result in executing an arbitrary command on the host via a plugin that consumes container labels for operations, such as the restart-monitor binary:// logger. An attacker who can cause a crafted container image to be pulled and run can achieve host-level code execution.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-service-9-rhel9@sha256:0dea3f88818977c2392172f46f00c2298360811d7f1d8a8878a947ee986f68e9_amd64",
"multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-service-9-rhel9@sha256:88a25f8f2cc5c935b8b6f7ffda5beac8d58e3370051cb704dcba9f7fc2c446c4_ppc64le",
"multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-service-9-rhel9@sha256:d9d180f6958fbaf250b99cb10d3c955dde07037c01fc39936b74e9cd2484d486_arm64",
"multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-service-9-rhel9@sha256:ea5ac20c57933b17e55ae6e629ec272f385c3c61d12d0cf91678b6bda12396c8_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-53488"
},
{
"category": "external",
"summary": "RHBZ#2495815",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2495815"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-53488",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-53488"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-53488",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-53488"
},
{
"category": "external",
"summary": "https://github.com/containerd/containerd/security/advisories/GHSA-xhf5-7wjv-pqxp",
"url": "https://github.com/containerd/containerd/security/advisories/GHSA-xhf5-7wjv-pqxp"
}
],
"release_date": "2026-07-01T00:11:20.610000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-07T08:06:49+00:00",
"details": "For more information about Assisted Installer, see the following documentation:\n\nhttps://docs.redhat.com/en/documentation/red_hat_advanced_cluster_management_for_kubernetes/2.11/html/clusters/cluster_mce_overview#cim-intro\n\nFor multicluster engine for Kubernetes, see the following documentation for\ndetails on how to install the images:\n\nhttps://docs.redhat.com/en/documentation/red_hat_advanced_cluster_management_for_kubernetes/2.11/html/clusters/cluster_mce_overview#mce-install-intro\n\nThis documentation will be available after the general availability release of Red Hat Advanced Cluster Management 2.11.",
"product_ids": [
"multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-service-9-rhel9@sha256:0dea3f88818977c2392172f46f00c2298360811d7f1d8a8878a947ee986f68e9_amd64",
"multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-service-9-rhel9@sha256:88a25f8f2cc5c935b8b6f7ffda5beac8d58e3370051cb704dcba9f7fc2c446c4_ppc64le",
"multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-service-9-rhel9@sha256:d9d180f6958fbaf250b99cb10d3c955dde07037c01fc39936b74e9cd2484d486_arm64",
"multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-service-9-rhel9@sha256:ea5ac20c57933b17e55ae6e629ec272f385c3c61d12d0cf91678b6bda12396c8_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36167"
},
{
"category": "workaround",
"details": "Restrict container image pulls to trusted registries using admission policies or image signature verification. Where containerd is used as the container runtime, disable or restrict the binary:// logger URI scheme in the containerd configuration to prevent the label-to-logger attack path.",
"product_ids": [
"multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-service-9-rhel9@sha256:0dea3f88818977c2392172f46f00c2298360811d7f1d8a8878a947ee986f68e9_amd64",
"multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-service-9-rhel9@sha256:88a25f8f2cc5c935b8b6f7ffda5beac8d58e3370051cb704dcba9f7fc2c446c4_ppc64le",
"multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-service-9-rhel9@sha256:d9d180f6958fbaf250b99cb10d3c955dde07037c01fc39936b74e9cd2484d486_arm64",
"multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-service-9-rhel9@sha256:ea5ac20c57933b17e55ae6e629ec272f385c3c61d12d0cf91678b6bda12396c8_s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 8.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-service-9-rhel9@sha256:0dea3f88818977c2392172f46f00c2298360811d7f1d8a8878a947ee986f68e9_amd64",
"multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-service-9-rhel9@sha256:88a25f8f2cc5c935b8b6f7ffda5beac8d58e3370051cb704dcba9f7fc2c446c4_ppc64le",
"multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-service-9-rhel9@sha256:d9d180f6958fbaf250b99cb10d3c955dde07037c01fc39936b74e9cd2484d486_arm64",
"multicluster engine for Kubernetes 2.6:registry.redhat.io/multicluster-engine/assisted-service-9-rhel9@sha256:ea5ac20c57933b17e55ae6e629ec272f385c3c61d12d0cf91678b6bda12396c8_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "github.com/containerd/containerd: containerd: Host-root command execution via unvalidated image config labels in CRI plugin"
}
]
}
RHSA-2026:36207
Vulnerability from csaf_redhat - Published: 2026-07-07 11:09 - Updated: 2026-07-10 22:47A flaw was found in Red Hat Advanced Cluster Security for Kubernetes (RHACS). Central does not limit the depth of GraphQL queries served on the authenticated GraphQL API. An authenticated user with a valid API token can send deeply nested queries that cause excessive resource consumption in Central, resulting in a denial of service for the management plane.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:41fd9a9bc849f2c7c6439532bd537c34384b88be30b37629c5e271e0e4be7db4_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:55d7e178435c881a57a88aa6747cd6dedd3c3a512014d0509919dceef13b2946_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:5fef4993574a20a48a9f93e5f07967d13b7b26e8f7e83e2222ea5bbe1f500409_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:d785df86cfd97ff76e6d9426b247543faa91efaeb950f6b2e6b97f9e67624043_s390x | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:70dbc4b2fd02c6006d01fd31277c79e1152a04e678316853cc9650004a88c8f6_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:93e15662b963e2da7c1ca4ad5c47df2a49d6df5857c9cb44157c88a1eb14c99c_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:a67c68062eb3fe78067524fbef175c6f4dcb2876138fbafc17c8f5aef930ffb5_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:fd0e68ad1f3d790efc1a7637a63668df741a3195d86260291ca7ff85fe72bed2_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:063b28090fce858259efe584b09d7329b766ae461926e8d78f6fac1cf6738055_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:0964f3f379136662c8c3817b2a7d3b787808fab2b742cd7ea53d5f6c2248d1c9_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:bc05850aa1cefea5105198c9af51c64f2b255df1c1ccbb30f3c12a2d4c549f1b_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:f5a7d92dc9cb85b9a4d70d871ab1748e80435e9ddba74ba3818e92ec57f7cf78_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:1ba125d01f712a5fb85db400a0cd9d2240c36529d7d0c8e925acfd3c45845bec_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:2801fe77997c4325f9d1e154eae8c63a4fc808e2c31c773a60c47d63268b1bbc_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:2fe25a8ac9612f29a625969bb25d24938abb298e9a9e1e79fb3aa34c6a0e5f76_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:307402d2c8c46b74c1a855dad9fdd9f4013c057256513b4d1d58ac980ed8d2e0_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:91710d1c3f67e096b682cb6fa118c70d40bbbc36e3293aa3bea9890775d70236_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:b9d25811da46af4766d41e7543cc54a2820b2b9a4c190585e34166620cf070f7_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:fbd34cb7d74c9e699337157c4c26bc714b541e00645948cccedb5e7afb258003_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:93dc86f2358079474a9f5ce67e0e6430c2cdbe8a01155be8020165fce2e73f2b_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:a8c0e823eb62db8ff39de33d6401670e2f65cac8e640b64a9ffeae8ecc0c12bc_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:d50e48a12a217855c373b865df663f50355e4f76fba33de65e50bdc333112c4a_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:eab9c2e2d1ea614bf898c0cba75223f7960a61b7d2315815d6410e3c4f62d7f8_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:39470e0a40255d8d0bcfb6a3e82d77bfd57fdbff5452179f69eed7cff417a103_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:69531d80a6af41db1c28f54a8acfea85594fca34c754c8049e75b331e998a973_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:7a6b045c058be14ab95043bc3c6680bba5ab54a060ae45dbc7e6e8896fb093d8_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:ab57133805270163a3cb99e972b183e8613a6fbfcc943eae5b542d923d572244_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:1c03e0ce9e3b48c8c0f2a9c65dfe3d9b344cd82ac776dc210ef23b91745b0682_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:3783cfecf52a9c532c4e64ed93078581c8ca200efda661efc63ae1fac4391d57_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:58a181deb194766402e32ef43375e2e51208b229c8c97674bda5a6fcc768b8fd_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:973cb71559d8d346c3e0840a6865afda1de53017dcd9f35ee0a56a1606f3149b_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:276fbe3c102abbed5d2cc29b1dbf30456ab5d647fe7f157f18180cdd5ab0b431_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:5fb0bea0b4f43dce5201a986eb9bcd9aa9c2859e3d762f265e4d000a4c93474f_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:8efb0787d02e6700bee64b83c251ee11f4cdc4a04eb770cea3ba34f3d9ec94b4_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:bf53175b6a2e11cf7f5599b65fcb4e56e4037ad5b6254c9e4fa070080aea66fc_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:207a6c112b395d28579d8318d95bec18942834476574e07889ae734a4df1c4b5_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:242afe8097041307445f2e9f4b8d3d674aa4ff91c6ffe884ef170b356a09fe68_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:3e0bc79f2f14f0bf95c5c5f08a7838e8c3df3df5da52182f4807b844dda8638e_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:9823d42834e5698b968385a7ef7d5a2a2749c441d8122a895bf53d3681df6a7c_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:06be3bd07a7bf44fb19a93869f6286fbdc7d8b8e7b8507e3c8ce9f8af67574f9_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:175bde7c228af62b6f04799bc35a01d525a115d7decb73b2b5f90a3c8cf10a9c_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:4d800957aef55f44442be2a95bd85e3098587c6b0f7455b50264993cd4a2154b_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:7fb3f1bf0b641c2f30493fb8e10e90625f5fd30f77ed3b7dec2a98012d54bbab_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:0a23d3fe6f4f54358bef552a62b3d098a97d39b4f1c0b0c0c6d3588c85276417_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:b26fb5031c85204e1b9174c49452146d4528560de554b70e2e97eebccd610fb8_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:e7d01fcd2995b921946a7842faec251ff4434bb9cda3b77e855339f2d9241471_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:ee31bd693543f37461982b1bbcdb783e438c3d1021875829bd24974a1d2c0ea6_amd64 | — |
Workaround
|
A flaw was found in golang.org/x/net/html. A remote attacker could exploit this vulnerability by providing specially crafted HTML. When this arbitrary HTML is parsed and rendered, it can result in an unexpected HTML tree, bypassing input sanitization. This can be leveraged to execute Cross-Site Scripting (XSS) attacks, potentially leading to arbitrary code execution in applications that use the affected component.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:41fd9a9bc849f2c7c6439532bd537c34384b88be30b37629c5e271e0e4be7db4_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:55d7e178435c881a57a88aa6747cd6dedd3c3a512014d0509919dceef13b2946_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:5fef4993574a20a48a9f93e5f07967d13b7b26e8f7e83e2222ea5bbe1f500409_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:d785df86cfd97ff76e6d9426b247543faa91efaeb950f6b2e6b97f9e67624043_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:307402d2c8c46b74c1a855dad9fdd9f4013c057256513b4d1d58ac980ed8d2e0_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:91710d1c3f67e096b682cb6fa118c70d40bbbc36e3293aa3bea9890775d70236_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:b9d25811da46af4766d41e7543cc54a2820b2b9a4c190585e34166620cf070f7_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:fbd34cb7d74c9e699337157c4c26bc714b541e00645948cccedb5e7afb258003_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:93dc86f2358079474a9f5ce67e0e6430c2cdbe8a01155be8020165fce2e73f2b_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:a8c0e823eb62db8ff39de33d6401670e2f65cac8e640b64a9ffeae8ecc0c12bc_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:d50e48a12a217855c373b865df663f50355e4f76fba33de65e50bdc333112c4a_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:eab9c2e2d1ea614bf898c0cba75223f7960a61b7d2315815d6410e3c4f62d7f8_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:276fbe3c102abbed5d2cc29b1dbf30456ab5d647fe7f157f18180cdd5ab0b431_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:5fb0bea0b4f43dce5201a986eb9bcd9aa9c2859e3d762f265e4d000a4c93474f_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:8efb0787d02e6700bee64b83c251ee11f4cdc4a04eb770cea3ba34f3d9ec94b4_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:bf53175b6a2e11cf7f5599b65fcb4e56e4037ad5b6254c9e4fa070080aea66fc_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:207a6c112b395d28579d8318d95bec18942834476574e07889ae734a4df1c4b5_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:242afe8097041307445f2e9f4b8d3d674aa4ff91c6ffe884ef170b356a09fe68_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:3e0bc79f2f14f0bf95c5c5f08a7838e8c3df3df5da52182f4807b844dda8638e_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:9823d42834e5698b968385a7ef7d5a2a2749c441d8122a895bf53d3681df6a7c_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:0a23d3fe6f4f54358bef552a62b3d098a97d39b4f1c0b0c0c6d3588c85276417_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:b26fb5031c85204e1b9174c49452146d4528560de554b70e2e97eebccd610fb8_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:e7d01fcd2995b921946a7842faec251ff4434bb9cda3b77e855339f2d9241471_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:ee31bd693543f37461982b1bbcdb783e438c3d1021875829bd24974a1d2c0ea6_amd64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:70dbc4b2fd02c6006d01fd31277c79e1152a04e678316853cc9650004a88c8f6_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:93e15662b963e2da7c1ca4ad5c47df2a49d6df5857c9cb44157c88a1eb14c99c_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:a67c68062eb3fe78067524fbef175c6f4dcb2876138fbafc17c8f5aef930ffb5_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:fd0e68ad1f3d790efc1a7637a63668df741a3195d86260291ca7ff85fe72bed2_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:063b28090fce858259efe584b09d7329b766ae461926e8d78f6fac1cf6738055_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:0964f3f379136662c8c3817b2a7d3b787808fab2b742cd7ea53d5f6c2248d1c9_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:bc05850aa1cefea5105198c9af51c64f2b255df1c1ccbb30f3c12a2d4c549f1b_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:f5a7d92dc9cb85b9a4d70d871ab1748e80435e9ddba74ba3818e92ec57f7cf78_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:1ba125d01f712a5fb85db400a0cd9d2240c36529d7d0c8e925acfd3c45845bec_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:2801fe77997c4325f9d1e154eae8c63a4fc808e2c31c773a60c47d63268b1bbc_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:2fe25a8ac9612f29a625969bb25d24938abb298e9a9e1e79fb3aa34c6a0e5f76_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:39470e0a40255d8d0bcfb6a3e82d77bfd57fdbff5452179f69eed7cff417a103_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:69531d80a6af41db1c28f54a8acfea85594fca34c754c8049e75b331e998a973_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:7a6b045c058be14ab95043bc3c6680bba5ab54a060ae45dbc7e6e8896fb093d8_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:ab57133805270163a3cb99e972b183e8613a6fbfcc943eae5b542d923d572244_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:1c03e0ce9e3b48c8c0f2a9c65dfe3d9b344cd82ac776dc210ef23b91745b0682_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:3783cfecf52a9c532c4e64ed93078581c8ca200efda661efc63ae1fac4391d57_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:58a181deb194766402e32ef43375e2e51208b229c8c97674bda5a6fcc768b8fd_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:973cb71559d8d346c3e0840a6865afda1de53017dcd9f35ee0a56a1606f3149b_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:06be3bd07a7bf44fb19a93869f6286fbdc7d8b8e7b8507e3c8ce9f8af67574f9_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:175bde7c228af62b6f04799bc35a01d525a115d7decb73b2b5f90a3c8cf10a9c_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:4d800957aef55f44442be2a95bd85e3098587c6b0f7455b50264993cd4a2154b_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:7fb3f1bf0b641c2f30493fb8e10e90625f5fd30f77ed3b7dec2a98012d54bbab_s390x | — |
Workaround
|
A flaw was found in golang.org/x/net/html. When arbitrary HTML is parsed and then rendered, it can result in an unexpected HTML tree. This allows an attacker to bypass HTML sanitization mechanisms, leading to Cross-Site Scripting (XSS) attacks in applications. Such attacks can result in information disclosure or arbitrary code execution.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:41fd9a9bc849f2c7c6439532bd537c34384b88be30b37629c5e271e0e4be7db4_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:55d7e178435c881a57a88aa6747cd6dedd3c3a512014d0509919dceef13b2946_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:5fef4993574a20a48a9f93e5f07967d13b7b26e8f7e83e2222ea5bbe1f500409_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:d785df86cfd97ff76e6d9426b247543faa91efaeb950f6b2e6b97f9e67624043_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:2fe25a8ac9612f29a625969bb25d24938abb298e9a9e1e79fb3aa34c6a0e5f76_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:307402d2c8c46b74c1a855dad9fdd9f4013c057256513b4d1d58ac980ed8d2e0_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:91710d1c3f67e096b682cb6fa118c70d40bbbc36e3293aa3bea9890775d70236_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:b9d25811da46af4766d41e7543cc54a2820b2b9a4c190585e34166620cf070f7_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:fbd34cb7d74c9e699337157c4c26bc714b541e00645948cccedb5e7afb258003_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:93dc86f2358079474a9f5ce67e0e6430c2cdbe8a01155be8020165fce2e73f2b_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:a8c0e823eb62db8ff39de33d6401670e2f65cac8e640b64a9ffeae8ecc0c12bc_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:d50e48a12a217855c373b865df663f50355e4f76fba33de65e50bdc333112c4a_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:eab9c2e2d1ea614bf898c0cba75223f7960a61b7d2315815d6410e3c4f62d7f8_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:276fbe3c102abbed5d2cc29b1dbf30456ab5d647fe7f157f18180cdd5ab0b431_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:5fb0bea0b4f43dce5201a986eb9bcd9aa9c2859e3d762f265e4d000a4c93474f_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:8efb0787d02e6700bee64b83c251ee11f4cdc4a04eb770cea3ba34f3d9ec94b4_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:bf53175b6a2e11cf7f5599b65fcb4e56e4037ad5b6254c9e4fa070080aea66fc_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:207a6c112b395d28579d8318d95bec18942834476574e07889ae734a4df1c4b5_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:242afe8097041307445f2e9f4b8d3d674aa4ff91c6ffe884ef170b356a09fe68_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:3e0bc79f2f14f0bf95c5c5f08a7838e8c3df3df5da52182f4807b844dda8638e_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:9823d42834e5698b968385a7ef7d5a2a2749c441d8122a895bf53d3681df6a7c_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:0a23d3fe6f4f54358bef552a62b3d098a97d39b4f1c0b0c0c6d3588c85276417_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:b26fb5031c85204e1b9174c49452146d4528560de554b70e2e97eebccd610fb8_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:e7d01fcd2995b921946a7842faec251ff4434bb9cda3b77e855339f2d9241471_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:ee31bd693543f37461982b1bbcdb783e438c3d1021875829bd24974a1d2c0ea6_amd64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:70dbc4b2fd02c6006d01fd31277c79e1152a04e678316853cc9650004a88c8f6_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:93e15662b963e2da7c1ca4ad5c47df2a49d6df5857c9cb44157c88a1eb14c99c_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:a67c68062eb3fe78067524fbef175c6f4dcb2876138fbafc17c8f5aef930ffb5_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:fd0e68ad1f3d790efc1a7637a63668df741a3195d86260291ca7ff85fe72bed2_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:063b28090fce858259efe584b09d7329b766ae461926e8d78f6fac1cf6738055_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:0964f3f379136662c8c3817b2a7d3b787808fab2b742cd7ea53d5f6c2248d1c9_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:bc05850aa1cefea5105198c9af51c64f2b255df1c1ccbb30f3c12a2d4c549f1b_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:f5a7d92dc9cb85b9a4d70d871ab1748e80435e9ddba74ba3818e92ec57f7cf78_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:1ba125d01f712a5fb85db400a0cd9d2240c36529d7d0c8e925acfd3c45845bec_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:2801fe77997c4325f9d1e154eae8c63a4fc808e2c31c773a60c47d63268b1bbc_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:39470e0a40255d8d0bcfb6a3e82d77bfd57fdbff5452179f69eed7cff417a103_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:69531d80a6af41db1c28f54a8acfea85594fca34c754c8049e75b331e998a973_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:7a6b045c058be14ab95043bc3c6680bba5ab54a060ae45dbc7e6e8896fb093d8_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:ab57133805270163a3cb99e972b183e8613a6fbfcc943eae5b542d923d572244_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:1c03e0ce9e3b48c8c0f2a9c65dfe3d9b344cd82ac776dc210ef23b91745b0682_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:3783cfecf52a9c532c4e64ed93078581c8ca200efda661efc63ae1fac4391d57_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:58a181deb194766402e32ef43375e2e51208b229c8c97674bda5a6fcc768b8fd_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:973cb71559d8d346c3e0840a6865afda1de53017dcd9f35ee0a56a1606f3149b_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:06be3bd07a7bf44fb19a93869f6286fbdc7d8b8e7b8507e3c8ce9f8af67574f9_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:175bde7c228af62b6f04799bc35a01d525a115d7decb73b2b5f90a3c8cf10a9c_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:4d800957aef55f44442be2a95bd85e3098587c6b0f7455b50264993cd4a2154b_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:7fb3f1bf0b641c2f30493fb8e10e90625f5fd30f77ed3b7dec2a98012d54bbab_s390x | — |
Workaround
|
A flaw was found in the `net` package of Go (golang), specifically when using the `LookupCNAME` function with the `cgo` DNS resolver. A remote attacker could exploit this by providing a very long Canonical Name (CNAME) response. This can trigger a double-free of C memory, leading to a crash and a Denial of Service (DoS) for the affected application.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:41fd9a9bc849f2c7c6439532bd537c34384b88be30b37629c5e271e0e4be7db4_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:55d7e178435c881a57a88aa6747cd6dedd3c3a512014d0509919dceef13b2946_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:5fef4993574a20a48a9f93e5f07967d13b7b26e8f7e83e2222ea5bbe1f500409_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:d785df86cfd97ff76e6d9426b247543faa91efaeb950f6b2e6b97f9e67624043_s390x | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:70dbc4b2fd02c6006d01fd31277c79e1152a04e678316853cc9650004a88c8f6_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:93e15662b963e2da7c1ca4ad5c47df2a49d6df5857c9cb44157c88a1eb14c99c_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:a67c68062eb3fe78067524fbef175c6f4dcb2876138fbafc17c8f5aef930ffb5_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:fd0e68ad1f3d790efc1a7637a63668df741a3195d86260291ca7ff85fe72bed2_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:063b28090fce858259efe584b09d7329b766ae461926e8d78f6fac1cf6738055_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:0964f3f379136662c8c3817b2a7d3b787808fab2b742cd7ea53d5f6c2248d1c9_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:bc05850aa1cefea5105198c9af51c64f2b255df1c1ccbb30f3c12a2d4c549f1b_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:f5a7d92dc9cb85b9a4d70d871ab1748e80435e9ddba74ba3818e92ec57f7cf78_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:1ba125d01f712a5fb85db400a0cd9d2240c36529d7d0c8e925acfd3c45845bec_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:2801fe77997c4325f9d1e154eae8c63a4fc808e2c31c773a60c47d63268b1bbc_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:2fe25a8ac9612f29a625969bb25d24938abb298e9a9e1e79fb3aa34c6a0e5f76_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:307402d2c8c46b74c1a855dad9fdd9f4013c057256513b4d1d58ac980ed8d2e0_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:91710d1c3f67e096b682cb6fa118c70d40bbbc36e3293aa3bea9890775d70236_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:b9d25811da46af4766d41e7543cc54a2820b2b9a4c190585e34166620cf070f7_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:fbd34cb7d74c9e699337157c4c26bc714b541e00645948cccedb5e7afb258003_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:93dc86f2358079474a9f5ce67e0e6430c2cdbe8a01155be8020165fce2e73f2b_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:a8c0e823eb62db8ff39de33d6401670e2f65cac8e640b64a9ffeae8ecc0c12bc_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:d50e48a12a217855c373b865df663f50355e4f76fba33de65e50bdc333112c4a_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:eab9c2e2d1ea614bf898c0cba75223f7960a61b7d2315815d6410e3c4f62d7f8_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:39470e0a40255d8d0bcfb6a3e82d77bfd57fdbff5452179f69eed7cff417a103_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:69531d80a6af41db1c28f54a8acfea85594fca34c754c8049e75b331e998a973_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:7a6b045c058be14ab95043bc3c6680bba5ab54a060ae45dbc7e6e8896fb093d8_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:ab57133805270163a3cb99e972b183e8613a6fbfcc943eae5b542d923d572244_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:1c03e0ce9e3b48c8c0f2a9c65dfe3d9b344cd82ac776dc210ef23b91745b0682_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:3783cfecf52a9c532c4e64ed93078581c8ca200efda661efc63ae1fac4391d57_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:58a181deb194766402e32ef43375e2e51208b229c8c97674bda5a6fcc768b8fd_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:973cb71559d8d346c3e0840a6865afda1de53017dcd9f35ee0a56a1606f3149b_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:276fbe3c102abbed5d2cc29b1dbf30456ab5d647fe7f157f18180cdd5ab0b431_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:5fb0bea0b4f43dce5201a986eb9bcd9aa9c2859e3d762f265e4d000a4c93474f_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:8efb0787d02e6700bee64b83c251ee11f4cdc4a04eb770cea3ba34f3d9ec94b4_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:bf53175b6a2e11cf7f5599b65fcb4e56e4037ad5b6254c9e4fa070080aea66fc_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:207a6c112b395d28579d8318d95bec18942834476574e07889ae734a4df1c4b5_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:242afe8097041307445f2e9f4b8d3d674aa4ff91c6ffe884ef170b356a09fe68_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:3e0bc79f2f14f0bf95c5c5f08a7838e8c3df3df5da52182f4807b844dda8638e_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:9823d42834e5698b968385a7ef7d5a2a2749c441d8122a895bf53d3681df6a7c_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:06be3bd07a7bf44fb19a93869f6286fbdc7d8b8e7b8507e3c8ce9f8af67574f9_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:175bde7c228af62b6f04799bc35a01d525a115d7decb73b2b5f90a3c8cf10a9c_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:4d800957aef55f44442be2a95bd85e3098587c6b0f7455b50264993cd4a2154b_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:7fb3f1bf0b641c2f30493fb8e10e90625f5fd30f77ed3b7dec2a98012d54bbab_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:0a23d3fe6f4f54358bef552a62b3d098a97d39b4f1c0b0c0c6d3588c85276417_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:b26fb5031c85204e1b9174c49452146d4528560de554b70e2e97eebccd610fb8_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:e7d01fcd2995b921946a7842faec251ff4434bb9cda3b77e855339f2d9241471_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:ee31bd693543f37461982b1bbcdb783e438c3d1021875829bd24974a1d2c0ea6_amd64 | — |
Workaround
|
A flaw was found in golang.org/x/net/idna. ToASCII and ToUnicode incorrectly accept Punycode-encoded labels that decode to an ASCII-only hostname (for example, xn--example-.com returns example.com instead of an error). Applications that validate the ASCII form then convert to Unicode may grant access to a restricted hostname the ASCII check would have rejected.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:41fd9a9bc849f2c7c6439532bd537c34384b88be30b37629c5e271e0e4be7db4_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:55d7e178435c881a57a88aa6747cd6dedd3c3a512014d0509919dceef13b2946_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:5fef4993574a20a48a9f93e5f07967d13b7b26e8f7e83e2222ea5bbe1f500409_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:d785df86cfd97ff76e6d9426b247543faa91efaeb950f6b2e6b97f9e67624043_s390x | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:70dbc4b2fd02c6006d01fd31277c79e1152a04e678316853cc9650004a88c8f6_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:93e15662b963e2da7c1ca4ad5c47df2a49d6df5857c9cb44157c88a1eb14c99c_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:a67c68062eb3fe78067524fbef175c6f4dcb2876138fbafc17c8f5aef930ffb5_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:fd0e68ad1f3d790efc1a7637a63668df741a3195d86260291ca7ff85fe72bed2_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:063b28090fce858259efe584b09d7329b766ae461926e8d78f6fac1cf6738055_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:0964f3f379136662c8c3817b2a7d3b787808fab2b742cd7ea53d5f6c2248d1c9_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:bc05850aa1cefea5105198c9af51c64f2b255df1c1ccbb30f3c12a2d4c549f1b_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:f5a7d92dc9cb85b9a4d70d871ab1748e80435e9ddba74ba3818e92ec57f7cf78_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:1ba125d01f712a5fb85db400a0cd9d2240c36529d7d0c8e925acfd3c45845bec_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:2801fe77997c4325f9d1e154eae8c63a4fc808e2c31c773a60c47d63268b1bbc_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:2fe25a8ac9612f29a625969bb25d24938abb298e9a9e1e79fb3aa34c6a0e5f76_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:307402d2c8c46b74c1a855dad9fdd9f4013c057256513b4d1d58ac980ed8d2e0_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:91710d1c3f67e096b682cb6fa118c70d40bbbc36e3293aa3bea9890775d70236_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:b9d25811da46af4766d41e7543cc54a2820b2b9a4c190585e34166620cf070f7_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:fbd34cb7d74c9e699337157c4c26bc714b541e00645948cccedb5e7afb258003_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:93dc86f2358079474a9f5ce67e0e6430c2cdbe8a01155be8020165fce2e73f2b_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:a8c0e823eb62db8ff39de33d6401670e2f65cac8e640b64a9ffeae8ecc0c12bc_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:d50e48a12a217855c373b865df663f50355e4f76fba33de65e50bdc333112c4a_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:eab9c2e2d1ea614bf898c0cba75223f7960a61b7d2315815d6410e3c4f62d7f8_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:39470e0a40255d8d0bcfb6a3e82d77bfd57fdbff5452179f69eed7cff417a103_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:69531d80a6af41db1c28f54a8acfea85594fca34c754c8049e75b331e998a973_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:7a6b045c058be14ab95043bc3c6680bba5ab54a060ae45dbc7e6e8896fb093d8_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:ab57133805270163a3cb99e972b183e8613a6fbfcc943eae5b542d923d572244_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:1c03e0ce9e3b48c8c0f2a9c65dfe3d9b344cd82ac776dc210ef23b91745b0682_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:3783cfecf52a9c532c4e64ed93078581c8ca200efda661efc63ae1fac4391d57_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:58a181deb194766402e32ef43375e2e51208b229c8c97674bda5a6fcc768b8fd_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:973cb71559d8d346c3e0840a6865afda1de53017dcd9f35ee0a56a1606f3149b_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:276fbe3c102abbed5d2cc29b1dbf30456ab5d647fe7f157f18180cdd5ab0b431_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:5fb0bea0b4f43dce5201a986eb9bcd9aa9c2859e3d762f265e4d000a4c93474f_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:8efb0787d02e6700bee64b83c251ee11f4cdc4a04eb770cea3ba34f3d9ec94b4_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:bf53175b6a2e11cf7f5599b65fcb4e56e4037ad5b6254c9e4fa070080aea66fc_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:207a6c112b395d28579d8318d95bec18942834476574e07889ae734a4df1c4b5_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:242afe8097041307445f2e9f4b8d3d674aa4ff91c6ffe884ef170b356a09fe68_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:3e0bc79f2f14f0bf95c5c5f08a7838e8c3df3df5da52182f4807b844dda8638e_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:9823d42834e5698b968385a7ef7d5a2a2749c441d8122a895bf53d3681df6a7c_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:06be3bd07a7bf44fb19a93869f6286fbdc7d8b8e7b8507e3c8ce9f8af67574f9_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:175bde7c228af62b6f04799bc35a01d525a115d7decb73b2b5f90a3c8cf10a9c_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:4d800957aef55f44442be2a95bd85e3098587c6b0f7455b50264993cd4a2154b_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:7fb3f1bf0b641c2f30493fb8e10e90625f5fd30f77ed3b7dec2a98012d54bbab_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:0a23d3fe6f4f54358bef552a62b3d098a97d39b4f1c0b0c0c6d3588c85276417_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:b26fb5031c85204e1b9174c49452146d4528560de554b70e2e97eebccd610fb8_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:e7d01fcd2995b921946a7842faec251ff4434bb9cda3b77e855339f2d9241471_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:ee31bd693543f37461982b1bbcdb783e438c3d1021875829bd24974a1d2c0ea6_amd64 | — |
Workaround
|
A flaw was found in golang.org/x/crypto/ssh. A remote attacker could exploit this vulnerability when an SSH server authentication callback returned a PartialSuccessError with non-nil permissions. This flaw caused these permissions to be silently discarded, potentially bypassing certificate restrictions, such as a force-command, after a second authentication factor succeeded. This could lead to unauthorized command execution or access.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:307402d2c8c46b74c1a855dad9fdd9f4013c057256513b4d1d58ac980ed8d2e0_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:91710d1c3f67e096b682cb6fa118c70d40bbbc36e3293aa3bea9890775d70236_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:b9d25811da46af4766d41e7543cc54a2820b2b9a4c190585e34166620cf070f7_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:fbd34cb7d74c9e699337157c4c26bc714b541e00645948cccedb5e7afb258003_s390x | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:70dbc4b2fd02c6006d01fd31277c79e1152a04e678316853cc9650004a88c8f6_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:93e15662b963e2da7c1ca4ad5c47df2a49d6df5857c9cb44157c88a1eb14c99c_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:a67c68062eb3fe78067524fbef175c6f4dcb2876138fbafc17c8f5aef930ffb5_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:fd0e68ad1f3d790efc1a7637a63668df741a3195d86260291ca7ff85fe72bed2_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:063b28090fce858259efe584b09d7329b766ae461926e8d78f6fac1cf6738055_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:0964f3f379136662c8c3817b2a7d3b787808fab2b742cd7ea53d5f6c2248d1c9_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:bc05850aa1cefea5105198c9af51c64f2b255df1c1ccbb30f3c12a2d4c549f1b_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:f5a7d92dc9cb85b9a4d70d871ab1748e80435e9ddba74ba3818e92ec57f7cf78_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:1ba125d01f712a5fb85db400a0cd9d2240c36529d7d0c8e925acfd3c45845bec_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:2801fe77997c4325f9d1e154eae8c63a4fc808e2c31c773a60c47d63268b1bbc_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:41fd9a9bc849f2c7c6439532bd537c34384b88be30b37629c5e271e0e4be7db4_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:55d7e178435c881a57a88aa6747cd6dedd3c3a512014d0509919dceef13b2946_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:5fef4993574a20a48a9f93e5f07967d13b7b26e8f7e83e2222ea5bbe1f500409_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:d785df86cfd97ff76e6d9426b247543faa91efaeb950f6b2e6b97f9e67624043_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:2fe25a8ac9612f29a625969bb25d24938abb298e9a9e1e79fb3aa34c6a0e5f76_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:93dc86f2358079474a9f5ce67e0e6430c2cdbe8a01155be8020165fce2e73f2b_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:a8c0e823eb62db8ff39de33d6401670e2f65cac8e640b64a9ffeae8ecc0c12bc_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:d50e48a12a217855c373b865df663f50355e4f76fba33de65e50bdc333112c4a_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:eab9c2e2d1ea614bf898c0cba75223f7960a61b7d2315815d6410e3c4f62d7f8_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:39470e0a40255d8d0bcfb6a3e82d77bfd57fdbff5452179f69eed7cff417a103_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:69531d80a6af41db1c28f54a8acfea85594fca34c754c8049e75b331e998a973_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:7a6b045c058be14ab95043bc3c6680bba5ab54a060ae45dbc7e6e8896fb093d8_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:ab57133805270163a3cb99e972b183e8613a6fbfcc943eae5b542d923d572244_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:1c03e0ce9e3b48c8c0f2a9c65dfe3d9b344cd82ac776dc210ef23b91745b0682_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:3783cfecf52a9c532c4e64ed93078581c8ca200efda661efc63ae1fac4391d57_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:58a181deb194766402e32ef43375e2e51208b229c8c97674bda5a6fcc768b8fd_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:973cb71559d8d346c3e0840a6865afda1de53017dcd9f35ee0a56a1606f3149b_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:276fbe3c102abbed5d2cc29b1dbf30456ab5d647fe7f157f18180cdd5ab0b431_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:5fb0bea0b4f43dce5201a986eb9bcd9aa9c2859e3d762f265e4d000a4c93474f_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:8efb0787d02e6700bee64b83c251ee11f4cdc4a04eb770cea3ba34f3d9ec94b4_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:bf53175b6a2e11cf7f5599b65fcb4e56e4037ad5b6254c9e4fa070080aea66fc_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:207a6c112b395d28579d8318d95bec18942834476574e07889ae734a4df1c4b5_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:242afe8097041307445f2e9f4b8d3d674aa4ff91c6ffe884ef170b356a09fe68_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:3e0bc79f2f14f0bf95c5c5f08a7838e8c3df3df5da52182f4807b844dda8638e_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:9823d42834e5698b968385a7ef7d5a2a2749c441d8122a895bf53d3681df6a7c_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:06be3bd07a7bf44fb19a93869f6286fbdc7d8b8e7b8507e3c8ce9f8af67574f9_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:175bde7c228af62b6f04799bc35a01d525a115d7decb73b2b5f90a3c8cf10a9c_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:4d800957aef55f44442be2a95bd85e3098587c6b0f7455b50264993cd4a2154b_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:7fb3f1bf0b641c2f30493fb8e10e90625f5fd30f77ed3b7dec2a98012d54bbab_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:0a23d3fe6f4f54358bef552a62b3d098a97d39b4f1c0b0c0c6d3588c85276417_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:b26fb5031c85204e1b9174c49452146d4528560de554b70e2e97eebccd610fb8_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:e7d01fcd2995b921946a7842faec251ff4434bb9cda3b77e855339f2d9241471_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:ee31bd693543f37461982b1bbcdb783e438c3d1021875829bd24974a1d2c0ea6_amd64 | — |
Workaround
|
A flaw was found in golang.org/x/crypto/ssh. The RSA and DSA public key parsers in the affected component did not enforce size limits on key parameters. This vulnerability allows an unauthenticated client to provide a crafted public key with an excessively large modulus or DSA parameter during public key authentication. Successful exploitation could lead to a denial of service (DoS) due to prolonged CPU consumption during signature verification.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:307402d2c8c46b74c1a855dad9fdd9f4013c057256513b4d1d58ac980ed8d2e0_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:91710d1c3f67e096b682cb6fa118c70d40bbbc36e3293aa3bea9890775d70236_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:b9d25811da46af4766d41e7543cc54a2820b2b9a4c190585e34166620cf070f7_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:fbd34cb7d74c9e699337157c4c26bc714b541e00645948cccedb5e7afb258003_s390x | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:70dbc4b2fd02c6006d01fd31277c79e1152a04e678316853cc9650004a88c8f6_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:93e15662b963e2da7c1ca4ad5c47df2a49d6df5857c9cb44157c88a1eb14c99c_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:a67c68062eb3fe78067524fbef175c6f4dcb2876138fbafc17c8f5aef930ffb5_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:fd0e68ad1f3d790efc1a7637a63668df741a3195d86260291ca7ff85fe72bed2_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:063b28090fce858259efe584b09d7329b766ae461926e8d78f6fac1cf6738055_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:0964f3f379136662c8c3817b2a7d3b787808fab2b742cd7ea53d5f6c2248d1c9_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:bc05850aa1cefea5105198c9af51c64f2b255df1c1ccbb30f3c12a2d4c549f1b_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:f5a7d92dc9cb85b9a4d70d871ab1748e80435e9ddba74ba3818e92ec57f7cf78_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:1ba125d01f712a5fb85db400a0cd9d2240c36529d7d0c8e925acfd3c45845bec_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:2801fe77997c4325f9d1e154eae8c63a4fc808e2c31c773a60c47d63268b1bbc_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:41fd9a9bc849f2c7c6439532bd537c34384b88be30b37629c5e271e0e4be7db4_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:55d7e178435c881a57a88aa6747cd6dedd3c3a512014d0509919dceef13b2946_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:5fef4993574a20a48a9f93e5f07967d13b7b26e8f7e83e2222ea5bbe1f500409_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:d785df86cfd97ff76e6d9426b247543faa91efaeb950f6b2e6b97f9e67624043_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:2fe25a8ac9612f29a625969bb25d24938abb298e9a9e1e79fb3aa34c6a0e5f76_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:93dc86f2358079474a9f5ce67e0e6430c2cdbe8a01155be8020165fce2e73f2b_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:a8c0e823eb62db8ff39de33d6401670e2f65cac8e640b64a9ffeae8ecc0c12bc_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:d50e48a12a217855c373b865df663f50355e4f76fba33de65e50bdc333112c4a_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:eab9c2e2d1ea614bf898c0cba75223f7960a61b7d2315815d6410e3c4f62d7f8_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:39470e0a40255d8d0bcfb6a3e82d77bfd57fdbff5452179f69eed7cff417a103_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:69531d80a6af41db1c28f54a8acfea85594fca34c754c8049e75b331e998a973_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:7a6b045c058be14ab95043bc3c6680bba5ab54a060ae45dbc7e6e8896fb093d8_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:ab57133805270163a3cb99e972b183e8613a6fbfcc943eae5b542d923d572244_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:1c03e0ce9e3b48c8c0f2a9c65dfe3d9b344cd82ac776dc210ef23b91745b0682_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:3783cfecf52a9c532c4e64ed93078581c8ca200efda661efc63ae1fac4391d57_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:58a181deb194766402e32ef43375e2e51208b229c8c97674bda5a6fcc768b8fd_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:973cb71559d8d346c3e0840a6865afda1de53017dcd9f35ee0a56a1606f3149b_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:276fbe3c102abbed5d2cc29b1dbf30456ab5d647fe7f157f18180cdd5ab0b431_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:5fb0bea0b4f43dce5201a986eb9bcd9aa9c2859e3d762f265e4d000a4c93474f_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:8efb0787d02e6700bee64b83c251ee11f4cdc4a04eb770cea3ba34f3d9ec94b4_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:bf53175b6a2e11cf7f5599b65fcb4e56e4037ad5b6254c9e4fa070080aea66fc_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:207a6c112b395d28579d8318d95bec18942834476574e07889ae734a4df1c4b5_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:242afe8097041307445f2e9f4b8d3d674aa4ff91c6ffe884ef170b356a09fe68_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:3e0bc79f2f14f0bf95c5c5f08a7838e8c3df3df5da52182f4807b844dda8638e_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:9823d42834e5698b968385a7ef7d5a2a2749c441d8122a895bf53d3681df6a7c_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:06be3bd07a7bf44fb19a93869f6286fbdc7d8b8e7b8507e3c8ce9f8af67574f9_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:175bde7c228af62b6f04799bc35a01d525a115d7decb73b2b5f90a3c8cf10a9c_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:4d800957aef55f44442be2a95bd85e3098587c6b0f7455b50264993cd4a2154b_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:7fb3f1bf0b641c2f30493fb8e10e90625f5fd30f77ed3b7dec2a98012d54bbab_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:0a23d3fe6f4f54358bef552a62b3d098a97d39b4f1c0b0c0c6d3588c85276417_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:b26fb5031c85204e1b9174c49452146d4528560de554b70e2e97eebccd610fb8_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:e7d01fcd2995b921946a7842faec251ff4434bb9cda3b77e855339f2d9241471_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:ee31bd693543f37461982b1bbcdb783e438c3d1021875829bd24974a1d2c0ea6_amd64 | — |
Workaround
|
A flaw was found in golang.org/x/crypto/ssh. A remote malicious SSH peer can exploit this by sending unsolicited global request responses, which fills an internal buffer and blocks the connection's read loop. This prevents the associated resources from being released, leading to a resource leak per connection. The consequence is a Denial of Service (DoS) for the affected system.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:307402d2c8c46b74c1a855dad9fdd9f4013c057256513b4d1d58ac980ed8d2e0_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:91710d1c3f67e096b682cb6fa118c70d40bbbc36e3293aa3bea9890775d70236_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:b9d25811da46af4766d41e7543cc54a2820b2b9a4c190585e34166620cf070f7_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:fbd34cb7d74c9e699337157c4c26bc714b541e00645948cccedb5e7afb258003_s390x | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:70dbc4b2fd02c6006d01fd31277c79e1152a04e678316853cc9650004a88c8f6_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:93e15662b963e2da7c1ca4ad5c47df2a49d6df5857c9cb44157c88a1eb14c99c_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:a67c68062eb3fe78067524fbef175c6f4dcb2876138fbafc17c8f5aef930ffb5_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:fd0e68ad1f3d790efc1a7637a63668df741a3195d86260291ca7ff85fe72bed2_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:063b28090fce858259efe584b09d7329b766ae461926e8d78f6fac1cf6738055_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:0964f3f379136662c8c3817b2a7d3b787808fab2b742cd7ea53d5f6c2248d1c9_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:bc05850aa1cefea5105198c9af51c64f2b255df1c1ccbb30f3c12a2d4c549f1b_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:f5a7d92dc9cb85b9a4d70d871ab1748e80435e9ddba74ba3818e92ec57f7cf78_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:1ba125d01f712a5fb85db400a0cd9d2240c36529d7d0c8e925acfd3c45845bec_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:2801fe77997c4325f9d1e154eae8c63a4fc808e2c31c773a60c47d63268b1bbc_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:41fd9a9bc849f2c7c6439532bd537c34384b88be30b37629c5e271e0e4be7db4_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:55d7e178435c881a57a88aa6747cd6dedd3c3a512014d0509919dceef13b2946_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:5fef4993574a20a48a9f93e5f07967d13b7b26e8f7e83e2222ea5bbe1f500409_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:d785df86cfd97ff76e6d9426b247543faa91efaeb950f6b2e6b97f9e67624043_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:2fe25a8ac9612f29a625969bb25d24938abb298e9a9e1e79fb3aa34c6a0e5f76_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:93dc86f2358079474a9f5ce67e0e6430c2cdbe8a01155be8020165fce2e73f2b_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:a8c0e823eb62db8ff39de33d6401670e2f65cac8e640b64a9ffeae8ecc0c12bc_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:d50e48a12a217855c373b865df663f50355e4f76fba33de65e50bdc333112c4a_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:eab9c2e2d1ea614bf898c0cba75223f7960a61b7d2315815d6410e3c4f62d7f8_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:39470e0a40255d8d0bcfb6a3e82d77bfd57fdbff5452179f69eed7cff417a103_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:69531d80a6af41db1c28f54a8acfea85594fca34c754c8049e75b331e998a973_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:7a6b045c058be14ab95043bc3c6680bba5ab54a060ae45dbc7e6e8896fb093d8_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:ab57133805270163a3cb99e972b183e8613a6fbfcc943eae5b542d923d572244_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:1c03e0ce9e3b48c8c0f2a9c65dfe3d9b344cd82ac776dc210ef23b91745b0682_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:3783cfecf52a9c532c4e64ed93078581c8ca200efda661efc63ae1fac4391d57_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:58a181deb194766402e32ef43375e2e51208b229c8c97674bda5a6fcc768b8fd_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:973cb71559d8d346c3e0840a6865afda1de53017dcd9f35ee0a56a1606f3149b_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:276fbe3c102abbed5d2cc29b1dbf30456ab5d647fe7f157f18180cdd5ab0b431_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:5fb0bea0b4f43dce5201a986eb9bcd9aa9c2859e3d762f265e4d000a4c93474f_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:8efb0787d02e6700bee64b83c251ee11f4cdc4a04eb770cea3ba34f3d9ec94b4_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:bf53175b6a2e11cf7f5599b65fcb4e56e4037ad5b6254c9e4fa070080aea66fc_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:207a6c112b395d28579d8318d95bec18942834476574e07889ae734a4df1c4b5_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:242afe8097041307445f2e9f4b8d3d674aa4ff91c6ffe884ef170b356a09fe68_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:3e0bc79f2f14f0bf95c5c5f08a7838e8c3df3df5da52182f4807b844dda8638e_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:9823d42834e5698b968385a7ef7d5a2a2749c441d8122a895bf53d3681df6a7c_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:06be3bd07a7bf44fb19a93869f6286fbdc7d8b8e7b8507e3c8ce9f8af67574f9_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:175bde7c228af62b6f04799bc35a01d525a115d7decb73b2b5f90a3c8cf10a9c_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:4d800957aef55f44442be2a95bd85e3098587c6b0f7455b50264993cd4a2154b_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:7fb3f1bf0b641c2f30493fb8e10e90625f5fd30f77ed3b7dec2a98012d54bbab_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:0a23d3fe6f4f54358bef552a62b3d098a97d39b4f1c0b0c0c6d3588c85276417_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:b26fb5031c85204e1b9174c49452146d4528560de554b70e2e97eebccd610fb8_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:e7d01fcd2995b921946a7842faec251ff4434bb9cda3b77e855339f2d9241471_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:ee31bd693543f37461982b1bbcdb783e438c3d1021875829bd24974a1d2c0ea6_amd64 | — |
Workaround
|
A flaw was found in golang.org/x/crypto/ssh. SSH servers configured to use CertChecker as a public key callback, without explicitly setting IsUserAuthority or IsHostAuthority, are vulnerable. A remote attacker can exploit this by presenting a specially crafted certificate, causing the server to panic and resulting in a Denial of Service (DoS).
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:41fd9a9bc849f2c7c6439532bd537c34384b88be30b37629c5e271e0e4be7db4_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:55d7e178435c881a57a88aa6747cd6dedd3c3a512014d0509919dceef13b2946_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:5fef4993574a20a48a9f93e5f07967d13b7b26e8f7e83e2222ea5bbe1f500409_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:d785df86cfd97ff76e6d9426b247543faa91efaeb950f6b2e6b97f9e67624043_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:2fe25a8ac9612f29a625969bb25d24938abb298e9a9e1e79fb3aa34c6a0e5f76_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:307402d2c8c46b74c1a855dad9fdd9f4013c057256513b4d1d58ac980ed8d2e0_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:91710d1c3f67e096b682cb6fa118c70d40bbbc36e3293aa3bea9890775d70236_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:b9d25811da46af4766d41e7543cc54a2820b2b9a4c190585e34166620cf070f7_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:fbd34cb7d74c9e699337157c4c26bc714b541e00645948cccedb5e7afb258003_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:93dc86f2358079474a9f5ce67e0e6430c2cdbe8a01155be8020165fce2e73f2b_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:a8c0e823eb62db8ff39de33d6401670e2f65cac8e640b64a9ffeae8ecc0c12bc_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:d50e48a12a217855c373b865df663f50355e4f76fba33de65e50bdc333112c4a_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:eab9c2e2d1ea614bf898c0cba75223f7960a61b7d2315815d6410e3c4f62d7f8_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:276fbe3c102abbed5d2cc29b1dbf30456ab5d647fe7f157f18180cdd5ab0b431_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:5fb0bea0b4f43dce5201a986eb9bcd9aa9c2859e3d762f265e4d000a4c93474f_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:8efb0787d02e6700bee64b83c251ee11f4cdc4a04eb770cea3ba34f3d9ec94b4_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:bf53175b6a2e11cf7f5599b65fcb4e56e4037ad5b6254c9e4fa070080aea66fc_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:207a6c112b395d28579d8318d95bec18942834476574e07889ae734a4df1c4b5_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:242afe8097041307445f2e9f4b8d3d674aa4ff91c6ffe884ef170b356a09fe68_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:3e0bc79f2f14f0bf95c5c5f08a7838e8c3df3df5da52182f4807b844dda8638e_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:9823d42834e5698b968385a7ef7d5a2a2749c441d8122a895bf53d3681df6a7c_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:0a23d3fe6f4f54358bef552a62b3d098a97d39b4f1c0b0c0c6d3588c85276417_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:b26fb5031c85204e1b9174c49452146d4528560de554b70e2e97eebccd610fb8_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:e7d01fcd2995b921946a7842faec251ff4434bb9cda3b77e855339f2d9241471_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:ee31bd693543f37461982b1bbcdb783e438c3d1021875829bd24974a1d2c0ea6_amd64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:70dbc4b2fd02c6006d01fd31277c79e1152a04e678316853cc9650004a88c8f6_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:93e15662b963e2da7c1ca4ad5c47df2a49d6df5857c9cb44157c88a1eb14c99c_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:a67c68062eb3fe78067524fbef175c6f4dcb2876138fbafc17c8f5aef930ffb5_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:fd0e68ad1f3d790efc1a7637a63668df741a3195d86260291ca7ff85fe72bed2_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:063b28090fce858259efe584b09d7329b766ae461926e8d78f6fac1cf6738055_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:0964f3f379136662c8c3817b2a7d3b787808fab2b742cd7ea53d5f6c2248d1c9_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:bc05850aa1cefea5105198c9af51c64f2b255df1c1ccbb30f3c12a2d4c549f1b_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:f5a7d92dc9cb85b9a4d70d871ab1748e80435e9ddba74ba3818e92ec57f7cf78_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:1ba125d01f712a5fb85db400a0cd9d2240c36529d7d0c8e925acfd3c45845bec_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:2801fe77997c4325f9d1e154eae8c63a4fc808e2c31c773a60c47d63268b1bbc_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:39470e0a40255d8d0bcfb6a3e82d77bfd57fdbff5452179f69eed7cff417a103_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:69531d80a6af41db1c28f54a8acfea85594fca34c754c8049e75b331e998a973_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:7a6b045c058be14ab95043bc3c6680bba5ab54a060ae45dbc7e6e8896fb093d8_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:ab57133805270163a3cb99e972b183e8613a6fbfcc943eae5b542d923d572244_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:1c03e0ce9e3b48c8c0f2a9c65dfe3d9b344cd82ac776dc210ef23b91745b0682_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:3783cfecf52a9c532c4e64ed93078581c8ca200efda661efc63ae1fac4391d57_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:58a181deb194766402e32ef43375e2e51208b229c8c97674bda5a6fcc768b8fd_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:973cb71559d8d346c3e0840a6865afda1de53017dcd9f35ee0a56a1606f3149b_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:06be3bd07a7bf44fb19a93869f6286fbdc7d8b8e7b8507e3c8ce9f8af67574f9_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:175bde7c228af62b6f04799bc35a01d525a115d7decb73b2b5f90a3c8cf10a9c_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:4d800957aef55f44442be2a95bd85e3098587c6b0f7455b50264993cd4a2154b_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:7fb3f1bf0b641c2f30493fb8e10e90625f5fd30f77ed3b7dec2a98012d54bbab_s390x | — |
Workaround
|
A flaw was found in Axios, a widely used HTTP client. This vulnerability, known as prototype pollution, allows an attacker to inject malicious properties into core JavaScript objects. When another component in the same application environment is compromised and pollutes the system's object prototype, Axios can unknowingly use these manipulated values in its outbound network requests. This could lead to the disclosure of sensitive information or the alteration of network communications, compromising data confidentiality and integrity.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:41fd9a9bc849f2c7c6439532bd537c34384b88be30b37629c5e271e0e4be7db4_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:55d7e178435c881a57a88aa6747cd6dedd3c3a512014d0509919dceef13b2946_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:5fef4993574a20a48a9f93e5f07967d13b7b26e8f7e83e2222ea5bbe1f500409_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:d785df86cfd97ff76e6d9426b247543faa91efaeb950f6b2e6b97f9e67624043_s390x | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:70dbc4b2fd02c6006d01fd31277c79e1152a04e678316853cc9650004a88c8f6_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:93e15662b963e2da7c1ca4ad5c47df2a49d6df5857c9cb44157c88a1eb14c99c_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:a67c68062eb3fe78067524fbef175c6f4dcb2876138fbafc17c8f5aef930ffb5_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:fd0e68ad1f3d790efc1a7637a63668df741a3195d86260291ca7ff85fe72bed2_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:063b28090fce858259efe584b09d7329b766ae461926e8d78f6fac1cf6738055_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:0964f3f379136662c8c3817b2a7d3b787808fab2b742cd7ea53d5f6c2248d1c9_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:bc05850aa1cefea5105198c9af51c64f2b255df1c1ccbb30f3c12a2d4c549f1b_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:f5a7d92dc9cb85b9a4d70d871ab1748e80435e9ddba74ba3818e92ec57f7cf78_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:1ba125d01f712a5fb85db400a0cd9d2240c36529d7d0c8e925acfd3c45845bec_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:2801fe77997c4325f9d1e154eae8c63a4fc808e2c31c773a60c47d63268b1bbc_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:2fe25a8ac9612f29a625969bb25d24938abb298e9a9e1e79fb3aa34c6a0e5f76_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:307402d2c8c46b74c1a855dad9fdd9f4013c057256513b4d1d58ac980ed8d2e0_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:91710d1c3f67e096b682cb6fa118c70d40bbbc36e3293aa3bea9890775d70236_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:b9d25811da46af4766d41e7543cc54a2820b2b9a4c190585e34166620cf070f7_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:fbd34cb7d74c9e699337157c4c26bc714b541e00645948cccedb5e7afb258003_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:93dc86f2358079474a9f5ce67e0e6430c2cdbe8a01155be8020165fce2e73f2b_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:a8c0e823eb62db8ff39de33d6401670e2f65cac8e640b64a9ffeae8ecc0c12bc_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:d50e48a12a217855c373b865df663f50355e4f76fba33de65e50bdc333112c4a_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:eab9c2e2d1ea614bf898c0cba75223f7960a61b7d2315815d6410e3c4f62d7f8_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:39470e0a40255d8d0bcfb6a3e82d77bfd57fdbff5452179f69eed7cff417a103_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:69531d80a6af41db1c28f54a8acfea85594fca34c754c8049e75b331e998a973_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:7a6b045c058be14ab95043bc3c6680bba5ab54a060ae45dbc7e6e8896fb093d8_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:ab57133805270163a3cb99e972b183e8613a6fbfcc943eae5b542d923d572244_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:1c03e0ce9e3b48c8c0f2a9c65dfe3d9b344cd82ac776dc210ef23b91745b0682_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:3783cfecf52a9c532c4e64ed93078581c8ca200efda661efc63ae1fac4391d57_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:58a181deb194766402e32ef43375e2e51208b229c8c97674bda5a6fcc768b8fd_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:973cb71559d8d346c3e0840a6865afda1de53017dcd9f35ee0a56a1606f3149b_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:276fbe3c102abbed5d2cc29b1dbf30456ab5d647fe7f157f18180cdd5ab0b431_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:5fb0bea0b4f43dce5201a986eb9bcd9aa9c2859e3d762f265e4d000a4c93474f_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:8efb0787d02e6700bee64b83c251ee11f4cdc4a04eb770cea3ba34f3d9ec94b4_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:bf53175b6a2e11cf7f5599b65fcb4e56e4037ad5b6254c9e4fa070080aea66fc_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:207a6c112b395d28579d8318d95bec18942834476574e07889ae734a4df1c4b5_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:242afe8097041307445f2e9f4b8d3d674aa4ff91c6ffe884ef170b356a09fe68_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:3e0bc79f2f14f0bf95c5c5f08a7838e8c3df3df5da52182f4807b844dda8638e_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:9823d42834e5698b968385a7ef7d5a2a2749c441d8122a895bf53d3681df6a7c_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:06be3bd07a7bf44fb19a93869f6286fbdc7d8b8e7b8507e3c8ce9f8af67574f9_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:175bde7c228af62b6f04799bc35a01d525a115d7decb73b2b5f90a3c8cf10a9c_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:4d800957aef55f44442be2a95bd85e3098587c6b0f7455b50264993cd4a2154b_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:7fb3f1bf0b641c2f30493fb8e10e90625f5fd30f77ed3b7dec2a98012d54bbab_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:0a23d3fe6f4f54358bef552a62b3d098a97d39b4f1c0b0c0c6d3588c85276417_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:b26fb5031c85204e1b9174c49452146d4528560de554b70e2e97eebccd610fb8_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:e7d01fcd2995b921946a7842faec251ff4434bb9cda3b77e855339f2d9241471_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:ee31bd693543f37461982b1bbcdb783e438c3d1021875829bd24974a1d2c0ea6_amd64 | — |
Workaround
|
A flaw was found in golang.org/x/crypto/ssh. Source-address validation can be skipped when an SSH server configuration uses an authentication callback type other than public key, allowing authorization bypass in misconfigured servers. This is a follow-on to incomplete coverage from the CVE-2024-45337 fix.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:41fd9a9bc849f2c7c6439532bd537c34384b88be30b37629c5e271e0e4be7db4_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:55d7e178435c881a57a88aa6747cd6dedd3c3a512014d0509919dceef13b2946_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:5fef4993574a20a48a9f93e5f07967d13b7b26e8f7e83e2222ea5bbe1f500409_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:d785df86cfd97ff76e6d9426b247543faa91efaeb950f6b2e6b97f9e67624043_s390x | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:70dbc4b2fd02c6006d01fd31277c79e1152a04e678316853cc9650004a88c8f6_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:93e15662b963e2da7c1ca4ad5c47df2a49d6df5857c9cb44157c88a1eb14c99c_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:a67c68062eb3fe78067524fbef175c6f4dcb2876138fbafc17c8f5aef930ffb5_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:fd0e68ad1f3d790efc1a7637a63668df741a3195d86260291ca7ff85fe72bed2_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:063b28090fce858259efe584b09d7329b766ae461926e8d78f6fac1cf6738055_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:0964f3f379136662c8c3817b2a7d3b787808fab2b742cd7ea53d5f6c2248d1c9_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:bc05850aa1cefea5105198c9af51c64f2b255df1c1ccbb30f3c12a2d4c549f1b_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:f5a7d92dc9cb85b9a4d70d871ab1748e80435e9ddba74ba3818e92ec57f7cf78_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:1ba125d01f712a5fb85db400a0cd9d2240c36529d7d0c8e925acfd3c45845bec_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:2801fe77997c4325f9d1e154eae8c63a4fc808e2c31c773a60c47d63268b1bbc_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:2fe25a8ac9612f29a625969bb25d24938abb298e9a9e1e79fb3aa34c6a0e5f76_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:307402d2c8c46b74c1a855dad9fdd9f4013c057256513b4d1d58ac980ed8d2e0_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:91710d1c3f67e096b682cb6fa118c70d40bbbc36e3293aa3bea9890775d70236_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:b9d25811da46af4766d41e7543cc54a2820b2b9a4c190585e34166620cf070f7_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:fbd34cb7d74c9e699337157c4c26bc714b541e00645948cccedb5e7afb258003_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:93dc86f2358079474a9f5ce67e0e6430c2cdbe8a01155be8020165fce2e73f2b_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:a8c0e823eb62db8ff39de33d6401670e2f65cac8e640b64a9ffeae8ecc0c12bc_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:d50e48a12a217855c373b865df663f50355e4f76fba33de65e50bdc333112c4a_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:eab9c2e2d1ea614bf898c0cba75223f7960a61b7d2315815d6410e3c4f62d7f8_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:39470e0a40255d8d0bcfb6a3e82d77bfd57fdbff5452179f69eed7cff417a103_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:69531d80a6af41db1c28f54a8acfea85594fca34c754c8049e75b331e998a973_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:7a6b045c058be14ab95043bc3c6680bba5ab54a060ae45dbc7e6e8896fb093d8_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:ab57133805270163a3cb99e972b183e8613a6fbfcc943eae5b542d923d572244_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:1c03e0ce9e3b48c8c0f2a9c65dfe3d9b344cd82ac776dc210ef23b91745b0682_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:3783cfecf52a9c532c4e64ed93078581c8ca200efda661efc63ae1fac4391d57_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:58a181deb194766402e32ef43375e2e51208b229c8c97674bda5a6fcc768b8fd_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:973cb71559d8d346c3e0840a6865afda1de53017dcd9f35ee0a56a1606f3149b_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:276fbe3c102abbed5d2cc29b1dbf30456ab5d647fe7f157f18180cdd5ab0b431_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:5fb0bea0b4f43dce5201a986eb9bcd9aa9c2859e3d762f265e4d000a4c93474f_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:8efb0787d02e6700bee64b83c251ee11f4cdc4a04eb770cea3ba34f3d9ec94b4_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:bf53175b6a2e11cf7f5599b65fcb4e56e4037ad5b6254c9e4fa070080aea66fc_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:207a6c112b395d28579d8318d95bec18942834476574e07889ae734a4df1c4b5_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:242afe8097041307445f2e9f4b8d3d674aa4ff91c6ffe884ef170b356a09fe68_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:3e0bc79f2f14f0bf95c5c5f08a7838e8c3df3df5da52182f4807b844dda8638e_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:9823d42834e5698b968385a7ef7d5a2a2749c441d8122a895bf53d3681df6a7c_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:06be3bd07a7bf44fb19a93869f6286fbdc7d8b8e7b8507e3c8ce9f8af67574f9_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:175bde7c228af62b6f04799bc35a01d525a115d7decb73b2b5f90a3c8cf10a9c_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:4d800957aef55f44442be2a95bd85e3098587c6b0f7455b50264993cd4a2154b_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:7fb3f1bf0b641c2f30493fb8e10e90625f5fd30f77ed3b7dec2a98012d54bbab_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:0a23d3fe6f4f54358bef552a62b3d098a97d39b4f1c0b0c0c6d3588c85276417_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:b26fb5031c85204e1b9174c49452146d4528560de554b70e2e97eebccd610fb8_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:e7d01fcd2995b921946a7842faec251ff4434bb9cda3b77e855339f2d9241471_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:ee31bd693543f37461982b1bbcdb783e438c3d1021875829bd24974a1d2c0ea6_amd64 | — |
Workaround
|
A flaw was found in containerd, an open-source container runtime. The Container Runtime Interface (CRI) plugin, which manages container operations, fails to validate labels propagated from an image configuration to a container. This oversight could enable an attacker to execute arbitrary commands on the host system through a plugin that processes these unvalidated labels. The primary impact is host-root command execution, allowing unauthorized control over the underlying system.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:41fd9a9bc849f2c7c6439532bd537c34384b88be30b37629c5e271e0e4be7db4_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:55d7e178435c881a57a88aa6747cd6dedd3c3a512014d0509919dceef13b2946_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:5fef4993574a20a48a9f93e5f07967d13b7b26e8f7e83e2222ea5bbe1f500409_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:d785df86cfd97ff76e6d9426b247543faa91efaeb950f6b2e6b97f9e67624043_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:2fe25a8ac9612f29a625969bb25d24938abb298e9a9e1e79fb3aa34c6a0e5f76_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:307402d2c8c46b74c1a855dad9fdd9f4013c057256513b4d1d58ac980ed8d2e0_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:91710d1c3f67e096b682cb6fa118c70d40bbbc36e3293aa3bea9890775d70236_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:b9d25811da46af4766d41e7543cc54a2820b2b9a4c190585e34166620cf070f7_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:fbd34cb7d74c9e699337157c4c26bc714b541e00645948cccedb5e7afb258003_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:93dc86f2358079474a9f5ce67e0e6430c2cdbe8a01155be8020165fce2e73f2b_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:a8c0e823eb62db8ff39de33d6401670e2f65cac8e640b64a9ffeae8ecc0c12bc_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:d50e48a12a217855c373b865df663f50355e4f76fba33de65e50bdc333112c4a_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:eab9c2e2d1ea614bf898c0cba75223f7960a61b7d2315815d6410e3c4f62d7f8_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:0a23d3fe6f4f54358bef552a62b3d098a97d39b4f1c0b0c0c6d3588c85276417_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:b26fb5031c85204e1b9174c49452146d4528560de554b70e2e97eebccd610fb8_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:e7d01fcd2995b921946a7842faec251ff4434bb9cda3b77e855339f2d9241471_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:ee31bd693543f37461982b1bbcdb783e438c3d1021875829bd24974a1d2c0ea6_amd64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:70dbc4b2fd02c6006d01fd31277c79e1152a04e678316853cc9650004a88c8f6_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:93e15662b963e2da7c1ca4ad5c47df2a49d6df5857c9cb44157c88a1eb14c99c_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:a67c68062eb3fe78067524fbef175c6f4dcb2876138fbafc17c8f5aef930ffb5_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:fd0e68ad1f3d790efc1a7637a63668df741a3195d86260291ca7ff85fe72bed2_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:063b28090fce858259efe584b09d7329b766ae461926e8d78f6fac1cf6738055_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:0964f3f379136662c8c3817b2a7d3b787808fab2b742cd7ea53d5f6c2248d1c9_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:bc05850aa1cefea5105198c9af51c64f2b255df1c1ccbb30f3c12a2d4c549f1b_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:f5a7d92dc9cb85b9a4d70d871ab1748e80435e9ddba74ba3818e92ec57f7cf78_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:1ba125d01f712a5fb85db400a0cd9d2240c36529d7d0c8e925acfd3c45845bec_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:2801fe77997c4325f9d1e154eae8c63a4fc808e2c31c773a60c47d63268b1bbc_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:39470e0a40255d8d0bcfb6a3e82d77bfd57fdbff5452179f69eed7cff417a103_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:69531d80a6af41db1c28f54a8acfea85594fca34c754c8049e75b331e998a973_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:7a6b045c058be14ab95043bc3c6680bba5ab54a060ae45dbc7e6e8896fb093d8_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:ab57133805270163a3cb99e972b183e8613a6fbfcc943eae5b542d923d572244_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:1c03e0ce9e3b48c8c0f2a9c65dfe3d9b344cd82ac776dc210ef23b91745b0682_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:3783cfecf52a9c532c4e64ed93078581c8ca200efda661efc63ae1fac4391d57_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:58a181deb194766402e32ef43375e2e51208b229c8c97674bda5a6fcc768b8fd_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:973cb71559d8d346c3e0840a6865afda1de53017dcd9f35ee0a56a1606f3149b_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:276fbe3c102abbed5d2cc29b1dbf30456ab5d647fe7f157f18180cdd5ab0b431_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:5fb0bea0b4f43dce5201a986eb9bcd9aa9c2859e3d762f265e4d000a4c93474f_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:8efb0787d02e6700bee64b83c251ee11f4cdc4a04eb770cea3ba34f3d9ec94b4_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:bf53175b6a2e11cf7f5599b65fcb4e56e4037ad5b6254c9e4fa070080aea66fc_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:207a6c112b395d28579d8318d95bec18942834476574e07889ae734a4df1c4b5_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:242afe8097041307445f2e9f4b8d3d674aa4ff91c6ffe884ef170b356a09fe68_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:3e0bc79f2f14f0bf95c5c5f08a7838e8c3df3df5da52182f4807b844dda8638e_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:9823d42834e5698b968385a7ef7d5a2a2749c441d8122a895bf53d3681df6a7c_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:06be3bd07a7bf44fb19a93869f6286fbdc7d8b8e7b8507e3c8ce9f8af67574f9_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:175bde7c228af62b6f04799bc35a01d525a115d7decb73b2b5f90a3c8cf10a9c_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:4d800957aef55f44442be2a95bd85e3098587c6b0f7455b50264993cd4a2154b_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:7fb3f1bf0b641c2f30493fb8e10e90625f5fd30f77ed3b7dec2a98012d54bbab_s390x | — |
Workaround
|
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Updated images are now available for Red Hat Advanced Cluster Security\n(RHACS), which typically include new features, bug fixes, and/or\nsecurity patches.",
"title": "Topic"
},
{
"category": "general",
"text": "See the release notes (link in the references section) for a\ndescription of the fixes and enhancements in this particular release.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2026:36207",
"url": "https://access.redhat.com/errata/RHSA-2026:36207"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-25681",
"url": "https://access.redhat.com/security/cve/CVE-2026-25681"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-27136",
"url": "https://access.redhat.com/security/cve/CVE-2026-27136"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-33811",
"url": "https://access.redhat.com/security/cve/CVE-2026-33811"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-39821",
"url": "https://access.redhat.com/security/cve/CVE-2026-39821"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-39828",
"url": "https://access.redhat.com/security/cve/CVE-2026-39828"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-39829",
"url": "https://access.redhat.com/security/cve/CVE-2026-39829"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-39830",
"url": "https://access.redhat.com/security/cve/CVE-2026-39830"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-39835",
"url": "https://access.redhat.com/security/cve/CVE-2026-39835"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-42264",
"url": "https://access.redhat.com/security/cve/CVE-2026-42264"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-46595",
"url": "https://access.redhat.com/security/cve/CVE-2026-46595"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-53488",
"url": "https://access.redhat.com/security/cve/CVE-2026-53488"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-9165",
"url": "https://access.redhat.com/security/cve/CVE-2026-9165"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/",
"url": "https://access.redhat.com/security/updates/classification/"
},
{
"category": "external",
"summary": "https://docs.redhat.com/en/documentation/red_hat_advanced_cluster_security_for_kubernetes/4.11/html-single/release_notes/index#about-this-release-4111_release-notes-411",
"url": "https://docs.redhat.com/en/documentation/red_hat_advanced_cluster_security_for_kubernetes/4.11/html-single/release_notes/index#about-this-release-4111_release-notes-411"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2026/rhsa-2026_36207.json"
}
],
"title": "Red Hat Security Advisory: RHACS 4.11.1 security and bug fix update",
"tracking": {
"current_release_date": "2026-07-10T22:47:21+00:00",
"generator": {
"date": "2026-07-10T22:47:21+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "5.3.2"
}
},
"id": "RHSA-2026:36207",
"initial_release_date": "2026-07-07T11:09:24+00:00",
"revision_history": [
{
"date": "2026-07-07T11:09:24+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2026-07-07T11:09:30+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2026-07-10T22:47:21+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Advanced Cluster Security for Kubernetes 4.11",
"product": {
"name": "Red Hat Advanced Cluster Security for Kubernetes 4.11",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.11",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:advanced_cluster_security:4.11::el9"
}
}
}
],
"category": "product_family",
"name": "Red Hat Advanced Cluster Security for Kubernetes"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:a67c68062eb3fe78067524fbef175c6f4dcb2876138fbafc17c8f5aef930ffb5_amd64",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:a67c68062eb3fe78067524fbef175c6f4dcb2876138fbafc17c8f5aef930ffb5_amd64",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:a67c68062eb3fe78067524fbef175c6f4dcb2876138fbafc17c8f5aef930ffb5_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-central-db-rhel9@sha256%3Aa67c68062eb3fe78067524fbef175c6f4dcb2876138fbafc17c8f5aef930ffb5?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9\u0026tag=1783352589"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:0964f3f379136662c8c3817b2a7d3b787808fab2b742cd7ea53d5f6c2248d1c9_amd64",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:0964f3f379136662c8c3817b2a7d3b787808fab2b742cd7ea53d5f6c2248d1c9_amd64",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:0964f3f379136662c8c3817b2a7d3b787808fab2b742cd7ea53d5f6c2248d1c9_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-collector-rhel9@sha256%3A0964f3f379136662c8c3817b2a7d3b787808fab2b742cd7ea53d5f6c2248d1c9?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9\u0026tag=1782122242"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:2801fe77997c4325f9d1e154eae8c63a4fc808e2c31c773a60c47d63268b1bbc_amd64",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:2801fe77997c4325f9d1e154eae8c63a4fc808e2c31c773a60c47d63268b1bbc_amd64",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:2801fe77997c4325f9d1e154eae8c63a4fc808e2c31c773a60c47d63268b1bbc_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-fact-rhel9@sha256%3A2801fe77997c4325f9d1e154eae8c63a4fc808e2c31c773a60c47d63268b1bbc?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9\u0026tag=1782109225"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:5fef4993574a20a48a9f93e5f07967d13b7b26e8f7e83e2222ea5bbe1f500409_amd64",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:5fef4993574a20a48a9f93e5f07967d13b7b26e8f7e83e2222ea5bbe1f500409_amd64",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:5fef4993574a20a48a9f93e5f07967d13b7b26e8f7e83e2222ea5bbe1f500409_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-main-rhel9@sha256%3A5fef4993574a20a48a9f93e5f07967d13b7b26e8f7e83e2222ea5bbe1f500409?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9\u0026tag=1783352589"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:b9d25811da46af4766d41e7543cc54a2820b2b9a4c190585e34166620cf070f7_amd64",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:b9d25811da46af4766d41e7543cc54a2820b2b9a4c190585e34166620cf070f7_amd64",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:b9d25811da46af4766d41e7543cc54a2820b2b9a4c190585e34166620cf070f7_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-rhel9-operator@sha256%3Ab9d25811da46af4766d41e7543cc54a2820b2b9a4c190585e34166620cf070f7?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator\u0026tag=1783352589"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:2fe25a8ac9612f29a625969bb25d24938abb298e9a9e1e79fb3aa34c6a0e5f76_amd64",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:2fe25a8ac9612f29a625969bb25d24938abb298e9a9e1e79fb3aa34c6a0e5f76_amd64",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:2fe25a8ac9612f29a625969bb25d24938abb298e9a9e1e79fb3aa34c6a0e5f76_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-operator-bundle@sha256%3A2fe25a8ac9612f29a625969bb25d24938abb298e9a9e1e79fb3aa34c6a0e5f76?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle\u0026tag=1783352589"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:93dc86f2358079474a9f5ce67e0e6430c2cdbe8a01155be8020165fce2e73f2b_amd64",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:93dc86f2358079474a9f5ce67e0e6430c2cdbe8a01155be8020165fce2e73f2b_amd64",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:93dc86f2358079474a9f5ce67e0e6430c2cdbe8a01155be8020165fce2e73f2b_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-roxctl-rhel9@sha256%3A93dc86f2358079474a9f5ce67e0e6430c2cdbe8a01155be8020165fce2e73f2b?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9\u0026tag=1783352589"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:8efb0787d02e6700bee64b83c251ee11f4cdc4a04eb770cea3ba34f3d9ec94b4_amd64",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:8efb0787d02e6700bee64b83c251ee11f4cdc4a04eb770cea3ba34f3d9ec94b4_amd64",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:8efb0787d02e6700bee64b83c251ee11f4cdc4a04eb770cea3ba34f3d9ec94b4_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-rhel9@sha256%3A8efb0787d02e6700bee64b83c251ee11f4cdc4a04eb770cea3ba34f3d9ec94b4?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9\u0026tag=1782925137"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:39470e0a40255d8d0bcfb6a3e82d77bfd57fdbff5452179f69eed7cff417a103_amd64",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:39470e0a40255d8d0bcfb6a3e82d77bfd57fdbff5452179f69eed7cff417a103_amd64",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:39470e0a40255d8d0bcfb6a3e82d77bfd57fdbff5452179f69eed7cff417a103_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-db-rhel9@sha256%3A39470e0a40255d8d0bcfb6a3e82d77bfd57fdbff5452179f69eed7cff417a103?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9\u0026tag=1782925137"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:1c03e0ce9e3b48c8c0f2a9c65dfe3d9b344cd82ac776dc210ef23b91745b0682_amd64",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:1c03e0ce9e3b48c8c0f2a9c65dfe3d9b344cd82ac776dc210ef23b91745b0682_amd64",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:1c03e0ce9e3b48c8c0f2a9c65dfe3d9b344cd82ac776dc210ef23b91745b0682_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-db-slim-rhel9@sha256%3A1c03e0ce9e3b48c8c0f2a9c65dfe3d9b344cd82ac776dc210ef23b91745b0682?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9\u0026tag=1782925137"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:207a6c112b395d28579d8318d95bec18942834476574e07889ae734a4df1c4b5_amd64",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:207a6c112b395d28579d8318d95bec18942834476574e07889ae734a4df1c4b5_amd64",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:207a6c112b395d28579d8318d95bec18942834476574e07889ae734a4df1c4b5_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-slim-rhel9@sha256%3A207a6c112b395d28579d8318d95bec18942834476574e07889ae734a4df1c4b5?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9\u0026tag=1782925137"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:ee31bd693543f37461982b1bbcdb783e438c3d1021875829bd24974a1d2c0ea6_amd64",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:ee31bd693543f37461982b1bbcdb783e438c3d1021875829bd24974a1d2c0ea6_amd64",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:ee31bd693543f37461982b1bbcdb783e438c3d1021875829bd24974a1d2c0ea6_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-v4-rhel9@sha256%3Aee31bd693543f37461982b1bbcdb783e438c3d1021875829bd24974a1d2c0ea6?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9\u0026tag=1783352589"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:4d800957aef55f44442be2a95bd85e3098587c6b0f7455b50264993cd4a2154b_amd64",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:4d800957aef55f44442be2a95bd85e3098587c6b0f7455b50264993cd4a2154b_amd64",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:4d800957aef55f44442be2a95bd85e3098587c6b0f7455b50264993cd4a2154b_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-v4-db-rhel9@sha256%3A4d800957aef55f44442be2a95bd85e3098587c6b0f7455b50264993cd4a2154b?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9\u0026tag=1783352589"
}
}
}
],
"category": "architecture",
"name": "amd64"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:70dbc4b2fd02c6006d01fd31277c79e1152a04e678316853cc9650004a88c8f6_arm64",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:70dbc4b2fd02c6006d01fd31277c79e1152a04e678316853cc9650004a88c8f6_arm64",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:70dbc4b2fd02c6006d01fd31277c79e1152a04e678316853cc9650004a88c8f6_arm64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-central-db-rhel9@sha256%3A70dbc4b2fd02c6006d01fd31277c79e1152a04e678316853cc9650004a88c8f6?arch=arm64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9\u0026tag=1783352589"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:bc05850aa1cefea5105198c9af51c64f2b255df1c1ccbb30f3c12a2d4c549f1b_arm64",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:bc05850aa1cefea5105198c9af51c64f2b255df1c1ccbb30f3c12a2d4c549f1b_arm64",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:bc05850aa1cefea5105198c9af51c64f2b255df1c1ccbb30f3c12a2d4c549f1b_arm64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-collector-rhel9@sha256%3Abc05850aa1cefea5105198c9af51c64f2b255df1c1ccbb30f3c12a2d4c549f1b?arch=arm64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9\u0026tag=1782122242"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:1ba125d01f712a5fb85db400a0cd9d2240c36529d7d0c8e925acfd3c45845bec_arm64",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:1ba125d01f712a5fb85db400a0cd9d2240c36529d7d0c8e925acfd3c45845bec_arm64",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:1ba125d01f712a5fb85db400a0cd9d2240c36529d7d0c8e925acfd3c45845bec_arm64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-fact-rhel9@sha256%3A1ba125d01f712a5fb85db400a0cd9d2240c36529d7d0c8e925acfd3c45845bec?arch=arm64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9\u0026tag=1782109225"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:41fd9a9bc849f2c7c6439532bd537c34384b88be30b37629c5e271e0e4be7db4_arm64",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:41fd9a9bc849f2c7c6439532bd537c34384b88be30b37629c5e271e0e4be7db4_arm64",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:41fd9a9bc849f2c7c6439532bd537c34384b88be30b37629c5e271e0e4be7db4_arm64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-main-rhel9@sha256%3A41fd9a9bc849f2c7c6439532bd537c34384b88be30b37629c5e271e0e4be7db4?arch=arm64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9\u0026tag=1783352589"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:91710d1c3f67e096b682cb6fa118c70d40bbbc36e3293aa3bea9890775d70236_arm64",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:91710d1c3f67e096b682cb6fa118c70d40bbbc36e3293aa3bea9890775d70236_arm64",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:91710d1c3f67e096b682cb6fa118c70d40bbbc36e3293aa3bea9890775d70236_arm64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-rhel9-operator@sha256%3A91710d1c3f67e096b682cb6fa118c70d40bbbc36e3293aa3bea9890775d70236?arch=arm64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator\u0026tag=1783352589"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:d50e48a12a217855c373b865df663f50355e4f76fba33de65e50bdc333112c4a_arm64",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:d50e48a12a217855c373b865df663f50355e4f76fba33de65e50bdc333112c4a_arm64",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:d50e48a12a217855c373b865df663f50355e4f76fba33de65e50bdc333112c4a_arm64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-roxctl-rhel9@sha256%3Ad50e48a12a217855c373b865df663f50355e4f76fba33de65e50bdc333112c4a?arch=arm64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9\u0026tag=1783352589"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:276fbe3c102abbed5d2cc29b1dbf30456ab5d647fe7f157f18180cdd5ab0b431_arm64",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:276fbe3c102abbed5d2cc29b1dbf30456ab5d647fe7f157f18180cdd5ab0b431_arm64",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:276fbe3c102abbed5d2cc29b1dbf30456ab5d647fe7f157f18180cdd5ab0b431_arm64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-rhel9@sha256%3A276fbe3c102abbed5d2cc29b1dbf30456ab5d647fe7f157f18180cdd5ab0b431?arch=arm64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9\u0026tag=1782925137"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:ab57133805270163a3cb99e972b183e8613a6fbfcc943eae5b542d923d572244_arm64",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:ab57133805270163a3cb99e972b183e8613a6fbfcc943eae5b542d923d572244_arm64",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:ab57133805270163a3cb99e972b183e8613a6fbfcc943eae5b542d923d572244_arm64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-db-rhel9@sha256%3Aab57133805270163a3cb99e972b183e8613a6fbfcc943eae5b542d923d572244?arch=arm64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9\u0026tag=1782925137"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:3783cfecf52a9c532c4e64ed93078581c8ca200efda661efc63ae1fac4391d57_arm64",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:3783cfecf52a9c532c4e64ed93078581c8ca200efda661efc63ae1fac4391d57_arm64",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:3783cfecf52a9c532c4e64ed93078581c8ca200efda661efc63ae1fac4391d57_arm64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-db-slim-rhel9@sha256%3A3783cfecf52a9c532c4e64ed93078581c8ca200efda661efc63ae1fac4391d57?arch=arm64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9\u0026tag=1782925137"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:3e0bc79f2f14f0bf95c5c5f08a7838e8c3df3df5da52182f4807b844dda8638e_arm64",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:3e0bc79f2f14f0bf95c5c5f08a7838e8c3df3df5da52182f4807b844dda8638e_arm64",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:3e0bc79f2f14f0bf95c5c5f08a7838e8c3df3df5da52182f4807b844dda8638e_arm64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-slim-rhel9@sha256%3A3e0bc79f2f14f0bf95c5c5f08a7838e8c3df3df5da52182f4807b844dda8638e?arch=arm64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9\u0026tag=1782925137"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:b26fb5031c85204e1b9174c49452146d4528560de554b70e2e97eebccd610fb8_arm64",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:b26fb5031c85204e1b9174c49452146d4528560de554b70e2e97eebccd610fb8_arm64",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:b26fb5031c85204e1b9174c49452146d4528560de554b70e2e97eebccd610fb8_arm64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-v4-rhel9@sha256%3Ab26fb5031c85204e1b9174c49452146d4528560de554b70e2e97eebccd610fb8?arch=arm64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9\u0026tag=1783352589"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:06be3bd07a7bf44fb19a93869f6286fbdc7d8b8e7b8507e3c8ce9f8af67574f9_arm64",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:06be3bd07a7bf44fb19a93869f6286fbdc7d8b8e7b8507e3c8ce9f8af67574f9_arm64",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:06be3bd07a7bf44fb19a93869f6286fbdc7d8b8e7b8507e3c8ce9f8af67574f9_arm64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-v4-db-rhel9@sha256%3A06be3bd07a7bf44fb19a93869f6286fbdc7d8b8e7b8507e3c8ce9f8af67574f9?arch=arm64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9\u0026tag=1783352589"
}
}
}
],
"category": "architecture",
"name": "arm64"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:93e15662b963e2da7c1ca4ad5c47df2a49d6df5857c9cb44157c88a1eb14c99c_ppc64le",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:93e15662b963e2da7c1ca4ad5c47df2a49d6df5857c9cb44157c88a1eb14c99c_ppc64le",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:93e15662b963e2da7c1ca4ad5c47df2a49d6df5857c9cb44157c88a1eb14c99c_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-central-db-rhel9@sha256%3A93e15662b963e2da7c1ca4ad5c47df2a49d6df5857c9cb44157c88a1eb14c99c?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9\u0026tag=1783352589"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:f5a7d92dc9cb85b9a4d70d871ab1748e80435e9ddba74ba3818e92ec57f7cf78_ppc64le",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:f5a7d92dc9cb85b9a4d70d871ab1748e80435e9ddba74ba3818e92ec57f7cf78_ppc64le",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:f5a7d92dc9cb85b9a4d70d871ab1748e80435e9ddba74ba3818e92ec57f7cf78_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-collector-rhel9@sha256%3Af5a7d92dc9cb85b9a4d70d871ab1748e80435e9ddba74ba3818e92ec57f7cf78?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9\u0026tag=1782122242"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:55d7e178435c881a57a88aa6747cd6dedd3c3a512014d0509919dceef13b2946_ppc64le",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:55d7e178435c881a57a88aa6747cd6dedd3c3a512014d0509919dceef13b2946_ppc64le",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:55d7e178435c881a57a88aa6747cd6dedd3c3a512014d0509919dceef13b2946_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-main-rhel9@sha256%3A55d7e178435c881a57a88aa6747cd6dedd3c3a512014d0509919dceef13b2946?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9\u0026tag=1783352589"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:307402d2c8c46b74c1a855dad9fdd9f4013c057256513b4d1d58ac980ed8d2e0_ppc64le",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:307402d2c8c46b74c1a855dad9fdd9f4013c057256513b4d1d58ac980ed8d2e0_ppc64le",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:307402d2c8c46b74c1a855dad9fdd9f4013c057256513b4d1d58ac980ed8d2e0_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-rhel9-operator@sha256%3A307402d2c8c46b74c1a855dad9fdd9f4013c057256513b4d1d58ac980ed8d2e0?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator\u0026tag=1783352589"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:a8c0e823eb62db8ff39de33d6401670e2f65cac8e640b64a9ffeae8ecc0c12bc_ppc64le",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:a8c0e823eb62db8ff39de33d6401670e2f65cac8e640b64a9ffeae8ecc0c12bc_ppc64le",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:a8c0e823eb62db8ff39de33d6401670e2f65cac8e640b64a9ffeae8ecc0c12bc_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-roxctl-rhel9@sha256%3Aa8c0e823eb62db8ff39de33d6401670e2f65cac8e640b64a9ffeae8ecc0c12bc?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9\u0026tag=1783352589"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:5fb0bea0b4f43dce5201a986eb9bcd9aa9c2859e3d762f265e4d000a4c93474f_ppc64le",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:5fb0bea0b4f43dce5201a986eb9bcd9aa9c2859e3d762f265e4d000a4c93474f_ppc64le",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:5fb0bea0b4f43dce5201a986eb9bcd9aa9c2859e3d762f265e4d000a4c93474f_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-rhel9@sha256%3A5fb0bea0b4f43dce5201a986eb9bcd9aa9c2859e3d762f265e4d000a4c93474f?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9\u0026tag=1782925137"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:7a6b045c058be14ab95043bc3c6680bba5ab54a060ae45dbc7e6e8896fb093d8_ppc64le",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:7a6b045c058be14ab95043bc3c6680bba5ab54a060ae45dbc7e6e8896fb093d8_ppc64le",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:7a6b045c058be14ab95043bc3c6680bba5ab54a060ae45dbc7e6e8896fb093d8_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-db-rhel9@sha256%3A7a6b045c058be14ab95043bc3c6680bba5ab54a060ae45dbc7e6e8896fb093d8?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9\u0026tag=1782925137"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:58a181deb194766402e32ef43375e2e51208b229c8c97674bda5a6fcc768b8fd_ppc64le",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:58a181deb194766402e32ef43375e2e51208b229c8c97674bda5a6fcc768b8fd_ppc64le",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:58a181deb194766402e32ef43375e2e51208b229c8c97674bda5a6fcc768b8fd_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-db-slim-rhel9@sha256%3A58a181deb194766402e32ef43375e2e51208b229c8c97674bda5a6fcc768b8fd?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9\u0026tag=1782925137"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:242afe8097041307445f2e9f4b8d3d674aa4ff91c6ffe884ef170b356a09fe68_ppc64le",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:242afe8097041307445f2e9f4b8d3d674aa4ff91c6ffe884ef170b356a09fe68_ppc64le",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:242afe8097041307445f2e9f4b8d3d674aa4ff91c6ffe884ef170b356a09fe68_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-slim-rhel9@sha256%3A242afe8097041307445f2e9f4b8d3d674aa4ff91c6ffe884ef170b356a09fe68?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9\u0026tag=1782925137"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:0a23d3fe6f4f54358bef552a62b3d098a97d39b4f1c0b0c0c6d3588c85276417_ppc64le",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:0a23d3fe6f4f54358bef552a62b3d098a97d39b4f1c0b0c0c6d3588c85276417_ppc64le",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:0a23d3fe6f4f54358bef552a62b3d098a97d39b4f1c0b0c0c6d3588c85276417_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-v4-rhel9@sha256%3A0a23d3fe6f4f54358bef552a62b3d098a97d39b4f1c0b0c0c6d3588c85276417?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9\u0026tag=1783352589"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:175bde7c228af62b6f04799bc35a01d525a115d7decb73b2b5f90a3c8cf10a9c_ppc64le",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:175bde7c228af62b6f04799bc35a01d525a115d7decb73b2b5f90a3c8cf10a9c_ppc64le",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:175bde7c228af62b6f04799bc35a01d525a115d7decb73b2b5f90a3c8cf10a9c_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-v4-db-rhel9@sha256%3A175bde7c228af62b6f04799bc35a01d525a115d7decb73b2b5f90a3c8cf10a9c?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9\u0026tag=1783352589"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:fd0e68ad1f3d790efc1a7637a63668df741a3195d86260291ca7ff85fe72bed2_s390x",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:fd0e68ad1f3d790efc1a7637a63668df741a3195d86260291ca7ff85fe72bed2_s390x",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:fd0e68ad1f3d790efc1a7637a63668df741a3195d86260291ca7ff85fe72bed2_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-central-db-rhel9@sha256%3Afd0e68ad1f3d790efc1a7637a63668df741a3195d86260291ca7ff85fe72bed2?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9\u0026tag=1783352589"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:063b28090fce858259efe584b09d7329b766ae461926e8d78f6fac1cf6738055_s390x",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:063b28090fce858259efe584b09d7329b766ae461926e8d78f6fac1cf6738055_s390x",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:063b28090fce858259efe584b09d7329b766ae461926e8d78f6fac1cf6738055_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-collector-rhel9@sha256%3A063b28090fce858259efe584b09d7329b766ae461926e8d78f6fac1cf6738055?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9\u0026tag=1782122242"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:d785df86cfd97ff76e6d9426b247543faa91efaeb950f6b2e6b97f9e67624043_s390x",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:d785df86cfd97ff76e6d9426b247543faa91efaeb950f6b2e6b97f9e67624043_s390x",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:d785df86cfd97ff76e6d9426b247543faa91efaeb950f6b2e6b97f9e67624043_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-main-rhel9@sha256%3Ad785df86cfd97ff76e6d9426b247543faa91efaeb950f6b2e6b97f9e67624043?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9\u0026tag=1783352589"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:fbd34cb7d74c9e699337157c4c26bc714b541e00645948cccedb5e7afb258003_s390x",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:fbd34cb7d74c9e699337157c4c26bc714b541e00645948cccedb5e7afb258003_s390x",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:fbd34cb7d74c9e699337157c4c26bc714b541e00645948cccedb5e7afb258003_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-rhel9-operator@sha256%3Afbd34cb7d74c9e699337157c4c26bc714b541e00645948cccedb5e7afb258003?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator\u0026tag=1783352589"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:eab9c2e2d1ea614bf898c0cba75223f7960a61b7d2315815d6410e3c4f62d7f8_s390x",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:eab9c2e2d1ea614bf898c0cba75223f7960a61b7d2315815d6410e3c4f62d7f8_s390x",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:eab9c2e2d1ea614bf898c0cba75223f7960a61b7d2315815d6410e3c4f62d7f8_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-roxctl-rhel9@sha256%3Aeab9c2e2d1ea614bf898c0cba75223f7960a61b7d2315815d6410e3c4f62d7f8?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9\u0026tag=1783352589"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:bf53175b6a2e11cf7f5599b65fcb4e56e4037ad5b6254c9e4fa070080aea66fc_s390x",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:bf53175b6a2e11cf7f5599b65fcb4e56e4037ad5b6254c9e4fa070080aea66fc_s390x",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:bf53175b6a2e11cf7f5599b65fcb4e56e4037ad5b6254c9e4fa070080aea66fc_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-rhel9@sha256%3Abf53175b6a2e11cf7f5599b65fcb4e56e4037ad5b6254c9e4fa070080aea66fc?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9\u0026tag=1782925137"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:69531d80a6af41db1c28f54a8acfea85594fca34c754c8049e75b331e998a973_s390x",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:69531d80a6af41db1c28f54a8acfea85594fca34c754c8049e75b331e998a973_s390x",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:69531d80a6af41db1c28f54a8acfea85594fca34c754c8049e75b331e998a973_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-db-rhel9@sha256%3A69531d80a6af41db1c28f54a8acfea85594fca34c754c8049e75b331e998a973?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9\u0026tag=1782925137"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:973cb71559d8d346c3e0840a6865afda1de53017dcd9f35ee0a56a1606f3149b_s390x",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:973cb71559d8d346c3e0840a6865afda1de53017dcd9f35ee0a56a1606f3149b_s390x",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:973cb71559d8d346c3e0840a6865afda1de53017dcd9f35ee0a56a1606f3149b_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-db-slim-rhel9@sha256%3A973cb71559d8d346c3e0840a6865afda1de53017dcd9f35ee0a56a1606f3149b?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9\u0026tag=1782925137"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:9823d42834e5698b968385a7ef7d5a2a2749c441d8122a895bf53d3681df6a7c_s390x",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:9823d42834e5698b968385a7ef7d5a2a2749c441d8122a895bf53d3681df6a7c_s390x",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:9823d42834e5698b968385a7ef7d5a2a2749c441d8122a895bf53d3681df6a7c_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-slim-rhel9@sha256%3A9823d42834e5698b968385a7ef7d5a2a2749c441d8122a895bf53d3681df6a7c?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9\u0026tag=1782925137"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:e7d01fcd2995b921946a7842faec251ff4434bb9cda3b77e855339f2d9241471_s390x",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:e7d01fcd2995b921946a7842faec251ff4434bb9cda3b77e855339f2d9241471_s390x",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:e7d01fcd2995b921946a7842faec251ff4434bb9cda3b77e855339f2d9241471_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-v4-rhel9@sha256%3Ae7d01fcd2995b921946a7842faec251ff4434bb9cda3b77e855339f2d9241471?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9\u0026tag=1783352589"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:7fb3f1bf0b641c2f30493fb8e10e90625f5fd30f77ed3b7dec2a98012d54bbab_s390x",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:7fb3f1bf0b641c2f30493fb8e10e90625f5fd30f77ed3b7dec2a98012d54bbab_s390x",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:7fb3f1bf0b641c2f30493fb8e10e90625f5fd30f77ed3b7dec2a98012d54bbab_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-v4-db-rhel9@sha256%3A7fb3f1bf0b641c2f30493fb8e10e90625f5fd30f77ed3b7dec2a98012d54bbab?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9\u0026tag=1783352589"
}
}
}
],
"category": "architecture",
"name": "s390x"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:70dbc4b2fd02c6006d01fd31277c79e1152a04e678316853cc9650004a88c8f6_arm64 as a component of Red Hat Advanced Cluster Security for Kubernetes 4.11",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:70dbc4b2fd02c6006d01fd31277c79e1152a04e678316853cc9650004a88c8f6_arm64"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:70dbc4b2fd02c6006d01fd31277c79e1152a04e678316853cc9650004a88c8f6_arm64",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:93e15662b963e2da7c1ca4ad5c47df2a49d6df5857c9cb44157c88a1eb14c99c_ppc64le as a component of Red Hat Advanced Cluster Security for Kubernetes 4.11",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:93e15662b963e2da7c1ca4ad5c47df2a49d6df5857c9cb44157c88a1eb14c99c_ppc64le"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:93e15662b963e2da7c1ca4ad5c47df2a49d6df5857c9cb44157c88a1eb14c99c_ppc64le",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:a67c68062eb3fe78067524fbef175c6f4dcb2876138fbafc17c8f5aef930ffb5_amd64 as a component of Red Hat Advanced Cluster Security for Kubernetes 4.11",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:a67c68062eb3fe78067524fbef175c6f4dcb2876138fbafc17c8f5aef930ffb5_amd64"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:a67c68062eb3fe78067524fbef175c6f4dcb2876138fbafc17c8f5aef930ffb5_amd64",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:fd0e68ad1f3d790efc1a7637a63668df741a3195d86260291ca7ff85fe72bed2_s390x as a component of Red Hat Advanced Cluster Security for Kubernetes 4.11",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:fd0e68ad1f3d790efc1a7637a63668df741a3195d86260291ca7ff85fe72bed2_s390x"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:fd0e68ad1f3d790efc1a7637a63668df741a3195d86260291ca7ff85fe72bed2_s390x",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:063b28090fce858259efe584b09d7329b766ae461926e8d78f6fac1cf6738055_s390x as a component of Red Hat Advanced Cluster Security for Kubernetes 4.11",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:063b28090fce858259efe584b09d7329b766ae461926e8d78f6fac1cf6738055_s390x"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:063b28090fce858259efe584b09d7329b766ae461926e8d78f6fac1cf6738055_s390x",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:0964f3f379136662c8c3817b2a7d3b787808fab2b742cd7ea53d5f6c2248d1c9_amd64 as a component of Red Hat Advanced Cluster Security for Kubernetes 4.11",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:0964f3f379136662c8c3817b2a7d3b787808fab2b742cd7ea53d5f6c2248d1c9_amd64"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:0964f3f379136662c8c3817b2a7d3b787808fab2b742cd7ea53d5f6c2248d1c9_amd64",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:bc05850aa1cefea5105198c9af51c64f2b255df1c1ccbb30f3c12a2d4c549f1b_arm64 as a component of Red Hat Advanced Cluster Security for Kubernetes 4.11",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:bc05850aa1cefea5105198c9af51c64f2b255df1c1ccbb30f3c12a2d4c549f1b_arm64"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:bc05850aa1cefea5105198c9af51c64f2b255df1c1ccbb30f3c12a2d4c549f1b_arm64",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:f5a7d92dc9cb85b9a4d70d871ab1748e80435e9ddba74ba3818e92ec57f7cf78_ppc64le as a component of Red Hat Advanced Cluster Security for Kubernetes 4.11",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:f5a7d92dc9cb85b9a4d70d871ab1748e80435e9ddba74ba3818e92ec57f7cf78_ppc64le"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:f5a7d92dc9cb85b9a4d70d871ab1748e80435e9ddba74ba3818e92ec57f7cf78_ppc64le",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:1ba125d01f712a5fb85db400a0cd9d2240c36529d7d0c8e925acfd3c45845bec_arm64 as a component of Red Hat Advanced Cluster Security for Kubernetes 4.11",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:1ba125d01f712a5fb85db400a0cd9d2240c36529d7d0c8e925acfd3c45845bec_arm64"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:1ba125d01f712a5fb85db400a0cd9d2240c36529d7d0c8e925acfd3c45845bec_arm64",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:2801fe77997c4325f9d1e154eae8c63a4fc808e2c31c773a60c47d63268b1bbc_amd64 as a component of Red Hat Advanced Cluster Security for Kubernetes 4.11",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:2801fe77997c4325f9d1e154eae8c63a4fc808e2c31c773a60c47d63268b1bbc_amd64"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:2801fe77997c4325f9d1e154eae8c63a4fc808e2c31c773a60c47d63268b1bbc_amd64",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:41fd9a9bc849f2c7c6439532bd537c34384b88be30b37629c5e271e0e4be7db4_arm64 as a component of Red Hat Advanced Cluster Security for Kubernetes 4.11",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:41fd9a9bc849f2c7c6439532bd537c34384b88be30b37629c5e271e0e4be7db4_arm64"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:41fd9a9bc849f2c7c6439532bd537c34384b88be30b37629c5e271e0e4be7db4_arm64",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:55d7e178435c881a57a88aa6747cd6dedd3c3a512014d0509919dceef13b2946_ppc64le as a component of Red Hat Advanced Cluster Security for Kubernetes 4.11",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:55d7e178435c881a57a88aa6747cd6dedd3c3a512014d0509919dceef13b2946_ppc64le"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:55d7e178435c881a57a88aa6747cd6dedd3c3a512014d0509919dceef13b2946_ppc64le",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:5fef4993574a20a48a9f93e5f07967d13b7b26e8f7e83e2222ea5bbe1f500409_amd64 as a component of Red Hat Advanced Cluster Security for Kubernetes 4.11",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:5fef4993574a20a48a9f93e5f07967d13b7b26e8f7e83e2222ea5bbe1f500409_amd64"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:5fef4993574a20a48a9f93e5f07967d13b7b26e8f7e83e2222ea5bbe1f500409_amd64",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:d785df86cfd97ff76e6d9426b247543faa91efaeb950f6b2e6b97f9e67624043_s390x as a component of Red Hat Advanced Cluster Security for Kubernetes 4.11",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:d785df86cfd97ff76e6d9426b247543faa91efaeb950f6b2e6b97f9e67624043_s390x"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:d785df86cfd97ff76e6d9426b247543faa91efaeb950f6b2e6b97f9e67624043_s390x",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:2fe25a8ac9612f29a625969bb25d24938abb298e9a9e1e79fb3aa34c6a0e5f76_amd64 as a component of Red Hat Advanced Cluster Security for Kubernetes 4.11",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:2fe25a8ac9612f29a625969bb25d24938abb298e9a9e1e79fb3aa34c6a0e5f76_amd64"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:2fe25a8ac9612f29a625969bb25d24938abb298e9a9e1e79fb3aa34c6a0e5f76_amd64",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:307402d2c8c46b74c1a855dad9fdd9f4013c057256513b4d1d58ac980ed8d2e0_ppc64le as a component of Red Hat Advanced Cluster Security for Kubernetes 4.11",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:307402d2c8c46b74c1a855dad9fdd9f4013c057256513b4d1d58ac980ed8d2e0_ppc64le"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:307402d2c8c46b74c1a855dad9fdd9f4013c057256513b4d1d58ac980ed8d2e0_ppc64le",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:91710d1c3f67e096b682cb6fa118c70d40bbbc36e3293aa3bea9890775d70236_arm64 as a component of Red Hat Advanced Cluster Security for Kubernetes 4.11",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:91710d1c3f67e096b682cb6fa118c70d40bbbc36e3293aa3bea9890775d70236_arm64"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:91710d1c3f67e096b682cb6fa118c70d40bbbc36e3293aa3bea9890775d70236_arm64",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:b9d25811da46af4766d41e7543cc54a2820b2b9a4c190585e34166620cf070f7_amd64 as a component of Red Hat Advanced Cluster Security for Kubernetes 4.11",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:b9d25811da46af4766d41e7543cc54a2820b2b9a4c190585e34166620cf070f7_amd64"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:b9d25811da46af4766d41e7543cc54a2820b2b9a4c190585e34166620cf070f7_amd64",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:fbd34cb7d74c9e699337157c4c26bc714b541e00645948cccedb5e7afb258003_s390x as a component of Red Hat Advanced Cluster Security for Kubernetes 4.11",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:fbd34cb7d74c9e699337157c4c26bc714b541e00645948cccedb5e7afb258003_s390x"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:fbd34cb7d74c9e699337157c4c26bc714b541e00645948cccedb5e7afb258003_s390x",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:93dc86f2358079474a9f5ce67e0e6430c2cdbe8a01155be8020165fce2e73f2b_amd64 as a component of Red Hat Advanced Cluster Security for Kubernetes 4.11",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:93dc86f2358079474a9f5ce67e0e6430c2cdbe8a01155be8020165fce2e73f2b_amd64"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:93dc86f2358079474a9f5ce67e0e6430c2cdbe8a01155be8020165fce2e73f2b_amd64",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:a8c0e823eb62db8ff39de33d6401670e2f65cac8e640b64a9ffeae8ecc0c12bc_ppc64le as a component of Red Hat Advanced Cluster Security for Kubernetes 4.11",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:a8c0e823eb62db8ff39de33d6401670e2f65cac8e640b64a9ffeae8ecc0c12bc_ppc64le"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:a8c0e823eb62db8ff39de33d6401670e2f65cac8e640b64a9ffeae8ecc0c12bc_ppc64le",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:d50e48a12a217855c373b865df663f50355e4f76fba33de65e50bdc333112c4a_arm64 as a component of Red Hat Advanced Cluster Security for Kubernetes 4.11",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:d50e48a12a217855c373b865df663f50355e4f76fba33de65e50bdc333112c4a_arm64"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:d50e48a12a217855c373b865df663f50355e4f76fba33de65e50bdc333112c4a_arm64",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:eab9c2e2d1ea614bf898c0cba75223f7960a61b7d2315815d6410e3c4f62d7f8_s390x as a component of Red Hat Advanced Cluster Security for Kubernetes 4.11",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:eab9c2e2d1ea614bf898c0cba75223f7960a61b7d2315815d6410e3c4f62d7f8_s390x"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:eab9c2e2d1ea614bf898c0cba75223f7960a61b7d2315815d6410e3c4f62d7f8_s390x",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:39470e0a40255d8d0bcfb6a3e82d77bfd57fdbff5452179f69eed7cff417a103_amd64 as a component of Red Hat Advanced Cluster Security for Kubernetes 4.11",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:39470e0a40255d8d0bcfb6a3e82d77bfd57fdbff5452179f69eed7cff417a103_amd64"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:39470e0a40255d8d0bcfb6a3e82d77bfd57fdbff5452179f69eed7cff417a103_amd64",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:69531d80a6af41db1c28f54a8acfea85594fca34c754c8049e75b331e998a973_s390x as a component of Red Hat Advanced Cluster Security for Kubernetes 4.11",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:69531d80a6af41db1c28f54a8acfea85594fca34c754c8049e75b331e998a973_s390x"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:69531d80a6af41db1c28f54a8acfea85594fca34c754c8049e75b331e998a973_s390x",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:7a6b045c058be14ab95043bc3c6680bba5ab54a060ae45dbc7e6e8896fb093d8_ppc64le as a component of Red Hat Advanced Cluster Security for Kubernetes 4.11",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:7a6b045c058be14ab95043bc3c6680bba5ab54a060ae45dbc7e6e8896fb093d8_ppc64le"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:7a6b045c058be14ab95043bc3c6680bba5ab54a060ae45dbc7e6e8896fb093d8_ppc64le",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:ab57133805270163a3cb99e972b183e8613a6fbfcc943eae5b542d923d572244_arm64 as a component of Red Hat Advanced Cluster Security for Kubernetes 4.11",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:ab57133805270163a3cb99e972b183e8613a6fbfcc943eae5b542d923d572244_arm64"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:ab57133805270163a3cb99e972b183e8613a6fbfcc943eae5b542d923d572244_arm64",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:1c03e0ce9e3b48c8c0f2a9c65dfe3d9b344cd82ac776dc210ef23b91745b0682_amd64 as a component of Red Hat Advanced Cluster Security for Kubernetes 4.11",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:1c03e0ce9e3b48c8c0f2a9c65dfe3d9b344cd82ac776dc210ef23b91745b0682_amd64"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:1c03e0ce9e3b48c8c0f2a9c65dfe3d9b344cd82ac776dc210ef23b91745b0682_amd64",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:3783cfecf52a9c532c4e64ed93078581c8ca200efda661efc63ae1fac4391d57_arm64 as a component of Red Hat Advanced Cluster Security for Kubernetes 4.11",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:3783cfecf52a9c532c4e64ed93078581c8ca200efda661efc63ae1fac4391d57_arm64"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:3783cfecf52a9c532c4e64ed93078581c8ca200efda661efc63ae1fac4391d57_arm64",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:58a181deb194766402e32ef43375e2e51208b229c8c97674bda5a6fcc768b8fd_ppc64le as a component of Red Hat Advanced Cluster Security for Kubernetes 4.11",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:58a181deb194766402e32ef43375e2e51208b229c8c97674bda5a6fcc768b8fd_ppc64le"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:58a181deb194766402e32ef43375e2e51208b229c8c97674bda5a6fcc768b8fd_ppc64le",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:973cb71559d8d346c3e0840a6865afda1de53017dcd9f35ee0a56a1606f3149b_s390x as a component of Red Hat Advanced Cluster Security for Kubernetes 4.11",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:973cb71559d8d346c3e0840a6865afda1de53017dcd9f35ee0a56a1606f3149b_s390x"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:973cb71559d8d346c3e0840a6865afda1de53017dcd9f35ee0a56a1606f3149b_s390x",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:276fbe3c102abbed5d2cc29b1dbf30456ab5d647fe7f157f18180cdd5ab0b431_arm64 as a component of Red Hat Advanced Cluster Security for Kubernetes 4.11",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:276fbe3c102abbed5d2cc29b1dbf30456ab5d647fe7f157f18180cdd5ab0b431_arm64"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:276fbe3c102abbed5d2cc29b1dbf30456ab5d647fe7f157f18180cdd5ab0b431_arm64",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:5fb0bea0b4f43dce5201a986eb9bcd9aa9c2859e3d762f265e4d000a4c93474f_ppc64le as a component of Red Hat Advanced Cluster Security for Kubernetes 4.11",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:5fb0bea0b4f43dce5201a986eb9bcd9aa9c2859e3d762f265e4d000a4c93474f_ppc64le"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:5fb0bea0b4f43dce5201a986eb9bcd9aa9c2859e3d762f265e4d000a4c93474f_ppc64le",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:8efb0787d02e6700bee64b83c251ee11f4cdc4a04eb770cea3ba34f3d9ec94b4_amd64 as a component of Red Hat Advanced Cluster Security for Kubernetes 4.11",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:8efb0787d02e6700bee64b83c251ee11f4cdc4a04eb770cea3ba34f3d9ec94b4_amd64"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:8efb0787d02e6700bee64b83c251ee11f4cdc4a04eb770cea3ba34f3d9ec94b4_amd64",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:bf53175b6a2e11cf7f5599b65fcb4e56e4037ad5b6254c9e4fa070080aea66fc_s390x as a component of Red Hat Advanced Cluster Security for Kubernetes 4.11",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:bf53175b6a2e11cf7f5599b65fcb4e56e4037ad5b6254c9e4fa070080aea66fc_s390x"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:bf53175b6a2e11cf7f5599b65fcb4e56e4037ad5b6254c9e4fa070080aea66fc_s390x",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:207a6c112b395d28579d8318d95bec18942834476574e07889ae734a4df1c4b5_amd64 as a component of Red Hat Advanced Cluster Security for Kubernetes 4.11",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:207a6c112b395d28579d8318d95bec18942834476574e07889ae734a4df1c4b5_amd64"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:207a6c112b395d28579d8318d95bec18942834476574e07889ae734a4df1c4b5_amd64",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:242afe8097041307445f2e9f4b8d3d674aa4ff91c6ffe884ef170b356a09fe68_ppc64le as a component of Red Hat Advanced Cluster Security for Kubernetes 4.11",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:242afe8097041307445f2e9f4b8d3d674aa4ff91c6ffe884ef170b356a09fe68_ppc64le"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:242afe8097041307445f2e9f4b8d3d674aa4ff91c6ffe884ef170b356a09fe68_ppc64le",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:3e0bc79f2f14f0bf95c5c5f08a7838e8c3df3df5da52182f4807b844dda8638e_arm64 as a component of Red Hat Advanced Cluster Security for Kubernetes 4.11",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:3e0bc79f2f14f0bf95c5c5f08a7838e8c3df3df5da52182f4807b844dda8638e_arm64"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:3e0bc79f2f14f0bf95c5c5f08a7838e8c3df3df5da52182f4807b844dda8638e_arm64",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:9823d42834e5698b968385a7ef7d5a2a2749c441d8122a895bf53d3681df6a7c_s390x as a component of Red Hat Advanced Cluster Security for Kubernetes 4.11",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:9823d42834e5698b968385a7ef7d5a2a2749c441d8122a895bf53d3681df6a7c_s390x"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:9823d42834e5698b968385a7ef7d5a2a2749c441d8122a895bf53d3681df6a7c_s390x",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:06be3bd07a7bf44fb19a93869f6286fbdc7d8b8e7b8507e3c8ce9f8af67574f9_arm64 as a component of Red Hat Advanced Cluster Security for Kubernetes 4.11",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:06be3bd07a7bf44fb19a93869f6286fbdc7d8b8e7b8507e3c8ce9f8af67574f9_arm64"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:06be3bd07a7bf44fb19a93869f6286fbdc7d8b8e7b8507e3c8ce9f8af67574f9_arm64",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:175bde7c228af62b6f04799bc35a01d525a115d7decb73b2b5f90a3c8cf10a9c_ppc64le as a component of Red Hat Advanced Cluster Security for Kubernetes 4.11",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:175bde7c228af62b6f04799bc35a01d525a115d7decb73b2b5f90a3c8cf10a9c_ppc64le"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:175bde7c228af62b6f04799bc35a01d525a115d7decb73b2b5f90a3c8cf10a9c_ppc64le",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:4d800957aef55f44442be2a95bd85e3098587c6b0f7455b50264993cd4a2154b_amd64 as a component of Red Hat Advanced Cluster Security for Kubernetes 4.11",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:4d800957aef55f44442be2a95bd85e3098587c6b0f7455b50264993cd4a2154b_amd64"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:4d800957aef55f44442be2a95bd85e3098587c6b0f7455b50264993cd4a2154b_amd64",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:7fb3f1bf0b641c2f30493fb8e10e90625f5fd30f77ed3b7dec2a98012d54bbab_s390x as a component of Red Hat Advanced Cluster Security for Kubernetes 4.11",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:7fb3f1bf0b641c2f30493fb8e10e90625f5fd30f77ed3b7dec2a98012d54bbab_s390x"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:7fb3f1bf0b641c2f30493fb8e10e90625f5fd30f77ed3b7dec2a98012d54bbab_s390x",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:0a23d3fe6f4f54358bef552a62b3d098a97d39b4f1c0b0c0c6d3588c85276417_ppc64le as a component of Red Hat Advanced Cluster Security for Kubernetes 4.11",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:0a23d3fe6f4f54358bef552a62b3d098a97d39b4f1c0b0c0c6d3588c85276417_ppc64le"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:0a23d3fe6f4f54358bef552a62b3d098a97d39b4f1c0b0c0c6d3588c85276417_ppc64le",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:b26fb5031c85204e1b9174c49452146d4528560de554b70e2e97eebccd610fb8_arm64 as a component of Red Hat Advanced Cluster Security for Kubernetes 4.11",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:b26fb5031c85204e1b9174c49452146d4528560de554b70e2e97eebccd610fb8_arm64"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:b26fb5031c85204e1b9174c49452146d4528560de554b70e2e97eebccd610fb8_arm64",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:e7d01fcd2995b921946a7842faec251ff4434bb9cda3b77e855339f2d9241471_s390x as a component of Red Hat Advanced Cluster Security for Kubernetes 4.11",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:e7d01fcd2995b921946a7842faec251ff4434bb9cda3b77e855339f2d9241471_s390x"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:e7d01fcd2995b921946a7842faec251ff4434bb9cda3b77e855339f2d9241471_s390x",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:ee31bd693543f37461982b1bbcdb783e438c3d1021875829bd24974a1d2c0ea6_amd64 as a component of Red Hat Advanced Cluster Security for Kubernetes 4.11",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:ee31bd693543f37461982b1bbcdb783e438c3d1021875829bd24974a1d2c0ea6_amd64"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:ee31bd693543f37461982b1bbcdb783e438c3d1021875829bd24974a1d2c0ea6_amd64",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.11"
}
]
},
"vulnerabilities": [
{
"acknowledgments": [
{
"names": [
"Moritz Clasmeier"
],
"organization": "Red Hat",
"summary": "This issue was discovered by Red Hat."
}
],
"cve": "CVE-2026-9165",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2026-05-21T00:00:00+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:70dbc4b2fd02c6006d01fd31277c79e1152a04e678316853cc9650004a88c8f6_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:93e15662b963e2da7c1ca4ad5c47df2a49d6df5857c9cb44157c88a1eb14c99c_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:a67c68062eb3fe78067524fbef175c6f4dcb2876138fbafc17c8f5aef930ffb5_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:fd0e68ad1f3d790efc1a7637a63668df741a3195d86260291ca7ff85fe72bed2_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:063b28090fce858259efe584b09d7329b766ae461926e8d78f6fac1cf6738055_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:0964f3f379136662c8c3817b2a7d3b787808fab2b742cd7ea53d5f6c2248d1c9_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:bc05850aa1cefea5105198c9af51c64f2b255df1c1ccbb30f3c12a2d4c549f1b_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:f5a7d92dc9cb85b9a4d70d871ab1748e80435e9ddba74ba3818e92ec57f7cf78_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:1ba125d01f712a5fb85db400a0cd9d2240c36529d7d0c8e925acfd3c45845bec_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:2801fe77997c4325f9d1e154eae8c63a4fc808e2c31c773a60c47d63268b1bbc_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:2fe25a8ac9612f29a625969bb25d24938abb298e9a9e1e79fb3aa34c6a0e5f76_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:307402d2c8c46b74c1a855dad9fdd9f4013c057256513b4d1d58ac980ed8d2e0_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:91710d1c3f67e096b682cb6fa118c70d40bbbc36e3293aa3bea9890775d70236_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:b9d25811da46af4766d41e7543cc54a2820b2b9a4c190585e34166620cf070f7_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:fbd34cb7d74c9e699337157c4c26bc714b541e00645948cccedb5e7afb258003_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:93dc86f2358079474a9f5ce67e0e6430c2cdbe8a01155be8020165fce2e73f2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:a8c0e823eb62db8ff39de33d6401670e2f65cac8e640b64a9ffeae8ecc0c12bc_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:d50e48a12a217855c373b865df663f50355e4f76fba33de65e50bdc333112c4a_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:eab9c2e2d1ea614bf898c0cba75223f7960a61b7d2315815d6410e3c4f62d7f8_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:39470e0a40255d8d0bcfb6a3e82d77bfd57fdbff5452179f69eed7cff417a103_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:69531d80a6af41db1c28f54a8acfea85594fca34c754c8049e75b331e998a973_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:7a6b045c058be14ab95043bc3c6680bba5ab54a060ae45dbc7e6e8896fb093d8_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:ab57133805270163a3cb99e972b183e8613a6fbfcc943eae5b542d923d572244_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:1c03e0ce9e3b48c8c0f2a9c65dfe3d9b344cd82ac776dc210ef23b91745b0682_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:3783cfecf52a9c532c4e64ed93078581c8ca200efda661efc63ae1fac4391d57_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:58a181deb194766402e32ef43375e2e51208b229c8c97674bda5a6fcc768b8fd_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:973cb71559d8d346c3e0840a6865afda1de53017dcd9f35ee0a56a1606f3149b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:276fbe3c102abbed5d2cc29b1dbf30456ab5d647fe7f157f18180cdd5ab0b431_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:5fb0bea0b4f43dce5201a986eb9bcd9aa9c2859e3d762f265e4d000a4c93474f_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:8efb0787d02e6700bee64b83c251ee11f4cdc4a04eb770cea3ba34f3d9ec94b4_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:bf53175b6a2e11cf7f5599b65fcb4e56e4037ad5b6254c9e4fa070080aea66fc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:207a6c112b395d28579d8318d95bec18942834476574e07889ae734a4df1c4b5_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:242afe8097041307445f2e9f4b8d3d674aa4ff91c6ffe884ef170b356a09fe68_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:3e0bc79f2f14f0bf95c5c5f08a7838e8c3df3df5da52182f4807b844dda8638e_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:9823d42834e5698b968385a7ef7d5a2a2749c441d8122a895bf53d3681df6a7c_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:06be3bd07a7bf44fb19a93869f6286fbdc7d8b8e7b8507e3c8ce9f8af67574f9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:175bde7c228af62b6f04799bc35a01d525a115d7decb73b2b5f90a3c8cf10a9c_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:4d800957aef55f44442be2a95bd85e3098587c6b0f7455b50264993cd4a2154b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:7fb3f1bf0b641c2f30493fb8e10e90625f5fd30f77ed3b7dec2a98012d54bbab_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:0a23d3fe6f4f54358bef552a62b3d098a97d39b4f1c0b0c0c6d3588c85276417_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:b26fb5031c85204e1b9174c49452146d4528560de554b70e2e97eebccd610fb8_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:e7d01fcd2995b921946a7842faec251ff4434bb9cda3b77e855339f2d9241471_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:ee31bd693543f37461982b1bbcdb783e438c3d1021875829bd24974a1d2c0ea6_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2480505"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Red Hat Advanced Cluster Security for Kubernetes (RHACS). Central does not limit the depth of GraphQL queries served on the authenticated GraphQL API. An authenticated user with a valid API token can send deeply nested queries that cause excessive resource consumption in Central, resulting in a denial of service for the management plane.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "stackrox: stackrox: Unbounded GraphQL query depth allows authenticated denial of service",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Red Hat Product Security is aware of this issue affecting RHACS Central. This flaw allows an authenticated user to reduce availability of the Central management component. Red Hat is not aware of malicious exploitation of this issue outside of coordinated testing. Updates addressing this issue will be released according to the RHACS support lifecycle. Refer to the associated errata when available for affected versions and update instructions.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:41fd9a9bc849f2c7c6439532bd537c34384b88be30b37629c5e271e0e4be7db4_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:55d7e178435c881a57a88aa6747cd6dedd3c3a512014d0509919dceef13b2946_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:5fef4993574a20a48a9f93e5f07967d13b7b26e8f7e83e2222ea5bbe1f500409_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:d785df86cfd97ff76e6d9426b247543faa91efaeb950f6b2e6b97f9e67624043_s390x"
],
"known_not_affected": [
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:70dbc4b2fd02c6006d01fd31277c79e1152a04e678316853cc9650004a88c8f6_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:93e15662b963e2da7c1ca4ad5c47df2a49d6df5857c9cb44157c88a1eb14c99c_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:a67c68062eb3fe78067524fbef175c6f4dcb2876138fbafc17c8f5aef930ffb5_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:fd0e68ad1f3d790efc1a7637a63668df741a3195d86260291ca7ff85fe72bed2_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:063b28090fce858259efe584b09d7329b766ae461926e8d78f6fac1cf6738055_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:0964f3f379136662c8c3817b2a7d3b787808fab2b742cd7ea53d5f6c2248d1c9_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:bc05850aa1cefea5105198c9af51c64f2b255df1c1ccbb30f3c12a2d4c549f1b_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:f5a7d92dc9cb85b9a4d70d871ab1748e80435e9ddba74ba3818e92ec57f7cf78_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:1ba125d01f712a5fb85db400a0cd9d2240c36529d7d0c8e925acfd3c45845bec_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:2801fe77997c4325f9d1e154eae8c63a4fc808e2c31c773a60c47d63268b1bbc_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:2fe25a8ac9612f29a625969bb25d24938abb298e9a9e1e79fb3aa34c6a0e5f76_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:307402d2c8c46b74c1a855dad9fdd9f4013c057256513b4d1d58ac980ed8d2e0_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:91710d1c3f67e096b682cb6fa118c70d40bbbc36e3293aa3bea9890775d70236_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:b9d25811da46af4766d41e7543cc54a2820b2b9a4c190585e34166620cf070f7_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:fbd34cb7d74c9e699337157c4c26bc714b541e00645948cccedb5e7afb258003_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:93dc86f2358079474a9f5ce67e0e6430c2cdbe8a01155be8020165fce2e73f2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:a8c0e823eb62db8ff39de33d6401670e2f65cac8e640b64a9ffeae8ecc0c12bc_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:d50e48a12a217855c373b865df663f50355e4f76fba33de65e50bdc333112c4a_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:eab9c2e2d1ea614bf898c0cba75223f7960a61b7d2315815d6410e3c4f62d7f8_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:39470e0a40255d8d0bcfb6a3e82d77bfd57fdbff5452179f69eed7cff417a103_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:69531d80a6af41db1c28f54a8acfea85594fca34c754c8049e75b331e998a973_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:7a6b045c058be14ab95043bc3c6680bba5ab54a060ae45dbc7e6e8896fb093d8_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:ab57133805270163a3cb99e972b183e8613a6fbfcc943eae5b542d923d572244_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:1c03e0ce9e3b48c8c0f2a9c65dfe3d9b344cd82ac776dc210ef23b91745b0682_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:3783cfecf52a9c532c4e64ed93078581c8ca200efda661efc63ae1fac4391d57_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:58a181deb194766402e32ef43375e2e51208b229c8c97674bda5a6fcc768b8fd_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:973cb71559d8d346c3e0840a6865afda1de53017dcd9f35ee0a56a1606f3149b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:276fbe3c102abbed5d2cc29b1dbf30456ab5d647fe7f157f18180cdd5ab0b431_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:5fb0bea0b4f43dce5201a986eb9bcd9aa9c2859e3d762f265e4d000a4c93474f_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:8efb0787d02e6700bee64b83c251ee11f4cdc4a04eb770cea3ba34f3d9ec94b4_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:bf53175b6a2e11cf7f5599b65fcb4e56e4037ad5b6254c9e4fa070080aea66fc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:207a6c112b395d28579d8318d95bec18942834476574e07889ae734a4df1c4b5_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:242afe8097041307445f2e9f4b8d3d674aa4ff91c6ffe884ef170b356a09fe68_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:3e0bc79f2f14f0bf95c5c5f08a7838e8c3df3df5da52182f4807b844dda8638e_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:9823d42834e5698b968385a7ef7d5a2a2749c441d8122a895bf53d3681df6a7c_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:06be3bd07a7bf44fb19a93869f6286fbdc7d8b8e7b8507e3c8ce9f8af67574f9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:175bde7c228af62b6f04799bc35a01d525a115d7decb73b2b5f90a3c8cf10a9c_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:4d800957aef55f44442be2a95bd85e3098587c6b0f7455b50264993cd4a2154b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:7fb3f1bf0b641c2f30493fb8e10e90625f5fd30f77ed3b7dec2a98012d54bbab_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:0a23d3fe6f4f54358bef552a62b3d098a97d39b4f1c0b0c0c6d3588c85276417_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:b26fb5031c85204e1b9174c49452146d4528560de554b70e2e97eebccd610fb8_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:e7d01fcd2995b921946a7842faec251ff4434bb9cda3b77e855339f2d9241471_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:ee31bd693543f37461982b1bbcdb783e438c3d1021875829bd24974a1d2c0ea6_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-9165"
},
{
"category": "external",
"summary": "RHBZ#2480505",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2480505"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-9165",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-9165"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-9165",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-9165"
}
],
"release_date": "2026-07-06T08:38:30.568000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-07T11:09:24+00:00",
"details": "If you are using an earlier version of RHACS, you are advised to\nupgrade to the version of RHACS mentioned in the synopsis and release\nnotes in order to take advantage of the enhancements, bug fixes, and/or\nsecurity patches in the release.",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:41fd9a9bc849f2c7c6439532bd537c34384b88be30b37629c5e271e0e4be7db4_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:55d7e178435c881a57a88aa6747cd6dedd3c3a512014d0509919dceef13b2946_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:5fef4993574a20a48a9f93e5f07967d13b7b26e8f7e83e2222ea5bbe1f500409_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:d785df86cfd97ff76e6d9426b247543faa91efaeb950f6b2e6b97f9e67624043_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36207"
},
{
"category": "workaround",
"details": "There is no complete mitigation other than installing the update once\navailable.",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:70dbc4b2fd02c6006d01fd31277c79e1152a04e678316853cc9650004a88c8f6_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:93e15662b963e2da7c1ca4ad5c47df2a49d6df5857c9cb44157c88a1eb14c99c_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:a67c68062eb3fe78067524fbef175c6f4dcb2876138fbafc17c8f5aef930ffb5_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:fd0e68ad1f3d790efc1a7637a63668df741a3195d86260291ca7ff85fe72bed2_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:063b28090fce858259efe584b09d7329b766ae461926e8d78f6fac1cf6738055_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:0964f3f379136662c8c3817b2a7d3b787808fab2b742cd7ea53d5f6c2248d1c9_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:bc05850aa1cefea5105198c9af51c64f2b255df1c1ccbb30f3c12a2d4c549f1b_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:f5a7d92dc9cb85b9a4d70d871ab1748e80435e9ddba74ba3818e92ec57f7cf78_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:1ba125d01f712a5fb85db400a0cd9d2240c36529d7d0c8e925acfd3c45845bec_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:2801fe77997c4325f9d1e154eae8c63a4fc808e2c31c773a60c47d63268b1bbc_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:41fd9a9bc849f2c7c6439532bd537c34384b88be30b37629c5e271e0e4be7db4_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:55d7e178435c881a57a88aa6747cd6dedd3c3a512014d0509919dceef13b2946_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:5fef4993574a20a48a9f93e5f07967d13b7b26e8f7e83e2222ea5bbe1f500409_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:d785df86cfd97ff76e6d9426b247543faa91efaeb950f6b2e6b97f9e67624043_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:2fe25a8ac9612f29a625969bb25d24938abb298e9a9e1e79fb3aa34c6a0e5f76_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:307402d2c8c46b74c1a855dad9fdd9f4013c057256513b4d1d58ac980ed8d2e0_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:91710d1c3f67e096b682cb6fa118c70d40bbbc36e3293aa3bea9890775d70236_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:b9d25811da46af4766d41e7543cc54a2820b2b9a4c190585e34166620cf070f7_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:fbd34cb7d74c9e699337157c4c26bc714b541e00645948cccedb5e7afb258003_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:93dc86f2358079474a9f5ce67e0e6430c2cdbe8a01155be8020165fce2e73f2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:a8c0e823eb62db8ff39de33d6401670e2f65cac8e640b64a9ffeae8ecc0c12bc_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:d50e48a12a217855c373b865df663f50355e4f76fba33de65e50bdc333112c4a_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:eab9c2e2d1ea614bf898c0cba75223f7960a61b7d2315815d6410e3c4f62d7f8_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:39470e0a40255d8d0bcfb6a3e82d77bfd57fdbff5452179f69eed7cff417a103_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:69531d80a6af41db1c28f54a8acfea85594fca34c754c8049e75b331e998a973_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:7a6b045c058be14ab95043bc3c6680bba5ab54a060ae45dbc7e6e8896fb093d8_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:ab57133805270163a3cb99e972b183e8613a6fbfcc943eae5b542d923d572244_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:1c03e0ce9e3b48c8c0f2a9c65dfe3d9b344cd82ac776dc210ef23b91745b0682_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:3783cfecf52a9c532c4e64ed93078581c8ca200efda661efc63ae1fac4391d57_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:58a181deb194766402e32ef43375e2e51208b229c8c97674bda5a6fcc768b8fd_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:973cb71559d8d346c3e0840a6865afda1de53017dcd9f35ee0a56a1606f3149b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:276fbe3c102abbed5d2cc29b1dbf30456ab5d647fe7f157f18180cdd5ab0b431_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:5fb0bea0b4f43dce5201a986eb9bcd9aa9c2859e3d762f265e4d000a4c93474f_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:8efb0787d02e6700bee64b83c251ee11f4cdc4a04eb770cea3ba34f3d9ec94b4_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:bf53175b6a2e11cf7f5599b65fcb4e56e4037ad5b6254c9e4fa070080aea66fc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:207a6c112b395d28579d8318d95bec18942834476574e07889ae734a4df1c4b5_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:242afe8097041307445f2e9f4b8d3d674aa4ff91c6ffe884ef170b356a09fe68_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:3e0bc79f2f14f0bf95c5c5f08a7838e8c3df3df5da52182f4807b844dda8638e_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:9823d42834e5698b968385a7ef7d5a2a2749c441d8122a895bf53d3681df6a7c_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:06be3bd07a7bf44fb19a93869f6286fbdc7d8b8e7b8507e3c8ce9f8af67574f9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:175bde7c228af62b6f04799bc35a01d525a115d7decb73b2b5f90a3c8cf10a9c_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:4d800957aef55f44442be2a95bd85e3098587c6b0f7455b50264993cd4a2154b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:7fb3f1bf0b641c2f30493fb8e10e90625f5fd30f77ed3b7dec2a98012d54bbab_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:0a23d3fe6f4f54358bef552a62b3d098a97d39b4f1c0b0c0c6d3588c85276417_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:b26fb5031c85204e1b9174c49452146d4528560de554b70e2e97eebccd610fb8_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:e7d01fcd2995b921946a7842faec251ff4434bb9cda3b77e855339f2d9241471_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:ee31bd693543f37461982b1bbcdb783e438c3d1021875829bd24974a1d2c0ea6_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.7,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:70dbc4b2fd02c6006d01fd31277c79e1152a04e678316853cc9650004a88c8f6_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:93e15662b963e2da7c1ca4ad5c47df2a49d6df5857c9cb44157c88a1eb14c99c_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:a67c68062eb3fe78067524fbef175c6f4dcb2876138fbafc17c8f5aef930ffb5_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:fd0e68ad1f3d790efc1a7637a63668df741a3195d86260291ca7ff85fe72bed2_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:063b28090fce858259efe584b09d7329b766ae461926e8d78f6fac1cf6738055_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:0964f3f379136662c8c3817b2a7d3b787808fab2b742cd7ea53d5f6c2248d1c9_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:bc05850aa1cefea5105198c9af51c64f2b255df1c1ccbb30f3c12a2d4c549f1b_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:f5a7d92dc9cb85b9a4d70d871ab1748e80435e9ddba74ba3818e92ec57f7cf78_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:1ba125d01f712a5fb85db400a0cd9d2240c36529d7d0c8e925acfd3c45845bec_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:2801fe77997c4325f9d1e154eae8c63a4fc808e2c31c773a60c47d63268b1bbc_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:41fd9a9bc849f2c7c6439532bd537c34384b88be30b37629c5e271e0e4be7db4_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:55d7e178435c881a57a88aa6747cd6dedd3c3a512014d0509919dceef13b2946_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:5fef4993574a20a48a9f93e5f07967d13b7b26e8f7e83e2222ea5bbe1f500409_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:d785df86cfd97ff76e6d9426b247543faa91efaeb950f6b2e6b97f9e67624043_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:2fe25a8ac9612f29a625969bb25d24938abb298e9a9e1e79fb3aa34c6a0e5f76_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:307402d2c8c46b74c1a855dad9fdd9f4013c057256513b4d1d58ac980ed8d2e0_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:91710d1c3f67e096b682cb6fa118c70d40bbbc36e3293aa3bea9890775d70236_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:b9d25811da46af4766d41e7543cc54a2820b2b9a4c190585e34166620cf070f7_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:fbd34cb7d74c9e699337157c4c26bc714b541e00645948cccedb5e7afb258003_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:93dc86f2358079474a9f5ce67e0e6430c2cdbe8a01155be8020165fce2e73f2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:a8c0e823eb62db8ff39de33d6401670e2f65cac8e640b64a9ffeae8ecc0c12bc_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:d50e48a12a217855c373b865df663f50355e4f76fba33de65e50bdc333112c4a_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:eab9c2e2d1ea614bf898c0cba75223f7960a61b7d2315815d6410e3c4f62d7f8_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:39470e0a40255d8d0bcfb6a3e82d77bfd57fdbff5452179f69eed7cff417a103_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:69531d80a6af41db1c28f54a8acfea85594fca34c754c8049e75b331e998a973_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:7a6b045c058be14ab95043bc3c6680bba5ab54a060ae45dbc7e6e8896fb093d8_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:ab57133805270163a3cb99e972b183e8613a6fbfcc943eae5b542d923d572244_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:1c03e0ce9e3b48c8c0f2a9c65dfe3d9b344cd82ac776dc210ef23b91745b0682_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:3783cfecf52a9c532c4e64ed93078581c8ca200efda661efc63ae1fac4391d57_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:58a181deb194766402e32ef43375e2e51208b229c8c97674bda5a6fcc768b8fd_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:973cb71559d8d346c3e0840a6865afda1de53017dcd9f35ee0a56a1606f3149b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:276fbe3c102abbed5d2cc29b1dbf30456ab5d647fe7f157f18180cdd5ab0b431_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:5fb0bea0b4f43dce5201a986eb9bcd9aa9c2859e3d762f265e4d000a4c93474f_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:8efb0787d02e6700bee64b83c251ee11f4cdc4a04eb770cea3ba34f3d9ec94b4_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:bf53175b6a2e11cf7f5599b65fcb4e56e4037ad5b6254c9e4fa070080aea66fc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:207a6c112b395d28579d8318d95bec18942834476574e07889ae734a4df1c4b5_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:242afe8097041307445f2e9f4b8d3d674aa4ff91c6ffe884ef170b356a09fe68_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:3e0bc79f2f14f0bf95c5c5f08a7838e8c3df3df5da52182f4807b844dda8638e_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:9823d42834e5698b968385a7ef7d5a2a2749c441d8122a895bf53d3681df6a7c_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:06be3bd07a7bf44fb19a93869f6286fbdc7d8b8e7b8507e3c8ce9f8af67574f9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:175bde7c228af62b6f04799bc35a01d525a115d7decb73b2b5f90a3c8cf10a9c_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:4d800957aef55f44442be2a95bd85e3098587c6b0f7455b50264993cd4a2154b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:7fb3f1bf0b641c2f30493fb8e10e90625f5fd30f77ed3b7dec2a98012d54bbab_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:0a23d3fe6f4f54358bef552a62b3d098a97d39b4f1c0b0c0c6d3588c85276417_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:b26fb5031c85204e1b9174c49452146d4528560de554b70e2e97eebccd610fb8_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:e7d01fcd2995b921946a7842faec251ff4434bb9cda3b77e855339f2d9241471_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:ee31bd693543f37461982b1bbcdb783e438c3d1021875829bd24974a1d2c0ea6_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "stackrox: stackrox: Unbounded GraphQL query depth allows authenticated denial of service"
},
{
"cve": "CVE-2026-25681",
"cwe": {
"id": "CWE-79",
"name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
},
"discovery_date": "2026-05-22T16:01:08.177603+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:70dbc4b2fd02c6006d01fd31277c79e1152a04e678316853cc9650004a88c8f6_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:93e15662b963e2da7c1ca4ad5c47df2a49d6df5857c9cb44157c88a1eb14c99c_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:a67c68062eb3fe78067524fbef175c6f4dcb2876138fbafc17c8f5aef930ffb5_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:fd0e68ad1f3d790efc1a7637a63668df741a3195d86260291ca7ff85fe72bed2_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:063b28090fce858259efe584b09d7329b766ae461926e8d78f6fac1cf6738055_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:0964f3f379136662c8c3817b2a7d3b787808fab2b742cd7ea53d5f6c2248d1c9_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:bc05850aa1cefea5105198c9af51c64f2b255df1c1ccbb30f3c12a2d4c549f1b_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:f5a7d92dc9cb85b9a4d70d871ab1748e80435e9ddba74ba3818e92ec57f7cf78_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:1ba125d01f712a5fb85db400a0cd9d2240c36529d7d0c8e925acfd3c45845bec_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:2801fe77997c4325f9d1e154eae8c63a4fc808e2c31c773a60c47d63268b1bbc_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:2fe25a8ac9612f29a625969bb25d24938abb298e9a9e1e79fb3aa34c6a0e5f76_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:39470e0a40255d8d0bcfb6a3e82d77bfd57fdbff5452179f69eed7cff417a103_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:69531d80a6af41db1c28f54a8acfea85594fca34c754c8049e75b331e998a973_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:7a6b045c058be14ab95043bc3c6680bba5ab54a060ae45dbc7e6e8896fb093d8_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:ab57133805270163a3cb99e972b183e8613a6fbfcc943eae5b542d923d572244_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:1c03e0ce9e3b48c8c0f2a9c65dfe3d9b344cd82ac776dc210ef23b91745b0682_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:3783cfecf52a9c532c4e64ed93078581c8ca200efda661efc63ae1fac4391d57_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:58a181deb194766402e32ef43375e2e51208b229c8c97674bda5a6fcc768b8fd_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:973cb71559d8d346c3e0840a6865afda1de53017dcd9f35ee0a56a1606f3149b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:06be3bd07a7bf44fb19a93869f6286fbdc7d8b8e7b8507e3c8ce9f8af67574f9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:175bde7c228af62b6f04799bc35a01d525a115d7decb73b2b5f90a3c8cf10a9c_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:4d800957aef55f44442be2a95bd85e3098587c6b0f7455b50264993cd4a2154b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:7fb3f1bf0b641c2f30493fb8e10e90625f5fd30f77ed3b7dec2a98012d54bbab_s390x"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2480761"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in golang.org/x/net/html. A remote attacker could exploit this vulnerability by providing specially crafted HTML. When this arbitrary HTML is parsed and rendered, it can result in an unexpected HTML tree, bypassing input sanitization. This can be leveraged to execute Cross-Site Scripting (XSS) attacks, potentially leading to arbitrary code execution in applications that use the affected component.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang.org/x/net/html: golang.org/x/net/html: Arbitrary code execution via Cross-Site Scripting",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This Important vulnerability in `golang.org/x/net/html` could enable remote attackers to execute Cross-Site Scripting (XSS) attacks, potentially leading to arbitrary code execution. The flaw allows specially crafted HTML to bypass input sanitization during parsing and rendering. Red Hat products are affected if they process untrusted HTML content using the vulnerable component without additional output encoding or robust content security policies.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:41fd9a9bc849f2c7c6439532bd537c34384b88be30b37629c5e271e0e4be7db4_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:55d7e178435c881a57a88aa6747cd6dedd3c3a512014d0509919dceef13b2946_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:5fef4993574a20a48a9f93e5f07967d13b7b26e8f7e83e2222ea5bbe1f500409_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:d785df86cfd97ff76e6d9426b247543faa91efaeb950f6b2e6b97f9e67624043_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:307402d2c8c46b74c1a855dad9fdd9f4013c057256513b4d1d58ac980ed8d2e0_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:91710d1c3f67e096b682cb6fa118c70d40bbbc36e3293aa3bea9890775d70236_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:b9d25811da46af4766d41e7543cc54a2820b2b9a4c190585e34166620cf070f7_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:fbd34cb7d74c9e699337157c4c26bc714b541e00645948cccedb5e7afb258003_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:93dc86f2358079474a9f5ce67e0e6430c2cdbe8a01155be8020165fce2e73f2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:a8c0e823eb62db8ff39de33d6401670e2f65cac8e640b64a9ffeae8ecc0c12bc_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:d50e48a12a217855c373b865df663f50355e4f76fba33de65e50bdc333112c4a_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:eab9c2e2d1ea614bf898c0cba75223f7960a61b7d2315815d6410e3c4f62d7f8_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:276fbe3c102abbed5d2cc29b1dbf30456ab5d647fe7f157f18180cdd5ab0b431_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:5fb0bea0b4f43dce5201a986eb9bcd9aa9c2859e3d762f265e4d000a4c93474f_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:8efb0787d02e6700bee64b83c251ee11f4cdc4a04eb770cea3ba34f3d9ec94b4_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:bf53175b6a2e11cf7f5599b65fcb4e56e4037ad5b6254c9e4fa070080aea66fc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:207a6c112b395d28579d8318d95bec18942834476574e07889ae734a4df1c4b5_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:242afe8097041307445f2e9f4b8d3d674aa4ff91c6ffe884ef170b356a09fe68_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:3e0bc79f2f14f0bf95c5c5f08a7838e8c3df3df5da52182f4807b844dda8638e_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:9823d42834e5698b968385a7ef7d5a2a2749c441d8122a895bf53d3681df6a7c_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:0a23d3fe6f4f54358bef552a62b3d098a97d39b4f1c0b0c0c6d3588c85276417_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:b26fb5031c85204e1b9174c49452146d4528560de554b70e2e97eebccd610fb8_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:e7d01fcd2995b921946a7842faec251ff4434bb9cda3b77e855339f2d9241471_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:ee31bd693543f37461982b1bbcdb783e438c3d1021875829bd24974a1d2c0ea6_amd64"
],
"known_not_affected": [
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:70dbc4b2fd02c6006d01fd31277c79e1152a04e678316853cc9650004a88c8f6_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:93e15662b963e2da7c1ca4ad5c47df2a49d6df5857c9cb44157c88a1eb14c99c_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:a67c68062eb3fe78067524fbef175c6f4dcb2876138fbafc17c8f5aef930ffb5_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:fd0e68ad1f3d790efc1a7637a63668df741a3195d86260291ca7ff85fe72bed2_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:063b28090fce858259efe584b09d7329b766ae461926e8d78f6fac1cf6738055_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:0964f3f379136662c8c3817b2a7d3b787808fab2b742cd7ea53d5f6c2248d1c9_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:bc05850aa1cefea5105198c9af51c64f2b255df1c1ccbb30f3c12a2d4c549f1b_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:f5a7d92dc9cb85b9a4d70d871ab1748e80435e9ddba74ba3818e92ec57f7cf78_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:1ba125d01f712a5fb85db400a0cd9d2240c36529d7d0c8e925acfd3c45845bec_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:2801fe77997c4325f9d1e154eae8c63a4fc808e2c31c773a60c47d63268b1bbc_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:2fe25a8ac9612f29a625969bb25d24938abb298e9a9e1e79fb3aa34c6a0e5f76_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:39470e0a40255d8d0bcfb6a3e82d77bfd57fdbff5452179f69eed7cff417a103_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:69531d80a6af41db1c28f54a8acfea85594fca34c754c8049e75b331e998a973_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:7a6b045c058be14ab95043bc3c6680bba5ab54a060ae45dbc7e6e8896fb093d8_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:ab57133805270163a3cb99e972b183e8613a6fbfcc943eae5b542d923d572244_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:1c03e0ce9e3b48c8c0f2a9c65dfe3d9b344cd82ac776dc210ef23b91745b0682_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:3783cfecf52a9c532c4e64ed93078581c8ca200efda661efc63ae1fac4391d57_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:58a181deb194766402e32ef43375e2e51208b229c8c97674bda5a6fcc768b8fd_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:973cb71559d8d346c3e0840a6865afda1de53017dcd9f35ee0a56a1606f3149b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:06be3bd07a7bf44fb19a93869f6286fbdc7d8b8e7b8507e3c8ce9f8af67574f9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:175bde7c228af62b6f04799bc35a01d525a115d7decb73b2b5f90a3c8cf10a9c_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:4d800957aef55f44442be2a95bd85e3098587c6b0f7455b50264993cd4a2154b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:7fb3f1bf0b641c2f30493fb8e10e90625f5fd30f77ed3b7dec2a98012d54bbab_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-25681"
},
{
"category": "external",
"summary": "RHBZ#2480761",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2480761"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-25681",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-25681"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-25681",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-25681"
},
{
"category": "external",
"summary": "https://go.dev/cl/781703",
"url": "https://go.dev/cl/781703"
},
{
"category": "external",
"summary": "https://go.dev/issue/79574",
"url": "https://go.dev/issue/79574"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/iI-mYSI0lu8",
"url": "https://groups.google.com/g/golang-announce/c/iI-mYSI0lu8"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-5029",
"url": "https://pkg.go.dev/vuln/GO-2026-5029"
}
],
"release_date": "2026-05-22T15:01:21.975000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-07T11:09:24+00:00",
"details": "If you are using an earlier version of RHACS, you are advised to\nupgrade to the version of RHACS mentioned in the synopsis and release\nnotes in order to take advantage of the enhancements, bug fixes, and/or\nsecurity patches in the release.",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:41fd9a9bc849f2c7c6439532bd537c34384b88be30b37629c5e271e0e4be7db4_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:55d7e178435c881a57a88aa6747cd6dedd3c3a512014d0509919dceef13b2946_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:5fef4993574a20a48a9f93e5f07967d13b7b26e8f7e83e2222ea5bbe1f500409_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:d785df86cfd97ff76e6d9426b247543faa91efaeb950f6b2e6b97f9e67624043_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:307402d2c8c46b74c1a855dad9fdd9f4013c057256513b4d1d58ac980ed8d2e0_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:91710d1c3f67e096b682cb6fa118c70d40bbbc36e3293aa3bea9890775d70236_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:b9d25811da46af4766d41e7543cc54a2820b2b9a4c190585e34166620cf070f7_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:fbd34cb7d74c9e699337157c4c26bc714b541e00645948cccedb5e7afb258003_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:93dc86f2358079474a9f5ce67e0e6430c2cdbe8a01155be8020165fce2e73f2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:a8c0e823eb62db8ff39de33d6401670e2f65cac8e640b64a9ffeae8ecc0c12bc_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:d50e48a12a217855c373b865df663f50355e4f76fba33de65e50bdc333112c4a_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:eab9c2e2d1ea614bf898c0cba75223f7960a61b7d2315815d6410e3c4f62d7f8_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:276fbe3c102abbed5d2cc29b1dbf30456ab5d647fe7f157f18180cdd5ab0b431_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:5fb0bea0b4f43dce5201a986eb9bcd9aa9c2859e3d762f265e4d000a4c93474f_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:8efb0787d02e6700bee64b83c251ee11f4cdc4a04eb770cea3ba34f3d9ec94b4_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:bf53175b6a2e11cf7f5599b65fcb4e56e4037ad5b6254c9e4fa070080aea66fc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:207a6c112b395d28579d8318d95bec18942834476574e07889ae734a4df1c4b5_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:242afe8097041307445f2e9f4b8d3d674aa4ff91c6ffe884ef170b356a09fe68_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:3e0bc79f2f14f0bf95c5c5f08a7838e8c3df3df5da52182f4807b844dda8638e_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:9823d42834e5698b968385a7ef7d5a2a2749c441d8122a895bf53d3681df6a7c_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:0a23d3fe6f4f54358bef552a62b3d098a97d39b4f1c0b0c0c6d3588c85276417_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:b26fb5031c85204e1b9174c49452146d4528560de554b70e2e97eebccd610fb8_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:e7d01fcd2995b921946a7842faec251ff4434bb9cda3b77e855339f2d9241471_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:ee31bd693543f37461982b1bbcdb783e438c3d1021875829bd24974a1d2c0ea6_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36207"
},
{
"category": "workaround",
"details": "To mitigate this flaw, applications processing untrusted HTML input must implement strict input sanitization and ensure all output is properly encoded before rendering. Deploying a comprehensive Content Security Policy (CSP) can restrict script execution, further reducing the attack surface. Administrators should review application configurations to ensure adequate protection against XSS.",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:70dbc4b2fd02c6006d01fd31277c79e1152a04e678316853cc9650004a88c8f6_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:93e15662b963e2da7c1ca4ad5c47df2a49d6df5857c9cb44157c88a1eb14c99c_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:a67c68062eb3fe78067524fbef175c6f4dcb2876138fbafc17c8f5aef930ffb5_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:fd0e68ad1f3d790efc1a7637a63668df741a3195d86260291ca7ff85fe72bed2_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:063b28090fce858259efe584b09d7329b766ae461926e8d78f6fac1cf6738055_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:0964f3f379136662c8c3817b2a7d3b787808fab2b742cd7ea53d5f6c2248d1c9_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:bc05850aa1cefea5105198c9af51c64f2b255df1c1ccbb30f3c12a2d4c549f1b_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:f5a7d92dc9cb85b9a4d70d871ab1748e80435e9ddba74ba3818e92ec57f7cf78_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:1ba125d01f712a5fb85db400a0cd9d2240c36529d7d0c8e925acfd3c45845bec_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:2801fe77997c4325f9d1e154eae8c63a4fc808e2c31c773a60c47d63268b1bbc_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:41fd9a9bc849f2c7c6439532bd537c34384b88be30b37629c5e271e0e4be7db4_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:55d7e178435c881a57a88aa6747cd6dedd3c3a512014d0509919dceef13b2946_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:5fef4993574a20a48a9f93e5f07967d13b7b26e8f7e83e2222ea5bbe1f500409_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:d785df86cfd97ff76e6d9426b247543faa91efaeb950f6b2e6b97f9e67624043_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:2fe25a8ac9612f29a625969bb25d24938abb298e9a9e1e79fb3aa34c6a0e5f76_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:307402d2c8c46b74c1a855dad9fdd9f4013c057256513b4d1d58ac980ed8d2e0_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:91710d1c3f67e096b682cb6fa118c70d40bbbc36e3293aa3bea9890775d70236_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:b9d25811da46af4766d41e7543cc54a2820b2b9a4c190585e34166620cf070f7_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:fbd34cb7d74c9e699337157c4c26bc714b541e00645948cccedb5e7afb258003_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:93dc86f2358079474a9f5ce67e0e6430c2cdbe8a01155be8020165fce2e73f2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:a8c0e823eb62db8ff39de33d6401670e2f65cac8e640b64a9ffeae8ecc0c12bc_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:d50e48a12a217855c373b865df663f50355e4f76fba33de65e50bdc333112c4a_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:eab9c2e2d1ea614bf898c0cba75223f7960a61b7d2315815d6410e3c4f62d7f8_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:39470e0a40255d8d0bcfb6a3e82d77bfd57fdbff5452179f69eed7cff417a103_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:69531d80a6af41db1c28f54a8acfea85594fca34c754c8049e75b331e998a973_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:7a6b045c058be14ab95043bc3c6680bba5ab54a060ae45dbc7e6e8896fb093d8_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:ab57133805270163a3cb99e972b183e8613a6fbfcc943eae5b542d923d572244_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:1c03e0ce9e3b48c8c0f2a9c65dfe3d9b344cd82ac776dc210ef23b91745b0682_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:3783cfecf52a9c532c4e64ed93078581c8ca200efda661efc63ae1fac4391d57_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:58a181deb194766402e32ef43375e2e51208b229c8c97674bda5a6fcc768b8fd_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:973cb71559d8d346c3e0840a6865afda1de53017dcd9f35ee0a56a1606f3149b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:276fbe3c102abbed5d2cc29b1dbf30456ab5d647fe7f157f18180cdd5ab0b431_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:5fb0bea0b4f43dce5201a986eb9bcd9aa9c2859e3d762f265e4d000a4c93474f_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:8efb0787d02e6700bee64b83c251ee11f4cdc4a04eb770cea3ba34f3d9ec94b4_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:bf53175b6a2e11cf7f5599b65fcb4e56e4037ad5b6254c9e4fa070080aea66fc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:207a6c112b395d28579d8318d95bec18942834476574e07889ae734a4df1c4b5_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:242afe8097041307445f2e9f4b8d3d674aa4ff91c6ffe884ef170b356a09fe68_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:3e0bc79f2f14f0bf95c5c5f08a7838e8c3df3df5da52182f4807b844dda8638e_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:9823d42834e5698b968385a7ef7d5a2a2749c441d8122a895bf53d3681df6a7c_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:06be3bd07a7bf44fb19a93869f6286fbdc7d8b8e7b8507e3c8ce9f8af67574f9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:175bde7c228af62b6f04799bc35a01d525a115d7decb73b2b5f90a3c8cf10a9c_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:4d800957aef55f44442be2a95bd85e3098587c6b0f7455b50264993cd4a2154b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:7fb3f1bf0b641c2f30493fb8e10e90625f5fd30f77ed3b7dec2a98012d54bbab_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:0a23d3fe6f4f54358bef552a62b3d098a97d39b4f1c0b0c0c6d3588c85276417_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:b26fb5031c85204e1b9174c49452146d4528560de554b70e2e97eebccd610fb8_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:e7d01fcd2995b921946a7842faec251ff4434bb9cda3b77e855339f2d9241471_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:ee31bd693543f37461982b1bbcdb783e438c3d1021875829bd24974a1d2c0ea6_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 8.1,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:70dbc4b2fd02c6006d01fd31277c79e1152a04e678316853cc9650004a88c8f6_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:93e15662b963e2da7c1ca4ad5c47df2a49d6df5857c9cb44157c88a1eb14c99c_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:a67c68062eb3fe78067524fbef175c6f4dcb2876138fbafc17c8f5aef930ffb5_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:fd0e68ad1f3d790efc1a7637a63668df741a3195d86260291ca7ff85fe72bed2_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:063b28090fce858259efe584b09d7329b766ae461926e8d78f6fac1cf6738055_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:0964f3f379136662c8c3817b2a7d3b787808fab2b742cd7ea53d5f6c2248d1c9_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:bc05850aa1cefea5105198c9af51c64f2b255df1c1ccbb30f3c12a2d4c549f1b_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:f5a7d92dc9cb85b9a4d70d871ab1748e80435e9ddba74ba3818e92ec57f7cf78_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:1ba125d01f712a5fb85db400a0cd9d2240c36529d7d0c8e925acfd3c45845bec_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:2801fe77997c4325f9d1e154eae8c63a4fc808e2c31c773a60c47d63268b1bbc_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:41fd9a9bc849f2c7c6439532bd537c34384b88be30b37629c5e271e0e4be7db4_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:55d7e178435c881a57a88aa6747cd6dedd3c3a512014d0509919dceef13b2946_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:5fef4993574a20a48a9f93e5f07967d13b7b26e8f7e83e2222ea5bbe1f500409_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:d785df86cfd97ff76e6d9426b247543faa91efaeb950f6b2e6b97f9e67624043_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:2fe25a8ac9612f29a625969bb25d24938abb298e9a9e1e79fb3aa34c6a0e5f76_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:307402d2c8c46b74c1a855dad9fdd9f4013c057256513b4d1d58ac980ed8d2e0_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:91710d1c3f67e096b682cb6fa118c70d40bbbc36e3293aa3bea9890775d70236_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:b9d25811da46af4766d41e7543cc54a2820b2b9a4c190585e34166620cf070f7_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:fbd34cb7d74c9e699337157c4c26bc714b541e00645948cccedb5e7afb258003_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:93dc86f2358079474a9f5ce67e0e6430c2cdbe8a01155be8020165fce2e73f2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:a8c0e823eb62db8ff39de33d6401670e2f65cac8e640b64a9ffeae8ecc0c12bc_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:d50e48a12a217855c373b865df663f50355e4f76fba33de65e50bdc333112c4a_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:eab9c2e2d1ea614bf898c0cba75223f7960a61b7d2315815d6410e3c4f62d7f8_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:39470e0a40255d8d0bcfb6a3e82d77bfd57fdbff5452179f69eed7cff417a103_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:69531d80a6af41db1c28f54a8acfea85594fca34c754c8049e75b331e998a973_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:7a6b045c058be14ab95043bc3c6680bba5ab54a060ae45dbc7e6e8896fb093d8_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:ab57133805270163a3cb99e972b183e8613a6fbfcc943eae5b542d923d572244_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:1c03e0ce9e3b48c8c0f2a9c65dfe3d9b344cd82ac776dc210ef23b91745b0682_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:3783cfecf52a9c532c4e64ed93078581c8ca200efda661efc63ae1fac4391d57_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:58a181deb194766402e32ef43375e2e51208b229c8c97674bda5a6fcc768b8fd_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:973cb71559d8d346c3e0840a6865afda1de53017dcd9f35ee0a56a1606f3149b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:276fbe3c102abbed5d2cc29b1dbf30456ab5d647fe7f157f18180cdd5ab0b431_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:5fb0bea0b4f43dce5201a986eb9bcd9aa9c2859e3d762f265e4d000a4c93474f_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:8efb0787d02e6700bee64b83c251ee11f4cdc4a04eb770cea3ba34f3d9ec94b4_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:bf53175b6a2e11cf7f5599b65fcb4e56e4037ad5b6254c9e4fa070080aea66fc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:207a6c112b395d28579d8318d95bec18942834476574e07889ae734a4df1c4b5_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:242afe8097041307445f2e9f4b8d3d674aa4ff91c6ffe884ef170b356a09fe68_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:3e0bc79f2f14f0bf95c5c5f08a7838e8c3df3df5da52182f4807b844dda8638e_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:9823d42834e5698b968385a7ef7d5a2a2749c441d8122a895bf53d3681df6a7c_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:06be3bd07a7bf44fb19a93869f6286fbdc7d8b8e7b8507e3c8ce9f8af67574f9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:175bde7c228af62b6f04799bc35a01d525a115d7decb73b2b5f90a3c8cf10a9c_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:4d800957aef55f44442be2a95bd85e3098587c6b0f7455b50264993cd4a2154b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:7fb3f1bf0b641c2f30493fb8e10e90625f5fd30f77ed3b7dec2a98012d54bbab_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:0a23d3fe6f4f54358bef552a62b3d098a97d39b4f1c0b0c0c6d3588c85276417_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:b26fb5031c85204e1b9174c49452146d4528560de554b70e2e97eebccd610fb8_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:e7d01fcd2995b921946a7842faec251ff4434bb9cda3b77e855339f2d9241471_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:ee31bd693543f37461982b1bbcdb783e438c3d1021875829bd24974a1d2c0ea6_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang.org/x/net/html: golang.org/x/net/html: Arbitrary code execution via Cross-Site Scripting"
},
{
"cve": "CVE-2026-27136",
"cwe": {
"id": "CWE-79",
"name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
},
"discovery_date": "2026-05-22T16:00:56.609820+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:70dbc4b2fd02c6006d01fd31277c79e1152a04e678316853cc9650004a88c8f6_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:93e15662b963e2da7c1ca4ad5c47df2a49d6df5857c9cb44157c88a1eb14c99c_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:a67c68062eb3fe78067524fbef175c6f4dcb2876138fbafc17c8f5aef930ffb5_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:fd0e68ad1f3d790efc1a7637a63668df741a3195d86260291ca7ff85fe72bed2_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:063b28090fce858259efe584b09d7329b766ae461926e8d78f6fac1cf6738055_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:0964f3f379136662c8c3817b2a7d3b787808fab2b742cd7ea53d5f6c2248d1c9_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:bc05850aa1cefea5105198c9af51c64f2b255df1c1ccbb30f3c12a2d4c549f1b_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:f5a7d92dc9cb85b9a4d70d871ab1748e80435e9ddba74ba3818e92ec57f7cf78_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:1ba125d01f712a5fb85db400a0cd9d2240c36529d7d0c8e925acfd3c45845bec_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:2801fe77997c4325f9d1e154eae8c63a4fc808e2c31c773a60c47d63268b1bbc_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:39470e0a40255d8d0bcfb6a3e82d77bfd57fdbff5452179f69eed7cff417a103_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:69531d80a6af41db1c28f54a8acfea85594fca34c754c8049e75b331e998a973_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:7a6b045c058be14ab95043bc3c6680bba5ab54a060ae45dbc7e6e8896fb093d8_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:ab57133805270163a3cb99e972b183e8613a6fbfcc943eae5b542d923d572244_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:1c03e0ce9e3b48c8c0f2a9c65dfe3d9b344cd82ac776dc210ef23b91745b0682_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:3783cfecf52a9c532c4e64ed93078581c8ca200efda661efc63ae1fac4391d57_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:58a181deb194766402e32ef43375e2e51208b229c8c97674bda5a6fcc768b8fd_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:973cb71559d8d346c3e0840a6865afda1de53017dcd9f35ee0a56a1606f3149b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:06be3bd07a7bf44fb19a93869f6286fbdc7d8b8e7b8507e3c8ce9f8af67574f9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:175bde7c228af62b6f04799bc35a01d525a115d7decb73b2b5f90a3c8cf10a9c_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:4d800957aef55f44442be2a95bd85e3098587c6b0f7455b50264993cd4a2154b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:7fb3f1bf0b641c2f30493fb8e10e90625f5fd30f77ed3b7dec2a98012d54bbab_s390x"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2480757"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in golang.org/x/net/html. When arbitrary HTML is parsed and then rendered, it can result in an unexpected HTML tree. This allows an attacker to bypass HTML sanitization mechanisms, leading to Cross-Site Scripting (XSS) attacks in applications. Such attacks can result in information disclosure or arbitrary code execution.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang.org/x/net/html: golang: golang.org/x/net/html: Cross-Site Scripting via HTML parsing bypass",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability in `golang.org/x/net/html` is rated as Important. It allows for Cross-Site Scripting (XSS) attacks by enabling an attacker to bypass HTML sanitization mechanisms when arbitrary HTML is parsed and rendered. This can lead to information disclosure or arbitrary code execution in affected applications. Exploitation typically requires user interaction, where a user processes specially crafted malicious HTML content.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:41fd9a9bc849f2c7c6439532bd537c34384b88be30b37629c5e271e0e4be7db4_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:55d7e178435c881a57a88aa6747cd6dedd3c3a512014d0509919dceef13b2946_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:5fef4993574a20a48a9f93e5f07967d13b7b26e8f7e83e2222ea5bbe1f500409_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:d785df86cfd97ff76e6d9426b247543faa91efaeb950f6b2e6b97f9e67624043_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:2fe25a8ac9612f29a625969bb25d24938abb298e9a9e1e79fb3aa34c6a0e5f76_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:307402d2c8c46b74c1a855dad9fdd9f4013c057256513b4d1d58ac980ed8d2e0_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:91710d1c3f67e096b682cb6fa118c70d40bbbc36e3293aa3bea9890775d70236_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:b9d25811da46af4766d41e7543cc54a2820b2b9a4c190585e34166620cf070f7_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:fbd34cb7d74c9e699337157c4c26bc714b541e00645948cccedb5e7afb258003_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:93dc86f2358079474a9f5ce67e0e6430c2cdbe8a01155be8020165fce2e73f2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:a8c0e823eb62db8ff39de33d6401670e2f65cac8e640b64a9ffeae8ecc0c12bc_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:d50e48a12a217855c373b865df663f50355e4f76fba33de65e50bdc333112c4a_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:eab9c2e2d1ea614bf898c0cba75223f7960a61b7d2315815d6410e3c4f62d7f8_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:276fbe3c102abbed5d2cc29b1dbf30456ab5d647fe7f157f18180cdd5ab0b431_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:5fb0bea0b4f43dce5201a986eb9bcd9aa9c2859e3d762f265e4d000a4c93474f_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:8efb0787d02e6700bee64b83c251ee11f4cdc4a04eb770cea3ba34f3d9ec94b4_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:bf53175b6a2e11cf7f5599b65fcb4e56e4037ad5b6254c9e4fa070080aea66fc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:207a6c112b395d28579d8318d95bec18942834476574e07889ae734a4df1c4b5_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:242afe8097041307445f2e9f4b8d3d674aa4ff91c6ffe884ef170b356a09fe68_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:3e0bc79f2f14f0bf95c5c5f08a7838e8c3df3df5da52182f4807b844dda8638e_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:9823d42834e5698b968385a7ef7d5a2a2749c441d8122a895bf53d3681df6a7c_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:0a23d3fe6f4f54358bef552a62b3d098a97d39b4f1c0b0c0c6d3588c85276417_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:b26fb5031c85204e1b9174c49452146d4528560de554b70e2e97eebccd610fb8_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:e7d01fcd2995b921946a7842faec251ff4434bb9cda3b77e855339f2d9241471_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:ee31bd693543f37461982b1bbcdb783e438c3d1021875829bd24974a1d2c0ea6_amd64"
],
"known_not_affected": [
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:70dbc4b2fd02c6006d01fd31277c79e1152a04e678316853cc9650004a88c8f6_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:93e15662b963e2da7c1ca4ad5c47df2a49d6df5857c9cb44157c88a1eb14c99c_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:a67c68062eb3fe78067524fbef175c6f4dcb2876138fbafc17c8f5aef930ffb5_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:fd0e68ad1f3d790efc1a7637a63668df741a3195d86260291ca7ff85fe72bed2_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:063b28090fce858259efe584b09d7329b766ae461926e8d78f6fac1cf6738055_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:0964f3f379136662c8c3817b2a7d3b787808fab2b742cd7ea53d5f6c2248d1c9_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:bc05850aa1cefea5105198c9af51c64f2b255df1c1ccbb30f3c12a2d4c549f1b_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:f5a7d92dc9cb85b9a4d70d871ab1748e80435e9ddba74ba3818e92ec57f7cf78_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:1ba125d01f712a5fb85db400a0cd9d2240c36529d7d0c8e925acfd3c45845bec_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:2801fe77997c4325f9d1e154eae8c63a4fc808e2c31c773a60c47d63268b1bbc_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:39470e0a40255d8d0bcfb6a3e82d77bfd57fdbff5452179f69eed7cff417a103_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:69531d80a6af41db1c28f54a8acfea85594fca34c754c8049e75b331e998a973_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:7a6b045c058be14ab95043bc3c6680bba5ab54a060ae45dbc7e6e8896fb093d8_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:ab57133805270163a3cb99e972b183e8613a6fbfcc943eae5b542d923d572244_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:1c03e0ce9e3b48c8c0f2a9c65dfe3d9b344cd82ac776dc210ef23b91745b0682_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:3783cfecf52a9c532c4e64ed93078581c8ca200efda661efc63ae1fac4391d57_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:58a181deb194766402e32ef43375e2e51208b229c8c97674bda5a6fcc768b8fd_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:973cb71559d8d346c3e0840a6865afda1de53017dcd9f35ee0a56a1606f3149b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:06be3bd07a7bf44fb19a93869f6286fbdc7d8b8e7b8507e3c8ce9f8af67574f9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:175bde7c228af62b6f04799bc35a01d525a115d7decb73b2b5f90a3c8cf10a9c_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:4d800957aef55f44442be2a95bd85e3098587c6b0f7455b50264993cd4a2154b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:7fb3f1bf0b641c2f30493fb8e10e90625f5fd30f77ed3b7dec2a98012d54bbab_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-27136"
},
{
"category": "external",
"summary": "RHBZ#2480757",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2480757"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-27136",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-27136"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-27136",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-27136"
},
{
"category": "external",
"summary": "https://go.dev/cl/781685",
"url": "https://go.dev/cl/781685"
},
{
"category": "external",
"summary": "https://go.dev/issue/79575",
"url": "https://go.dev/issue/79575"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/iI-mYSI0lu8",
"url": "https://groups.google.com/g/golang-announce/c/iI-mYSI0lu8"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-5030",
"url": "https://pkg.go.dev/vuln/GO-2026-5030"
}
],
"release_date": "2026-05-22T15:01:22.111000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-07T11:09:24+00:00",
"details": "If you are using an earlier version of RHACS, you are advised to\nupgrade to the version of RHACS mentioned in the synopsis and release\nnotes in order to take advantage of the enhancements, bug fixes, and/or\nsecurity patches in the release.",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:41fd9a9bc849f2c7c6439532bd537c34384b88be30b37629c5e271e0e4be7db4_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:55d7e178435c881a57a88aa6747cd6dedd3c3a512014d0509919dceef13b2946_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:5fef4993574a20a48a9f93e5f07967d13b7b26e8f7e83e2222ea5bbe1f500409_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:d785df86cfd97ff76e6d9426b247543faa91efaeb950f6b2e6b97f9e67624043_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:2fe25a8ac9612f29a625969bb25d24938abb298e9a9e1e79fb3aa34c6a0e5f76_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:307402d2c8c46b74c1a855dad9fdd9f4013c057256513b4d1d58ac980ed8d2e0_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:91710d1c3f67e096b682cb6fa118c70d40bbbc36e3293aa3bea9890775d70236_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:b9d25811da46af4766d41e7543cc54a2820b2b9a4c190585e34166620cf070f7_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:fbd34cb7d74c9e699337157c4c26bc714b541e00645948cccedb5e7afb258003_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:93dc86f2358079474a9f5ce67e0e6430c2cdbe8a01155be8020165fce2e73f2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:a8c0e823eb62db8ff39de33d6401670e2f65cac8e640b64a9ffeae8ecc0c12bc_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:d50e48a12a217855c373b865df663f50355e4f76fba33de65e50bdc333112c4a_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:eab9c2e2d1ea614bf898c0cba75223f7960a61b7d2315815d6410e3c4f62d7f8_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:276fbe3c102abbed5d2cc29b1dbf30456ab5d647fe7f157f18180cdd5ab0b431_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:5fb0bea0b4f43dce5201a986eb9bcd9aa9c2859e3d762f265e4d000a4c93474f_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:8efb0787d02e6700bee64b83c251ee11f4cdc4a04eb770cea3ba34f3d9ec94b4_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:bf53175b6a2e11cf7f5599b65fcb4e56e4037ad5b6254c9e4fa070080aea66fc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:207a6c112b395d28579d8318d95bec18942834476574e07889ae734a4df1c4b5_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:242afe8097041307445f2e9f4b8d3d674aa4ff91c6ffe884ef170b356a09fe68_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:3e0bc79f2f14f0bf95c5c5f08a7838e8c3df3df5da52182f4807b844dda8638e_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:9823d42834e5698b968385a7ef7d5a2a2749c441d8122a895bf53d3681df6a7c_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:0a23d3fe6f4f54358bef552a62b3d098a97d39b4f1c0b0c0c6d3588c85276417_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:b26fb5031c85204e1b9174c49452146d4528560de554b70e2e97eebccd610fb8_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:e7d01fcd2995b921946a7842faec251ff4434bb9cda3b77e855339f2d9241471_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:ee31bd693543f37461982b1bbcdb783e438c3d1021875829bd24974a1d2c0ea6_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36207"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability.",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:70dbc4b2fd02c6006d01fd31277c79e1152a04e678316853cc9650004a88c8f6_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:93e15662b963e2da7c1ca4ad5c47df2a49d6df5857c9cb44157c88a1eb14c99c_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:a67c68062eb3fe78067524fbef175c6f4dcb2876138fbafc17c8f5aef930ffb5_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:fd0e68ad1f3d790efc1a7637a63668df741a3195d86260291ca7ff85fe72bed2_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:063b28090fce858259efe584b09d7329b766ae461926e8d78f6fac1cf6738055_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:0964f3f379136662c8c3817b2a7d3b787808fab2b742cd7ea53d5f6c2248d1c9_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:bc05850aa1cefea5105198c9af51c64f2b255df1c1ccbb30f3c12a2d4c549f1b_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:f5a7d92dc9cb85b9a4d70d871ab1748e80435e9ddba74ba3818e92ec57f7cf78_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:1ba125d01f712a5fb85db400a0cd9d2240c36529d7d0c8e925acfd3c45845bec_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:2801fe77997c4325f9d1e154eae8c63a4fc808e2c31c773a60c47d63268b1bbc_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:41fd9a9bc849f2c7c6439532bd537c34384b88be30b37629c5e271e0e4be7db4_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:55d7e178435c881a57a88aa6747cd6dedd3c3a512014d0509919dceef13b2946_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:5fef4993574a20a48a9f93e5f07967d13b7b26e8f7e83e2222ea5bbe1f500409_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:d785df86cfd97ff76e6d9426b247543faa91efaeb950f6b2e6b97f9e67624043_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:2fe25a8ac9612f29a625969bb25d24938abb298e9a9e1e79fb3aa34c6a0e5f76_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:307402d2c8c46b74c1a855dad9fdd9f4013c057256513b4d1d58ac980ed8d2e0_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:91710d1c3f67e096b682cb6fa118c70d40bbbc36e3293aa3bea9890775d70236_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:b9d25811da46af4766d41e7543cc54a2820b2b9a4c190585e34166620cf070f7_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:fbd34cb7d74c9e699337157c4c26bc714b541e00645948cccedb5e7afb258003_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:93dc86f2358079474a9f5ce67e0e6430c2cdbe8a01155be8020165fce2e73f2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:a8c0e823eb62db8ff39de33d6401670e2f65cac8e640b64a9ffeae8ecc0c12bc_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:d50e48a12a217855c373b865df663f50355e4f76fba33de65e50bdc333112c4a_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:eab9c2e2d1ea614bf898c0cba75223f7960a61b7d2315815d6410e3c4f62d7f8_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:39470e0a40255d8d0bcfb6a3e82d77bfd57fdbff5452179f69eed7cff417a103_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:69531d80a6af41db1c28f54a8acfea85594fca34c754c8049e75b331e998a973_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:7a6b045c058be14ab95043bc3c6680bba5ab54a060ae45dbc7e6e8896fb093d8_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:ab57133805270163a3cb99e972b183e8613a6fbfcc943eae5b542d923d572244_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:1c03e0ce9e3b48c8c0f2a9c65dfe3d9b344cd82ac776dc210ef23b91745b0682_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:3783cfecf52a9c532c4e64ed93078581c8ca200efda661efc63ae1fac4391d57_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:58a181deb194766402e32ef43375e2e51208b229c8c97674bda5a6fcc768b8fd_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:973cb71559d8d346c3e0840a6865afda1de53017dcd9f35ee0a56a1606f3149b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:276fbe3c102abbed5d2cc29b1dbf30456ab5d647fe7f157f18180cdd5ab0b431_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:5fb0bea0b4f43dce5201a986eb9bcd9aa9c2859e3d762f265e4d000a4c93474f_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:8efb0787d02e6700bee64b83c251ee11f4cdc4a04eb770cea3ba34f3d9ec94b4_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:bf53175b6a2e11cf7f5599b65fcb4e56e4037ad5b6254c9e4fa070080aea66fc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:207a6c112b395d28579d8318d95bec18942834476574e07889ae734a4df1c4b5_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:242afe8097041307445f2e9f4b8d3d674aa4ff91c6ffe884ef170b356a09fe68_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:3e0bc79f2f14f0bf95c5c5f08a7838e8c3df3df5da52182f4807b844dda8638e_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:9823d42834e5698b968385a7ef7d5a2a2749c441d8122a895bf53d3681df6a7c_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:06be3bd07a7bf44fb19a93869f6286fbdc7d8b8e7b8507e3c8ce9f8af67574f9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:175bde7c228af62b6f04799bc35a01d525a115d7decb73b2b5f90a3c8cf10a9c_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:4d800957aef55f44442be2a95bd85e3098587c6b0f7455b50264993cd4a2154b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:7fb3f1bf0b641c2f30493fb8e10e90625f5fd30f77ed3b7dec2a98012d54bbab_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:0a23d3fe6f4f54358bef552a62b3d098a97d39b4f1c0b0c0c6d3588c85276417_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:b26fb5031c85204e1b9174c49452146d4528560de554b70e2e97eebccd610fb8_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:e7d01fcd2995b921946a7842faec251ff4434bb9cda3b77e855339f2d9241471_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:ee31bd693543f37461982b1bbcdb783e438c3d1021875829bd24974a1d2c0ea6_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 8.1,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:70dbc4b2fd02c6006d01fd31277c79e1152a04e678316853cc9650004a88c8f6_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:93e15662b963e2da7c1ca4ad5c47df2a49d6df5857c9cb44157c88a1eb14c99c_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:a67c68062eb3fe78067524fbef175c6f4dcb2876138fbafc17c8f5aef930ffb5_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:fd0e68ad1f3d790efc1a7637a63668df741a3195d86260291ca7ff85fe72bed2_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:063b28090fce858259efe584b09d7329b766ae461926e8d78f6fac1cf6738055_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:0964f3f379136662c8c3817b2a7d3b787808fab2b742cd7ea53d5f6c2248d1c9_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:bc05850aa1cefea5105198c9af51c64f2b255df1c1ccbb30f3c12a2d4c549f1b_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:f5a7d92dc9cb85b9a4d70d871ab1748e80435e9ddba74ba3818e92ec57f7cf78_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:1ba125d01f712a5fb85db400a0cd9d2240c36529d7d0c8e925acfd3c45845bec_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:2801fe77997c4325f9d1e154eae8c63a4fc808e2c31c773a60c47d63268b1bbc_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:41fd9a9bc849f2c7c6439532bd537c34384b88be30b37629c5e271e0e4be7db4_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:55d7e178435c881a57a88aa6747cd6dedd3c3a512014d0509919dceef13b2946_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:5fef4993574a20a48a9f93e5f07967d13b7b26e8f7e83e2222ea5bbe1f500409_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:d785df86cfd97ff76e6d9426b247543faa91efaeb950f6b2e6b97f9e67624043_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:2fe25a8ac9612f29a625969bb25d24938abb298e9a9e1e79fb3aa34c6a0e5f76_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:307402d2c8c46b74c1a855dad9fdd9f4013c057256513b4d1d58ac980ed8d2e0_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:91710d1c3f67e096b682cb6fa118c70d40bbbc36e3293aa3bea9890775d70236_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:b9d25811da46af4766d41e7543cc54a2820b2b9a4c190585e34166620cf070f7_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:fbd34cb7d74c9e699337157c4c26bc714b541e00645948cccedb5e7afb258003_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:93dc86f2358079474a9f5ce67e0e6430c2cdbe8a01155be8020165fce2e73f2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:a8c0e823eb62db8ff39de33d6401670e2f65cac8e640b64a9ffeae8ecc0c12bc_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:d50e48a12a217855c373b865df663f50355e4f76fba33de65e50bdc333112c4a_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:eab9c2e2d1ea614bf898c0cba75223f7960a61b7d2315815d6410e3c4f62d7f8_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:39470e0a40255d8d0bcfb6a3e82d77bfd57fdbff5452179f69eed7cff417a103_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:69531d80a6af41db1c28f54a8acfea85594fca34c754c8049e75b331e998a973_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:7a6b045c058be14ab95043bc3c6680bba5ab54a060ae45dbc7e6e8896fb093d8_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:ab57133805270163a3cb99e972b183e8613a6fbfcc943eae5b542d923d572244_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:1c03e0ce9e3b48c8c0f2a9c65dfe3d9b344cd82ac776dc210ef23b91745b0682_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:3783cfecf52a9c532c4e64ed93078581c8ca200efda661efc63ae1fac4391d57_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:58a181deb194766402e32ef43375e2e51208b229c8c97674bda5a6fcc768b8fd_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:973cb71559d8d346c3e0840a6865afda1de53017dcd9f35ee0a56a1606f3149b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:276fbe3c102abbed5d2cc29b1dbf30456ab5d647fe7f157f18180cdd5ab0b431_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:5fb0bea0b4f43dce5201a986eb9bcd9aa9c2859e3d762f265e4d000a4c93474f_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:8efb0787d02e6700bee64b83c251ee11f4cdc4a04eb770cea3ba34f3d9ec94b4_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:bf53175b6a2e11cf7f5599b65fcb4e56e4037ad5b6254c9e4fa070080aea66fc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:207a6c112b395d28579d8318d95bec18942834476574e07889ae734a4df1c4b5_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:242afe8097041307445f2e9f4b8d3d674aa4ff91c6ffe884ef170b356a09fe68_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:3e0bc79f2f14f0bf95c5c5f08a7838e8c3df3df5da52182f4807b844dda8638e_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:9823d42834e5698b968385a7ef7d5a2a2749c441d8122a895bf53d3681df6a7c_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:06be3bd07a7bf44fb19a93869f6286fbdc7d8b8e7b8507e3c8ce9f8af67574f9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:175bde7c228af62b6f04799bc35a01d525a115d7decb73b2b5f90a3c8cf10a9c_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:4d800957aef55f44442be2a95bd85e3098587c6b0f7455b50264993cd4a2154b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:7fb3f1bf0b641c2f30493fb8e10e90625f5fd30f77ed3b7dec2a98012d54bbab_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:0a23d3fe6f4f54358bef552a62b3d098a97d39b4f1c0b0c0c6d3588c85276417_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:b26fb5031c85204e1b9174c49452146d4528560de554b70e2e97eebccd610fb8_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:e7d01fcd2995b921946a7842faec251ff4434bb9cda3b77e855339f2d9241471_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:ee31bd693543f37461982b1bbcdb783e438c3d1021875829bd24974a1d2c0ea6_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang.org/x/net/html: golang: golang.org/x/net/html: Cross-Site Scripting via HTML parsing bypass"
},
{
"cve": "CVE-2026-33811",
"cwe": {
"id": "CWE-1341",
"name": "Multiple Releases of Same Resource or Handle"
},
"discovery_date": "2026-05-07T20:01:34.913869+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:70dbc4b2fd02c6006d01fd31277c79e1152a04e678316853cc9650004a88c8f6_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:93e15662b963e2da7c1ca4ad5c47df2a49d6df5857c9cb44157c88a1eb14c99c_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:a67c68062eb3fe78067524fbef175c6f4dcb2876138fbafc17c8f5aef930ffb5_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:fd0e68ad1f3d790efc1a7637a63668df741a3195d86260291ca7ff85fe72bed2_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:063b28090fce858259efe584b09d7329b766ae461926e8d78f6fac1cf6738055_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:0964f3f379136662c8c3817b2a7d3b787808fab2b742cd7ea53d5f6c2248d1c9_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:bc05850aa1cefea5105198c9af51c64f2b255df1c1ccbb30f3c12a2d4c549f1b_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:f5a7d92dc9cb85b9a4d70d871ab1748e80435e9ddba74ba3818e92ec57f7cf78_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:1ba125d01f712a5fb85db400a0cd9d2240c36529d7d0c8e925acfd3c45845bec_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:2801fe77997c4325f9d1e154eae8c63a4fc808e2c31c773a60c47d63268b1bbc_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:2fe25a8ac9612f29a625969bb25d24938abb298e9a9e1e79fb3aa34c6a0e5f76_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:307402d2c8c46b74c1a855dad9fdd9f4013c057256513b4d1d58ac980ed8d2e0_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:91710d1c3f67e096b682cb6fa118c70d40bbbc36e3293aa3bea9890775d70236_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:b9d25811da46af4766d41e7543cc54a2820b2b9a4c190585e34166620cf070f7_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:fbd34cb7d74c9e699337157c4c26bc714b541e00645948cccedb5e7afb258003_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:93dc86f2358079474a9f5ce67e0e6430c2cdbe8a01155be8020165fce2e73f2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:a8c0e823eb62db8ff39de33d6401670e2f65cac8e640b64a9ffeae8ecc0c12bc_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:d50e48a12a217855c373b865df663f50355e4f76fba33de65e50bdc333112c4a_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:eab9c2e2d1ea614bf898c0cba75223f7960a61b7d2315815d6410e3c4f62d7f8_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:39470e0a40255d8d0bcfb6a3e82d77bfd57fdbff5452179f69eed7cff417a103_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:69531d80a6af41db1c28f54a8acfea85594fca34c754c8049e75b331e998a973_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:7a6b045c058be14ab95043bc3c6680bba5ab54a060ae45dbc7e6e8896fb093d8_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:ab57133805270163a3cb99e972b183e8613a6fbfcc943eae5b542d923d572244_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:1c03e0ce9e3b48c8c0f2a9c65dfe3d9b344cd82ac776dc210ef23b91745b0682_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:3783cfecf52a9c532c4e64ed93078581c8ca200efda661efc63ae1fac4391d57_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:58a181deb194766402e32ef43375e2e51208b229c8c97674bda5a6fcc768b8fd_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:973cb71559d8d346c3e0840a6865afda1de53017dcd9f35ee0a56a1606f3149b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:276fbe3c102abbed5d2cc29b1dbf30456ab5d647fe7f157f18180cdd5ab0b431_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:5fb0bea0b4f43dce5201a986eb9bcd9aa9c2859e3d762f265e4d000a4c93474f_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:8efb0787d02e6700bee64b83c251ee11f4cdc4a04eb770cea3ba34f3d9ec94b4_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:bf53175b6a2e11cf7f5599b65fcb4e56e4037ad5b6254c9e4fa070080aea66fc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:207a6c112b395d28579d8318d95bec18942834476574e07889ae734a4df1c4b5_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:242afe8097041307445f2e9f4b8d3d674aa4ff91c6ffe884ef170b356a09fe68_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:3e0bc79f2f14f0bf95c5c5f08a7838e8c3df3df5da52182f4807b844dda8638e_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:9823d42834e5698b968385a7ef7d5a2a2749c441d8122a895bf53d3681df6a7c_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:06be3bd07a7bf44fb19a93869f6286fbdc7d8b8e7b8507e3c8ce9f8af67574f9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:175bde7c228af62b6f04799bc35a01d525a115d7decb73b2b5f90a3c8cf10a9c_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:4d800957aef55f44442be2a95bd85e3098587c6b0f7455b50264993cd4a2154b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:7fb3f1bf0b641c2f30493fb8e10e90625f5fd30f77ed3b7dec2a98012d54bbab_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:0a23d3fe6f4f54358bef552a62b3d098a97d39b4f1c0b0c0c6d3588c85276417_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:b26fb5031c85204e1b9174c49452146d4528560de554b70e2e97eebccd610fb8_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:e7d01fcd2995b921946a7842faec251ff4434bb9cda3b77e855339f2d9241471_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:ee31bd693543f37461982b1bbcdb783e438c3d1021875829bd24974a1d2c0ea6_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2467822"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the `net` package of Go (golang), specifically when using the `LookupCNAME` function with the `cgo` DNS resolver. A remote attacker could exploit this by providing a very long Canonical Name (CNAME) response. This can trigger a double-free of C memory, leading to a crash and a Denial of Service (DoS) for the affected application.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "net: golang: Go net package: Denial of Service via long CNAME response in LookupCNAME",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This is an Important denial of service vulnerability in the Go `net` package, affecting applications configured to use the `cgo` DNS resolver. A remote attacker could trigger a double-free memory error by providing a very long CNAME response, leading to a crash of the vulnerable application and impacting service availability.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:41fd9a9bc849f2c7c6439532bd537c34384b88be30b37629c5e271e0e4be7db4_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:55d7e178435c881a57a88aa6747cd6dedd3c3a512014d0509919dceef13b2946_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:5fef4993574a20a48a9f93e5f07967d13b7b26e8f7e83e2222ea5bbe1f500409_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:d785df86cfd97ff76e6d9426b247543faa91efaeb950f6b2e6b97f9e67624043_s390x"
],
"known_not_affected": [
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:70dbc4b2fd02c6006d01fd31277c79e1152a04e678316853cc9650004a88c8f6_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:93e15662b963e2da7c1ca4ad5c47df2a49d6df5857c9cb44157c88a1eb14c99c_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:a67c68062eb3fe78067524fbef175c6f4dcb2876138fbafc17c8f5aef930ffb5_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:fd0e68ad1f3d790efc1a7637a63668df741a3195d86260291ca7ff85fe72bed2_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:063b28090fce858259efe584b09d7329b766ae461926e8d78f6fac1cf6738055_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:0964f3f379136662c8c3817b2a7d3b787808fab2b742cd7ea53d5f6c2248d1c9_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:bc05850aa1cefea5105198c9af51c64f2b255df1c1ccbb30f3c12a2d4c549f1b_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:f5a7d92dc9cb85b9a4d70d871ab1748e80435e9ddba74ba3818e92ec57f7cf78_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:1ba125d01f712a5fb85db400a0cd9d2240c36529d7d0c8e925acfd3c45845bec_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:2801fe77997c4325f9d1e154eae8c63a4fc808e2c31c773a60c47d63268b1bbc_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:2fe25a8ac9612f29a625969bb25d24938abb298e9a9e1e79fb3aa34c6a0e5f76_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:307402d2c8c46b74c1a855dad9fdd9f4013c057256513b4d1d58ac980ed8d2e0_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:91710d1c3f67e096b682cb6fa118c70d40bbbc36e3293aa3bea9890775d70236_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:b9d25811da46af4766d41e7543cc54a2820b2b9a4c190585e34166620cf070f7_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:fbd34cb7d74c9e699337157c4c26bc714b541e00645948cccedb5e7afb258003_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:93dc86f2358079474a9f5ce67e0e6430c2cdbe8a01155be8020165fce2e73f2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:a8c0e823eb62db8ff39de33d6401670e2f65cac8e640b64a9ffeae8ecc0c12bc_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:d50e48a12a217855c373b865df663f50355e4f76fba33de65e50bdc333112c4a_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:eab9c2e2d1ea614bf898c0cba75223f7960a61b7d2315815d6410e3c4f62d7f8_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:39470e0a40255d8d0bcfb6a3e82d77bfd57fdbff5452179f69eed7cff417a103_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:69531d80a6af41db1c28f54a8acfea85594fca34c754c8049e75b331e998a973_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:7a6b045c058be14ab95043bc3c6680bba5ab54a060ae45dbc7e6e8896fb093d8_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:ab57133805270163a3cb99e972b183e8613a6fbfcc943eae5b542d923d572244_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:1c03e0ce9e3b48c8c0f2a9c65dfe3d9b344cd82ac776dc210ef23b91745b0682_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:3783cfecf52a9c532c4e64ed93078581c8ca200efda661efc63ae1fac4391d57_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:58a181deb194766402e32ef43375e2e51208b229c8c97674bda5a6fcc768b8fd_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:973cb71559d8d346c3e0840a6865afda1de53017dcd9f35ee0a56a1606f3149b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:276fbe3c102abbed5d2cc29b1dbf30456ab5d647fe7f157f18180cdd5ab0b431_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:5fb0bea0b4f43dce5201a986eb9bcd9aa9c2859e3d762f265e4d000a4c93474f_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:8efb0787d02e6700bee64b83c251ee11f4cdc4a04eb770cea3ba34f3d9ec94b4_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:bf53175b6a2e11cf7f5599b65fcb4e56e4037ad5b6254c9e4fa070080aea66fc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:207a6c112b395d28579d8318d95bec18942834476574e07889ae734a4df1c4b5_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:242afe8097041307445f2e9f4b8d3d674aa4ff91c6ffe884ef170b356a09fe68_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:3e0bc79f2f14f0bf95c5c5f08a7838e8c3df3df5da52182f4807b844dda8638e_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:9823d42834e5698b968385a7ef7d5a2a2749c441d8122a895bf53d3681df6a7c_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:06be3bd07a7bf44fb19a93869f6286fbdc7d8b8e7b8507e3c8ce9f8af67574f9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:175bde7c228af62b6f04799bc35a01d525a115d7decb73b2b5f90a3c8cf10a9c_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:4d800957aef55f44442be2a95bd85e3098587c6b0f7455b50264993cd4a2154b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:7fb3f1bf0b641c2f30493fb8e10e90625f5fd30f77ed3b7dec2a98012d54bbab_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:0a23d3fe6f4f54358bef552a62b3d098a97d39b4f1c0b0c0c6d3588c85276417_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:b26fb5031c85204e1b9174c49452146d4528560de554b70e2e97eebccd610fb8_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:e7d01fcd2995b921946a7842faec251ff4434bb9cda3b77e855339f2d9241471_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:ee31bd693543f37461982b1bbcdb783e438c3d1021875829bd24974a1d2c0ea6_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-33811"
},
{
"category": "external",
"summary": "RHBZ#2467822",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2467822"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-33811",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-33811"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-33811",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-33811"
},
{
"category": "external",
"summary": "https://go.dev/cl/767860",
"url": "https://go.dev/cl/767860"
},
{
"category": "external",
"summary": "https://go.dev/issue/78803",
"url": "https://go.dev/issue/78803"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/qcCIEXso47M",
"url": "https://groups.google.com/g/golang-announce/c/qcCIEXso47M"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-4981",
"url": "https://pkg.go.dev/vuln/GO-2026-4981"
}
],
"release_date": "2026-05-07T19:41:19.285000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-07T11:09:24+00:00",
"details": "If you are using an earlier version of RHACS, you are advised to\nupgrade to the version of RHACS mentioned in the synopsis and release\nnotes in order to take advantage of the enhancements, bug fixes, and/or\nsecurity patches in the release.",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:41fd9a9bc849f2c7c6439532bd537c34384b88be30b37629c5e271e0e4be7db4_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:55d7e178435c881a57a88aa6747cd6dedd3c3a512014d0509919dceef13b2946_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:5fef4993574a20a48a9f93e5f07967d13b7b26e8f7e83e2222ea5bbe1f500409_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:d785df86cfd97ff76e6d9426b247543faa91efaeb950f6b2e6b97f9e67624043_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36207"
},
{
"category": "workaround",
"details": "To mitigate this issue, applications can be configured to use the pure Go DNS resolver instead of the `cgo` DNS resolver. This can be achieved by setting the `GODEBUG` environment variable to `netdns=go`. For example, to run a Go application with this mitigation: `GODEBUG=netdns=go /path/to/your/go/application`. This change may require restarting affected applications or services to take effect. Users should verify that this change does not negatively impact DNS resolution for their specific application environment.",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:70dbc4b2fd02c6006d01fd31277c79e1152a04e678316853cc9650004a88c8f6_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:93e15662b963e2da7c1ca4ad5c47df2a49d6df5857c9cb44157c88a1eb14c99c_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:a67c68062eb3fe78067524fbef175c6f4dcb2876138fbafc17c8f5aef930ffb5_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:fd0e68ad1f3d790efc1a7637a63668df741a3195d86260291ca7ff85fe72bed2_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:063b28090fce858259efe584b09d7329b766ae461926e8d78f6fac1cf6738055_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:0964f3f379136662c8c3817b2a7d3b787808fab2b742cd7ea53d5f6c2248d1c9_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:bc05850aa1cefea5105198c9af51c64f2b255df1c1ccbb30f3c12a2d4c549f1b_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:f5a7d92dc9cb85b9a4d70d871ab1748e80435e9ddba74ba3818e92ec57f7cf78_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:1ba125d01f712a5fb85db400a0cd9d2240c36529d7d0c8e925acfd3c45845bec_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:2801fe77997c4325f9d1e154eae8c63a4fc808e2c31c773a60c47d63268b1bbc_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:41fd9a9bc849f2c7c6439532bd537c34384b88be30b37629c5e271e0e4be7db4_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:55d7e178435c881a57a88aa6747cd6dedd3c3a512014d0509919dceef13b2946_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:5fef4993574a20a48a9f93e5f07967d13b7b26e8f7e83e2222ea5bbe1f500409_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:d785df86cfd97ff76e6d9426b247543faa91efaeb950f6b2e6b97f9e67624043_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:2fe25a8ac9612f29a625969bb25d24938abb298e9a9e1e79fb3aa34c6a0e5f76_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:307402d2c8c46b74c1a855dad9fdd9f4013c057256513b4d1d58ac980ed8d2e0_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:91710d1c3f67e096b682cb6fa118c70d40bbbc36e3293aa3bea9890775d70236_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:b9d25811da46af4766d41e7543cc54a2820b2b9a4c190585e34166620cf070f7_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:fbd34cb7d74c9e699337157c4c26bc714b541e00645948cccedb5e7afb258003_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:93dc86f2358079474a9f5ce67e0e6430c2cdbe8a01155be8020165fce2e73f2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:a8c0e823eb62db8ff39de33d6401670e2f65cac8e640b64a9ffeae8ecc0c12bc_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:d50e48a12a217855c373b865df663f50355e4f76fba33de65e50bdc333112c4a_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:eab9c2e2d1ea614bf898c0cba75223f7960a61b7d2315815d6410e3c4f62d7f8_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:39470e0a40255d8d0bcfb6a3e82d77bfd57fdbff5452179f69eed7cff417a103_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:69531d80a6af41db1c28f54a8acfea85594fca34c754c8049e75b331e998a973_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:7a6b045c058be14ab95043bc3c6680bba5ab54a060ae45dbc7e6e8896fb093d8_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:ab57133805270163a3cb99e972b183e8613a6fbfcc943eae5b542d923d572244_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:1c03e0ce9e3b48c8c0f2a9c65dfe3d9b344cd82ac776dc210ef23b91745b0682_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:3783cfecf52a9c532c4e64ed93078581c8ca200efda661efc63ae1fac4391d57_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:58a181deb194766402e32ef43375e2e51208b229c8c97674bda5a6fcc768b8fd_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:973cb71559d8d346c3e0840a6865afda1de53017dcd9f35ee0a56a1606f3149b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:276fbe3c102abbed5d2cc29b1dbf30456ab5d647fe7f157f18180cdd5ab0b431_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:5fb0bea0b4f43dce5201a986eb9bcd9aa9c2859e3d762f265e4d000a4c93474f_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:8efb0787d02e6700bee64b83c251ee11f4cdc4a04eb770cea3ba34f3d9ec94b4_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:bf53175b6a2e11cf7f5599b65fcb4e56e4037ad5b6254c9e4fa070080aea66fc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:207a6c112b395d28579d8318d95bec18942834476574e07889ae734a4df1c4b5_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:242afe8097041307445f2e9f4b8d3d674aa4ff91c6ffe884ef170b356a09fe68_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:3e0bc79f2f14f0bf95c5c5f08a7838e8c3df3df5da52182f4807b844dda8638e_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:9823d42834e5698b968385a7ef7d5a2a2749c441d8122a895bf53d3681df6a7c_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:06be3bd07a7bf44fb19a93869f6286fbdc7d8b8e7b8507e3c8ce9f8af67574f9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:175bde7c228af62b6f04799bc35a01d525a115d7decb73b2b5f90a3c8cf10a9c_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:4d800957aef55f44442be2a95bd85e3098587c6b0f7455b50264993cd4a2154b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:7fb3f1bf0b641c2f30493fb8e10e90625f5fd30f77ed3b7dec2a98012d54bbab_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:0a23d3fe6f4f54358bef552a62b3d098a97d39b4f1c0b0c0c6d3588c85276417_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:b26fb5031c85204e1b9174c49452146d4528560de554b70e2e97eebccd610fb8_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:e7d01fcd2995b921946a7842faec251ff4434bb9cda3b77e855339f2d9241471_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:ee31bd693543f37461982b1bbcdb783e438c3d1021875829bd24974a1d2c0ea6_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:70dbc4b2fd02c6006d01fd31277c79e1152a04e678316853cc9650004a88c8f6_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:93e15662b963e2da7c1ca4ad5c47df2a49d6df5857c9cb44157c88a1eb14c99c_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:a67c68062eb3fe78067524fbef175c6f4dcb2876138fbafc17c8f5aef930ffb5_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:fd0e68ad1f3d790efc1a7637a63668df741a3195d86260291ca7ff85fe72bed2_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:063b28090fce858259efe584b09d7329b766ae461926e8d78f6fac1cf6738055_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:0964f3f379136662c8c3817b2a7d3b787808fab2b742cd7ea53d5f6c2248d1c9_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:bc05850aa1cefea5105198c9af51c64f2b255df1c1ccbb30f3c12a2d4c549f1b_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:f5a7d92dc9cb85b9a4d70d871ab1748e80435e9ddba74ba3818e92ec57f7cf78_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:1ba125d01f712a5fb85db400a0cd9d2240c36529d7d0c8e925acfd3c45845bec_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:2801fe77997c4325f9d1e154eae8c63a4fc808e2c31c773a60c47d63268b1bbc_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:41fd9a9bc849f2c7c6439532bd537c34384b88be30b37629c5e271e0e4be7db4_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:55d7e178435c881a57a88aa6747cd6dedd3c3a512014d0509919dceef13b2946_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:5fef4993574a20a48a9f93e5f07967d13b7b26e8f7e83e2222ea5bbe1f500409_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:d785df86cfd97ff76e6d9426b247543faa91efaeb950f6b2e6b97f9e67624043_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:2fe25a8ac9612f29a625969bb25d24938abb298e9a9e1e79fb3aa34c6a0e5f76_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:307402d2c8c46b74c1a855dad9fdd9f4013c057256513b4d1d58ac980ed8d2e0_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:91710d1c3f67e096b682cb6fa118c70d40bbbc36e3293aa3bea9890775d70236_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:b9d25811da46af4766d41e7543cc54a2820b2b9a4c190585e34166620cf070f7_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:fbd34cb7d74c9e699337157c4c26bc714b541e00645948cccedb5e7afb258003_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:93dc86f2358079474a9f5ce67e0e6430c2cdbe8a01155be8020165fce2e73f2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:a8c0e823eb62db8ff39de33d6401670e2f65cac8e640b64a9ffeae8ecc0c12bc_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:d50e48a12a217855c373b865df663f50355e4f76fba33de65e50bdc333112c4a_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:eab9c2e2d1ea614bf898c0cba75223f7960a61b7d2315815d6410e3c4f62d7f8_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:39470e0a40255d8d0bcfb6a3e82d77bfd57fdbff5452179f69eed7cff417a103_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:69531d80a6af41db1c28f54a8acfea85594fca34c754c8049e75b331e998a973_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:7a6b045c058be14ab95043bc3c6680bba5ab54a060ae45dbc7e6e8896fb093d8_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:ab57133805270163a3cb99e972b183e8613a6fbfcc943eae5b542d923d572244_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:1c03e0ce9e3b48c8c0f2a9c65dfe3d9b344cd82ac776dc210ef23b91745b0682_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:3783cfecf52a9c532c4e64ed93078581c8ca200efda661efc63ae1fac4391d57_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:58a181deb194766402e32ef43375e2e51208b229c8c97674bda5a6fcc768b8fd_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:973cb71559d8d346c3e0840a6865afda1de53017dcd9f35ee0a56a1606f3149b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:276fbe3c102abbed5d2cc29b1dbf30456ab5d647fe7f157f18180cdd5ab0b431_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:5fb0bea0b4f43dce5201a986eb9bcd9aa9c2859e3d762f265e4d000a4c93474f_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:8efb0787d02e6700bee64b83c251ee11f4cdc4a04eb770cea3ba34f3d9ec94b4_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:bf53175b6a2e11cf7f5599b65fcb4e56e4037ad5b6254c9e4fa070080aea66fc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:207a6c112b395d28579d8318d95bec18942834476574e07889ae734a4df1c4b5_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:242afe8097041307445f2e9f4b8d3d674aa4ff91c6ffe884ef170b356a09fe68_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:3e0bc79f2f14f0bf95c5c5f08a7838e8c3df3df5da52182f4807b844dda8638e_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:9823d42834e5698b968385a7ef7d5a2a2749c441d8122a895bf53d3681df6a7c_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:06be3bd07a7bf44fb19a93869f6286fbdc7d8b8e7b8507e3c8ce9f8af67574f9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:175bde7c228af62b6f04799bc35a01d525a115d7decb73b2b5f90a3c8cf10a9c_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:4d800957aef55f44442be2a95bd85e3098587c6b0f7455b50264993cd4a2154b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:7fb3f1bf0b641c2f30493fb8e10e90625f5fd30f77ed3b7dec2a98012d54bbab_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:0a23d3fe6f4f54358bef552a62b3d098a97d39b4f1c0b0c0c6d3588c85276417_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:b26fb5031c85204e1b9174c49452146d4528560de554b70e2e97eebccd610fb8_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:e7d01fcd2995b921946a7842faec251ff4434bb9cda3b77e855339f2d9241471_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:ee31bd693543f37461982b1bbcdb783e438c3d1021875829bd24974a1d2c0ea6_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "net: golang: Go net package: Denial of Service via long CNAME response in LookupCNAME"
},
{
"cve": "CVE-2026-39821",
"cwe": {
"id": "CWE-1289",
"name": "Improper Validation of Unsafe Equivalence in Input"
},
"discovery_date": "2026-05-22T16:00:52.844126+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:70dbc4b2fd02c6006d01fd31277c79e1152a04e678316853cc9650004a88c8f6_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:93e15662b963e2da7c1ca4ad5c47df2a49d6df5857c9cb44157c88a1eb14c99c_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:a67c68062eb3fe78067524fbef175c6f4dcb2876138fbafc17c8f5aef930ffb5_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:fd0e68ad1f3d790efc1a7637a63668df741a3195d86260291ca7ff85fe72bed2_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:063b28090fce858259efe584b09d7329b766ae461926e8d78f6fac1cf6738055_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:0964f3f379136662c8c3817b2a7d3b787808fab2b742cd7ea53d5f6c2248d1c9_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:bc05850aa1cefea5105198c9af51c64f2b255df1c1ccbb30f3c12a2d4c549f1b_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:f5a7d92dc9cb85b9a4d70d871ab1748e80435e9ddba74ba3818e92ec57f7cf78_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:1ba125d01f712a5fb85db400a0cd9d2240c36529d7d0c8e925acfd3c45845bec_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:2801fe77997c4325f9d1e154eae8c63a4fc808e2c31c773a60c47d63268b1bbc_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:2fe25a8ac9612f29a625969bb25d24938abb298e9a9e1e79fb3aa34c6a0e5f76_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:307402d2c8c46b74c1a855dad9fdd9f4013c057256513b4d1d58ac980ed8d2e0_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:91710d1c3f67e096b682cb6fa118c70d40bbbc36e3293aa3bea9890775d70236_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:b9d25811da46af4766d41e7543cc54a2820b2b9a4c190585e34166620cf070f7_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:fbd34cb7d74c9e699337157c4c26bc714b541e00645948cccedb5e7afb258003_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:93dc86f2358079474a9f5ce67e0e6430c2cdbe8a01155be8020165fce2e73f2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:a8c0e823eb62db8ff39de33d6401670e2f65cac8e640b64a9ffeae8ecc0c12bc_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:d50e48a12a217855c373b865df663f50355e4f76fba33de65e50bdc333112c4a_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:eab9c2e2d1ea614bf898c0cba75223f7960a61b7d2315815d6410e3c4f62d7f8_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:39470e0a40255d8d0bcfb6a3e82d77bfd57fdbff5452179f69eed7cff417a103_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:69531d80a6af41db1c28f54a8acfea85594fca34c754c8049e75b331e998a973_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:7a6b045c058be14ab95043bc3c6680bba5ab54a060ae45dbc7e6e8896fb093d8_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:ab57133805270163a3cb99e972b183e8613a6fbfcc943eae5b542d923d572244_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:1c03e0ce9e3b48c8c0f2a9c65dfe3d9b344cd82ac776dc210ef23b91745b0682_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:3783cfecf52a9c532c4e64ed93078581c8ca200efda661efc63ae1fac4391d57_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:58a181deb194766402e32ef43375e2e51208b229c8c97674bda5a6fcc768b8fd_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:973cb71559d8d346c3e0840a6865afda1de53017dcd9f35ee0a56a1606f3149b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:276fbe3c102abbed5d2cc29b1dbf30456ab5d647fe7f157f18180cdd5ab0b431_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:5fb0bea0b4f43dce5201a986eb9bcd9aa9c2859e3d762f265e4d000a4c93474f_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:8efb0787d02e6700bee64b83c251ee11f4cdc4a04eb770cea3ba34f3d9ec94b4_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:bf53175b6a2e11cf7f5599b65fcb4e56e4037ad5b6254c9e4fa070080aea66fc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:207a6c112b395d28579d8318d95bec18942834476574e07889ae734a4df1c4b5_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:242afe8097041307445f2e9f4b8d3d674aa4ff91c6ffe884ef170b356a09fe68_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:3e0bc79f2f14f0bf95c5c5f08a7838e8c3df3df5da52182f4807b844dda8638e_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:9823d42834e5698b968385a7ef7d5a2a2749c441d8122a895bf53d3681df6a7c_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:06be3bd07a7bf44fb19a93869f6286fbdc7d8b8e7b8507e3c8ce9f8af67574f9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:175bde7c228af62b6f04799bc35a01d525a115d7decb73b2b5f90a3c8cf10a9c_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:4d800957aef55f44442be2a95bd85e3098587c6b0f7455b50264993cd4a2154b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:7fb3f1bf0b641c2f30493fb8e10e90625f5fd30f77ed3b7dec2a98012d54bbab_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:0a23d3fe6f4f54358bef552a62b3d098a97d39b4f1c0b0c0c6d3588c85276417_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:b26fb5031c85204e1b9174c49452146d4528560de554b70e2e97eebccd610fb8_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:e7d01fcd2995b921946a7842faec251ff4434bb9cda3b77e855339f2d9241471_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:ee31bd693543f37461982b1bbcdb783e438c3d1021875829bd24974a1d2c0ea6_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2480756"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in golang.org/x/net/idna. ToASCII and ToUnicode incorrectly accept Punycode-encoded labels that decode to an ASCII-only hostname (for example, xn--example-.com returns example.com instead of an error). Applications that validate the ASCII form then convert to Unicode may grant access to a restricted hostname the ASCII check would have rejected.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang.org/x/net/idna: golang: golang.org/x/net/idna: Privilege escalation via incorrect Punycode label processing",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "golang.org/x/net/idna is vulnerable to privilege escalation through incorrect Punycode label handling in ToASCII and ToUnicode. An attacker who can supply a Punycode hostname that passes an ASCII-only authorization check may have it normalized to a restricted ASCII name the application intended to block. Red Hat exposure is broad across products shipping the Go toolchain or bundling golang.org/x/net, including RHEL and RHEL-AI golang RPMs, hummingbird Go runtimes, OpenShift and ODF container builds, and Ceph/OpenShift components compiled against affected x/net versions.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:41fd9a9bc849f2c7c6439532bd537c34384b88be30b37629c5e271e0e4be7db4_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:55d7e178435c881a57a88aa6747cd6dedd3c3a512014d0509919dceef13b2946_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:5fef4993574a20a48a9f93e5f07967d13b7b26e8f7e83e2222ea5bbe1f500409_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:d785df86cfd97ff76e6d9426b247543faa91efaeb950f6b2e6b97f9e67624043_s390x"
],
"known_not_affected": [
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:70dbc4b2fd02c6006d01fd31277c79e1152a04e678316853cc9650004a88c8f6_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:93e15662b963e2da7c1ca4ad5c47df2a49d6df5857c9cb44157c88a1eb14c99c_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:a67c68062eb3fe78067524fbef175c6f4dcb2876138fbafc17c8f5aef930ffb5_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:fd0e68ad1f3d790efc1a7637a63668df741a3195d86260291ca7ff85fe72bed2_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:063b28090fce858259efe584b09d7329b766ae461926e8d78f6fac1cf6738055_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:0964f3f379136662c8c3817b2a7d3b787808fab2b742cd7ea53d5f6c2248d1c9_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:bc05850aa1cefea5105198c9af51c64f2b255df1c1ccbb30f3c12a2d4c549f1b_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:f5a7d92dc9cb85b9a4d70d871ab1748e80435e9ddba74ba3818e92ec57f7cf78_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:1ba125d01f712a5fb85db400a0cd9d2240c36529d7d0c8e925acfd3c45845bec_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:2801fe77997c4325f9d1e154eae8c63a4fc808e2c31c773a60c47d63268b1bbc_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:2fe25a8ac9612f29a625969bb25d24938abb298e9a9e1e79fb3aa34c6a0e5f76_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:307402d2c8c46b74c1a855dad9fdd9f4013c057256513b4d1d58ac980ed8d2e0_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:91710d1c3f67e096b682cb6fa118c70d40bbbc36e3293aa3bea9890775d70236_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:b9d25811da46af4766d41e7543cc54a2820b2b9a4c190585e34166620cf070f7_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:fbd34cb7d74c9e699337157c4c26bc714b541e00645948cccedb5e7afb258003_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:93dc86f2358079474a9f5ce67e0e6430c2cdbe8a01155be8020165fce2e73f2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:a8c0e823eb62db8ff39de33d6401670e2f65cac8e640b64a9ffeae8ecc0c12bc_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:d50e48a12a217855c373b865df663f50355e4f76fba33de65e50bdc333112c4a_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:eab9c2e2d1ea614bf898c0cba75223f7960a61b7d2315815d6410e3c4f62d7f8_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:39470e0a40255d8d0bcfb6a3e82d77bfd57fdbff5452179f69eed7cff417a103_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:69531d80a6af41db1c28f54a8acfea85594fca34c754c8049e75b331e998a973_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:7a6b045c058be14ab95043bc3c6680bba5ab54a060ae45dbc7e6e8896fb093d8_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:ab57133805270163a3cb99e972b183e8613a6fbfcc943eae5b542d923d572244_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:1c03e0ce9e3b48c8c0f2a9c65dfe3d9b344cd82ac776dc210ef23b91745b0682_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:3783cfecf52a9c532c4e64ed93078581c8ca200efda661efc63ae1fac4391d57_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:58a181deb194766402e32ef43375e2e51208b229c8c97674bda5a6fcc768b8fd_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:973cb71559d8d346c3e0840a6865afda1de53017dcd9f35ee0a56a1606f3149b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:276fbe3c102abbed5d2cc29b1dbf30456ab5d647fe7f157f18180cdd5ab0b431_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:5fb0bea0b4f43dce5201a986eb9bcd9aa9c2859e3d762f265e4d000a4c93474f_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:8efb0787d02e6700bee64b83c251ee11f4cdc4a04eb770cea3ba34f3d9ec94b4_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:bf53175b6a2e11cf7f5599b65fcb4e56e4037ad5b6254c9e4fa070080aea66fc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:207a6c112b395d28579d8318d95bec18942834476574e07889ae734a4df1c4b5_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:242afe8097041307445f2e9f4b8d3d674aa4ff91c6ffe884ef170b356a09fe68_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:3e0bc79f2f14f0bf95c5c5f08a7838e8c3df3df5da52182f4807b844dda8638e_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:9823d42834e5698b968385a7ef7d5a2a2749c441d8122a895bf53d3681df6a7c_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:06be3bd07a7bf44fb19a93869f6286fbdc7d8b8e7b8507e3c8ce9f8af67574f9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:175bde7c228af62b6f04799bc35a01d525a115d7decb73b2b5f90a3c8cf10a9c_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:4d800957aef55f44442be2a95bd85e3098587c6b0f7455b50264993cd4a2154b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:7fb3f1bf0b641c2f30493fb8e10e90625f5fd30f77ed3b7dec2a98012d54bbab_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:0a23d3fe6f4f54358bef552a62b3d098a97d39b4f1c0b0c0c6d3588c85276417_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:b26fb5031c85204e1b9174c49452146d4528560de554b70e2e97eebccd610fb8_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:e7d01fcd2995b921946a7842faec251ff4434bb9cda3b77e855339f2d9241471_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:ee31bd693543f37461982b1bbcdb783e438c3d1021875829bd24974a1d2c0ea6_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-39821"
},
{
"category": "external",
"summary": "RHBZ#2480756",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2480756"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-39821",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-39821"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-39821",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-39821"
},
{
"category": "external",
"summary": "https://go.dev/cl/767220",
"url": "https://go.dev/cl/767220"
},
{
"category": "external",
"summary": "https://go.dev/issue/78760",
"url": "https://go.dev/issue/78760"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/iI-mYSI0lu8",
"url": "https://groups.google.com/g/golang-announce/c/iI-mYSI0lu8"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-5026",
"url": "https://pkg.go.dev/vuln/GO-2026-5026"
}
],
"release_date": "2026-05-22T15:01:21.462000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-07T11:09:24+00:00",
"details": "If you are using an earlier version of RHACS, you are advised to\nupgrade to the version of RHACS mentioned in the synopsis and release\nnotes in order to take advantage of the enhancements, bug fixes, and/or\nsecurity patches in the release.",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:41fd9a9bc849f2c7c6439532bd537c34384b88be30b37629c5e271e0e4be7db4_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:55d7e178435c881a57a88aa6747cd6dedd3c3a512014d0509919dceef13b2946_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:5fef4993574a20a48a9f93e5f07967d13b7b26e8f7e83e2222ea5bbe1f500409_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:d785df86cfd97ff76e6d9426b247543faa91efaeb950f6b2e6b97f9e67624043_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36207"
},
{
"category": "workaround",
"details": "Upgrade to a fixed golang.org/x/net release that includes the idna correction, via updated golang or dependent package rebuilds.",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:70dbc4b2fd02c6006d01fd31277c79e1152a04e678316853cc9650004a88c8f6_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:93e15662b963e2da7c1ca4ad5c47df2a49d6df5857c9cb44157c88a1eb14c99c_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:a67c68062eb3fe78067524fbef175c6f4dcb2876138fbafc17c8f5aef930ffb5_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:fd0e68ad1f3d790efc1a7637a63668df741a3195d86260291ca7ff85fe72bed2_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:063b28090fce858259efe584b09d7329b766ae461926e8d78f6fac1cf6738055_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:0964f3f379136662c8c3817b2a7d3b787808fab2b742cd7ea53d5f6c2248d1c9_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:bc05850aa1cefea5105198c9af51c64f2b255df1c1ccbb30f3c12a2d4c549f1b_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:f5a7d92dc9cb85b9a4d70d871ab1748e80435e9ddba74ba3818e92ec57f7cf78_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:1ba125d01f712a5fb85db400a0cd9d2240c36529d7d0c8e925acfd3c45845bec_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:2801fe77997c4325f9d1e154eae8c63a4fc808e2c31c773a60c47d63268b1bbc_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:41fd9a9bc849f2c7c6439532bd537c34384b88be30b37629c5e271e0e4be7db4_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:55d7e178435c881a57a88aa6747cd6dedd3c3a512014d0509919dceef13b2946_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:5fef4993574a20a48a9f93e5f07967d13b7b26e8f7e83e2222ea5bbe1f500409_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:d785df86cfd97ff76e6d9426b247543faa91efaeb950f6b2e6b97f9e67624043_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:2fe25a8ac9612f29a625969bb25d24938abb298e9a9e1e79fb3aa34c6a0e5f76_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:307402d2c8c46b74c1a855dad9fdd9f4013c057256513b4d1d58ac980ed8d2e0_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:91710d1c3f67e096b682cb6fa118c70d40bbbc36e3293aa3bea9890775d70236_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:b9d25811da46af4766d41e7543cc54a2820b2b9a4c190585e34166620cf070f7_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:fbd34cb7d74c9e699337157c4c26bc714b541e00645948cccedb5e7afb258003_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:93dc86f2358079474a9f5ce67e0e6430c2cdbe8a01155be8020165fce2e73f2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:a8c0e823eb62db8ff39de33d6401670e2f65cac8e640b64a9ffeae8ecc0c12bc_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:d50e48a12a217855c373b865df663f50355e4f76fba33de65e50bdc333112c4a_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:eab9c2e2d1ea614bf898c0cba75223f7960a61b7d2315815d6410e3c4f62d7f8_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:39470e0a40255d8d0bcfb6a3e82d77bfd57fdbff5452179f69eed7cff417a103_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:69531d80a6af41db1c28f54a8acfea85594fca34c754c8049e75b331e998a973_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:7a6b045c058be14ab95043bc3c6680bba5ab54a060ae45dbc7e6e8896fb093d8_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:ab57133805270163a3cb99e972b183e8613a6fbfcc943eae5b542d923d572244_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:1c03e0ce9e3b48c8c0f2a9c65dfe3d9b344cd82ac776dc210ef23b91745b0682_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:3783cfecf52a9c532c4e64ed93078581c8ca200efda661efc63ae1fac4391d57_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:58a181deb194766402e32ef43375e2e51208b229c8c97674bda5a6fcc768b8fd_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:973cb71559d8d346c3e0840a6865afda1de53017dcd9f35ee0a56a1606f3149b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:276fbe3c102abbed5d2cc29b1dbf30456ab5d647fe7f157f18180cdd5ab0b431_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:5fb0bea0b4f43dce5201a986eb9bcd9aa9c2859e3d762f265e4d000a4c93474f_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:8efb0787d02e6700bee64b83c251ee11f4cdc4a04eb770cea3ba34f3d9ec94b4_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:bf53175b6a2e11cf7f5599b65fcb4e56e4037ad5b6254c9e4fa070080aea66fc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:207a6c112b395d28579d8318d95bec18942834476574e07889ae734a4df1c4b5_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:242afe8097041307445f2e9f4b8d3d674aa4ff91c6ffe884ef170b356a09fe68_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:3e0bc79f2f14f0bf95c5c5f08a7838e8c3df3df5da52182f4807b844dda8638e_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:9823d42834e5698b968385a7ef7d5a2a2749c441d8122a895bf53d3681df6a7c_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:06be3bd07a7bf44fb19a93869f6286fbdc7d8b8e7b8507e3c8ce9f8af67574f9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:175bde7c228af62b6f04799bc35a01d525a115d7decb73b2b5f90a3c8cf10a9c_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:4d800957aef55f44442be2a95bd85e3098587c6b0f7455b50264993cd4a2154b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:7fb3f1bf0b641c2f30493fb8e10e90625f5fd30f77ed3b7dec2a98012d54bbab_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:0a23d3fe6f4f54358bef552a62b3d098a97d39b4f1c0b0c0c6d3588c85276417_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:b26fb5031c85204e1b9174c49452146d4528560de554b70e2e97eebccd610fb8_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:e7d01fcd2995b921946a7842faec251ff4434bb9cda3b77e855339f2d9241471_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:ee31bd693543f37461982b1bbcdb783e438c3d1021875829bd24974a1d2c0ea6_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 8.2,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:70dbc4b2fd02c6006d01fd31277c79e1152a04e678316853cc9650004a88c8f6_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:93e15662b963e2da7c1ca4ad5c47df2a49d6df5857c9cb44157c88a1eb14c99c_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:a67c68062eb3fe78067524fbef175c6f4dcb2876138fbafc17c8f5aef930ffb5_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:fd0e68ad1f3d790efc1a7637a63668df741a3195d86260291ca7ff85fe72bed2_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:063b28090fce858259efe584b09d7329b766ae461926e8d78f6fac1cf6738055_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:0964f3f379136662c8c3817b2a7d3b787808fab2b742cd7ea53d5f6c2248d1c9_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:bc05850aa1cefea5105198c9af51c64f2b255df1c1ccbb30f3c12a2d4c549f1b_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:f5a7d92dc9cb85b9a4d70d871ab1748e80435e9ddba74ba3818e92ec57f7cf78_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:1ba125d01f712a5fb85db400a0cd9d2240c36529d7d0c8e925acfd3c45845bec_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:2801fe77997c4325f9d1e154eae8c63a4fc808e2c31c773a60c47d63268b1bbc_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:41fd9a9bc849f2c7c6439532bd537c34384b88be30b37629c5e271e0e4be7db4_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:55d7e178435c881a57a88aa6747cd6dedd3c3a512014d0509919dceef13b2946_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:5fef4993574a20a48a9f93e5f07967d13b7b26e8f7e83e2222ea5bbe1f500409_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:d785df86cfd97ff76e6d9426b247543faa91efaeb950f6b2e6b97f9e67624043_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:2fe25a8ac9612f29a625969bb25d24938abb298e9a9e1e79fb3aa34c6a0e5f76_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:307402d2c8c46b74c1a855dad9fdd9f4013c057256513b4d1d58ac980ed8d2e0_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:91710d1c3f67e096b682cb6fa118c70d40bbbc36e3293aa3bea9890775d70236_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:b9d25811da46af4766d41e7543cc54a2820b2b9a4c190585e34166620cf070f7_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:fbd34cb7d74c9e699337157c4c26bc714b541e00645948cccedb5e7afb258003_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:93dc86f2358079474a9f5ce67e0e6430c2cdbe8a01155be8020165fce2e73f2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:a8c0e823eb62db8ff39de33d6401670e2f65cac8e640b64a9ffeae8ecc0c12bc_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:d50e48a12a217855c373b865df663f50355e4f76fba33de65e50bdc333112c4a_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:eab9c2e2d1ea614bf898c0cba75223f7960a61b7d2315815d6410e3c4f62d7f8_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:39470e0a40255d8d0bcfb6a3e82d77bfd57fdbff5452179f69eed7cff417a103_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:69531d80a6af41db1c28f54a8acfea85594fca34c754c8049e75b331e998a973_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:7a6b045c058be14ab95043bc3c6680bba5ab54a060ae45dbc7e6e8896fb093d8_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:ab57133805270163a3cb99e972b183e8613a6fbfcc943eae5b542d923d572244_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:1c03e0ce9e3b48c8c0f2a9c65dfe3d9b344cd82ac776dc210ef23b91745b0682_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:3783cfecf52a9c532c4e64ed93078581c8ca200efda661efc63ae1fac4391d57_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:58a181deb194766402e32ef43375e2e51208b229c8c97674bda5a6fcc768b8fd_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:973cb71559d8d346c3e0840a6865afda1de53017dcd9f35ee0a56a1606f3149b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:276fbe3c102abbed5d2cc29b1dbf30456ab5d647fe7f157f18180cdd5ab0b431_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:5fb0bea0b4f43dce5201a986eb9bcd9aa9c2859e3d762f265e4d000a4c93474f_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:8efb0787d02e6700bee64b83c251ee11f4cdc4a04eb770cea3ba34f3d9ec94b4_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:bf53175b6a2e11cf7f5599b65fcb4e56e4037ad5b6254c9e4fa070080aea66fc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:207a6c112b395d28579d8318d95bec18942834476574e07889ae734a4df1c4b5_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:242afe8097041307445f2e9f4b8d3d674aa4ff91c6ffe884ef170b356a09fe68_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:3e0bc79f2f14f0bf95c5c5f08a7838e8c3df3df5da52182f4807b844dda8638e_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:9823d42834e5698b968385a7ef7d5a2a2749c441d8122a895bf53d3681df6a7c_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:06be3bd07a7bf44fb19a93869f6286fbdc7d8b8e7b8507e3c8ce9f8af67574f9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:175bde7c228af62b6f04799bc35a01d525a115d7decb73b2b5f90a3c8cf10a9c_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:4d800957aef55f44442be2a95bd85e3098587c6b0f7455b50264993cd4a2154b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:7fb3f1bf0b641c2f30493fb8e10e90625f5fd30f77ed3b7dec2a98012d54bbab_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:0a23d3fe6f4f54358bef552a62b3d098a97d39b4f1c0b0c0c6d3588c85276417_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:b26fb5031c85204e1b9174c49452146d4528560de554b70e2e97eebccd610fb8_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:e7d01fcd2995b921946a7842faec251ff4434bb9cda3b77e855339f2d9241471_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:ee31bd693543f37461982b1bbcdb783e438c3d1021875829bd24974a1d2c0ea6_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang.org/x/net/idna: golang: golang.org/x/net/idna: Privilege escalation via incorrect Punycode label processing"
},
{
"cve": "CVE-2026-39828",
"cwe": {
"id": "CWE-281",
"name": "Improper Preservation of Permissions"
},
"discovery_date": "2026-05-22T04:01:46.775641+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:70dbc4b2fd02c6006d01fd31277c79e1152a04e678316853cc9650004a88c8f6_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:93e15662b963e2da7c1ca4ad5c47df2a49d6df5857c9cb44157c88a1eb14c99c_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:a67c68062eb3fe78067524fbef175c6f4dcb2876138fbafc17c8f5aef930ffb5_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:fd0e68ad1f3d790efc1a7637a63668df741a3195d86260291ca7ff85fe72bed2_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:063b28090fce858259efe584b09d7329b766ae461926e8d78f6fac1cf6738055_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:0964f3f379136662c8c3817b2a7d3b787808fab2b742cd7ea53d5f6c2248d1c9_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:bc05850aa1cefea5105198c9af51c64f2b255df1c1ccbb30f3c12a2d4c549f1b_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:f5a7d92dc9cb85b9a4d70d871ab1748e80435e9ddba74ba3818e92ec57f7cf78_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:1ba125d01f712a5fb85db400a0cd9d2240c36529d7d0c8e925acfd3c45845bec_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:2801fe77997c4325f9d1e154eae8c63a4fc808e2c31c773a60c47d63268b1bbc_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:41fd9a9bc849f2c7c6439532bd537c34384b88be30b37629c5e271e0e4be7db4_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:55d7e178435c881a57a88aa6747cd6dedd3c3a512014d0509919dceef13b2946_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:5fef4993574a20a48a9f93e5f07967d13b7b26e8f7e83e2222ea5bbe1f500409_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:d785df86cfd97ff76e6d9426b247543faa91efaeb950f6b2e6b97f9e67624043_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:2fe25a8ac9612f29a625969bb25d24938abb298e9a9e1e79fb3aa34c6a0e5f76_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:93dc86f2358079474a9f5ce67e0e6430c2cdbe8a01155be8020165fce2e73f2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:a8c0e823eb62db8ff39de33d6401670e2f65cac8e640b64a9ffeae8ecc0c12bc_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:d50e48a12a217855c373b865df663f50355e4f76fba33de65e50bdc333112c4a_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:eab9c2e2d1ea614bf898c0cba75223f7960a61b7d2315815d6410e3c4f62d7f8_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:39470e0a40255d8d0bcfb6a3e82d77bfd57fdbff5452179f69eed7cff417a103_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:69531d80a6af41db1c28f54a8acfea85594fca34c754c8049e75b331e998a973_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:7a6b045c058be14ab95043bc3c6680bba5ab54a060ae45dbc7e6e8896fb093d8_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:ab57133805270163a3cb99e972b183e8613a6fbfcc943eae5b542d923d572244_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:1c03e0ce9e3b48c8c0f2a9c65dfe3d9b344cd82ac776dc210ef23b91745b0682_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:3783cfecf52a9c532c4e64ed93078581c8ca200efda661efc63ae1fac4391d57_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:58a181deb194766402e32ef43375e2e51208b229c8c97674bda5a6fcc768b8fd_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:973cb71559d8d346c3e0840a6865afda1de53017dcd9f35ee0a56a1606f3149b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:276fbe3c102abbed5d2cc29b1dbf30456ab5d647fe7f157f18180cdd5ab0b431_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:5fb0bea0b4f43dce5201a986eb9bcd9aa9c2859e3d762f265e4d000a4c93474f_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:8efb0787d02e6700bee64b83c251ee11f4cdc4a04eb770cea3ba34f3d9ec94b4_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:bf53175b6a2e11cf7f5599b65fcb4e56e4037ad5b6254c9e4fa070080aea66fc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:207a6c112b395d28579d8318d95bec18942834476574e07889ae734a4df1c4b5_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:242afe8097041307445f2e9f4b8d3d674aa4ff91c6ffe884ef170b356a09fe68_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:3e0bc79f2f14f0bf95c5c5f08a7838e8c3df3df5da52182f4807b844dda8638e_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:9823d42834e5698b968385a7ef7d5a2a2749c441d8122a895bf53d3681df6a7c_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:06be3bd07a7bf44fb19a93869f6286fbdc7d8b8e7b8507e3c8ce9f8af67574f9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:175bde7c228af62b6f04799bc35a01d525a115d7decb73b2b5f90a3c8cf10a9c_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:4d800957aef55f44442be2a95bd85e3098587c6b0f7455b50264993cd4a2154b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:7fb3f1bf0b641c2f30493fb8e10e90625f5fd30f77ed3b7dec2a98012d54bbab_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:0a23d3fe6f4f54358bef552a62b3d098a97d39b4f1c0b0c0c6d3588c85276417_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:b26fb5031c85204e1b9174c49452146d4528560de554b70e2e97eebccd610fb8_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:e7d01fcd2995b921946a7842faec251ff4434bb9cda3b77e855339f2d9241471_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:ee31bd693543f37461982b1bbcdb783e438c3d1021875829bd24974a1d2c0ea6_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2480687"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in golang.org/x/crypto/ssh. A remote attacker could exploit this vulnerability when an SSH server authentication callback returned a PartialSuccessError with non-nil permissions. This flaw caused these permissions to be silently discarded, potentially bypassing certificate restrictions, such as a force-command, after a second authentication factor succeeded. This could lead to unauthorized command execution or access.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang.org/x/crypto/ssh: golang.org/x/crypto/ssh: Unauthorized command execution via discarded SSH permissions",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This is an Important security flaw in the `golang.org/x/crypto/ssh` library. When an SSH server utilizing this library is configured with specific authentication callbacks that return a `PartialSuccessError` with non-nil permissions, an attacker could bypass intended certificate restrictions, such as `force-command`. This bypass could lead to unauthorized command execution or access on affected Red Hat systems configured with multi-factor authentication and certificate-based access controls.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:307402d2c8c46b74c1a855dad9fdd9f4013c057256513b4d1d58ac980ed8d2e0_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:91710d1c3f67e096b682cb6fa118c70d40bbbc36e3293aa3bea9890775d70236_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:b9d25811da46af4766d41e7543cc54a2820b2b9a4c190585e34166620cf070f7_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:fbd34cb7d74c9e699337157c4c26bc714b541e00645948cccedb5e7afb258003_s390x"
],
"known_not_affected": [
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:70dbc4b2fd02c6006d01fd31277c79e1152a04e678316853cc9650004a88c8f6_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:93e15662b963e2da7c1ca4ad5c47df2a49d6df5857c9cb44157c88a1eb14c99c_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:a67c68062eb3fe78067524fbef175c6f4dcb2876138fbafc17c8f5aef930ffb5_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:fd0e68ad1f3d790efc1a7637a63668df741a3195d86260291ca7ff85fe72bed2_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:063b28090fce858259efe584b09d7329b766ae461926e8d78f6fac1cf6738055_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:0964f3f379136662c8c3817b2a7d3b787808fab2b742cd7ea53d5f6c2248d1c9_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:bc05850aa1cefea5105198c9af51c64f2b255df1c1ccbb30f3c12a2d4c549f1b_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:f5a7d92dc9cb85b9a4d70d871ab1748e80435e9ddba74ba3818e92ec57f7cf78_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:1ba125d01f712a5fb85db400a0cd9d2240c36529d7d0c8e925acfd3c45845bec_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:2801fe77997c4325f9d1e154eae8c63a4fc808e2c31c773a60c47d63268b1bbc_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:41fd9a9bc849f2c7c6439532bd537c34384b88be30b37629c5e271e0e4be7db4_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:55d7e178435c881a57a88aa6747cd6dedd3c3a512014d0509919dceef13b2946_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:5fef4993574a20a48a9f93e5f07967d13b7b26e8f7e83e2222ea5bbe1f500409_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:d785df86cfd97ff76e6d9426b247543faa91efaeb950f6b2e6b97f9e67624043_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:2fe25a8ac9612f29a625969bb25d24938abb298e9a9e1e79fb3aa34c6a0e5f76_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:93dc86f2358079474a9f5ce67e0e6430c2cdbe8a01155be8020165fce2e73f2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:a8c0e823eb62db8ff39de33d6401670e2f65cac8e640b64a9ffeae8ecc0c12bc_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:d50e48a12a217855c373b865df663f50355e4f76fba33de65e50bdc333112c4a_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:eab9c2e2d1ea614bf898c0cba75223f7960a61b7d2315815d6410e3c4f62d7f8_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:39470e0a40255d8d0bcfb6a3e82d77bfd57fdbff5452179f69eed7cff417a103_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:69531d80a6af41db1c28f54a8acfea85594fca34c754c8049e75b331e998a973_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:7a6b045c058be14ab95043bc3c6680bba5ab54a060ae45dbc7e6e8896fb093d8_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:ab57133805270163a3cb99e972b183e8613a6fbfcc943eae5b542d923d572244_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:1c03e0ce9e3b48c8c0f2a9c65dfe3d9b344cd82ac776dc210ef23b91745b0682_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:3783cfecf52a9c532c4e64ed93078581c8ca200efda661efc63ae1fac4391d57_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:58a181deb194766402e32ef43375e2e51208b229c8c97674bda5a6fcc768b8fd_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:973cb71559d8d346c3e0840a6865afda1de53017dcd9f35ee0a56a1606f3149b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:276fbe3c102abbed5d2cc29b1dbf30456ab5d647fe7f157f18180cdd5ab0b431_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:5fb0bea0b4f43dce5201a986eb9bcd9aa9c2859e3d762f265e4d000a4c93474f_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:8efb0787d02e6700bee64b83c251ee11f4cdc4a04eb770cea3ba34f3d9ec94b4_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:bf53175b6a2e11cf7f5599b65fcb4e56e4037ad5b6254c9e4fa070080aea66fc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:207a6c112b395d28579d8318d95bec18942834476574e07889ae734a4df1c4b5_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:242afe8097041307445f2e9f4b8d3d674aa4ff91c6ffe884ef170b356a09fe68_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:3e0bc79f2f14f0bf95c5c5f08a7838e8c3df3df5da52182f4807b844dda8638e_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:9823d42834e5698b968385a7ef7d5a2a2749c441d8122a895bf53d3681df6a7c_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:06be3bd07a7bf44fb19a93869f6286fbdc7d8b8e7b8507e3c8ce9f8af67574f9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:175bde7c228af62b6f04799bc35a01d525a115d7decb73b2b5f90a3c8cf10a9c_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:4d800957aef55f44442be2a95bd85e3098587c6b0f7455b50264993cd4a2154b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:7fb3f1bf0b641c2f30493fb8e10e90625f5fd30f77ed3b7dec2a98012d54bbab_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:0a23d3fe6f4f54358bef552a62b3d098a97d39b4f1c0b0c0c6d3588c85276417_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:b26fb5031c85204e1b9174c49452146d4528560de554b70e2e97eebccd610fb8_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:e7d01fcd2995b921946a7842faec251ff4434bb9cda3b77e855339f2d9241471_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:ee31bd693543f37461982b1bbcdb783e438c3d1021875829bd24974a1d2c0ea6_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-39828"
},
{
"category": "external",
"summary": "RHBZ#2480687",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2480687"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-39828",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-39828"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-39828",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-39828"
},
{
"category": "external",
"summary": "https://go.dev/cl/781621",
"url": "https://go.dev/cl/781621"
},
{
"category": "external",
"summary": "https://go.dev/issue/79562",
"url": "https://go.dev/issue/79562"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/a082jnz-LvI",
"url": "https://groups.google.com/g/golang-announce/c/a082jnz-LvI"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-5014",
"url": "https://pkg.go.dev/vuln/GO-2026-5014"
}
],
"release_date": "2026-05-22T02:31:26.883000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-07T11:09:24+00:00",
"details": "If you are using an earlier version of RHACS, you are advised to\nupgrade to the version of RHACS mentioned in the synopsis and release\nnotes in order to take advantage of the enhancements, bug fixes, and/or\nsecurity patches in the release.",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:307402d2c8c46b74c1a855dad9fdd9f4013c057256513b4d1d58ac980ed8d2e0_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:91710d1c3f67e096b682cb6fa118c70d40bbbc36e3293aa3bea9890775d70236_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:b9d25811da46af4766d41e7543cc54a2820b2b9a4c190585e34166620cf070f7_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:fbd34cb7d74c9e699337157c4c26bc714b541e00645948cccedb5e7afb258003_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36207"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability.",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:70dbc4b2fd02c6006d01fd31277c79e1152a04e678316853cc9650004a88c8f6_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:93e15662b963e2da7c1ca4ad5c47df2a49d6df5857c9cb44157c88a1eb14c99c_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:a67c68062eb3fe78067524fbef175c6f4dcb2876138fbafc17c8f5aef930ffb5_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:fd0e68ad1f3d790efc1a7637a63668df741a3195d86260291ca7ff85fe72bed2_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:063b28090fce858259efe584b09d7329b766ae461926e8d78f6fac1cf6738055_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:0964f3f379136662c8c3817b2a7d3b787808fab2b742cd7ea53d5f6c2248d1c9_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:bc05850aa1cefea5105198c9af51c64f2b255df1c1ccbb30f3c12a2d4c549f1b_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:f5a7d92dc9cb85b9a4d70d871ab1748e80435e9ddba74ba3818e92ec57f7cf78_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:1ba125d01f712a5fb85db400a0cd9d2240c36529d7d0c8e925acfd3c45845bec_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:2801fe77997c4325f9d1e154eae8c63a4fc808e2c31c773a60c47d63268b1bbc_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:41fd9a9bc849f2c7c6439532bd537c34384b88be30b37629c5e271e0e4be7db4_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:55d7e178435c881a57a88aa6747cd6dedd3c3a512014d0509919dceef13b2946_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:5fef4993574a20a48a9f93e5f07967d13b7b26e8f7e83e2222ea5bbe1f500409_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:d785df86cfd97ff76e6d9426b247543faa91efaeb950f6b2e6b97f9e67624043_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:2fe25a8ac9612f29a625969bb25d24938abb298e9a9e1e79fb3aa34c6a0e5f76_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:307402d2c8c46b74c1a855dad9fdd9f4013c057256513b4d1d58ac980ed8d2e0_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:91710d1c3f67e096b682cb6fa118c70d40bbbc36e3293aa3bea9890775d70236_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:b9d25811da46af4766d41e7543cc54a2820b2b9a4c190585e34166620cf070f7_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:fbd34cb7d74c9e699337157c4c26bc714b541e00645948cccedb5e7afb258003_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:93dc86f2358079474a9f5ce67e0e6430c2cdbe8a01155be8020165fce2e73f2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:a8c0e823eb62db8ff39de33d6401670e2f65cac8e640b64a9ffeae8ecc0c12bc_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:d50e48a12a217855c373b865df663f50355e4f76fba33de65e50bdc333112c4a_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:eab9c2e2d1ea614bf898c0cba75223f7960a61b7d2315815d6410e3c4f62d7f8_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:39470e0a40255d8d0bcfb6a3e82d77bfd57fdbff5452179f69eed7cff417a103_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:69531d80a6af41db1c28f54a8acfea85594fca34c754c8049e75b331e998a973_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:7a6b045c058be14ab95043bc3c6680bba5ab54a060ae45dbc7e6e8896fb093d8_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:ab57133805270163a3cb99e972b183e8613a6fbfcc943eae5b542d923d572244_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:1c03e0ce9e3b48c8c0f2a9c65dfe3d9b344cd82ac776dc210ef23b91745b0682_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:3783cfecf52a9c532c4e64ed93078581c8ca200efda661efc63ae1fac4391d57_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:58a181deb194766402e32ef43375e2e51208b229c8c97674bda5a6fcc768b8fd_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:973cb71559d8d346c3e0840a6865afda1de53017dcd9f35ee0a56a1606f3149b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:276fbe3c102abbed5d2cc29b1dbf30456ab5d647fe7f157f18180cdd5ab0b431_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:5fb0bea0b4f43dce5201a986eb9bcd9aa9c2859e3d762f265e4d000a4c93474f_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:8efb0787d02e6700bee64b83c251ee11f4cdc4a04eb770cea3ba34f3d9ec94b4_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:bf53175b6a2e11cf7f5599b65fcb4e56e4037ad5b6254c9e4fa070080aea66fc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:207a6c112b395d28579d8318d95bec18942834476574e07889ae734a4df1c4b5_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:242afe8097041307445f2e9f4b8d3d674aa4ff91c6ffe884ef170b356a09fe68_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:3e0bc79f2f14f0bf95c5c5f08a7838e8c3df3df5da52182f4807b844dda8638e_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:9823d42834e5698b968385a7ef7d5a2a2749c441d8122a895bf53d3681df6a7c_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:06be3bd07a7bf44fb19a93869f6286fbdc7d8b8e7b8507e3c8ce9f8af67574f9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:175bde7c228af62b6f04799bc35a01d525a115d7decb73b2b5f90a3c8cf10a9c_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:4d800957aef55f44442be2a95bd85e3098587c6b0f7455b50264993cd4a2154b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:7fb3f1bf0b641c2f30493fb8e10e90625f5fd30f77ed3b7dec2a98012d54bbab_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:0a23d3fe6f4f54358bef552a62b3d098a97d39b4f1c0b0c0c6d3588c85276417_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:b26fb5031c85204e1b9174c49452146d4528560de554b70e2e97eebccd610fb8_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:e7d01fcd2995b921946a7842faec251ff4434bb9cda3b77e855339f2d9241471_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:ee31bd693543f37461982b1bbcdb783e438c3d1021875829bd24974a1d2c0ea6_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:70dbc4b2fd02c6006d01fd31277c79e1152a04e678316853cc9650004a88c8f6_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:93e15662b963e2da7c1ca4ad5c47df2a49d6df5857c9cb44157c88a1eb14c99c_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:a67c68062eb3fe78067524fbef175c6f4dcb2876138fbafc17c8f5aef930ffb5_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:fd0e68ad1f3d790efc1a7637a63668df741a3195d86260291ca7ff85fe72bed2_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:063b28090fce858259efe584b09d7329b766ae461926e8d78f6fac1cf6738055_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:0964f3f379136662c8c3817b2a7d3b787808fab2b742cd7ea53d5f6c2248d1c9_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:bc05850aa1cefea5105198c9af51c64f2b255df1c1ccbb30f3c12a2d4c549f1b_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:f5a7d92dc9cb85b9a4d70d871ab1748e80435e9ddba74ba3818e92ec57f7cf78_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:1ba125d01f712a5fb85db400a0cd9d2240c36529d7d0c8e925acfd3c45845bec_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:2801fe77997c4325f9d1e154eae8c63a4fc808e2c31c773a60c47d63268b1bbc_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:41fd9a9bc849f2c7c6439532bd537c34384b88be30b37629c5e271e0e4be7db4_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:55d7e178435c881a57a88aa6747cd6dedd3c3a512014d0509919dceef13b2946_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:5fef4993574a20a48a9f93e5f07967d13b7b26e8f7e83e2222ea5bbe1f500409_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:d785df86cfd97ff76e6d9426b247543faa91efaeb950f6b2e6b97f9e67624043_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:2fe25a8ac9612f29a625969bb25d24938abb298e9a9e1e79fb3aa34c6a0e5f76_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:307402d2c8c46b74c1a855dad9fdd9f4013c057256513b4d1d58ac980ed8d2e0_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:91710d1c3f67e096b682cb6fa118c70d40bbbc36e3293aa3bea9890775d70236_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:b9d25811da46af4766d41e7543cc54a2820b2b9a4c190585e34166620cf070f7_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:fbd34cb7d74c9e699337157c4c26bc714b541e00645948cccedb5e7afb258003_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:93dc86f2358079474a9f5ce67e0e6430c2cdbe8a01155be8020165fce2e73f2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:a8c0e823eb62db8ff39de33d6401670e2f65cac8e640b64a9ffeae8ecc0c12bc_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:d50e48a12a217855c373b865df663f50355e4f76fba33de65e50bdc333112c4a_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:eab9c2e2d1ea614bf898c0cba75223f7960a61b7d2315815d6410e3c4f62d7f8_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:39470e0a40255d8d0bcfb6a3e82d77bfd57fdbff5452179f69eed7cff417a103_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:69531d80a6af41db1c28f54a8acfea85594fca34c754c8049e75b331e998a973_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:7a6b045c058be14ab95043bc3c6680bba5ab54a060ae45dbc7e6e8896fb093d8_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:ab57133805270163a3cb99e972b183e8613a6fbfcc943eae5b542d923d572244_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:1c03e0ce9e3b48c8c0f2a9c65dfe3d9b344cd82ac776dc210ef23b91745b0682_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:3783cfecf52a9c532c4e64ed93078581c8ca200efda661efc63ae1fac4391d57_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:58a181deb194766402e32ef43375e2e51208b229c8c97674bda5a6fcc768b8fd_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:973cb71559d8d346c3e0840a6865afda1de53017dcd9f35ee0a56a1606f3149b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:276fbe3c102abbed5d2cc29b1dbf30456ab5d647fe7f157f18180cdd5ab0b431_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:5fb0bea0b4f43dce5201a986eb9bcd9aa9c2859e3d762f265e4d000a4c93474f_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:8efb0787d02e6700bee64b83c251ee11f4cdc4a04eb770cea3ba34f3d9ec94b4_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:bf53175b6a2e11cf7f5599b65fcb4e56e4037ad5b6254c9e4fa070080aea66fc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:207a6c112b395d28579d8318d95bec18942834476574e07889ae734a4df1c4b5_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:242afe8097041307445f2e9f4b8d3d674aa4ff91c6ffe884ef170b356a09fe68_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:3e0bc79f2f14f0bf95c5c5f08a7838e8c3df3df5da52182f4807b844dda8638e_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:9823d42834e5698b968385a7ef7d5a2a2749c441d8122a895bf53d3681df6a7c_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:06be3bd07a7bf44fb19a93869f6286fbdc7d8b8e7b8507e3c8ce9f8af67574f9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:175bde7c228af62b6f04799bc35a01d525a115d7decb73b2b5f90a3c8cf10a9c_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:4d800957aef55f44442be2a95bd85e3098587c6b0f7455b50264993cd4a2154b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:7fb3f1bf0b641c2f30493fb8e10e90625f5fd30f77ed3b7dec2a98012d54bbab_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:0a23d3fe6f4f54358bef552a62b3d098a97d39b4f1c0b0c0c6d3588c85276417_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:b26fb5031c85204e1b9174c49452146d4528560de554b70e2e97eebccd610fb8_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:e7d01fcd2995b921946a7842faec251ff4434bb9cda3b77e855339f2d9241471_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:ee31bd693543f37461982b1bbcdb783e438c3d1021875829bd24974a1d2c0ea6_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang.org/x/crypto/ssh: golang.org/x/crypto/ssh: Unauthorized command execution via discarded SSH permissions"
},
{
"cve": "CVE-2026-39829",
"cwe": {
"id": "CWE-1284",
"name": "Improper Validation of Specified Quantity in Input"
},
"discovery_date": "2026-05-22T04:01:30.092249+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:70dbc4b2fd02c6006d01fd31277c79e1152a04e678316853cc9650004a88c8f6_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:93e15662b963e2da7c1ca4ad5c47df2a49d6df5857c9cb44157c88a1eb14c99c_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:a67c68062eb3fe78067524fbef175c6f4dcb2876138fbafc17c8f5aef930ffb5_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:fd0e68ad1f3d790efc1a7637a63668df741a3195d86260291ca7ff85fe72bed2_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:063b28090fce858259efe584b09d7329b766ae461926e8d78f6fac1cf6738055_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:0964f3f379136662c8c3817b2a7d3b787808fab2b742cd7ea53d5f6c2248d1c9_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:bc05850aa1cefea5105198c9af51c64f2b255df1c1ccbb30f3c12a2d4c549f1b_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:f5a7d92dc9cb85b9a4d70d871ab1748e80435e9ddba74ba3818e92ec57f7cf78_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:1ba125d01f712a5fb85db400a0cd9d2240c36529d7d0c8e925acfd3c45845bec_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:2801fe77997c4325f9d1e154eae8c63a4fc808e2c31c773a60c47d63268b1bbc_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:41fd9a9bc849f2c7c6439532bd537c34384b88be30b37629c5e271e0e4be7db4_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:55d7e178435c881a57a88aa6747cd6dedd3c3a512014d0509919dceef13b2946_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:5fef4993574a20a48a9f93e5f07967d13b7b26e8f7e83e2222ea5bbe1f500409_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:d785df86cfd97ff76e6d9426b247543faa91efaeb950f6b2e6b97f9e67624043_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:2fe25a8ac9612f29a625969bb25d24938abb298e9a9e1e79fb3aa34c6a0e5f76_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:93dc86f2358079474a9f5ce67e0e6430c2cdbe8a01155be8020165fce2e73f2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:a8c0e823eb62db8ff39de33d6401670e2f65cac8e640b64a9ffeae8ecc0c12bc_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:d50e48a12a217855c373b865df663f50355e4f76fba33de65e50bdc333112c4a_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:eab9c2e2d1ea614bf898c0cba75223f7960a61b7d2315815d6410e3c4f62d7f8_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:39470e0a40255d8d0bcfb6a3e82d77bfd57fdbff5452179f69eed7cff417a103_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:69531d80a6af41db1c28f54a8acfea85594fca34c754c8049e75b331e998a973_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:7a6b045c058be14ab95043bc3c6680bba5ab54a060ae45dbc7e6e8896fb093d8_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:ab57133805270163a3cb99e972b183e8613a6fbfcc943eae5b542d923d572244_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:1c03e0ce9e3b48c8c0f2a9c65dfe3d9b344cd82ac776dc210ef23b91745b0682_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:3783cfecf52a9c532c4e64ed93078581c8ca200efda661efc63ae1fac4391d57_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:58a181deb194766402e32ef43375e2e51208b229c8c97674bda5a6fcc768b8fd_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:973cb71559d8d346c3e0840a6865afda1de53017dcd9f35ee0a56a1606f3149b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:276fbe3c102abbed5d2cc29b1dbf30456ab5d647fe7f157f18180cdd5ab0b431_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:5fb0bea0b4f43dce5201a986eb9bcd9aa9c2859e3d762f265e4d000a4c93474f_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:8efb0787d02e6700bee64b83c251ee11f4cdc4a04eb770cea3ba34f3d9ec94b4_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:bf53175b6a2e11cf7f5599b65fcb4e56e4037ad5b6254c9e4fa070080aea66fc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:207a6c112b395d28579d8318d95bec18942834476574e07889ae734a4df1c4b5_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:242afe8097041307445f2e9f4b8d3d674aa4ff91c6ffe884ef170b356a09fe68_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:3e0bc79f2f14f0bf95c5c5f08a7838e8c3df3df5da52182f4807b844dda8638e_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:9823d42834e5698b968385a7ef7d5a2a2749c441d8122a895bf53d3681df6a7c_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:06be3bd07a7bf44fb19a93869f6286fbdc7d8b8e7b8507e3c8ce9f8af67574f9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:175bde7c228af62b6f04799bc35a01d525a115d7decb73b2b5f90a3c8cf10a9c_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:4d800957aef55f44442be2a95bd85e3098587c6b0f7455b50264993cd4a2154b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:7fb3f1bf0b641c2f30493fb8e10e90625f5fd30f77ed3b7dec2a98012d54bbab_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:0a23d3fe6f4f54358bef552a62b3d098a97d39b4f1c0b0c0c6d3588c85276417_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:b26fb5031c85204e1b9174c49452146d4528560de554b70e2e97eebccd610fb8_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:e7d01fcd2995b921946a7842faec251ff4434bb9cda3b77e855339f2d9241471_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:ee31bd693543f37461982b1bbcdb783e438c3d1021875829bd24974a1d2c0ea6_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2480681"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in golang.org/x/crypto/ssh. The RSA and DSA public key parsers in the affected component did not enforce size limits on key parameters. This vulnerability allows an unauthenticated client to provide a crafted public key with an excessively large modulus or DSA parameter during public key authentication. Successful exploitation could lead to a denial of service (DoS) due to prolonged CPU consumption during signature verification.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang.org/x/crypto/ssh: golang.org/x/crypto/ssh: Denial of Service via crafted public key with excessive parameters",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability in golang.org/x/crypto/ssh is rated as Important. An unauthenticated remote attacker could trigger a denial of service by providing a specially crafted public key with excessively large parameters during SSH public key authentication. This could lead to prolonged CPU consumption on the server, impacting service availability.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:307402d2c8c46b74c1a855dad9fdd9f4013c057256513b4d1d58ac980ed8d2e0_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:91710d1c3f67e096b682cb6fa118c70d40bbbc36e3293aa3bea9890775d70236_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:b9d25811da46af4766d41e7543cc54a2820b2b9a4c190585e34166620cf070f7_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:fbd34cb7d74c9e699337157c4c26bc714b541e00645948cccedb5e7afb258003_s390x"
],
"known_not_affected": [
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:70dbc4b2fd02c6006d01fd31277c79e1152a04e678316853cc9650004a88c8f6_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:93e15662b963e2da7c1ca4ad5c47df2a49d6df5857c9cb44157c88a1eb14c99c_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:a67c68062eb3fe78067524fbef175c6f4dcb2876138fbafc17c8f5aef930ffb5_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:fd0e68ad1f3d790efc1a7637a63668df741a3195d86260291ca7ff85fe72bed2_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:063b28090fce858259efe584b09d7329b766ae461926e8d78f6fac1cf6738055_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:0964f3f379136662c8c3817b2a7d3b787808fab2b742cd7ea53d5f6c2248d1c9_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:bc05850aa1cefea5105198c9af51c64f2b255df1c1ccbb30f3c12a2d4c549f1b_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:f5a7d92dc9cb85b9a4d70d871ab1748e80435e9ddba74ba3818e92ec57f7cf78_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:1ba125d01f712a5fb85db400a0cd9d2240c36529d7d0c8e925acfd3c45845bec_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:2801fe77997c4325f9d1e154eae8c63a4fc808e2c31c773a60c47d63268b1bbc_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:41fd9a9bc849f2c7c6439532bd537c34384b88be30b37629c5e271e0e4be7db4_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:55d7e178435c881a57a88aa6747cd6dedd3c3a512014d0509919dceef13b2946_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:5fef4993574a20a48a9f93e5f07967d13b7b26e8f7e83e2222ea5bbe1f500409_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:d785df86cfd97ff76e6d9426b247543faa91efaeb950f6b2e6b97f9e67624043_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:2fe25a8ac9612f29a625969bb25d24938abb298e9a9e1e79fb3aa34c6a0e5f76_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:93dc86f2358079474a9f5ce67e0e6430c2cdbe8a01155be8020165fce2e73f2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:a8c0e823eb62db8ff39de33d6401670e2f65cac8e640b64a9ffeae8ecc0c12bc_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:d50e48a12a217855c373b865df663f50355e4f76fba33de65e50bdc333112c4a_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:eab9c2e2d1ea614bf898c0cba75223f7960a61b7d2315815d6410e3c4f62d7f8_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:39470e0a40255d8d0bcfb6a3e82d77bfd57fdbff5452179f69eed7cff417a103_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:69531d80a6af41db1c28f54a8acfea85594fca34c754c8049e75b331e998a973_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:7a6b045c058be14ab95043bc3c6680bba5ab54a060ae45dbc7e6e8896fb093d8_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:ab57133805270163a3cb99e972b183e8613a6fbfcc943eae5b542d923d572244_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:1c03e0ce9e3b48c8c0f2a9c65dfe3d9b344cd82ac776dc210ef23b91745b0682_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:3783cfecf52a9c532c4e64ed93078581c8ca200efda661efc63ae1fac4391d57_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:58a181deb194766402e32ef43375e2e51208b229c8c97674bda5a6fcc768b8fd_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:973cb71559d8d346c3e0840a6865afda1de53017dcd9f35ee0a56a1606f3149b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:276fbe3c102abbed5d2cc29b1dbf30456ab5d647fe7f157f18180cdd5ab0b431_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:5fb0bea0b4f43dce5201a986eb9bcd9aa9c2859e3d762f265e4d000a4c93474f_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:8efb0787d02e6700bee64b83c251ee11f4cdc4a04eb770cea3ba34f3d9ec94b4_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:bf53175b6a2e11cf7f5599b65fcb4e56e4037ad5b6254c9e4fa070080aea66fc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:207a6c112b395d28579d8318d95bec18942834476574e07889ae734a4df1c4b5_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:242afe8097041307445f2e9f4b8d3d674aa4ff91c6ffe884ef170b356a09fe68_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:3e0bc79f2f14f0bf95c5c5f08a7838e8c3df3df5da52182f4807b844dda8638e_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:9823d42834e5698b968385a7ef7d5a2a2749c441d8122a895bf53d3681df6a7c_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:06be3bd07a7bf44fb19a93869f6286fbdc7d8b8e7b8507e3c8ce9f8af67574f9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:175bde7c228af62b6f04799bc35a01d525a115d7decb73b2b5f90a3c8cf10a9c_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:4d800957aef55f44442be2a95bd85e3098587c6b0f7455b50264993cd4a2154b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:7fb3f1bf0b641c2f30493fb8e10e90625f5fd30f77ed3b7dec2a98012d54bbab_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:0a23d3fe6f4f54358bef552a62b3d098a97d39b4f1c0b0c0c6d3588c85276417_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:b26fb5031c85204e1b9174c49452146d4528560de554b70e2e97eebccd610fb8_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:e7d01fcd2995b921946a7842faec251ff4434bb9cda3b77e855339f2d9241471_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:ee31bd693543f37461982b1bbcdb783e438c3d1021875829bd24974a1d2c0ea6_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-39829"
},
{
"category": "external",
"summary": "RHBZ#2480681",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2480681"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-39829",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-39829"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-39829",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-39829"
},
{
"category": "external",
"summary": "https://go.dev/cl/781641",
"url": "https://go.dev/cl/781641"
},
{
"category": "external",
"summary": "https://go.dev/cl/781661",
"url": "https://go.dev/cl/781661"
},
{
"category": "external",
"summary": "https://go.dev/issue/79565",
"url": "https://go.dev/issue/79565"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/a082jnz-LvI",
"url": "https://groups.google.com/g/golang-announce/c/a082jnz-LvI"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-5018",
"url": "https://pkg.go.dev/vuln/GO-2026-5018"
}
],
"release_date": "2026-05-22T02:31:27.324000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-07T11:09:24+00:00",
"details": "If you are using an earlier version of RHACS, you are advised to\nupgrade to the version of RHACS mentioned in the synopsis and release\nnotes in order to take advantage of the enhancements, bug fixes, and/or\nsecurity patches in the release.",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:307402d2c8c46b74c1a855dad9fdd9f4013c057256513b4d1d58ac980ed8d2e0_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:91710d1c3f67e096b682cb6fa118c70d40bbbc36e3293aa3bea9890775d70236_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:b9d25811da46af4766d41e7543cc54a2820b2b9a4c190585e34166620cf070f7_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:fbd34cb7d74c9e699337157c4c26bc714b541e00645948cccedb5e7afb258003_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36207"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability.",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:70dbc4b2fd02c6006d01fd31277c79e1152a04e678316853cc9650004a88c8f6_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:93e15662b963e2da7c1ca4ad5c47df2a49d6df5857c9cb44157c88a1eb14c99c_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:a67c68062eb3fe78067524fbef175c6f4dcb2876138fbafc17c8f5aef930ffb5_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:fd0e68ad1f3d790efc1a7637a63668df741a3195d86260291ca7ff85fe72bed2_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:063b28090fce858259efe584b09d7329b766ae461926e8d78f6fac1cf6738055_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:0964f3f379136662c8c3817b2a7d3b787808fab2b742cd7ea53d5f6c2248d1c9_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:bc05850aa1cefea5105198c9af51c64f2b255df1c1ccbb30f3c12a2d4c549f1b_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:f5a7d92dc9cb85b9a4d70d871ab1748e80435e9ddba74ba3818e92ec57f7cf78_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:1ba125d01f712a5fb85db400a0cd9d2240c36529d7d0c8e925acfd3c45845bec_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:2801fe77997c4325f9d1e154eae8c63a4fc808e2c31c773a60c47d63268b1bbc_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:41fd9a9bc849f2c7c6439532bd537c34384b88be30b37629c5e271e0e4be7db4_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:55d7e178435c881a57a88aa6747cd6dedd3c3a512014d0509919dceef13b2946_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:5fef4993574a20a48a9f93e5f07967d13b7b26e8f7e83e2222ea5bbe1f500409_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:d785df86cfd97ff76e6d9426b247543faa91efaeb950f6b2e6b97f9e67624043_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:2fe25a8ac9612f29a625969bb25d24938abb298e9a9e1e79fb3aa34c6a0e5f76_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:307402d2c8c46b74c1a855dad9fdd9f4013c057256513b4d1d58ac980ed8d2e0_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:91710d1c3f67e096b682cb6fa118c70d40bbbc36e3293aa3bea9890775d70236_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:b9d25811da46af4766d41e7543cc54a2820b2b9a4c190585e34166620cf070f7_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:fbd34cb7d74c9e699337157c4c26bc714b541e00645948cccedb5e7afb258003_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:93dc86f2358079474a9f5ce67e0e6430c2cdbe8a01155be8020165fce2e73f2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:a8c0e823eb62db8ff39de33d6401670e2f65cac8e640b64a9ffeae8ecc0c12bc_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:d50e48a12a217855c373b865df663f50355e4f76fba33de65e50bdc333112c4a_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:eab9c2e2d1ea614bf898c0cba75223f7960a61b7d2315815d6410e3c4f62d7f8_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:39470e0a40255d8d0bcfb6a3e82d77bfd57fdbff5452179f69eed7cff417a103_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:69531d80a6af41db1c28f54a8acfea85594fca34c754c8049e75b331e998a973_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:7a6b045c058be14ab95043bc3c6680bba5ab54a060ae45dbc7e6e8896fb093d8_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:ab57133805270163a3cb99e972b183e8613a6fbfcc943eae5b542d923d572244_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:1c03e0ce9e3b48c8c0f2a9c65dfe3d9b344cd82ac776dc210ef23b91745b0682_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:3783cfecf52a9c532c4e64ed93078581c8ca200efda661efc63ae1fac4391d57_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:58a181deb194766402e32ef43375e2e51208b229c8c97674bda5a6fcc768b8fd_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:973cb71559d8d346c3e0840a6865afda1de53017dcd9f35ee0a56a1606f3149b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:276fbe3c102abbed5d2cc29b1dbf30456ab5d647fe7f157f18180cdd5ab0b431_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:5fb0bea0b4f43dce5201a986eb9bcd9aa9c2859e3d762f265e4d000a4c93474f_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:8efb0787d02e6700bee64b83c251ee11f4cdc4a04eb770cea3ba34f3d9ec94b4_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:bf53175b6a2e11cf7f5599b65fcb4e56e4037ad5b6254c9e4fa070080aea66fc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:207a6c112b395d28579d8318d95bec18942834476574e07889ae734a4df1c4b5_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:242afe8097041307445f2e9f4b8d3d674aa4ff91c6ffe884ef170b356a09fe68_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:3e0bc79f2f14f0bf95c5c5f08a7838e8c3df3df5da52182f4807b844dda8638e_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:9823d42834e5698b968385a7ef7d5a2a2749c441d8122a895bf53d3681df6a7c_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:06be3bd07a7bf44fb19a93869f6286fbdc7d8b8e7b8507e3c8ce9f8af67574f9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:175bde7c228af62b6f04799bc35a01d525a115d7decb73b2b5f90a3c8cf10a9c_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:4d800957aef55f44442be2a95bd85e3098587c6b0f7455b50264993cd4a2154b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:7fb3f1bf0b641c2f30493fb8e10e90625f5fd30f77ed3b7dec2a98012d54bbab_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:0a23d3fe6f4f54358bef552a62b3d098a97d39b4f1c0b0c0c6d3588c85276417_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:b26fb5031c85204e1b9174c49452146d4528560de554b70e2e97eebccd610fb8_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:e7d01fcd2995b921946a7842faec251ff4434bb9cda3b77e855339f2d9241471_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:ee31bd693543f37461982b1bbcdb783e438c3d1021875829bd24974a1d2c0ea6_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:70dbc4b2fd02c6006d01fd31277c79e1152a04e678316853cc9650004a88c8f6_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:93e15662b963e2da7c1ca4ad5c47df2a49d6df5857c9cb44157c88a1eb14c99c_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:a67c68062eb3fe78067524fbef175c6f4dcb2876138fbafc17c8f5aef930ffb5_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:fd0e68ad1f3d790efc1a7637a63668df741a3195d86260291ca7ff85fe72bed2_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:063b28090fce858259efe584b09d7329b766ae461926e8d78f6fac1cf6738055_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:0964f3f379136662c8c3817b2a7d3b787808fab2b742cd7ea53d5f6c2248d1c9_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:bc05850aa1cefea5105198c9af51c64f2b255df1c1ccbb30f3c12a2d4c549f1b_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:f5a7d92dc9cb85b9a4d70d871ab1748e80435e9ddba74ba3818e92ec57f7cf78_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:1ba125d01f712a5fb85db400a0cd9d2240c36529d7d0c8e925acfd3c45845bec_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:2801fe77997c4325f9d1e154eae8c63a4fc808e2c31c773a60c47d63268b1bbc_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:41fd9a9bc849f2c7c6439532bd537c34384b88be30b37629c5e271e0e4be7db4_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:55d7e178435c881a57a88aa6747cd6dedd3c3a512014d0509919dceef13b2946_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:5fef4993574a20a48a9f93e5f07967d13b7b26e8f7e83e2222ea5bbe1f500409_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:d785df86cfd97ff76e6d9426b247543faa91efaeb950f6b2e6b97f9e67624043_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:2fe25a8ac9612f29a625969bb25d24938abb298e9a9e1e79fb3aa34c6a0e5f76_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:307402d2c8c46b74c1a855dad9fdd9f4013c057256513b4d1d58ac980ed8d2e0_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:91710d1c3f67e096b682cb6fa118c70d40bbbc36e3293aa3bea9890775d70236_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:b9d25811da46af4766d41e7543cc54a2820b2b9a4c190585e34166620cf070f7_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:fbd34cb7d74c9e699337157c4c26bc714b541e00645948cccedb5e7afb258003_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:93dc86f2358079474a9f5ce67e0e6430c2cdbe8a01155be8020165fce2e73f2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:a8c0e823eb62db8ff39de33d6401670e2f65cac8e640b64a9ffeae8ecc0c12bc_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:d50e48a12a217855c373b865df663f50355e4f76fba33de65e50bdc333112c4a_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:eab9c2e2d1ea614bf898c0cba75223f7960a61b7d2315815d6410e3c4f62d7f8_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:39470e0a40255d8d0bcfb6a3e82d77bfd57fdbff5452179f69eed7cff417a103_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:69531d80a6af41db1c28f54a8acfea85594fca34c754c8049e75b331e998a973_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:7a6b045c058be14ab95043bc3c6680bba5ab54a060ae45dbc7e6e8896fb093d8_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:ab57133805270163a3cb99e972b183e8613a6fbfcc943eae5b542d923d572244_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:1c03e0ce9e3b48c8c0f2a9c65dfe3d9b344cd82ac776dc210ef23b91745b0682_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:3783cfecf52a9c532c4e64ed93078581c8ca200efda661efc63ae1fac4391d57_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:58a181deb194766402e32ef43375e2e51208b229c8c97674bda5a6fcc768b8fd_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:973cb71559d8d346c3e0840a6865afda1de53017dcd9f35ee0a56a1606f3149b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:276fbe3c102abbed5d2cc29b1dbf30456ab5d647fe7f157f18180cdd5ab0b431_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:5fb0bea0b4f43dce5201a986eb9bcd9aa9c2859e3d762f265e4d000a4c93474f_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:8efb0787d02e6700bee64b83c251ee11f4cdc4a04eb770cea3ba34f3d9ec94b4_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:bf53175b6a2e11cf7f5599b65fcb4e56e4037ad5b6254c9e4fa070080aea66fc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:207a6c112b395d28579d8318d95bec18942834476574e07889ae734a4df1c4b5_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:242afe8097041307445f2e9f4b8d3d674aa4ff91c6ffe884ef170b356a09fe68_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:3e0bc79f2f14f0bf95c5c5f08a7838e8c3df3df5da52182f4807b844dda8638e_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:9823d42834e5698b968385a7ef7d5a2a2749c441d8122a895bf53d3681df6a7c_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:06be3bd07a7bf44fb19a93869f6286fbdc7d8b8e7b8507e3c8ce9f8af67574f9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:175bde7c228af62b6f04799bc35a01d525a115d7decb73b2b5f90a3c8cf10a9c_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:4d800957aef55f44442be2a95bd85e3098587c6b0f7455b50264993cd4a2154b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:7fb3f1bf0b641c2f30493fb8e10e90625f5fd30f77ed3b7dec2a98012d54bbab_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:0a23d3fe6f4f54358bef552a62b3d098a97d39b4f1c0b0c0c6d3588c85276417_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:b26fb5031c85204e1b9174c49452146d4528560de554b70e2e97eebccd610fb8_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:e7d01fcd2995b921946a7842faec251ff4434bb9cda3b77e855339f2d9241471_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:ee31bd693543f37461982b1bbcdb783e438c3d1021875829bd24974a1d2c0ea6_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang.org/x/crypto/ssh: golang.org/x/crypto/ssh: Denial of Service via crafted public key with excessive parameters"
},
{
"cve": "CVE-2026-39830",
"cwe": {
"id": "CWE-772",
"name": "Missing Release of Resource after Effective Lifetime"
},
"discovery_date": "2026-05-22T04:01:38.517202+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:70dbc4b2fd02c6006d01fd31277c79e1152a04e678316853cc9650004a88c8f6_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:93e15662b963e2da7c1ca4ad5c47df2a49d6df5857c9cb44157c88a1eb14c99c_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:a67c68062eb3fe78067524fbef175c6f4dcb2876138fbafc17c8f5aef930ffb5_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:fd0e68ad1f3d790efc1a7637a63668df741a3195d86260291ca7ff85fe72bed2_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:063b28090fce858259efe584b09d7329b766ae461926e8d78f6fac1cf6738055_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:0964f3f379136662c8c3817b2a7d3b787808fab2b742cd7ea53d5f6c2248d1c9_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:bc05850aa1cefea5105198c9af51c64f2b255df1c1ccbb30f3c12a2d4c549f1b_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:f5a7d92dc9cb85b9a4d70d871ab1748e80435e9ddba74ba3818e92ec57f7cf78_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:1ba125d01f712a5fb85db400a0cd9d2240c36529d7d0c8e925acfd3c45845bec_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:2801fe77997c4325f9d1e154eae8c63a4fc808e2c31c773a60c47d63268b1bbc_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:41fd9a9bc849f2c7c6439532bd537c34384b88be30b37629c5e271e0e4be7db4_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:55d7e178435c881a57a88aa6747cd6dedd3c3a512014d0509919dceef13b2946_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:5fef4993574a20a48a9f93e5f07967d13b7b26e8f7e83e2222ea5bbe1f500409_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:d785df86cfd97ff76e6d9426b247543faa91efaeb950f6b2e6b97f9e67624043_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:2fe25a8ac9612f29a625969bb25d24938abb298e9a9e1e79fb3aa34c6a0e5f76_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:93dc86f2358079474a9f5ce67e0e6430c2cdbe8a01155be8020165fce2e73f2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:a8c0e823eb62db8ff39de33d6401670e2f65cac8e640b64a9ffeae8ecc0c12bc_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:d50e48a12a217855c373b865df663f50355e4f76fba33de65e50bdc333112c4a_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:eab9c2e2d1ea614bf898c0cba75223f7960a61b7d2315815d6410e3c4f62d7f8_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:39470e0a40255d8d0bcfb6a3e82d77bfd57fdbff5452179f69eed7cff417a103_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:69531d80a6af41db1c28f54a8acfea85594fca34c754c8049e75b331e998a973_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:7a6b045c058be14ab95043bc3c6680bba5ab54a060ae45dbc7e6e8896fb093d8_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:ab57133805270163a3cb99e972b183e8613a6fbfcc943eae5b542d923d572244_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:1c03e0ce9e3b48c8c0f2a9c65dfe3d9b344cd82ac776dc210ef23b91745b0682_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:3783cfecf52a9c532c4e64ed93078581c8ca200efda661efc63ae1fac4391d57_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:58a181deb194766402e32ef43375e2e51208b229c8c97674bda5a6fcc768b8fd_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:973cb71559d8d346c3e0840a6865afda1de53017dcd9f35ee0a56a1606f3149b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:276fbe3c102abbed5d2cc29b1dbf30456ab5d647fe7f157f18180cdd5ab0b431_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:5fb0bea0b4f43dce5201a986eb9bcd9aa9c2859e3d762f265e4d000a4c93474f_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:8efb0787d02e6700bee64b83c251ee11f4cdc4a04eb770cea3ba34f3d9ec94b4_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:bf53175b6a2e11cf7f5599b65fcb4e56e4037ad5b6254c9e4fa070080aea66fc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:207a6c112b395d28579d8318d95bec18942834476574e07889ae734a4df1c4b5_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:242afe8097041307445f2e9f4b8d3d674aa4ff91c6ffe884ef170b356a09fe68_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:3e0bc79f2f14f0bf95c5c5f08a7838e8c3df3df5da52182f4807b844dda8638e_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:9823d42834e5698b968385a7ef7d5a2a2749c441d8122a895bf53d3681df6a7c_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:06be3bd07a7bf44fb19a93869f6286fbdc7d8b8e7b8507e3c8ce9f8af67574f9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:175bde7c228af62b6f04799bc35a01d525a115d7decb73b2b5f90a3c8cf10a9c_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:4d800957aef55f44442be2a95bd85e3098587c6b0f7455b50264993cd4a2154b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:7fb3f1bf0b641c2f30493fb8e10e90625f5fd30f77ed3b7dec2a98012d54bbab_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:0a23d3fe6f4f54358bef552a62b3d098a97d39b4f1c0b0c0c6d3588c85276417_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:b26fb5031c85204e1b9174c49452146d4528560de554b70e2e97eebccd610fb8_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:e7d01fcd2995b921946a7842faec251ff4434bb9cda3b77e855339f2d9241471_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:ee31bd693543f37461982b1bbcdb783e438c3d1021875829bd24974a1d2c0ea6_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2480684"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in golang.org/x/crypto/ssh. A remote malicious SSH peer can exploit this by sending unsolicited global request responses, which fills an internal buffer and blocks the connection\u0027s read loop. This prevents the associated resources from being released, leading to a resource leak per connection. The consequence is a Denial of Service (DoS) for the affected system.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang.org/x/crypto/ssh: golang.org/x/crypto/ssh: Denial of Service via resource leak from unsolicited SSH responses",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This is an Important denial of service flaw in `golang.org/x/crypto/ssh`. A remote, unauthenticated attacker can exploit this vulnerability by sending unsolicited global request responses to an affected SSH server, leading to resource exhaustion and a denial of service. The impact is considered Important due to the potential for unauthenticated remote disruption of services utilizing the vulnerable SSH library.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:307402d2c8c46b74c1a855dad9fdd9f4013c057256513b4d1d58ac980ed8d2e0_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:91710d1c3f67e096b682cb6fa118c70d40bbbc36e3293aa3bea9890775d70236_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:b9d25811da46af4766d41e7543cc54a2820b2b9a4c190585e34166620cf070f7_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:fbd34cb7d74c9e699337157c4c26bc714b541e00645948cccedb5e7afb258003_s390x"
],
"known_not_affected": [
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:70dbc4b2fd02c6006d01fd31277c79e1152a04e678316853cc9650004a88c8f6_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:93e15662b963e2da7c1ca4ad5c47df2a49d6df5857c9cb44157c88a1eb14c99c_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:a67c68062eb3fe78067524fbef175c6f4dcb2876138fbafc17c8f5aef930ffb5_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:fd0e68ad1f3d790efc1a7637a63668df741a3195d86260291ca7ff85fe72bed2_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:063b28090fce858259efe584b09d7329b766ae461926e8d78f6fac1cf6738055_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:0964f3f379136662c8c3817b2a7d3b787808fab2b742cd7ea53d5f6c2248d1c9_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:bc05850aa1cefea5105198c9af51c64f2b255df1c1ccbb30f3c12a2d4c549f1b_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:f5a7d92dc9cb85b9a4d70d871ab1748e80435e9ddba74ba3818e92ec57f7cf78_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:1ba125d01f712a5fb85db400a0cd9d2240c36529d7d0c8e925acfd3c45845bec_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:2801fe77997c4325f9d1e154eae8c63a4fc808e2c31c773a60c47d63268b1bbc_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:41fd9a9bc849f2c7c6439532bd537c34384b88be30b37629c5e271e0e4be7db4_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:55d7e178435c881a57a88aa6747cd6dedd3c3a512014d0509919dceef13b2946_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:5fef4993574a20a48a9f93e5f07967d13b7b26e8f7e83e2222ea5bbe1f500409_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:d785df86cfd97ff76e6d9426b247543faa91efaeb950f6b2e6b97f9e67624043_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:2fe25a8ac9612f29a625969bb25d24938abb298e9a9e1e79fb3aa34c6a0e5f76_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:93dc86f2358079474a9f5ce67e0e6430c2cdbe8a01155be8020165fce2e73f2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:a8c0e823eb62db8ff39de33d6401670e2f65cac8e640b64a9ffeae8ecc0c12bc_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:d50e48a12a217855c373b865df663f50355e4f76fba33de65e50bdc333112c4a_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:eab9c2e2d1ea614bf898c0cba75223f7960a61b7d2315815d6410e3c4f62d7f8_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:39470e0a40255d8d0bcfb6a3e82d77bfd57fdbff5452179f69eed7cff417a103_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:69531d80a6af41db1c28f54a8acfea85594fca34c754c8049e75b331e998a973_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:7a6b045c058be14ab95043bc3c6680bba5ab54a060ae45dbc7e6e8896fb093d8_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:ab57133805270163a3cb99e972b183e8613a6fbfcc943eae5b542d923d572244_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:1c03e0ce9e3b48c8c0f2a9c65dfe3d9b344cd82ac776dc210ef23b91745b0682_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:3783cfecf52a9c532c4e64ed93078581c8ca200efda661efc63ae1fac4391d57_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:58a181deb194766402e32ef43375e2e51208b229c8c97674bda5a6fcc768b8fd_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:973cb71559d8d346c3e0840a6865afda1de53017dcd9f35ee0a56a1606f3149b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:276fbe3c102abbed5d2cc29b1dbf30456ab5d647fe7f157f18180cdd5ab0b431_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:5fb0bea0b4f43dce5201a986eb9bcd9aa9c2859e3d762f265e4d000a4c93474f_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:8efb0787d02e6700bee64b83c251ee11f4cdc4a04eb770cea3ba34f3d9ec94b4_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:bf53175b6a2e11cf7f5599b65fcb4e56e4037ad5b6254c9e4fa070080aea66fc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:207a6c112b395d28579d8318d95bec18942834476574e07889ae734a4df1c4b5_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:242afe8097041307445f2e9f4b8d3d674aa4ff91c6ffe884ef170b356a09fe68_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:3e0bc79f2f14f0bf95c5c5f08a7838e8c3df3df5da52182f4807b844dda8638e_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:9823d42834e5698b968385a7ef7d5a2a2749c441d8122a895bf53d3681df6a7c_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:06be3bd07a7bf44fb19a93869f6286fbdc7d8b8e7b8507e3c8ce9f8af67574f9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:175bde7c228af62b6f04799bc35a01d525a115d7decb73b2b5f90a3c8cf10a9c_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:4d800957aef55f44442be2a95bd85e3098587c6b0f7455b50264993cd4a2154b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:7fb3f1bf0b641c2f30493fb8e10e90625f5fd30f77ed3b7dec2a98012d54bbab_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:0a23d3fe6f4f54358bef552a62b3d098a97d39b4f1c0b0c0c6d3588c85276417_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:b26fb5031c85204e1b9174c49452146d4528560de554b70e2e97eebccd610fb8_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:e7d01fcd2995b921946a7842faec251ff4434bb9cda3b77e855339f2d9241471_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:ee31bd693543f37461982b1bbcdb783e438c3d1021875829bd24974a1d2c0ea6_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-39830"
},
{
"category": "external",
"summary": "RHBZ#2480684",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2480684"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-39830",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-39830"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-39830",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-39830"
},
{
"category": "external",
"summary": "https://go.dev/cl/781640",
"url": "https://go.dev/cl/781640"
},
{
"category": "external",
"summary": "https://go.dev/cl/781664",
"url": "https://go.dev/cl/781664"
},
{
"category": "external",
"summary": "https://go.dev/issue/79564",
"url": "https://go.dev/issue/79564"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/a082jnz-LvI",
"url": "https://groups.google.com/g/golang-announce/c/a082jnz-LvI"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-5017",
"url": "https://pkg.go.dev/vuln/GO-2026-5017"
}
],
"release_date": "2026-05-22T02:31:27.208000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-07T11:09:24+00:00",
"details": "If you are using an earlier version of RHACS, you are advised to\nupgrade to the version of RHACS mentioned in the synopsis and release\nnotes in order to take advantage of the enhancements, bug fixes, and/or\nsecurity patches in the release.",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:307402d2c8c46b74c1a855dad9fdd9f4013c057256513b4d1d58ac980ed8d2e0_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:91710d1c3f67e096b682cb6fa118c70d40bbbc36e3293aa3bea9890775d70236_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:b9d25811da46af4766d41e7543cc54a2820b2b9a4c190585e34166620cf070f7_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:fbd34cb7d74c9e699337157c4c26bc714b541e00645948cccedb5e7afb258003_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36207"
},
{
"category": "workaround",
"details": "To mitigate this denial of service vulnerability, restrict network access to any service that utilizes the `golang.org/x/crypto/ssh` library and is exposed to untrusted networks. Implement firewall rules to allow connections only from trusted hosts or networks. This action limits the ability of malicious peers to send unsolicited global request responses. A restart of the affected service may be necessary for the new network rules to be applied effectively.",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:70dbc4b2fd02c6006d01fd31277c79e1152a04e678316853cc9650004a88c8f6_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:93e15662b963e2da7c1ca4ad5c47df2a49d6df5857c9cb44157c88a1eb14c99c_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:a67c68062eb3fe78067524fbef175c6f4dcb2876138fbafc17c8f5aef930ffb5_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:fd0e68ad1f3d790efc1a7637a63668df741a3195d86260291ca7ff85fe72bed2_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:063b28090fce858259efe584b09d7329b766ae461926e8d78f6fac1cf6738055_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:0964f3f379136662c8c3817b2a7d3b787808fab2b742cd7ea53d5f6c2248d1c9_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:bc05850aa1cefea5105198c9af51c64f2b255df1c1ccbb30f3c12a2d4c549f1b_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:f5a7d92dc9cb85b9a4d70d871ab1748e80435e9ddba74ba3818e92ec57f7cf78_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:1ba125d01f712a5fb85db400a0cd9d2240c36529d7d0c8e925acfd3c45845bec_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:2801fe77997c4325f9d1e154eae8c63a4fc808e2c31c773a60c47d63268b1bbc_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:41fd9a9bc849f2c7c6439532bd537c34384b88be30b37629c5e271e0e4be7db4_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:55d7e178435c881a57a88aa6747cd6dedd3c3a512014d0509919dceef13b2946_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:5fef4993574a20a48a9f93e5f07967d13b7b26e8f7e83e2222ea5bbe1f500409_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:d785df86cfd97ff76e6d9426b247543faa91efaeb950f6b2e6b97f9e67624043_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:2fe25a8ac9612f29a625969bb25d24938abb298e9a9e1e79fb3aa34c6a0e5f76_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:307402d2c8c46b74c1a855dad9fdd9f4013c057256513b4d1d58ac980ed8d2e0_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:91710d1c3f67e096b682cb6fa118c70d40bbbc36e3293aa3bea9890775d70236_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:b9d25811da46af4766d41e7543cc54a2820b2b9a4c190585e34166620cf070f7_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:fbd34cb7d74c9e699337157c4c26bc714b541e00645948cccedb5e7afb258003_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:93dc86f2358079474a9f5ce67e0e6430c2cdbe8a01155be8020165fce2e73f2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:a8c0e823eb62db8ff39de33d6401670e2f65cac8e640b64a9ffeae8ecc0c12bc_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:d50e48a12a217855c373b865df663f50355e4f76fba33de65e50bdc333112c4a_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:eab9c2e2d1ea614bf898c0cba75223f7960a61b7d2315815d6410e3c4f62d7f8_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:39470e0a40255d8d0bcfb6a3e82d77bfd57fdbff5452179f69eed7cff417a103_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:69531d80a6af41db1c28f54a8acfea85594fca34c754c8049e75b331e998a973_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:7a6b045c058be14ab95043bc3c6680bba5ab54a060ae45dbc7e6e8896fb093d8_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:ab57133805270163a3cb99e972b183e8613a6fbfcc943eae5b542d923d572244_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:1c03e0ce9e3b48c8c0f2a9c65dfe3d9b344cd82ac776dc210ef23b91745b0682_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:3783cfecf52a9c532c4e64ed93078581c8ca200efda661efc63ae1fac4391d57_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:58a181deb194766402e32ef43375e2e51208b229c8c97674bda5a6fcc768b8fd_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:973cb71559d8d346c3e0840a6865afda1de53017dcd9f35ee0a56a1606f3149b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:276fbe3c102abbed5d2cc29b1dbf30456ab5d647fe7f157f18180cdd5ab0b431_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:5fb0bea0b4f43dce5201a986eb9bcd9aa9c2859e3d762f265e4d000a4c93474f_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:8efb0787d02e6700bee64b83c251ee11f4cdc4a04eb770cea3ba34f3d9ec94b4_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:bf53175b6a2e11cf7f5599b65fcb4e56e4037ad5b6254c9e4fa070080aea66fc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:207a6c112b395d28579d8318d95bec18942834476574e07889ae734a4df1c4b5_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:242afe8097041307445f2e9f4b8d3d674aa4ff91c6ffe884ef170b356a09fe68_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:3e0bc79f2f14f0bf95c5c5f08a7838e8c3df3df5da52182f4807b844dda8638e_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:9823d42834e5698b968385a7ef7d5a2a2749c441d8122a895bf53d3681df6a7c_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:06be3bd07a7bf44fb19a93869f6286fbdc7d8b8e7b8507e3c8ce9f8af67574f9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:175bde7c228af62b6f04799bc35a01d525a115d7decb73b2b5f90a3c8cf10a9c_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:4d800957aef55f44442be2a95bd85e3098587c6b0f7455b50264993cd4a2154b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:7fb3f1bf0b641c2f30493fb8e10e90625f5fd30f77ed3b7dec2a98012d54bbab_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:0a23d3fe6f4f54358bef552a62b3d098a97d39b4f1c0b0c0c6d3588c85276417_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:b26fb5031c85204e1b9174c49452146d4528560de554b70e2e97eebccd610fb8_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:e7d01fcd2995b921946a7842faec251ff4434bb9cda3b77e855339f2d9241471_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:ee31bd693543f37461982b1bbcdb783e438c3d1021875829bd24974a1d2c0ea6_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:70dbc4b2fd02c6006d01fd31277c79e1152a04e678316853cc9650004a88c8f6_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:93e15662b963e2da7c1ca4ad5c47df2a49d6df5857c9cb44157c88a1eb14c99c_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:a67c68062eb3fe78067524fbef175c6f4dcb2876138fbafc17c8f5aef930ffb5_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:fd0e68ad1f3d790efc1a7637a63668df741a3195d86260291ca7ff85fe72bed2_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:063b28090fce858259efe584b09d7329b766ae461926e8d78f6fac1cf6738055_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:0964f3f379136662c8c3817b2a7d3b787808fab2b742cd7ea53d5f6c2248d1c9_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:bc05850aa1cefea5105198c9af51c64f2b255df1c1ccbb30f3c12a2d4c549f1b_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:f5a7d92dc9cb85b9a4d70d871ab1748e80435e9ddba74ba3818e92ec57f7cf78_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:1ba125d01f712a5fb85db400a0cd9d2240c36529d7d0c8e925acfd3c45845bec_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:2801fe77997c4325f9d1e154eae8c63a4fc808e2c31c773a60c47d63268b1bbc_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:41fd9a9bc849f2c7c6439532bd537c34384b88be30b37629c5e271e0e4be7db4_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:55d7e178435c881a57a88aa6747cd6dedd3c3a512014d0509919dceef13b2946_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:5fef4993574a20a48a9f93e5f07967d13b7b26e8f7e83e2222ea5bbe1f500409_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:d785df86cfd97ff76e6d9426b247543faa91efaeb950f6b2e6b97f9e67624043_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:2fe25a8ac9612f29a625969bb25d24938abb298e9a9e1e79fb3aa34c6a0e5f76_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:307402d2c8c46b74c1a855dad9fdd9f4013c057256513b4d1d58ac980ed8d2e0_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:91710d1c3f67e096b682cb6fa118c70d40bbbc36e3293aa3bea9890775d70236_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:b9d25811da46af4766d41e7543cc54a2820b2b9a4c190585e34166620cf070f7_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:fbd34cb7d74c9e699337157c4c26bc714b541e00645948cccedb5e7afb258003_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:93dc86f2358079474a9f5ce67e0e6430c2cdbe8a01155be8020165fce2e73f2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:a8c0e823eb62db8ff39de33d6401670e2f65cac8e640b64a9ffeae8ecc0c12bc_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:d50e48a12a217855c373b865df663f50355e4f76fba33de65e50bdc333112c4a_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:eab9c2e2d1ea614bf898c0cba75223f7960a61b7d2315815d6410e3c4f62d7f8_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:39470e0a40255d8d0bcfb6a3e82d77bfd57fdbff5452179f69eed7cff417a103_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:69531d80a6af41db1c28f54a8acfea85594fca34c754c8049e75b331e998a973_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:7a6b045c058be14ab95043bc3c6680bba5ab54a060ae45dbc7e6e8896fb093d8_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:ab57133805270163a3cb99e972b183e8613a6fbfcc943eae5b542d923d572244_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:1c03e0ce9e3b48c8c0f2a9c65dfe3d9b344cd82ac776dc210ef23b91745b0682_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:3783cfecf52a9c532c4e64ed93078581c8ca200efda661efc63ae1fac4391d57_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:58a181deb194766402e32ef43375e2e51208b229c8c97674bda5a6fcc768b8fd_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:973cb71559d8d346c3e0840a6865afda1de53017dcd9f35ee0a56a1606f3149b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:276fbe3c102abbed5d2cc29b1dbf30456ab5d647fe7f157f18180cdd5ab0b431_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:5fb0bea0b4f43dce5201a986eb9bcd9aa9c2859e3d762f265e4d000a4c93474f_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:8efb0787d02e6700bee64b83c251ee11f4cdc4a04eb770cea3ba34f3d9ec94b4_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:bf53175b6a2e11cf7f5599b65fcb4e56e4037ad5b6254c9e4fa070080aea66fc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:207a6c112b395d28579d8318d95bec18942834476574e07889ae734a4df1c4b5_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:242afe8097041307445f2e9f4b8d3d674aa4ff91c6ffe884ef170b356a09fe68_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:3e0bc79f2f14f0bf95c5c5f08a7838e8c3df3df5da52182f4807b844dda8638e_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:9823d42834e5698b968385a7ef7d5a2a2749c441d8122a895bf53d3681df6a7c_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:06be3bd07a7bf44fb19a93869f6286fbdc7d8b8e7b8507e3c8ce9f8af67574f9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:175bde7c228af62b6f04799bc35a01d525a115d7decb73b2b5f90a3c8cf10a9c_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:4d800957aef55f44442be2a95bd85e3098587c6b0f7455b50264993cd4a2154b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:7fb3f1bf0b641c2f30493fb8e10e90625f5fd30f77ed3b7dec2a98012d54bbab_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:0a23d3fe6f4f54358bef552a62b3d098a97d39b4f1c0b0c0c6d3588c85276417_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:b26fb5031c85204e1b9174c49452146d4528560de554b70e2e97eebccd610fb8_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:e7d01fcd2995b921946a7842faec251ff4434bb9cda3b77e855339f2d9241471_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:ee31bd693543f37461982b1bbcdb783e438c3d1021875829bd24974a1d2c0ea6_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang.org/x/crypto/ssh: golang.org/x/crypto/ssh: Denial of Service via resource leak from unsolicited SSH responses"
},
{
"cve": "CVE-2026-39835",
"cwe": {
"id": "CWE-476",
"name": "NULL Pointer Dereference"
},
"discovery_date": "2026-05-22T04:01:27.279943+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:70dbc4b2fd02c6006d01fd31277c79e1152a04e678316853cc9650004a88c8f6_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:93e15662b963e2da7c1ca4ad5c47df2a49d6df5857c9cb44157c88a1eb14c99c_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:a67c68062eb3fe78067524fbef175c6f4dcb2876138fbafc17c8f5aef930ffb5_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:fd0e68ad1f3d790efc1a7637a63668df741a3195d86260291ca7ff85fe72bed2_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:063b28090fce858259efe584b09d7329b766ae461926e8d78f6fac1cf6738055_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:0964f3f379136662c8c3817b2a7d3b787808fab2b742cd7ea53d5f6c2248d1c9_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:bc05850aa1cefea5105198c9af51c64f2b255df1c1ccbb30f3c12a2d4c549f1b_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:f5a7d92dc9cb85b9a4d70d871ab1748e80435e9ddba74ba3818e92ec57f7cf78_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:1ba125d01f712a5fb85db400a0cd9d2240c36529d7d0c8e925acfd3c45845bec_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:2801fe77997c4325f9d1e154eae8c63a4fc808e2c31c773a60c47d63268b1bbc_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:39470e0a40255d8d0bcfb6a3e82d77bfd57fdbff5452179f69eed7cff417a103_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:69531d80a6af41db1c28f54a8acfea85594fca34c754c8049e75b331e998a973_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:7a6b045c058be14ab95043bc3c6680bba5ab54a060ae45dbc7e6e8896fb093d8_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:ab57133805270163a3cb99e972b183e8613a6fbfcc943eae5b542d923d572244_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:1c03e0ce9e3b48c8c0f2a9c65dfe3d9b344cd82ac776dc210ef23b91745b0682_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:3783cfecf52a9c532c4e64ed93078581c8ca200efda661efc63ae1fac4391d57_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:58a181deb194766402e32ef43375e2e51208b229c8c97674bda5a6fcc768b8fd_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:973cb71559d8d346c3e0840a6865afda1de53017dcd9f35ee0a56a1606f3149b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:06be3bd07a7bf44fb19a93869f6286fbdc7d8b8e7b8507e3c8ce9f8af67574f9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:175bde7c228af62b6f04799bc35a01d525a115d7decb73b2b5f90a3c8cf10a9c_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:4d800957aef55f44442be2a95bd85e3098587c6b0f7455b50264993cd4a2154b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:7fb3f1bf0b641c2f30493fb8e10e90625f5fd30f77ed3b7dec2a98012d54bbab_s390x"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2480680"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in golang.org/x/crypto/ssh. SSH servers configured to use CertChecker as a public key callback, without explicitly setting IsUserAuthority or IsHostAuthority, are vulnerable. A remote attacker can exploit this by presenting a specially crafted certificate, causing the server to panic and resulting in a Denial of Service (DoS).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang.org/x/crypto/ssh: golang: golang.org/x/crypto/ssh: Denial of Service via crafted SSH certificate",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This is an Important denial of service flaw in `golang.org/x/crypto/ssh` affecting SSH servers that utilize `CertChecker` as a public key callback without explicitly configuring `IsUserAuthority` or `IsHostAuthority`. A remote, unauthenticated attacker can trigger a server panic by presenting a specially crafted certificate, leading to service disruption. Exploitation requires a specific, non-default configuration of the `CertChecker`.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:41fd9a9bc849f2c7c6439532bd537c34384b88be30b37629c5e271e0e4be7db4_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:55d7e178435c881a57a88aa6747cd6dedd3c3a512014d0509919dceef13b2946_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:5fef4993574a20a48a9f93e5f07967d13b7b26e8f7e83e2222ea5bbe1f500409_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:d785df86cfd97ff76e6d9426b247543faa91efaeb950f6b2e6b97f9e67624043_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:2fe25a8ac9612f29a625969bb25d24938abb298e9a9e1e79fb3aa34c6a0e5f76_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:307402d2c8c46b74c1a855dad9fdd9f4013c057256513b4d1d58ac980ed8d2e0_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:91710d1c3f67e096b682cb6fa118c70d40bbbc36e3293aa3bea9890775d70236_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:b9d25811da46af4766d41e7543cc54a2820b2b9a4c190585e34166620cf070f7_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:fbd34cb7d74c9e699337157c4c26bc714b541e00645948cccedb5e7afb258003_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:93dc86f2358079474a9f5ce67e0e6430c2cdbe8a01155be8020165fce2e73f2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:a8c0e823eb62db8ff39de33d6401670e2f65cac8e640b64a9ffeae8ecc0c12bc_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:d50e48a12a217855c373b865df663f50355e4f76fba33de65e50bdc333112c4a_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:eab9c2e2d1ea614bf898c0cba75223f7960a61b7d2315815d6410e3c4f62d7f8_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:276fbe3c102abbed5d2cc29b1dbf30456ab5d647fe7f157f18180cdd5ab0b431_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:5fb0bea0b4f43dce5201a986eb9bcd9aa9c2859e3d762f265e4d000a4c93474f_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:8efb0787d02e6700bee64b83c251ee11f4cdc4a04eb770cea3ba34f3d9ec94b4_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:bf53175b6a2e11cf7f5599b65fcb4e56e4037ad5b6254c9e4fa070080aea66fc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:207a6c112b395d28579d8318d95bec18942834476574e07889ae734a4df1c4b5_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:242afe8097041307445f2e9f4b8d3d674aa4ff91c6ffe884ef170b356a09fe68_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:3e0bc79f2f14f0bf95c5c5f08a7838e8c3df3df5da52182f4807b844dda8638e_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:9823d42834e5698b968385a7ef7d5a2a2749c441d8122a895bf53d3681df6a7c_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:0a23d3fe6f4f54358bef552a62b3d098a97d39b4f1c0b0c0c6d3588c85276417_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:b26fb5031c85204e1b9174c49452146d4528560de554b70e2e97eebccd610fb8_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:e7d01fcd2995b921946a7842faec251ff4434bb9cda3b77e855339f2d9241471_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:ee31bd693543f37461982b1bbcdb783e438c3d1021875829bd24974a1d2c0ea6_amd64"
],
"known_not_affected": [
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:70dbc4b2fd02c6006d01fd31277c79e1152a04e678316853cc9650004a88c8f6_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:93e15662b963e2da7c1ca4ad5c47df2a49d6df5857c9cb44157c88a1eb14c99c_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:a67c68062eb3fe78067524fbef175c6f4dcb2876138fbafc17c8f5aef930ffb5_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:fd0e68ad1f3d790efc1a7637a63668df741a3195d86260291ca7ff85fe72bed2_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:063b28090fce858259efe584b09d7329b766ae461926e8d78f6fac1cf6738055_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:0964f3f379136662c8c3817b2a7d3b787808fab2b742cd7ea53d5f6c2248d1c9_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:bc05850aa1cefea5105198c9af51c64f2b255df1c1ccbb30f3c12a2d4c549f1b_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:f5a7d92dc9cb85b9a4d70d871ab1748e80435e9ddba74ba3818e92ec57f7cf78_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:1ba125d01f712a5fb85db400a0cd9d2240c36529d7d0c8e925acfd3c45845bec_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:2801fe77997c4325f9d1e154eae8c63a4fc808e2c31c773a60c47d63268b1bbc_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:39470e0a40255d8d0bcfb6a3e82d77bfd57fdbff5452179f69eed7cff417a103_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:69531d80a6af41db1c28f54a8acfea85594fca34c754c8049e75b331e998a973_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:7a6b045c058be14ab95043bc3c6680bba5ab54a060ae45dbc7e6e8896fb093d8_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:ab57133805270163a3cb99e972b183e8613a6fbfcc943eae5b542d923d572244_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:1c03e0ce9e3b48c8c0f2a9c65dfe3d9b344cd82ac776dc210ef23b91745b0682_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:3783cfecf52a9c532c4e64ed93078581c8ca200efda661efc63ae1fac4391d57_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:58a181deb194766402e32ef43375e2e51208b229c8c97674bda5a6fcc768b8fd_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:973cb71559d8d346c3e0840a6865afda1de53017dcd9f35ee0a56a1606f3149b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:06be3bd07a7bf44fb19a93869f6286fbdc7d8b8e7b8507e3c8ce9f8af67574f9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:175bde7c228af62b6f04799bc35a01d525a115d7decb73b2b5f90a3c8cf10a9c_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:4d800957aef55f44442be2a95bd85e3098587c6b0f7455b50264993cd4a2154b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:7fb3f1bf0b641c2f30493fb8e10e90625f5fd30f77ed3b7dec2a98012d54bbab_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-39835"
},
{
"category": "external",
"summary": "RHBZ#2480680",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2480680"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-39835",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-39835"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-39835",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-39835"
},
{
"category": "external",
"summary": "https://go.dev/cl/781660",
"url": "https://go.dev/cl/781660"
},
{
"category": "external",
"summary": "https://go.dev/issue/79563",
"url": "https://go.dev/issue/79563"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/a082jnz-LvI",
"url": "https://groups.google.com/g/golang-announce/c/a082jnz-LvI"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-5015",
"url": "https://pkg.go.dev/vuln/GO-2026-5015"
}
],
"release_date": "2026-05-22T02:31:26.982000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-07T11:09:24+00:00",
"details": "If you are using an earlier version of RHACS, you are advised to\nupgrade to the version of RHACS mentioned in the synopsis and release\nnotes in order to take advantage of the enhancements, bug fixes, and/or\nsecurity patches in the release.",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:41fd9a9bc849f2c7c6439532bd537c34384b88be30b37629c5e271e0e4be7db4_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:55d7e178435c881a57a88aa6747cd6dedd3c3a512014d0509919dceef13b2946_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:5fef4993574a20a48a9f93e5f07967d13b7b26e8f7e83e2222ea5bbe1f500409_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:d785df86cfd97ff76e6d9426b247543faa91efaeb950f6b2e6b97f9e67624043_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:2fe25a8ac9612f29a625969bb25d24938abb298e9a9e1e79fb3aa34c6a0e5f76_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:307402d2c8c46b74c1a855dad9fdd9f4013c057256513b4d1d58ac980ed8d2e0_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:91710d1c3f67e096b682cb6fa118c70d40bbbc36e3293aa3bea9890775d70236_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:b9d25811da46af4766d41e7543cc54a2820b2b9a4c190585e34166620cf070f7_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:fbd34cb7d74c9e699337157c4c26bc714b541e00645948cccedb5e7afb258003_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:93dc86f2358079474a9f5ce67e0e6430c2cdbe8a01155be8020165fce2e73f2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:a8c0e823eb62db8ff39de33d6401670e2f65cac8e640b64a9ffeae8ecc0c12bc_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:d50e48a12a217855c373b865df663f50355e4f76fba33de65e50bdc333112c4a_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:eab9c2e2d1ea614bf898c0cba75223f7960a61b7d2315815d6410e3c4f62d7f8_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:276fbe3c102abbed5d2cc29b1dbf30456ab5d647fe7f157f18180cdd5ab0b431_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:5fb0bea0b4f43dce5201a986eb9bcd9aa9c2859e3d762f265e4d000a4c93474f_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:8efb0787d02e6700bee64b83c251ee11f4cdc4a04eb770cea3ba34f3d9ec94b4_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:bf53175b6a2e11cf7f5599b65fcb4e56e4037ad5b6254c9e4fa070080aea66fc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:207a6c112b395d28579d8318d95bec18942834476574e07889ae734a4df1c4b5_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:242afe8097041307445f2e9f4b8d3d674aa4ff91c6ffe884ef170b356a09fe68_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:3e0bc79f2f14f0bf95c5c5f08a7838e8c3df3df5da52182f4807b844dda8638e_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:9823d42834e5698b968385a7ef7d5a2a2749c441d8122a895bf53d3681df6a7c_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:0a23d3fe6f4f54358bef552a62b3d098a97d39b4f1c0b0c0c6d3588c85276417_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:b26fb5031c85204e1b9174c49452146d4528560de554b70e2e97eebccd610fb8_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:e7d01fcd2995b921946a7842faec251ff4434bb9cda3b77e855339f2d9241471_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:ee31bd693543f37461982b1bbcdb783e438c3d1021875829bd24974a1d2c0ea6_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36207"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability.",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:70dbc4b2fd02c6006d01fd31277c79e1152a04e678316853cc9650004a88c8f6_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:93e15662b963e2da7c1ca4ad5c47df2a49d6df5857c9cb44157c88a1eb14c99c_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:a67c68062eb3fe78067524fbef175c6f4dcb2876138fbafc17c8f5aef930ffb5_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:fd0e68ad1f3d790efc1a7637a63668df741a3195d86260291ca7ff85fe72bed2_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:063b28090fce858259efe584b09d7329b766ae461926e8d78f6fac1cf6738055_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:0964f3f379136662c8c3817b2a7d3b787808fab2b742cd7ea53d5f6c2248d1c9_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:bc05850aa1cefea5105198c9af51c64f2b255df1c1ccbb30f3c12a2d4c549f1b_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:f5a7d92dc9cb85b9a4d70d871ab1748e80435e9ddba74ba3818e92ec57f7cf78_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:1ba125d01f712a5fb85db400a0cd9d2240c36529d7d0c8e925acfd3c45845bec_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:2801fe77997c4325f9d1e154eae8c63a4fc808e2c31c773a60c47d63268b1bbc_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:41fd9a9bc849f2c7c6439532bd537c34384b88be30b37629c5e271e0e4be7db4_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:55d7e178435c881a57a88aa6747cd6dedd3c3a512014d0509919dceef13b2946_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:5fef4993574a20a48a9f93e5f07967d13b7b26e8f7e83e2222ea5bbe1f500409_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:d785df86cfd97ff76e6d9426b247543faa91efaeb950f6b2e6b97f9e67624043_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:2fe25a8ac9612f29a625969bb25d24938abb298e9a9e1e79fb3aa34c6a0e5f76_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:307402d2c8c46b74c1a855dad9fdd9f4013c057256513b4d1d58ac980ed8d2e0_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:91710d1c3f67e096b682cb6fa118c70d40bbbc36e3293aa3bea9890775d70236_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:b9d25811da46af4766d41e7543cc54a2820b2b9a4c190585e34166620cf070f7_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:fbd34cb7d74c9e699337157c4c26bc714b541e00645948cccedb5e7afb258003_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:93dc86f2358079474a9f5ce67e0e6430c2cdbe8a01155be8020165fce2e73f2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:a8c0e823eb62db8ff39de33d6401670e2f65cac8e640b64a9ffeae8ecc0c12bc_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:d50e48a12a217855c373b865df663f50355e4f76fba33de65e50bdc333112c4a_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:eab9c2e2d1ea614bf898c0cba75223f7960a61b7d2315815d6410e3c4f62d7f8_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:39470e0a40255d8d0bcfb6a3e82d77bfd57fdbff5452179f69eed7cff417a103_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:69531d80a6af41db1c28f54a8acfea85594fca34c754c8049e75b331e998a973_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:7a6b045c058be14ab95043bc3c6680bba5ab54a060ae45dbc7e6e8896fb093d8_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:ab57133805270163a3cb99e972b183e8613a6fbfcc943eae5b542d923d572244_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:1c03e0ce9e3b48c8c0f2a9c65dfe3d9b344cd82ac776dc210ef23b91745b0682_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:3783cfecf52a9c532c4e64ed93078581c8ca200efda661efc63ae1fac4391d57_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:58a181deb194766402e32ef43375e2e51208b229c8c97674bda5a6fcc768b8fd_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:973cb71559d8d346c3e0840a6865afda1de53017dcd9f35ee0a56a1606f3149b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:276fbe3c102abbed5d2cc29b1dbf30456ab5d647fe7f157f18180cdd5ab0b431_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:5fb0bea0b4f43dce5201a986eb9bcd9aa9c2859e3d762f265e4d000a4c93474f_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:8efb0787d02e6700bee64b83c251ee11f4cdc4a04eb770cea3ba34f3d9ec94b4_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:bf53175b6a2e11cf7f5599b65fcb4e56e4037ad5b6254c9e4fa070080aea66fc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:207a6c112b395d28579d8318d95bec18942834476574e07889ae734a4df1c4b5_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:242afe8097041307445f2e9f4b8d3d674aa4ff91c6ffe884ef170b356a09fe68_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:3e0bc79f2f14f0bf95c5c5f08a7838e8c3df3df5da52182f4807b844dda8638e_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:9823d42834e5698b968385a7ef7d5a2a2749c441d8122a895bf53d3681df6a7c_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:06be3bd07a7bf44fb19a93869f6286fbdc7d8b8e7b8507e3c8ce9f8af67574f9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:175bde7c228af62b6f04799bc35a01d525a115d7decb73b2b5f90a3c8cf10a9c_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:4d800957aef55f44442be2a95bd85e3098587c6b0f7455b50264993cd4a2154b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:7fb3f1bf0b641c2f30493fb8e10e90625f5fd30f77ed3b7dec2a98012d54bbab_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:0a23d3fe6f4f54358bef552a62b3d098a97d39b4f1c0b0c0c6d3588c85276417_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:b26fb5031c85204e1b9174c49452146d4528560de554b70e2e97eebccd610fb8_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:e7d01fcd2995b921946a7842faec251ff4434bb9cda3b77e855339f2d9241471_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:ee31bd693543f37461982b1bbcdb783e438c3d1021875829bd24974a1d2c0ea6_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:70dbc4b2fd02c6006d01fd31277c79e1152a04e678316853cc9650004a88c8f6_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:93e15662b963e2da7c1ca4ad5c47df2a49d6df5857c9cb44157c88a1eb14c99c_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:a67c68062eb3fe78067524fbef175c6f4dcb2876138fbafc17c8f5aef930ffb5_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:fd0e68ad1f3d790efc1a7637a63668df741a3195d86260291ca7ff85fe72bed2_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:063b28090fce858259efe584b09d7329b766ae461926e8d78f6fac1cf6738055_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:0964f3f379136662c8c3817b2a7d3b787808fab2b742cd7ea53d5f6c2248d1c9_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:bc05850aa1cefea5105198c9af51c64f2b255df1c1ccbb30f3c12a2d4c549f1b_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:f5a7d92dc9cb85b9a4d70d871ab1748e80435e9ddba74ba3818e92ec57f7cf78_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:1ba125d01f712a5fb85db400a0cd9d2240c36529d7d0c8e925acfd3c45845bec_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:2801fe77997c4325f9d1e154eae8c63a4fc808e2c31c773a60c47d63268b1bbc_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:41fd9a9bc849f2c7c6439532bd537c34384b88be30b37629c5e271e0e4be7db4_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:55d7e178435c881a57a88aa6747cd6dedd3c3a512014d0509919dceef13b2946_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:5fef4993574a20a48a9f93e5f07967d13b7b26e8f7e83e2222ea5bbe1f500409_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:d785df86cfd97ff76e6d9426b247543faa91efaeb950f6b2e6b97f9e67624043_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:2fe25a8ac9612f29a625969bb25d24938abb298e9a9e1e79fb3aa34c6a0e5f76_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:307402d2c8c46b74c1a855dad9fdd9f4013c057256513b4d1d58ac980ed8d2e0_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:91710d1c3f67e096b682cb6fa118c70d40bbbc36e3293aa3bea9890775d70236_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:b9d25811da46af4766d41e7543cc54a2820b2b9a4c190585e34166620cf070f7_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:fbd34cb7d74c9e699337157c4c26bc714b541e00645948cccedb5e7afb258003_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:93dc86f2358079474a9f5ce67e0e6430c2cdbe8a01155be8020165fce2e73f2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:a8c0e823eb62db8ff39de33d6401670e2f65cac8e640b64a9ffeae8ecc0c12bc_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:d50e48a12a217855c373b865df663f50355e4f76fba33de65e50bdc333112c4a_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:eab9c2e2d1ea614bf898c0cba75223f7960a61b7d2315815d6410e3c4f62d7f8_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:39470e0a40255d8d0bcfb6a3e82d77bfd57fdbff5452179f69eed7cff417a103_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:69531d80a6af41db1c28f54a8acfea85594fca34c754c8049e75b331e998a973_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:7a6b045c058be14ab95043bc3c6680bba5ab54a060ae45dbc7e6e8896fb093d8_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:ab57133805270163a3cb99e972b183e8613a6fbfcc943eae5b542d923d572244_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:1c03e0ce9e3b48c8c0f2a9c65dfe3d9b344cd82ac776dc210ef23b91745b0682_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:3783cfecf52a9c532c4e64ed93078581c8ca200efda661efc63ae1fac4391d57_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:58a181deb194766402e32ef43375e2e51208b229c8c97674bda5a6fcc768b8fd_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:973cb71559d8d346c3e0840a6865afda1de53017dcd9f35ee0a56a1606f3149b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:276fbe3c102abbed5d2cc29b1dbf30456ab5d647fe7f157f18180cdd5ab0b431_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:5fb0bea0b4f43dce5201a986eb9bcd9aa9c2859e3d762f265e4d000a4c93474f_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:8efb0787d02e6700bee64b83c251ee11f4cdc4a04eb770cea3ba34f3d9ec94b4_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:bf53175b6a2e11cf7f5599b65fcb4e56e4037ad5b6254c9e4fa070080aea66fc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:207a6c112b395d28579d8318d95bec18942834476574e07889ae734a4df1c4b5_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:242afe8097041307445f2e9f4b8d3d674aa4ff91c6ffe884ef170b356a09fe68_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:3e0bc79f2f14f0bf95c5c5f08a7838e8c3df3df5da52182f4807b844dda8638e_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:9823d42834e5698b968385a7ef7d5a2a2749c441d8122a895bf53d3681df6a7c_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:06be3bd07a7bf44fb19a93869f6286fbdc7d8b8e7b8507e3c8ce9f8af67574f9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:175bde7c228af62b6f04799bc35a01d525a115d7decb73b2b5f90a3c8cf10a9c_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:4d800957aef55f44442be2a95bd85e3098587c6b0f7455b50264993cd4a2154b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:7fb3f1bf0b641c2f30493fb8e10e90625f5fd30f77ed3b7dec2a98012d54bbab_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:0a23d3fe6f4f54358bef552a62b3d098a97d39b4f1c0b0c0c6d3588c85276417_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:b26fb5031c85204e1b9174c49452146d4528560de554b70e2e97eebccd610fb8_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:e7d01fcd2995b921946a7842faec251ff4434bb9cda3b77e855339f2d9241471_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:ee31bd693543f37461982b1bbcdb783e438c3d1021875829bd24974a1d2c0ea6_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang.org/x/crypto/ssh: golang: golang.org/x/crypto/ssh: Denial of Service via crafted SSH certificate"
},
{
"cve": "CVE-2026-42264",
"cwe": {
"id": "CWE-915",
"name": "Improperly Controlled Modification of Dynamically-Determined Object Attributes"
},
"discovery_date": "2026-05-08T04:02:21.039378+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:70dbc4b2fd02c6006d01fd31277c79e1152a04e678316853cc9650004a88c8f6_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:93e15662b963e2da7c1ca4ad5c47df2a49d6df5857c9cb44157c88a1eb14c99c_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:a67c68062eb3fe78067524fbef175c6f4dcb2876138fbafc17c8f5aef930ffb5_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:fd0e68ad1f3d790efc1a7637a63668df741a3195d86260291ca7ff85fe72bed2_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:063b28090fce858259efe584b09d7329b766ae461926e8d78f6fac1cf6738055_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:0964f3f379136662c8c3817b2a7d3b787808fab2b742cd7ea53d5f6c2248d1c9_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:bc05850aa1cefea5105198c9af51c64f2b255df1c1ccbb30f3c12a2d4c549f1b_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:f5a7d92dc9cb85b9a4d70d871ab1748e80435e9ddba74ba3818e92ec57f7cf78_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:1ba125d01f712a5fb85db400a0cd9d2240c36529d7d0c8e925acfd3c45845bec_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:2801fe77997c4325f9d1e154eae8c63a4fc808e2c31c773a60c47d63268b1bbc_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:2fe25a8ac9612f29a625969bb25d24938abb298e9a9e1e79fb3aa34c6a0e5f76_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:307402d2c8c46b74c1a855dad9fdd9f4013c057256513b4d1d58ac980ed8d2e0_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:91710d1c3f67e096b682cb6fa118c70d40bbbc36e3293aa3bea9890775d70236_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:b9d25811da46af4766d41e7543cc54a2820b2b9a4c190585e34166620cf070f7_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:fbd34cb7d74c9e699337157c4c26bc714b541e00645948cccedb5e7afb258003_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:93dc86f2358079474a9f5ce67e0e6430c2cdbe8a01155be8020165fce2e73f2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:a8c0e823eb62db8ff39de33d6401670e2f65cac8e640b64a9ffeae8ecc0c12bc_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:d50e48a12a217855c373b865df663f50355e4f76fba33de65e50bdc333112c4a_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:eab9c2e2d1ea614bf898c0cba75223f7960a61b7d2315815d6410e3c4f62d7f8_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:39470e0a40255d8d0bcfb6a3e82d77bfd57fdbff5452179f69eed7cff417a103_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:69531d80a6af41db1c28f54a8acfea85594fca34c754c8049e75b331e998a973_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:7a6b045c058be14ab95043bc3c6680bba5ab54a060ae45dbc7e6e8896fb093d8_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:ab57133805270163a3cb99e972b183e8613a6fbfcc943eae5b542d923d572244_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:1c03e0ce9e3b48c8c0f2a9c65dfe3d9b344cd82ac776dc210ef23b91745b0682_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:3783cfecf52a9c532c4e64ed93078581c8ca200efda661efc63ae1fac4391d57_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:58a181deb194766402e32ef43375e2e51208b229c8c97674bda5a6fcc768b8fd_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:973cb71559d8d346c3e0840a6865afda1de53017dcd9f35ee0a56a1606f3149b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:276fbe3c102abbed5d2cc29b1dbf30456ab5d647fe7f157f18180cdd5ab0b431_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:5fb0bea0b4f43dce5201a986eb9bcd9aa9c2859e3d762f265e4d000a4c93474f_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:8efb0787d02e6700bee64b83c251ee11f4cdc4a04eb770cea3ba34f3d9ec94b4_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:bf53175b6a2e11cf7f5599b65fcb4e56e4037ad5b6254c9e4fa070080aea66fc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:207a6c112b395d28579d8318d95bec18942834476574e07889ae734a4df1c4b5_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:242afe8097041307445f2e9f4b8d3d674aa4ff91c6ffe884ef170b356a09fe68_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:3e0bc79f2f14f0bf95c5c5f08a7838e8c3df3df5da52182f4807b844dda8638e_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:9823d42834e5698b968385a7ef7d5a2a2749c441d8122a895bf53d3681df6a7c_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:06be3bd07a7bf44fb19a93869f6286fbdc7d8b8e7b8507e3c8ce9f8af67574f9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:175bde7c228af62b6f04799bc35a01d525a115d7decb73b2b5f90a3c8cf10a9c_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:4d800957aef55f44442be2a95bd85e3098587c6b0f7455b50264993cd4a2154b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:7fb3f1bf0b641c2f30493fb8e10e90625f5fd30f77ed3b7dec2a98012d54bbab_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:0a23d3fe6f4f54358bef552a62b3d098a97d39b4f1c0b0c0c6d3588c85276417_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:b26fb5031c85204e1b9174c49452146d4528560de554b70e2e97eebccd610fb8_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:e7d01fcd2995b921946a7842faec251ff4434bb9cda3b77e855339f2d9241471_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:ee31bd693543f37461982b1bbcdb783e438c3d1021875829bd24974a1d2c0ea6_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2467927"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Axios, a widely used HTTP client. This vulnerability, known as prototype pollution, allows an attacker to inject malicious properties into core JavaScript objects. When another component in the same application environment is compromised and pollutes the system\u0027s object prototype, Axios can unknowingly use these manipulated values in its outbound network requests. This could lead to the disclosure of sensitive information or the alteration of network communications, compromising data confidentiality and integrity.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "axios: Axios: Prototype pollution allows information disclosure and request manipulation",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This Important prototype pollution flaw in Axios could result in information disclosure and network request manipulation. The vulnerability occurs when a co-located dependency in the application environment successfully pollutes the JavaScript `Object.prototype`. Under these conditions, Axios may unknowingly incorporate the manipulated properties into its outbound HTTP requests, potentially compromising data confidentiality and integrity. Exploitation is contingent on a prior successful prototype pollution attack from another component.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:41fd9a9bc849f2c7c6439532bd537c34384b88be30b37629c5e271e0e4be7db4_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:55d7e178435c881a57a88aa6747cd6dedd3c3a512014d0509919dceef13b2946_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:5fef4993574a20a48a9f93e5f07967d13b7b26e8f7e83e2222ea5bbe1f500409_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:d785df86cfd97ff76e6d9426b247543faa91efaeb950f6b2e6b97f9e67624043_s390x"
],
"known_not_affected": [
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:70dbc4b2fd02c6006d01fd31277c79e1152a04e678316853cc9650004a88c8f6_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:93e15662b963e2da7c1ca4ad5c47df2a49d6df5857c9cb44157c88a1eb14c99c_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:a67c68062eb3fe78067524fbef175c6f4dcb2876138fbafc17c8f5aef930ffb5_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:fd0e68ad1f3d790efc1a7637a63668df741a3195d86260291ca7ff85fe72bed2_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:063b28090fce858259efe584b09d7329b766ae461926e8d78f6fac1cf6738055_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:0964f3f379136662c8c3817b2a7d3b787808fab2b742cd7ea53d5f6c2248d1c9_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:bc05850aa1cefea5105198c9af51c64f2b255df1c1ccbb30f3c12a2d4c549f1b_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:f5a7d92dc9cb85b9a4d70d871ab1748e80435e9ddba74ba3818e92ec57f7cf78_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:1ba125d01f712a5fb85db400a0cd9d2240c36529d7d0c8e925acfd3c45845bec_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:2801fe77997c4325f9d1e154eae8c63a4fc808e2c31c773a60c47d63268b1bbc_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:2fe25a8ac9612f29a625969bb25d24938abb298e9a9e1e79fb3aa34c6a0e5f76_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:307402d2c8c46b74c1a855dad9fdd9f4013c057256513b4d1d58ac980ed8d2e0_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:91710d1c3f67e096b682cb6fa118c70d40bbbc36e3293aa3bea9890775d70236_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:b9d25811da46af4766d41e7543cc54a2820b2b9a4c190585e34166620cf070f7_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:fbd34cb7d74c9e699337157c4c26bc714b541e00645948cccedb5e7afb258003_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:93dc86f2358079474a9f5ce67e0e6430c2cdbe8a01155be8020165fce2e73f2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:a8c0e823eb62db8ff39de33d6401670e2f65cac8e640b64a9ffeae8ecc0c12bc_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:d50e48a12a217855c373b865df663f50355e4f76fba33de65e50bdc333112c4a_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:eab9c2e2d1ea614bf898c0cba75223f7960a61b7d2315815d6410e3c4f62d7f8_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:39470e0a40255d8d0bcfb6a3e82d77bfd57fdbff5452179f69eed7cff417a103_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:69531d80a6af41db1c28f54a8acfea85594fca34c754c8049e75b331e998a973_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:7a6b045c058be14ab95043bc3c6680bba5ab54a060ae45dbc7e6e8896fb093d8_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:ab57133805270163a3cb99e972b183e8613a6fbfcc943eae5b542d923d572244_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:1c03e0ce9e3b48c8c0f2a9c65dfe3d9b344cd82ac776dc210ef23b91745b0682_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:3783cfecf52a9c532c4e64ed93078581c8ca200efda661efc63ae1fac4391d57_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:58a181deb194766402e32ef43375e2e51208b229c8c97674bda5a6fcc768b8fd_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:973cb71559d8d346c3e0840a6865afda1de53017dcd9f35ee0a56a1606f3149b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:276fbe3c102abbed5d2cc29b1dbf30456ab5d647fe7f157f18180cdd5ab0b431_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:5fb0bea0b4f43dce5201a986eb9bcd9aa9c2859e3d762f265e4d000a4c93474f_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:8efb0787d02e6700bee64b83c251ee11f4cdc4a04eb770cea3ba34f3d9ec94b4_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:bf53175b6a2e11cf7f5599b65fcb4e56e4037ad5b6254c9e4fa070080aea66fc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:207a6c112b395d28579d8318d95bec18942834476574e07889ae734a4df1c4b5_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:242afe8097041307445f2e9f4b8d3d674aa4ff91c6ffe884ef170b356a09fe68_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:3e0bc79f2f14f0bf95c5c5f08a7838e8c3df3df5da52182f4807b844dda8638e_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:9823d42834e5698b968385a7ef7d5a2a2749c441d8122a895bf53d3681df6a7c_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:06be3bd07a7bf44fb19a93869f6286fbdc7d8b8e7b8507e3c8ce9f8af67574f9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:175bde7c228af62b6f04799bc35a01d525a115d7decb73b2b5f90a3c8cf10a9c_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:4d800957aef55f44442be2a95bd85e3098587c6b0f7455b50264993cd4a2154b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:7fb3f1bf0b641c2f30493fb8e10e90625f5fd30f77ed3b7dec2a98012d54bbab_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:0a23d3fe6f4f54358bef552a62b3d098a97d39b4f1c0b0c0c6d3588c85276417_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:b26fb5031c85204e1b9174c49452146d4528560de554b70e2e97eebccd610fb8_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:e7d01fcd2995b921946a7842faec251ff4434bb9cda3b77e855339f2d9241471_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:ee31bd693543f37461982b1bbcdb783e438c3d1021875829bd24974a1d2c0ea6_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-42264"
},
{
"category": "external",
"summary": "RHBZ#2467927",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2467927"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-42264",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-42264"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-42264",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-42264"
},
{
"category": "external",
"summary": "https://github.com/axios/axios/commit/47915144662f2733e6c051bdcb895a8c8f0586aa",
"url": "https://github.com/axios/axios/commit/47915144662f2733e6c051bdcb895a8c8f0586aa"
},
{
"category": "external",
"summary": "https://github.com/axios/axios/pull/10779",
"url": "https://github.com/axios/axios/pull/10779"
},
{
"category": "external",
"summary": "https://github.com/axios/axios/releases/tag/v1.15.2",
"url": "https://github.com/axios/axios/releases/tag/v1.15.2"
},
{
"category": "external",
"summary": "https://github.com/axios/axios/security/advisories/GHSA-q8qp-cvcw-x6jj",
"url": "https://github.com/axios/axios/security/advisories/GHSA-q8qp-cvcw-x6jj"
}
],
"release_date": "2026-05-08T03:20:24.248000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-07T11:09:24+00:00",
"details": "If you are using an earlier version of RHACS, you are advised to\nupgrade to the version of RHACS mentioned in the synopsis and release\nnotes in order to take advantage of the enhancements, bug fixes, and/or\nsecurity patches in the release.",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:41fd9a9bc849f2c7c6439532bd537c34384b88be30b37629c5e271e0e4be7db4_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:55d7e178435c881a57a88aa6747cd6dedd3c3a512014d0509919dceef13b2946_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:5fef4993574a20a48a9f93e5f07967d13b7b26e8f7e83e2222ea5bbe1f500409_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:d785df86cfd97ff76e6d9426b247543faa91efaeb950f6b2e6b97f9e67624043_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36207"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability.",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:70dbc4b2fd02c6006d01fd31277c79e1152a04e678316853cc9650004a88c8f6_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:93e15662b963e2da7c1ca4ad5c47df2a49d6df5857c9cb44157c88a1eb14c99c_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:a67c68062eb3fe78067524fbef175c6f4dcb2876138fbafc17c8f5aef930ffb5_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:fd0e68ad1f3d790efc1a7637a63668df741a3195d86260291ca7ff85fe72bed2_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:063b28090fce858259efe584b09d7329b766ae461926e8d78f6fac1cf6738055_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:0964f3f379136662c8c3817b2a7d3b787808fab2b742cd7ea53d5f6c2248d1c9_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:bc05850aa1cefea5105198c9af51c64f2b255df1c1ccbb30f3c12a2d4c549f1b_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:f5a7d92dc9cb85b9a4d70d871ab1748e80435e9ddba74ba3818e92ec57f7cf78_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:1ba125d01f712a5fb85db400a0cd9d2240c36529d7d0c8e925acfd3c45845bec_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:2801fe77997c4325f9d1e154eae8c63a4fc808e2c31c773a60c47d63268b1bbc_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:41fd9a9bc849f2c7c6439532bd537c34384b88be30b37629c5e271e0e4be7db4_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:55d7e178435c881a57a88aa6747cd6dedd3c3a512014d0509919dceef13b2946_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:5fef4993574a20a48a9f93e5f07967d13b7b26e8f7e83e2222ea5bbe1f500409_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:d785df86cfd97ff76e6d9426b247543faa91efaeb950f6b2e6b97f9e67624043_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:2fe25a8ac9612f29a625969bb25d24938abb298e9a9e1e79fb3aa34c6a0e5f76_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:307402d2c8c46b74c1a855dad9fdd9f4013c057256513b4d1d58ac980ed8d2e0_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:91710d1c3f67e096b682cb6fa118c70d40bbbc36e3293aa3bea9890775d70236_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:b9d25811da46af4766d41e7543cc54a2820b2b9a4c190585e34166620cf070f7_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:fbd34cb7d74c9e699337157c4c26bc714b541e00645948cccedb5e7afb258003_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:93dc86f2358079474a9f5ce67e0e6430c2cdbe8a01155be8020165fce2e73f2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:a8c0e823eb62db8ff39de33d6401670e2f65cac8e640b64a9ffeae8ecc0c12bc_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:d50e48a12a217855c373b865df663f50355e4f76fba33de65e50bdc333112c4a_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:eab9c2e2d1ea614bf898c0cba75223f7960a61b7d2315815d6410e3c4f62d7f8_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:39470e0a40255d8d0bcfb6a3e82d77bfd57fdbff5452179f69eed7cff417a103_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:69531d80a6af41db1c28f54a8acfea85594fca34c754c8049e75b331e998a973_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:7a6b045c058be14ab95043bc3c6680bba5ab54a060ae45dbc7e6e8896fb093d8_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:ab57133805270163a3cb99e972b183e8613a6fbfcc943eae5b542d923d572244_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:1c03e0ce9e3b48c8c0f2a9c65dfe3d9b344cd82ac776dc210ef23b91745b0682_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:3783cfecf52a9c532c4e64ed93078581c8ca200efda661efc63ae1fac4391d57_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:58a181deb194766402e32ef43375e2e51208b229c8c97674bda5a6fcc768b8fd_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:973cb71559d8d346c3e0840a6865afda1de53017dcd9f35ee0a56a1606f3149b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:276fbe3c102abbed5d2cc29b1dbf30456ab5d647fe7f157f18180cdd5ab0b431_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:5fb0bea0b4f43dce5201a986eb9bcd9aa9c2859e3d762f265e4d000a4c93474f_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:8efb0787d02e6700bee64b83c251ee11f4cdc4a04eb770cea3ba34f3d9ec94b4_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:bf53175b6a2e11cf7f5599b65fcb4e56e4037ad5b6254c9e4fa070080aea66fc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:207a6c112b395d28579d8318d95bec18942834476574e07889ae734a4df1c4b5_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:242afe8097041307445f2e9f4b8d3d674aa4ff91c6ffe884ef170b356a09fe68_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:3e0bc79f2f14f0bf95c5c5f08a7838e8c3df3df5da52182f4807b844dda8638e_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:9823d42834e5698b968385a7ef7d5a2a2749c441d8122a895bf53d3681df6a7c_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:06be3bd07a7bf44fb19a93869f6286fbdc7d8b8e7b8507e3c8ce9f8af67574f9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:175bde7c228af62b6f04799bc35a01d525a115d7decb73b2b5f90a3c8cf10a9c_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:4d800957aef55f44442be2a95bd85e3098587c6b0f7455b50264993cd4a2154b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:7fb3f1bf0b641c2f30493fb8e10e90625f5fd30f77ed3b7dec2a98012d54bbab_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:0a23d3fe6f4f54358bef552a62b3d098a97d39b4f1c0b0c0c6d3588c85276417_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:b26fb5031c85204e1b9174c49452146d4528560de554b70e2e97eebccd610fb8_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:e7d01fcd2995b921946a7842faec251ff4434bb9cda3b77e855339f2d9241471_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:ee31bd693543f37461982b1bbcdb783e438c3d1021875829bd24974a1d2c0ea6_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.4,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:70dbc4b2fd02c6006d01fd31277c79e1152a04e678316853cc9650004a88c8f6_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:93e15662b963e2da7c1ca4ad5c47df2a49d6df5857c9cb44157c88a1eb14c99c_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:a67c68062eb3fe78067524fbef175c6f4dcb2876138fbafc17c8f5aef930ffb5_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:fd0e68ad1f3d790efc1a7637a63668df741a3195d86260291ca7ff85fe72bed2_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:063b28090fce858259efe584b09d7329b766ae461926e8d78f6fac1cf6738055_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:0964f3f379136662c8c3817b2a7d3b787808fab2b742cd7ea53d5f6c2248d1c9_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:bc05850aa1cefea5105198c9af51c64f2b255df1c1ccbb30f3c12a2d4c549f1b_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:f5a7d92dc9cb85b9a4d70d871ab1748e80435e9ddba74ba3818e92ec57f7cf78_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:1ba125d01f712a5fb85db400a0cd9d2240c36529d7d0c8e925acfd3c45845bec_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:2801fe77997c4325f9d1e154eae8c63a4fc808e2c31c773a60c47d63268b1bbc_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:41fd9a9bc849f2c7c6439532bd537c34384b88be30b37629c5e271e0e4be7db4_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:55d7e178435c881a57a88aa6747cd6dedd3c3a512014d0509919dceef13b2946_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:5fef4993574a20a48a9f93e5f07967d13b7b26e8f7e83e2222ea5bbe1f500409_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:d785df86cfd97ff76e6d9426b247543faa91efaeb950f6b2e6b97f9e67624043_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:2fe25a8ac9612f29a625969bb25d24938abb298e9a9e1e79fb3aa34c6a0e5f76_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:307402d2c8c46b74c1a855dad9fdd9f4013c057256513b4d1d58ac980ed8d2e0_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:91710d1c3f67e096b682cb6fa118c70d40bbbc36e3293aa3bea9890775d70236_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:b9d25811da46af4766d41e7543cc54a2820b2b9a4c190585e34166620cf070f7_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:fbd34cb7d74c9e699337157c4c26bc714b541e00645948cccedb5e7afb258003_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:93dc86f2358079474a9f5ce67e0e6430c2cdbe8a01155be8020165fce2e73f2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:a8c0e823eb62db8ff39de33d6401670e2f65cac8e640b64a9ffeae8ecc0c12bc_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:d50e48a12a217855c373b865df663f50355e4f76fba33de65e50bdc333112c4a_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:eab9c2e2d1ea614bf898c0cba75223f7960a61b7d2315815d6410e3c4f62d7f8_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:39470e0a40255d8d0bcfb6a3e82d77bfd57fdbff5452179f69eed7cff417a103_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:69531d80a6af41db1c28f54a8acfea85594fca34c754c8049e75b331e998a973_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:7a6b045c058be14ab95043bc3c6680bba5ab54a060ae45dbc7e6e8896fb093d8_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:ab57133805270163a3cb99e972b183e8613a6fbfcc943eae5b542d923d572244_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:1c03e0ce9e3b48c8c0f2a9c65dfe3d9b344cd82ac776dc210ef23b91745b0682_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:3783cfecf52a9c532c4e64ed93078581c8ca200efda661efc63ae1fac4391d57_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:58a181deb194766402e32ef43375e2e51208b229c8c97674bda5a6fcc768b8fd_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:973cb71559d8d346c3e0840a6865afda1de53017dcd9f35ee0a56a1606f3149b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:276fbe3c102abbed5d2cc29b1dbf30456ab5d647fe7f157f18180cdd5ab0b431_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:5fb0bea0b4f43dce5201a986eb9bcd9aa9c2859e3d762f265e4d000a4c93474f_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:8efb0787d02e6700bee64b83c251ee11f4cdc4a04eb770cea3ba34f3d9ec94b4_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:bf53175b6a2e11cf7f5599b65fcb4e56e4037ad5b6254c9e4fa070080aea66fc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:207a6c112b395d28579d8318d95bec18942834476574e07889ae734a4df1c4b5_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:242afe8097041307445f2e9f4b8d3d674aa4ff91c6ffe884ef170b356a09fe68_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:3e0bc79f2f14f0bf95c5c5f08a7838e8c3df3df5da52182f4807b844dda8638e_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:9823d42834e5698b968385a7ef7d5a2a2749c441d8122a895bf53d3681df6a7c_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:06be3bd07a7bf44fb19a93869f6286fbdc7d8b8e7b8507e3c8ce9f8af67574f9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:175bde7c228af62b6f04799bc35a01d525a115d7decb73b2b5f90a3c8cf10a9c_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:4d800957aef55f44442be2a95bd85e3098587c6b0f7455b50264993cd4a2154b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:7fb3f1bf0b641c2f30493fb8e10e90625f5fd30f77ed3b7dec2a98012d54bbab_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:0a23d3fe6f4f54358bef552a62b3d098a97d39b4f1c0b0c0c6d3588c85276417_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:b26fb5031c85204e1b9174c49452146d4528560de554b70e2e97eebccd610fb8_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:e7d01fcd2995b921946a7842faec251ff4434bb9cda3b77e855339f2d9241471_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:ee31bd693543f37461982b1bbcdb783e438c3d1021875829bd24974a1d2c0ea6_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "axios: Axios: Prototype pollution allows information disclosure and request manipulation"
},
{
"cve": "CVE-2026-46595",
"cwe": {
"id": "CWE-303",
"name": "Incorrect Implementation of Authentication Algorithm"
},
"discovery_date": "2026-05-22T04:01:52.215134+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:70dbc4b2fd02c6006d01fd31277c79e1152a04e678316853cc9650004a88c8f6_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:93e15662b963e2da7c1ca4ad5c47df2a49d6df5857c9cb44157c88a1eb14c99c_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:a67c68062eb3fe78067524fbef175c6f4dcb2876138fbafc17c8f5aef930ffb5_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:fd0e68ad1f3d790efc1a7637a63668df741a3195d86260291ca7ff85fe72bed2_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:063b28090fce858259efe584b09d7329b766ae461926e8d78f6fac1cf6738055_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:0964f3f379136662c8c3817b2a7d3b787808fab2b742cd7ea53d5f6c2248d1c9_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:bc05850aa1cefea5105198c9af51c64f2b255df1c1ccbb30f3c12a2d4c549f1b_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:f5a7d92dc9cb85b9a4d70d871ab1748e80435e9ddba74ba3818e92ec57f7cf78_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:1ba125d01f712a5fb85db400a0cd9d2240c36529d7d0c8e925acfd3c45845bec_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:2801fe77997c4325f9d1e154eae8c63a4fc808e2c31c773a60c47d63268b1bbc_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:2fe25a8ac9612f29a625969bb25d24938abb298e9a9e1e79fb3aa34c6a0e5f76_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:307402d2c8c46b74c1a855dad9fdd9f4013c057256513b4d1d58ac980ed8d2e0_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:91710d1c3f67e096b682cb6fa118c70d40bbbc36e3293aa3bea9890775d70236_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:b9d25811da46af4766d41e7543cc54a2820b2b9a4c190585e34166620cf070f7_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:fbd34cb7d74c9e699337157c4c26bc714b541e00645948cccedb5e7afb258003_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:93dc86f2358079474a9f5ce67e0e6430c2cdbe8a01155be8020165fce2e73f2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:a8c0e823eb62db8ff39de33d6401670e2f65cac8e640b64a9ffeae8ecc0c12bc_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:d50e48a12a217855c373b865df663f50355e4f76fba33de65e50bdc333112c4a_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:eab9c2e2d1ea614bf898c0cba75223f7960a61b7d2315815d6410e3c4f62d7f8_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:39470e0a40255d8d0bcfb6a3e82d77bfd57fdbff5452179f69eed7cff417a103_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:69531d80a6af41db1c28f54a8acfea85594fca34c754c8049e75b331e998a973_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:7a6b045c058be14ab95043bc3c6680bba5ab54a060ae45dbc7e6e8896fb093d8_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:ab57133805270163a3cb99e972b183e8613a6fbfcc943eae5b542d923d572244_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:1c03e0ce9e3b48c8c0f2a9c65dfe3d9b344cd82ac776dc210ef23b91745b0682_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:3783cfecf52a9c532c4e64ed93078581c8ca200efda661efc63ae1fac4391d57_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:58a181deb194766402e32ef43375e2e51208b229c8c97674bda5a6fcc768b8fd_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:973cb71559d8d346c3e0840a6865afda1de53017dcd9f35ee0a56a1606f3149b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:276fbe3c102abbed5d2cc29b1dbf30456ab5d647fe7f157f18180cdd5ab0b431_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:5fb0bea0b4f43dce5201a986eb9bcd9aa9c2859e3d762f265e4d000a4c93474f_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:8efb0787d02e6700bee64b83c251ee11f4cdc4a04eb770cea3ba34f3d9ec94b4_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:bf53175b6a2e11cf7f5599b65fcb4e56e4037ad5b6254c9e4fa070080aea66fc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:207a6c112b395d28579d8318d95bec18942834476574e07889ae734a4df1c4b5_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:242afe8097041307445f2e9f4b8d3d674aa4ff91c6ffe884ef170b356a09fe68_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:3e0bc79f2f14f0bf95c5c5f08a7838e8c3df3df5da52182f4807b844dda8638e_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:9823d42834e5698b968385a7ef7d5a2a2749c441d8122a895bf53d3681df6a7c_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:06be3bd07a7bf44fb19a93869f6286fbdc7d8b8e7b8507e3c8ce9f8af67574f9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:175bde7c228af62b6f04799bc35a01d525a115d7decb73b2b5f90a3c8cf10a9c_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:4d800957aef55f44442be2a95bd85e3098587c6b0f7455b50264993cd4a2154b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:7fb3f1bf0b641c2f30493fb8e10e90625f5fd30f77ed3b7dec2a98012d54bbab_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:0a23d3fe6f4f54358bef552a62b3d098a97d39b4f1c0b0c0c6d3588c85276417_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:b26fb5031c85204e1b9174c49452146d4528560de554b70e2e97eebccd610fb8_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:e7d01fcd2995b921946a7842faec251ff4434bb9cda3b77e855339f2d9241471_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:ee31bd693543f37461982b1bbcdb783e438c3d1021875829bd24974a1d2c0ea6_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2480689"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in golang.org/x/crypto/ssh. Source-address validation can be skipped when an SSH server configuration uses an authentication callback type other than public key, allowing authorization bypass in misconfigured servers. This is a follow-on to incomplete coverage from the CVE-2024-45337 fix.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang.org/x/crypto/ssh: golang.org/x/crypto/ssh: Authorization bypass due to skipped source-address validation",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "golang.org/x/crypto/ssh is vulnerable to authorization bypass when SSH server configurations rely on source-address validation alongside non-public-key authentication callbacks. An attacker with low privileges who can authenticate through such a callback path may bypass intended source-address restrictions and gain unauthorized SSH access. Red Hat impact sits in services built with affected x/crypto/ssh, including RHEL golang streams, hummingbird Go toolchains, RHACM/MCE agents, and OpenShift or Ceph components that embed Go SSH servers with mixed callback types.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:41fd9a9bc849f2c7c6439532bd537c34384b88be30b37629c5e271e0e4be7db4_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:55d7e178435c881a57a88aa6747cd6dedd3c3a512014d0509919dceef13b2946_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:5fef4993574a20a48a9f93e5f07967d13b7b26e8f7e83e2222ea5bbe1f500409_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:d785df86cfd97ff76e6d9426b247543faa91efaeb950f6b2e6b97f9e67624043_s390x"
],
"known_not_affected": [
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:70dbc4b2fd02c6006d01fd31277c79e1152a04e678316853cc9650004a88c8f6_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:93e15662b963e2da7c1ca4ad5c47df2a49d6df5857c9cb44157c88a1eb14c99c_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:a67c68062eb3fe78067524fbef175c6f4dcb2876138fbafc17c8f5aef930ffb5_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:fd0e68ad1f3d790efc1a7637a63668df741a3195d86260291ca7ff85fe72bed2_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:063b28090fce858259efe584b09d7329b766ae461926e8d78f6fac1cf6738055_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:0964f3f379136662c8c3817b2a7d3b787808fab2b742cd7ea53d5f6c2248d1c9_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:bc05850aa1cefea5105198c9af51c64f2b255df1c1ccbb30f3c12a2d4c549f1b_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:f5a7d92dc9cb85b9a4d70d871ab1748e80435e9ddba74ba3818e92ec57f7cf78_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:1ba125d01f712a5fb85db400a0cd9d2240c36529d7d0c8e925acfd3c45845bec_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:2801fe77997c4325f9d1e154eae8c63a4fc808e2c31c773a60c47d63268b1bbc_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:2fe25a8ac9612f29a625969bb25d24938abb298e9a9e1e79fb3aa34c6a0e5f76_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:307402d2c8c46b74c1a855dad9fdd9f4013c057256513b4d1d58ac980ed8d2e0_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:91710d1c3f67e096b682cb6fa118c70d40bbbc36e3293aa3bea9890775d70236_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:b9d25811da46af4766d41e7543cc54a2820b2b9a4c190585e34166620cf070f7_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:fbd34cb7d74c9e699337157c4c26bc714b541e00645948cccedb5e7afb258003_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:93dc86f2358079474a9f5ce67e0e6430c2cdbe8a01155be8020165fce2e73f2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:a8c0e823eb62db8ff39de33d6401670e2f65cac8e640b64a9ffeae8ecc0c12bc_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:d50e48a12a217855c373b865df663f50355e4f76fba33de65e50bdc333112c4a_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:eab9c2e2d1ea614bf898c0cba75223f7960a61b7d2315815d6410e3c4f62d7f8_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:39470e0a40255d8d0bcfb6a3e82d77bfd57fdbff5452179f69eed7cff417a103_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:69531d80a6af41db1c28f54a8acfea85594fca34c754c8049e75b331e998a973_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:7a6b045c058be14ab95043bc3c6680bba5ab54a060ae45dbc7e6e8896fb093d8_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:ab57133805270163a3cb99e972b183e8613a6fbfcc943eae5b542d923d572244_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:1c03e0ce9e3b48c8c0f2a9c65dfe3d9b344cd82ac776dc210ef23b91745b0682_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:3783cfecf52a9c532c4e64ed93078581c8ca200efda661efc63ae1fac4391d57_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:58a181deb194766402e32ef43375e2e51208b229c8c97674bda5a6fcc768b8fd_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:973cb71559d8d346c3e0840a6865afda1de53017dcd9f35ee0a56a1606f3149b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:276fbe3c102abbed5d2cc29b1dbf30456ab5d647fe7f157f18180cdd5ab0b431_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:5fb0bea0b4f43dce5201a986eb9bcd9aa9c2859e3d762f265e4d000a4c93474f_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:8efb0787d02e6700bee64b83c251ee11f4cdc4a04eb770cea3ba34f3d9ec94b4_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:bf53175b6a2e11cf7f5599b65fcb4e56e4037ad5b6254c9e4fa070080aea66fc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:207a6c112b395d28579d8318d95bec18942834476574e07889ae734a4df1c4b5_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:242afe8097041307445f2e9f4b8d3d674aa4ff91c6ffe884ef170b356a09fe68_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:3e0bc79f2f14f0bf95c5c5f08a7838e8c3df3df5da52182f4807b844dda8638e_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:9823d42834e5698b968385a7ef7d5a2a2749c441d8122a895bf53d3681df6a7c_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:06be3bd07a7bf44fb19a93869f6286fbdc7d8b8e7b8507e3c8ce9f8af67574f9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:175bde7c228af62b6f04799bc35a01d525a115d7decb73b2b5f90a3c8cf10a9c_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:4d800957aef55f44442be2a95bd85e3098587c6b0f7455b50264993cd4a2154b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:7fb3f1bf0b641c2f30493fb8e10e90625f5fd30f77ed3b7dec2a98012d54bbab_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:0a23d3fe6f4f54358bef552a62b3d098a97d39b4f1c0b0c0c6d3588c85276417_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:b26fb5031c85204e1b9174c49452146d4528560de554b70e2e97eebccd610fb8_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:e7d01fcd2995b921946a7842faec251ff4434bb9cda3b77e855339f2d9241471_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:ee31bd693543f37461982b1bbcdb783e438c3d1021875829bd24974a1d2c0ea6_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-46595"
},
{
"category": "external",
"summary": "RHBZ#2480689",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2480689"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-46595",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-46595"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-46595",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-46595"
},
{
"category": "external",
"summary": "https://go.dev/cl/781642",
"url": "https://go.dev/cl/781642"
},
{
"category": "external",
"summary": "https://go.dev/issue/79570",
"url": "https://go.dev/issue/79570"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/a082jnz-LvI",
"url": "https://groups.google.com/g/golang-announce/c/a082jnz-LvI"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-5023",
"url": "https://pkg.go.dev/vuln/GO-2026-5023"
}
],
"release_date": "2026-05-22T02:31:27.894000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-07T11:09:24+00:00",
"details": "If you are using an earlier version of RHACS, you are advised to\nupgrade to the version of RHACS mentioned in the synopsis and release\nnotes in order to take advantage of the enhancements, bug fixes, and/or\nsecurity patches in the release.",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:41fd9a9bc849f2c7c6439532bd537c34384b88be30b37629c5e271e0e4be7db4_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:55d7e178435c881a57a88aa6747cd6dedd3c3a512014d0509919dceef13b2946_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:5fef4993574a20a48a9f93e5f07967d13b7b26e8f7e83e2222ea5bbe1f500409_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:d785df86cfd97ff76e6d9426b247543faa91efaeb950f6b2e6b97f9e67624043_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36207"
},
{
"category": "workaround",
"details": "Upgrade to a fixed golang.org/x/crypto/ssh release via updated golang or package rebuilds. Ensure SSH servers use supported public-key callback configurations with source-address validation as intended.",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:70dbc4b2fd02c6006d01fd31277c79e1152a04e678316853cc9650004a88c8f6_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:93e15662b963e2da7c1ca4ad5c47df2a49d6df5857c9cb44157c88a1eb14c99c_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:a67c68062eb3fe78067524fbef175c6f4dcb2876138fbafc17c8f5aef930ffb5_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:fd0e68ad1f3d790efc1a7637a63668df741a3195d86260291ca7ff85fe72bed2_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:063b28090fce858259efe584b09d7329b766ae461926e8d78f6fac1cf6738055_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:0964f3f379136662c8c3817b2a7d3b787808fab2b742cd7ea53d5f6c2248d1c9_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:bc05850aa1cefea5105198c9af51c64f2b255df1c1ccbb30f3c12a2d4c549f1b_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:f5a7d92dc9cb85b9a4d70d871ab1748e80435e9ddba74ba3818e92ec57f7cf78_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:1ba125d01f712a5fb85db400a0cd9d2240c36529d7d0c8e925acfd3c45845bec_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:2801fe77997c4325f9d1e154eae8c63a4fc808e2c31c773a60c47d63268b1bbc_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:41fd9a9bc849f2c7c6439532bd537c34384b88be30b37629c5e271e0e4be7db4_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:55d7e178435c881a57a88aa6747cd6dedd3c3a512014d0509919dceef13b2946_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:5fef4993574a20a48a9f93e5f07967d13b7b26e8f7e83e2222ea5bbe1f500409_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:d785df86cfd97ff76e6d9426b247543faa91efaeb950f6b2e6b97f9e67624043_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:2fe25a8ac9612f29a625969bb25d24938abb298e9a9e1e79fb3aa34c6a0e5f76_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:307402d2c8c46b74c1a855dad9fdd9f4013c057256513b4d1d58ac980ed8d2e0_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:91710d1c3f67e096b682cb6fa118c70d40bbbc36e3293aa3bea9890775d70236_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:b9d25811da46af4766d41e7543cc54a2820b2b9a4c190585e34166620cf070f7_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:fbd34cb7d74c9e699337157c4c26bc714b541e00645948cccedb5e7afb258003_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:93dc86f2358079474a9f5ce67e0e6430c2cdbe8a01155be8020165fce2e73f2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:a8c0e823eb62db8ff39de33d6401670e2f65cac8e640b64a9ffeae8ecc0c12bc_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:d50e48a12a217855c373b865df663f50355e4f76fba33de65e50bdc333112c4a_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:eab9c2e2d1ea614bf898c0cba75223f7960a61b7d2315815d6410e3c4f62d7f8_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:39470e0a40255d8d0bcfb6a3e82d77bfd57fdbff5452179f69eed7cff417a103_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:69531d80a6af41db1c28f54a8acfea85594fca34c754c8049e75b331e998a973_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:7a6b045c058be14ab95043bc3c6680bba5ab54a060ae45dbc7e6e8896fb093d8_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:ab57133805270163a3cb99e972b183e8613a6fbfcc943eae5b542d923d572244_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:1c03e0ce9e3b48c8c0f2a9c65dfe3d9b344cd82ac776dc210ef23b91745b0682_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:3783cfecf52a9c532c4e64ed93078581c8ca200efda661efc63ae1fac4391d57_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:58a181deb194766402e32ef43375e2e51208b229c8c97674bda5a6fcc768b8fd_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:973cb71559d8d346c3e0840a6865afda1de53017dcd9f35ee0a56a1606f3149b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:276fbe3c102abbed5d2cc29b1dbf30456ab5d647fe7f157f18180cdd5ab0b431_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:5fb0bea0b4f43dce5201a986eb9bcd9aa9c2859e3d762f265e4d000a4c93474f_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:8efb0787d02e6700bee64b83c251ee11f4cdc4a04eb770cea3ba34f3d9ec94b4_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:bf53175b6a2e11cf7f5599b65fcb4e56e4037ad5b6254c9e4fa070080aea66fc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:207a6c112b395d28579d8318d95bec18942834476574e07889ae734a4df1c4b5_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:242afe8097041307445f2e9f4b8d3d674aa4ff91c6ffe884ef170b356a09fe68_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:3e0bc79f2f14f0bf95c5c5f08a7838e8c3df3df5da52182f4807b844dda8638e_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:9823d42834e5698b968385a7ef7d5a2a2749c441d8122a895bf53d3681df6a7c_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:06be3bd07a7bf44fb19a93869f6286fbdc7d8b8e7b8507e3c8ce9f8af67574f9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:175bde7c228af62b6f04799bc35a01d525a115d7decb73b2b5f90a3c8cf10a9c_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:4d800957aef55f44442be2a95bd85e3098587c6b0f7455b50264993cd4a2154b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:7fb3f1bf0b641c2f30493fb8e10e90625f5fd30f77ed3b7dec2a98012d54bbab_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:0a23d3fe6f4f54358bef552a62b3d098a97d39b4f1c0b0c0c6d3588c85276417_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:b26fb5031c85204e1b9174c49452146d4528560de554b70e2e97eebccd610fb8_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:e7d01fcd2995b921946a7842faec251ff4434bb9cda3b77e855339f2d9241471_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:ee31bd693543f37461982b1bbcdb783e438c3d1021875829bd24974a1d2c0ea6_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 7.1,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:L",
"version": "3.1"
},
"products": [
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:70dbc4b2fd02c6006d01fd31277c79e1152a04e678316853cc9650004a88c8f6_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:93e15662b963e2da7c1ca4ad5c47df2a49d6df5857c9cb44157c88a1eb14c99c_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:a67c68062eb3fe78067524fbef175c6f4dcb2876138fbafc17c8f5aef930ffb5_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:fd0e68ad1f3d790efc1a7637a63668df741a3195d86260291ca7ff85fe72bed2_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:063b28090fce858259efe584b09d7329b766ae461926e8d78f6fac1cf6738055_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:0964f3f379136662c8c3817b2a7d3b787808fab2b742cd7ea53d5f6c2248d1c9_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:bc05850aa1cefea5105198c9af51c64f2b255df1c1ccbb30f3c12a2d4c549f1b_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:f5a7d92dc9cb85b9a4d70d871ab1748e80435e9ddba74ba3818e92ec57f7cf78_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:1ba125d01f712a5fb85db400a0cd9d2240c36529d7d0c8e925acfd3c45845bec_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:2801fe77997c4325f9d1e154eae8c63a4fc808e2c31c773a60c47d63268b1bbc_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:41fd9a9bc849f2c7c6439532bd537c34384b88be30b37629c5e271e0e4be7db4_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:55d7e178435c881a57a88aa6747cd6dedd3c3a512014d0509919dceef13b2946_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:5fef4993574a20a48a9f93e5f07967d13b7b26e8f7e83e2222ea5bbe1f500409_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:d785df86cfd97ff76e6d9426b247543faa91efaeb950f6b2e6b97f9e67624043_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:2fe25a8ac9612f29a625969bb25d24938abb298e9a9e1e79fb3aa34c6a0e5f76_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:307402d2c8c46b74c1a855dad9fdd9f4013c057256513b4d1d58ac980ed8d2e0_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:91710d1c3f67e096b682cb6fa118c70d40bbbc36e3293aa3bea9890775d70236_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:b9d25811da46af4766d41e7543cc54a2820b2b9a4c190585e34166620cf070f7_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:fbd34cb7d74c9e699337157c4c26bc714b541e00645948cccedb5e7afb258003_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:93dc86f2358079474a9f5ce67e0e6430c2cdbe8a01155be8020165fce2e73f2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:a8c0e823eb62db8ff39de33d6401670e2f65cac8e640b64a9ffeae8ecc0c12bc_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:d50e48a12a217855c373b865df663f50355e4f76fba33de65e50bdc333112c4a_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:eab9c2e2d1ea614bf898c0cba75223f7960a61b7d2315815d6410e3c4f62d7f8_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:39470e0a40255d8d0bcfb6a3e82d77bfd57fdbff5452179f69eed7cff417a103_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:69531d80a6af41db1c28f54a8acfea85594fca34c754c8049e75b331e998a973_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:7a6b045c058be14ab95043bc3c6680bba5ab54a060ae45dbc7e6e8896fb093d8_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:ab57133805270163a3cb99e972b183e8613a6fbfcc943eae5b542d923d572244_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:1c03e0ce9e3b48c8c0f2a9c65dfe3d9b344cd82ac776dc210ef23b91745b0682_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:3783cfecf52a9c532c4e64ed93078581c8ca200efda661efc63ae1fac4391d57_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:58a181deb194766402e32ef43375e2e51208b229c8c97674bda5a6fcc768b8fd_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:973cb71559d8d346c3e0840a6865afda1de53017dcd9f35ee0a56a1606f3149b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:276fbe3c102abbed5d2cc29b1dbf30456ab5d647fe7f157f18180cdd5ab0b431_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:5fb0bea0b4f43dce5201a986eb9bcd9aa9c2859e3d762f265e4d000a4c93474f_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:8efb0787d02e6700bee64b83c251ee11f4cdc4a04eb770cea3ba34f3d9ec94b4_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:bf53175b6a2e11cf7f5599b65fcb4e56e4037ad5b6254c9e4fa070080aea66fc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:207a6c112b395d28579d8318d95bec18942834476574e07889ae734a4df1c4b5_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:242afe8097041307445f2e9f4b8d3d674aa4ff91c6ffe884ef170b356a09fe68_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:3e0bc79f2f14f0bf95c5c5f08a7838e8c3df3df5da52182f4807b844dda8638e_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:9823d42834e5698b968385a7ef7d5a2a2749c441d8122a895bf53d3681df6a7c_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:06be3bd07a7bf44fb19a93869f6286fbdc7d8b8e7b8507e3c8ce9f8af67574f9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:175bde7c228af62b6f04799bc35a01d525a115d7decb73b2b5f90a3c8cf10a9c_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:4d800957aef55f44442be2a95bd85e3098587c6b0f7455b50264993cd4a2154b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:7fb3f1bf0b641c2f30493fb8e10e90625f5fd30f77ed3b7dec2a98012d54bbab_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:0a23d3fe6f4f54358bef552a62b3d098a97d39b4f1c0b0c0c6d3588c85276417_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:b26fb5031c85204e1b9174c49452146d4528560de554b70e2e97eebccd610fb8_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:e7d01fcd2995b921946a7842faec251ff4434bb9cda3b77e855339f2d9241471_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:ee31bd693543f37461982b1bbcdb783e438c3d1021875829bd24974a1d2c0ea6_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang.org/x/crypto/ssh: golang.org/x/crypto/ssh: Authorization bypass due to skipped source-address validation"
},
{
"cve": "CVE-2026-53488",
"cwe": {
"id": "CWE-78",
"name": "Improper Neutralization of Special Elements used in an OS Command (\u0027OS Command Injection\u0027)"
},
"discovery_date": "2026-07-01T02:01:09.589815+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:70dbc4b2fd02c6006d01fd31277c79e1152a04e678316853cc9650004a88c8f6_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:93e15662b963e2da7c1ca4ad5c47df2a49d6df5857c9cb44157c88a1eb14c99c_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:a67c68062eb3fe78067524fbef175c6f4dcb2876138fbafc17c8f5aef930ffb5_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:fd0e68ad1f3d790efc1a7637a63668df741a3195d86260291ca7ff85fe72bed2_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:063b28090fce858259efe584b09d7329b766ae461926e8d78f6fac1cf6738055_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:0964f3f379136662c8c3817b2a7d3b787808fab2b742cd7ea53d5f6c2248d1c9_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:bc05850aa1cefea5105198c9af51c64f2b255df1c1ccbb30f3c12a2d4c549f1b_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:f5a7d92dc9cb85b9a4d70d871ab1748e80435e9ddba74ba3818e92ec57f7cf78_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:1ba125d01f712a5fb85db400a0cd9d2240c36529d7d0c8e925acfd3c45845bec_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:2801fe77997c4325f9d1e154eae8c63a4fc808e2c31c773a60c47d63268b1bbc_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:39470e0a40255d8d0bcfb6a3e82d77bfd57fdbff5452179f69eed7cff417a103_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:69531d80a6af41db1c28f54a8acfea85594fca34c754c8049e75b331e998a973_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:7a6b045c058be14ab95043bc3c6680bba5ab54a060ae45dbc7e6e8896fb093d8_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:ab57133805270163a3cb99e972b183e8613a6fbfcc943eae5b542d923d572244_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:1c03e0ce9e3b48c8c0f2a9c65dfe3d9b344cd82ac776dc210ef23b91745b0682_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:3783cfecf52a9c532c4e64ed93078581c8ca200efda661efc63ae1fac4391d57_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:58a181deb194766402e32ef43375e2e51208b229c8c97674bda5a6fcc768b8fd_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:973cb71559d8d346c3e0840a6865afda1de53017dcd9f35ee0a56a1606f3149b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:276fbe3c102abbed5d2cc29b1dbf30456ab5d647fe7f157f18180cdd5ab0b431_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:5fb0bea0b4f43dce5201a986eb9bcd9aa9c2859e3d762f265e4d000a4c93474f_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:8efb0787d02e6700bee64b83c251ee11f4cdc4a04eb770cea3ba34f3d9ec94b4_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:bf53175b6a2e11cf7f5599b65fcb4e56e4037ad5b6254c9e4fa070080aea66fc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:207a6c112b395d28579d8318d95bec18942834476574e07889ae734a4df1c4b5_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:242afe8097041307445f2e9f4b8d3d674aa4ff91c6ffe884ef170b356a09fe68_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:3e0bc79f2f14f0bf95c5c5f08a7838e8c3df3df5da52182f4807b844dda8638e_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:9823d42834e5698b968385a7ef7d5a2a2749c441d8122a895bf53d3681df6a7c_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:06be3bd07a7bf44fb19a93869f6286fbdc7d8b8e7b8507e3c8ce9f8af67574f9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:175bde7c228af62b6f04799bc35a01d525a115d7decb73b2b5f90a3c8cf10a9c_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:4d800957aef55f44442be2a95bd85e3098587c6b0f7455b50264993cd4a2154b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:7fb3f1bf0b641c2f30493fb8e10e90625f5fd30f77ed3b7dec2a98012d54bbab_s390x"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2495815"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in containerd, an open-source container runtime. The Container Runtime Interface (CRI) plugin, which manages container operations, fails to validate labels propagated from an image configuration to a container. This oversight could enable an attacker to execute arbitrary commands on the host system through a plugin that processes these unvalidated labels. The primary impact is host-root command execution, allowing unauthorized control over the underlying system.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "github.com/containerd/containerd: containerd: Host-root command execution via unvalidated image config labels in CRI plugin",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "A flaw was found in containerd where the CRI plugin propagates labels from an image configuration (LABEL instruction in a Dockerfile) to a container without validation. This may result in executing an arbitrary command on the host via a plugin that consumes container labels for operations, such as the restart-monitor binary:// logger. An attacker who can cause a crafted container image to be pulled and run can achieve host-level code execution.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:41fd9a9bc849f2c7c6439532bd537c34384b88be30b37629c5e271e0e4be7db4_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:55d7e178435c881a57a88aa6747cd6dedd3c3a512014d0509919dceef13b2946_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:5fef4993574a20a48a9f93e5f07967d13b7b26e8f7e83e2222ea5bbe1f500409_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:d785df86cfd97ff76e6d9426b247543faa91efaeb950f6b2e6b97f9e67624043_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:2fe25a8ac9612f29a625969bb25d24938abb298e9a9e1e79fb3aa34c6a0e5f76_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:307402d2c8c46b74c1a855dad9fdd9f4013c057256513b4d1d58ac980ed8d2e0_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:91710d1c3f67e096b682cb6fa118c70d40bbbc36e3293aa3bea9890775d70236_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:b9d25811da46af4766d41e7543cc54a2820b2b9a4c190585e34166620cf070f7_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:fbd34cb7d74c9e699337157c4c26bc714b541e00645948cccedb5e7afb258003_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:93dc86f2358079474a9f5ce67e0e6430c2cdbe8a01155be8020165fce2e73f2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:a8c0e823eb62db8ff39de33d6401670e2f65cac8e640b64a9ffeae8ecc0c12bc_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:d50e48a12a217855c373b865df663f50355e4f76fba33de65e50bdc333112c4a_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:eab9c2e2d1ea614bf898c0cba75223f7960a61b7d2315815d6410e3c4f62d7f8_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:0a23d3fe6f4f54358bef552a62b3d098a97d39b4f1c0b0c0c6d3588c85276417_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:b26fb5031c85204e1b9174c49452146d4528560de554b70e2e97eebccd610fb8_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:e7d01fcd2995b921946a7842faec251ff4434bb9cda3b77e855339f2d9241471_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:ee31bd693543f37461982b1bbcdb783e438c3d1021875829bd24974a1d2c0ea6_amd64"
],
"known_not_affected": [
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:70dbc4b2fd02c6006d01fd31277c79e1152a04e678316853cc9650004a88c8f6_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:93e15662b963e2da7c1ca4ad5c47df2a49d6df5857c9cb44157c88a1eb14c99c_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:a67c68062eb3fe78067524fbef175c6f4dcb2876138fbafc17c8f5aef930ffb5_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:fd0e68ad1f3d790efc1a7637a63668df741a3195d86260291ca7ff85fe72bed2_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:063b28090fce858259efe584b09d7329b766ae461926e8d78f6fac1cf6738055_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:0964f3f379136662c8c3817b2a7d3b787808fab2b742cd7ea53d5f6c2248d1c9_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:bc05850aa1cefea5105198c9af51c64f2b255df1c1ccbb30f3c12a2d4c549f1b_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:f5a7d92dc9cb85b9a4d70d871ab1748e80435e9ddba74ba3818e92ec57f7cf78_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:1ba125d01f712a5fb85db400a0cd9d2240c36529d7d0c8e925acfd3c45845bec_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:2801fe77997c4325f9d1e154eae8c63a4fc808e2c31c773a60c47d63268b1bbc_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:39470e0a40255d8d0bcfb6a3e82d77bfd57fdbff5452179f69eed7cff417a103_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:69531d80a6af41db1c28f54a8acfea85594fca34c754c8049e75b331e998a973_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:7a6b045c058be14ab95043bc3c6680bba5ab54a060ae45dbc7e6e8896fb093d8_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:ab57133805270163a3cb99e972b183e8613a6fbfcc943eae5b542d923d572244_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:1c03e0ce9e3b48c8c0f2a9c65dfe3d9b344cd82ac776dc210ef23b91745b0682_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:3783cfecf52a9c532c4e64ed93078581c8ca200efda661efc63ae1fac4391d57_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:58a181deb194766402e32ef43375e2e51208b229c8c97674bda5a6fcc768b8fd_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:973cb71559d8d346c3e0840a6865afda1de53017dcd9f35ee0a56a1606f3149b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:276fbe3c102abbed5d2cc29b1dbf30456ab5d647fe7f157f18180cdd5ab0b431_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:5fb0bea0b4f43dce5201a986eb9bcd9aa9c2859e3d762f265e4d000a4c93474f_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:8efb0787d02e6700bee64b83c251ee11f4cdc4a04eb770cea3ba34f3d9ec94b4_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:bf53175b6a2e11cf7f5599b65fcb4e56e4037ad5b6254c9e4fa070080aea66fc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:207a6c112b395d28579d8318d95bec18942834476574e07889ae734a4df1c4b5_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:242afe8097041307445f2e9f4b8d3d674aa4ff91c6ffe884ef170b356a09fe68_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:3e0bc79f2f14f0bf95c5c5f08a7838e8c3df3df5da52182f4807b844dda8638e_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:9823d42834e5698b968385a7ef7d5a2a2749c441d8122a895bf53d3681df6a7c_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:06be3bd07a7bf44fb19a93869f6286fbdc7d8b8e7b8507e3c8ce9f8af67574f9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:175bde7c228af62b6f04799bc35a01d525a115d7decb73b2b5f90a3c8cf10a9c_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:4d800957aef55f44442be2a95bd85e3098587c6b0f7455b50264993cd4a2154b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:7fb3f1bf0b641c2f30493fb8e10e90625f5fd30f77ed3b7dec2a98012d54bbab_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-53488"
},
{
"category": "external",
"summary": "RHBZ#2495815",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2495815"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-53488",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-53488"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-53488",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-53488"
},
{
"category": "external",
"summary": "https://github.com/containerd/containerd/security/advisories/GHSA-xhf5-7wjv-pqxp",
"url": "https://github.com/containerd/containerd/security/advisories/GHSA-xhf5-7wjv-pqxp"
}
],
"release_date": "2026-07-01T00:11:20.610000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-07T11:09:24+00:00",
"details": "If you are using an earlier version of RHACS, you are advised to\nupgrade to the version of RHACS mentioned in the synopsis and release\nnotes in order to take advantage of the enhancements, bug fixes, and/or\nsecurity patches in the release.",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:41fd9a9bc849f2c7c6439532bd537c34384b88be30b37629c5e271e0e4be7db4_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:55d7e178435c881a57a88aa6747cd6dedd3c3a512014d0509919dceef13b2946_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:5fef4993574a20a48a9f93e5f07967d13b7b26e8f7e83e2222ea5bbe1f500409_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:d785df86cfd97ff76e6d9426b247543faa91efaeb950f6b2e6b97f9e67624043_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:2fe25a8ac9612f29a625969bb25d24938abb298e9a9e1e79fb3aa34c6a0e5f76_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:307402d2c8c46b74c1a855dad9fdd9f4013c057256513b4d1d58ac980ed8d2e0_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:91710d1c3f67e096b682cb6fa118c70d40bbbc36e3293aa3bea9890775d70236_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:b9d25811da46af4766d41e7543cc54a2820b2b9a4c190585e34166620cf070f7_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:fbd34cb7d74c9e699337157c4c26bc714b541e00645948cccedb5e7afb258003_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:93dc86f2358079474a9f5ce67e0e6430c2cdbe8a01155be8020165fce2e73f2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:a8c0e823eb62db8ff39de33d6401670e2f65cac8e640b64a9ffeae8ecc0c12bc_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:d50e48a12a217855c373b865df663f50355e4f76fba33de65e50bdc333112c4a_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:eab9c2e2d1ea614bf898c0cba75223f7960a61b7d2315815d6410e3c4f62d7f8_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:0a23d3fe6f4f54358bef552a62b3d098a97d39b4f1c0b0c0c6d3588c85276417_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:b26fb5031c85204e1b9174c49452146d4528560de554b70e2e97eebccd610fb8_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:e7d01fcd2995b921946a7842faec251ff4434bb9cda3b77e855339f2d9241471_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:ee31bd693543f37461982b1bbcdb783e438c3d1021875829bd24974a1d2c0ea6_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36207"
},
{
"category": "workaround",
"details": "Restrict container image pulls to trusted registries using admission policies or image signature verification. Where containerd is used as the container runtime, disable or restrict the binary:// logger URI scheme in the containerd configuration to prevent the label-to-logger attack path.",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:70dbc4b2fd02c6006d01fd31277c79e1152a04e678316853cc9650004a88c8f6_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:93e15662b963e2da7c1ca4ad5c47df2a49d6df5857c9cb44157c88a1eb14c99c_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:a67c68062eb3fe78067524fbef175c6f4dcb2876138fbafc17c8f5aef930ffb5_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:fd0e68ad1f3d790efc1a7637a63668df741a3195d86260291ca7ff85fe72bed2_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:063b28090fce858259efe584b09d7329b766ae461926e8d78f6fac1cf6738055_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:0964f3f379136662c8c3817b2a7d3b787808fab2b742cd7ea53d5f6c2248d1c9_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:bc05850aa1cefea5105198c9af51c64f2b255df1c1ccbb30f3c12a2d4c549f1b_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:f5a7d92dc9cb85b9a4d70d871ab1748e80435e9ddba74ba3818e92ec57f7cf78_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:1ba125d01f712a5fb85db400a0cd9d2240c36529d7d0c8e925acfd3c45845bec_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:2801fe77997c4325f9d1e154eae8c63a4fc808e2c31c773a60c47d63268b1bbc_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:41fd9a9bc849f2c7c6439532bd537c34384b88be30b37629c5e271e0e4be7db4_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:55d7e178435c881a57a88aa6747cd6dedd3c3a512014d0509919dceef13b2946_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:5fef4993574a20a48a9f93e5f07967d13b7b26e8f7e83e2222ea5bbe1f500409_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:d785df86cfd97ff76e6d9426b247543faa91efaeb950f6b2e6b97f9e67624043_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:2fe25a8ac9612f29a625969bb25d24938abb298e9a9e1e79fb3aa34c6a0e5f76_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:307402d2c8c46b74c1a855dad9fdd9f4013c057256513b4d1d58ac980ed8d2e0_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:91710d1c3f67e096b682cb6fa118c70d40bbbc36e3293aa3bea9890775d70236_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:b9d25811da46af4766d41e7543cc54a2820b2b9a4c190585e34166620cf070f7_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:fbd34cb7d74c9e699337157c4c26bc714b541e00645948cccedb5e7afb258003_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:93dc86f2358079474a9f5ce67e0e6430c2cdbe8a01155be8020165fce2e73f2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:a8c0e823eb62db8ff39de33d6401670e2f65cac8e640b64a9ffeae8ecc0c12bc_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:d50e48a12a217855c373b865df663f50355e4f76fba33de65e50bdc333112c4a_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:eab9c2e2d1ea614bf898c0cba75223f7960a61b7d2315815d6410e3c4f62d7f8_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:39470e0a40255d8d0bcfb6a3e82d77bfd57fdbff5452179f69eed7cff417a103_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:69531d80a6af41db1c28f54a8acfea85594fca34c754c8049e75b331e998a973_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:7a6b045c058be14ab95043bc3c6680bba5ab54a060ae45dbc7e6e8896fb093d8_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:ab57133805270163a3cb99e972b183e8613a6fbfcc943eae5b542d923d572244_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:1c03e0ce9e3b48c8c0f2a9c65dfe3d9b344cd82ac776dc210ef23b91745b0682_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:3783cfecf52a9c532c4e64ed93078581c8ca200efda661efc63ae1fac4391d57_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:58a181deb194766402e32ef43375e2e51208b229c8c97674bda5a6fcc768b8fd_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:973cb71559d8d346c3e0840a6865afda1de53017dcd9f35ee0a56a1606f3149b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:276fbe3c102abbed5d2cc29b1dbf30456ab5d647fe7f157f18180cdd5ab0b431_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:5fb0bea0b4f43dce5201a986eb9bcd9aa9c2859e3d762f265e4d000a4c93474f_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:8efb0787d02e6700bee64b83c251ee11f4cdc4a04eb770cea3ba34f3d9ec94b4_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:bf53175b6a2e11cf7f5599b65fcb4e56e4037ad5b6254c9e4fa070080aea66fc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:207a6c112b395d28579d8318d95bec18942834476574e07889ae734a4df1c4b5_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:242afe8097041307445f2e9f4b8d3d674aa4ff91c6ffe884ef170b356a09fe68_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:3e0bc79f2f14f0bf95c5c5f08a7838e8c3df3df5da52182f4807b844dda8638e_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:9823d42834e5698b968385a7ef7d5a2a2749c441d8122a895bf53d3681df6a7c_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:06be3bd07a7bf44fb19a93869f6286fbdc7d8b8e7b8507e3c8ce9f8af67574f9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:175bde7c228af62b6f04799bc35a01d525a115d7decb73b2b5f90a3c8cf10a9c_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:4d800957aef55f44442be2a95bd85e3098587c6b0f7455b50264993cd4a2154b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:7fb3f1bf0b641c2f30493fb8e10e90625f5fd30f77ed3b7dec2a98012d54bbab_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:0a23d3fe6f4f54358bef552a62b3d098a97d39b4f1c0b0c0c6d3588c85276417_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:b26fb5031c85204e1b9174c49452146d4528560de554b70e2e97eebccd610fb8_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:e7d01fcd2995b921946a7842faec251ff4434bb9cda3b77e855339f2d9241471_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:ee31bd693543f37461982b1bbcdb783e438c3d1021875829bd24974a1d2c0ea6_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 8.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:70dbc4b2fd02c6006d01fd31277c79e1152a04e678316853cc9650004a88c8f6_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:93e15662b963e2da7c1ca4ad5c47df2a49d6df5857c9cb44157c88a1eb14c99c_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:a67c68062eb3fe78067524fbef175c6f4dcb2876138fbafc17c8f5aef930ffb5_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:fd0e68ad1f3d790efc1a7637a63668df741a3195d86260291ca7ff85fe72bed2_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:063b28090fce858259efe584b09d7329b766ae461926e8d78f6fac1cf6738055_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:0964f3f379136662c8c3817b2a7d3b787808fab2b742cd7ea53d5f6c2248d1c9_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:bc05850aa1cefea5105198c9af51c64f2b255df1c1ccbb30f3c12a2d4c549f1b_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:f5a7d92dc9cb85b9a4d70d871ab1748e80435e9ddba74ba3818e92ec57f7cf78_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:1ba125d01f712a5fb85db400a0cd9d2240c36529d7d0c8e925acfd3c45845bec_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:2801fe77997c4325f9d1e154eae8c63a4fc808e2c31c773a60c47d63268b1bbc_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:41fd9a9bc849f2c7c6439532bd537c34384b88be30b37629c5e271e0e4be7db4_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:55d7e178435c881a57a88aa6747cd6dedd3c3a512014d0509919dceef13b2946_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:5fef4993574a20a48a9f93e5f07967d13b7b26e8f7e83e2222ea5bbe1f500409_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:d785df86cfd97ff76e6d9426b247543faa91efaeb950f6b2e6b97f9e67624043_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:2fe25a8ac9612f29a625969bb25d24938abb298e9a9e1e79fb3aa34c6a0e5f76_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:307402d2c8c46b74c1a855dad9fdd9f4013c057256513b4d1d58ac980ed8d2e0_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:91710d1c3f67e096b682cb6fa118c70d40bbbc36e3293aa3bea9890775d70236_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:b9d25811da46af4766d41e7543cc54a2820b2b9a4c190585e34166620cf070f7_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:fbd34cb7d74c9e699337157c4c26bc714b541e00645948cccedb5e7afb258003_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:93dc86f2358079474a9f5ce67e0e6430c2cdbe8a01155be8020165fce2e73f2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:a8c0e823eb62db8ff39de33d6401670e2f65cac8e640b64a9ffeae8ecc0c12bc_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:d50e48a12a217855c373b865df663f50355e4f76fba33de65e50bdc333112c4a_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:eab9c2e2d1ea614bf898c0cba75223f7960a61b7d2315815d6410e3c4f62d7f8_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:39470e0a40255d8d0bcfb6a3e82d77bfd57fdbff5452179f69eed7cff417a103_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:69531d80a6af41db1c28f54a8acfea85594fca34c754c8049e75b331e998a973_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:7a6b045c058be14ab95043bc3c6680bba5ab54a060ae45dbc7e6e8896fb093d8_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:ab57133805270163a3cb99e972b183e8613a6fbfcc943eae5b542d923d572244_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:1c03e0ce9e3b48c8c0f2a9c65dfe3d9b344cd82ac776dc210ef23b91745b0682_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:3783cfecf52a9c532c4e64ed93078581c8ca200efda661efc63ae1fac4391d57_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:58a181deb194766402e32ef43375e2e51208b229c8c97674bda5a6fcc768b8fd_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:973cb71559d8d346c3e0840a6865afda1de53017dcd9f35ee0a56a1606f3149b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:276fbe3c102abbed5d2cc29b1dbf30456ab5d647fe7f157f18180cdd5ab0b431_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:5fb0bea0b4f43dce5201a986eb9bcd9aa9c2859e3d762f265e4d000a4c93474f_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:8efb0787d02e6700bee64b83c251ee11f4cdc4a04eb770cea3ba34f3d9ec94b4_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:bf53175b6a2e11cf7f5599b65fcb4e56e4037ad5b6254c9e4fa070080aea66fc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:207a6c112b395d28579d8318d95bec18942834476574e07889ae734a4df1c4b5_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:242afe8097041307445f2e9f4b8d3d674aa4ff91c6ffe884ef170b356a09fe68_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:3e0bc79f2f14f0bf95c5c5f08a7838e8c3df3df5da52182f4807b844dda8638e_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:9823d42834e5698b968385a7ef7d5a2a2749c441d8122a895bf53d3681df6a7c_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:06be3bd07a7bf44fb19a93869f6286fbdc7d8b8e7b8507e3c8ce9f8af67574f9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:175bde7c228af62b6f04799bc35a01d525a115d7decb73b2b5f90a3c8cf10a9c_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:4d800957aef55f44442be2a95bd85e3098587c6b0f7455b50264993cd4a2154b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:7fb3f1bf0b641c2f30493fb8e10e90625f5fd30f77ed3b7dec2a98012d54bbab_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:0a23d3fe6f4f54358bef552a62b3d098a97d39b4f1c0b0c0c6d3588c85276417_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:b26fb5031c85204e1b9174c49452146d4528560de554b70e2e97eebccd610fb8_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:e7d01fcd2995b921946a7842faec251ff4434bb9cda3b77e855339f2d9241471_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:ee31bd693543f37461982b1bbcdb783e438c3d1021875829bd24974a1d2c0ea6_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "github.com/containerd/containerd: containerd: Host-root command execution via unvalidated image config labels in CRI plugin"
}
]
}
RHSA-2026:36648
Vulnerability from csaf_redhat - Published: 2026-07-08 09:20 - Updated: 2026-07-10 19:40A flaw was found in the OpenShift Pipelines operator. The tekton-scheduler-rolebinding ClusterRoleBinding grants the system:authenticated group write access to Kueue and cert-manager custom resources via the tekton-scheduler-role ClusterRole. When Kueue or cert-manager CRDs are present on the cluster, any authenticated user can disrupt workload scheduling, tamper with scheduling priorities, delete other tenants' Workload objects, or induce cert-manager to overwrite TLS Secrets including the default ingress controller certificate.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:189d8de6e11f86cd47891d2268c2a91134a6fe617ecbbc433dda7a7f68519421_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:61007260c34ec5113e4286f679a5377c64fb6ad934aee5de6928f4c06c54e969_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:779614a189b230b5c78cd28e360d9e7fabb519aef73a5acacb26b3c26716c68d_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:898bf1c9ee31508ffb2d72deaa97f0b02639e22063788448bbe55f5b98d8db7b_ppc64le | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:09fdae42b81088e67a3f29e32ac980d57652d8ddbe9665b86aab69b37a4327bd_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:0ef830a815d07df60291e9c7b89a03dd40c0ceabfc3071f1fe188575f65a0542_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:59bc241a2a06804393a63785eeb8f0a8165a99263f08e0ffc3e727671c214114_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:af26444b2b45eb9c726b8d0cc92f023c4f4e52c9fb839198ad862d6513e2683f_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:0a189209a84ceddfbbfdba58e43fe94b5ddd211982a58a0929eb9997d3bf585a_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:2d8b7f64fa620bfce0130c52b977942ec9118fafddc9c090994609ab274df00c_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:a18b4c58e2b285058541b77a47d6482a9db6be58756651df3b3c648548a44f8e_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:cebcaaef5272faa6e6f147eeb966803b7cb3d3fbc86514132f6ad2e8b51e4557_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:64c957565dd799994cab0828a9c1169c128ca20e8b103af6b6ac2f422077e322_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:8c8aa38871ee6d945a186d0e3a7b129bafd08d53e52278e1eb6d8011491240dd_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:a473e11982fd3d970a3e28d7e103ee40fd50217cb0de7028edfae345c34bcbc0_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:ccf2448519c0998d9843fa570f128f420326e849c8c69dd3c5b526c3444d9f50_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:7bda73fcb94b412a8799bd11915066b07ed341fed2cd0ab81776f4c601926b54_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:992588aab0cfe3ec909418e827ca46828d0a07d9e3e1479fed437c9c445d7ff0_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:a80038bcbb994457fda1443b37dee5fbe66bbb02972b38139a9877e978c73835_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:cf2318bcce1f1a565bcfdb722d89e0ddb2e88a523db237e926def3934add78e5_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-operator-bundle@sha256:24c95ad401a653c88d072a7753052850cfa6738686ce9aec7ba5f6fcbc92e7fc_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:0a2acfdea8fb6b49a6117d8914e9ae56bc4668ce882131a47923fc0c7ab7c6b6_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:37415ef53ed46fcc1fd8010da38f13ffc9015f8435306b7dcf16bb3ed117083b_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:626527f0b4701d00b845c8bca201f81756a0577a555447ea90b8903b0f968e12_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:98ad870b2929bc5db27a7cf0f9f0791f82d6889673ce7d102838616c466af612_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:2d1e27a8dc06bc78b251796816e89ff0ad7ee91ccd9077db47d245fb5ae5d291_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:c472058fc730b6ea6d064cd77dfa583340976209afe109fee9296012f02df66f_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:d3ca3c7f85c104a6ae087dccd37e328e1cdeb5b93a880b48e1f2c99c015fd101_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:fa3f9534ea19d8828c2342b3557f652196aec37552fa49e83af6dd1b0c356d69_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:7bfbb56d32556a602f9bbe422ea0a583e7e79e0de7503ce362962b3ffc5e5d62_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:aef0c6d237fba5ce37a219b78da4e7c566c6de1d37a9fcd0529c514322f09e77_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:b2361437d1f6d5ee61b23867ea903668f611f76cc76142713785b2faa00fcd63_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:fecc167995f30887629cd176971af5f7b3cb1cc377f8e3a329008e83133e8361_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:4570de210e87e6d64af57fe4ecb072e732365e62e7a23c3b1a8c04cf508bc876_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:6d070525b6e7b75f61f2999dac4dbcbc6fda96c882a17978e7bf8edbc008847b_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:92ee83df52ef773c4bcad66c277f608832de60b2bd00adb41fb877e33040077b_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:be7f5c4ca3cbba8944f0c275ccf847b701c6ae7a25052272fb80d8144f61fc9c_arm64 | — |
Workaround
|
A flaw was found in the `crypto/x509` package of `golang`. This vulnerability allows a remote attacker to cause a Denial of Service (DoS) by presenting a specially crafted X.509 certificate with a large number of DNS Subject Alternative Name (SAN) entries. The certificate verification process, specifically the `VerifyHostname` function, incurs excessive computational overhead due to repeated string operations when processing these entries. This can lead to a significant performance degradation or unresponsiveness of systems validating such certificates.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:7bfbb56d32556a602f9bbe422ea0a583e7e79e0de7503ce362962b3ffc5e5d62_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:aef0c6d237fba5ce37a219b78da4e7c566c6de1d37a9fcd0529c514322f09e77_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:b2361437d1f6d5ee61b23867ea903668f611f76cc76142713785b2faa00fcd63_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:fecc167995f30887629cd176971af5f7b3cb1cc377f8e3a329008e83133e8361_ppc64le | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:09fdae42b81088e67a3f29e32ac980d57652d8ddbe9665b86aab69b37a4327bd_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:0ef830a815d07df60291e9c7b89a03dd40c0ceabfc3071f1fe188575f65a0542_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:59bc241a2a06804393a63785eeb8f0a8165a99263f08e0ffc3e727671c214114_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:af26444b2b45eb9c726b8d0cc92f023c4f4e52c9fb839198ad862d6513e2683f_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:0a189209a84ceddfbbfdba58e43fe94b5ddd211982a58a0929eb9997d3bf585a_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:2d8b7f64fa620bfce0130c52b977942ec9118fafddc9c090994609ab274df00c_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:a18b4c58e2b285058541b77a47d6482a9db6be58756651df3b3c648548a44f8e_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:cebcaaef5272faa6e6f147eeb966803b7cb3d3fbc86514132f6ad2e8b51e4557_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:64c957565dd799994cab0828a9c1169c128ca20e8b103af6b6ac2f422077e322_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:8c8aa38871ee6d945a186d0e3a7b129bafd08d53e52278e1eb6d8011491240dd_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:a473e11982fd3d970a3e28d7e103ee40fd50217cb0de7028edfae345c34bcbc0_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:ccf2448519c0998d9843fa570f128f420326e849c8c69dd3c5b526c3444d9f50_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:7bda73fcb94b412a8799bd11915066b07ed341fed2cd0ab81776f4c601926b54_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:992588aab0cfe3ec909418e827ca46828d0a07d9e3e1479fed437c9c445d7ff0_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:a80038bcbb994457fda1443b37dee5fbe66bbb02972b38139a9877e978c73835_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:cf2318bcce1f1a565bcfdb722d89e0ddb2e88a523db237e926def3934add78e5_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-operator-bundle@sha256:24c95ad401a653c88d072a7753052850cfa6738686ce9aec7ba5f6fcbc92e7fc_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:189d8de6e11f86cd47891d2268c2a91134a6fe617ecbbc433dda7a7f68519421_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:61007260c34ec5113e4286f679a5377c64fb6ad934aee5de6928f4c06c54e969_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:779614a189b230b5c78cd28e360d9e7fabb519aef73a5acacb26b3c26716c68d_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:898bf1c9ee31508ffb2d72deaa97f0b02639e22063788448bbe55f5b98d8db7b_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:0a2acfdea8fb6b49a6117d8914e9ae56bc4668ce882131a47923fc0c7ab7c6b6_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:37415ef53ed46fcc1fd8010da38f13ffc9015f8435306b7dcf16bb3ed117083b_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:626527f0b4701d00b845c8bca201f81756a0577a555447ea90b8903b0f968e12_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:98ad870b2929bc5db27a7cf0f9f0791f82d6889673ce7d102838616c466af612_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:2d1e27a8dc06bc78b251796816e89ff0ad7ee91ccd9077db47d245fb5ae5d291_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:c472058fc730b6ea6d064cd77dfa583340976209afe109fee9296012f02df66f_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:d3ca3c7f85c104a6ae087dccd37e328e1cdeb5b93a880b48e1f2c99c015fd101_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:fa3f9534ea19d8828c2342b3557f652196aec37552fa49e83af6dd1b0c356d69_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:4570de210e87e6d64af57fe4ecb072e732365e62e7a23c3b1a8c04cf508bc876_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:6d070525b6e7b75f61f2999dac4dbcbc6fda96c882a17978e7bf8edbc008847b_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:92ee83df52ef773c4bcad66c277f608832de60b2bd00adb41fb877e33040077b_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:be7f5c4ca3cbba8944f0c275ccf847b701c6ae7a25052272fb80d8144f61fc9c_arm64 | — |
Workaround
|
A flaw was found in the `net` package of Go (golang), specifically when using the `LookupCNAME` function with the `cgo` DNS resolver. A remote attacker could exploit this by providing a very long Canonical Name (CNAME) response. This can trigger a double-free of C memory, leading to a crash and a Denial of Service (DoS) for the affected application.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:7bfbb56d32556a602f9bbe422ea0a583e7e79e0de7503ce362962b3ffc5e5d62_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:aef0c6d237fba5ce37a219b78da4e7c566c6de1d37a9fcd0529c514322f09e77_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:b2361437d1f6d5ee61b23867ea903668f611f76cc76142713785b2faa00fcd63_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:fecc167995f30887629cd176971af5f7b3cb1cc377f8e3a329008e83133e8361_ppc64le | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:09fdae42b81088e67a3f29e32ac980d57652d8ddbe9665b86aab69b37a4327bd_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:0ef830a815d07df60291e9c7b89a03dd40c0ceabfc3071f1fe188575f65a0542_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:59bc241a2a06804393a63785eeb8f0a8165a99263f08e0ffc3e727671c214114_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:af26444b2b45eb9c726b8d0cc92f023c4f4e52c9fb839198ad862d6513e2683f_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:0a189209a84ceddfbbfdba58e43fe94b5ddd211982a58a0929eb9997d3bf585a_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:2d8b7f64fa620bfce0130c52b977942ec9118fafddc9c090994609ab274df00c_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:a18b4c58e2b285058541b77a47d6482a9db6be58756651df3b3c648548a44f8e_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:cebcaaef5272faa6e6f147eeb966803b7cb3d3fbc86514132f6ad2e8b51e4557_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:64c957565dd799994cab0828a9c1169c128ca20e8b103af6b6ac2f422077e322_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:8c8aa38871ee6d945a186d0e3a7b129bafd08d53e52278e1eb6d8011491240dd_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:a473e11982fd3d970a3e28d7e103ee40fd50217cb0de7028edfae345c34bcbc0_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:ccf2448519c0998d9843fa570f128f420326e849c8c69dd3c5b526c3444d9f50_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:7bda73fcb94b412a8799bd11915066b07ed341fed2cd0ab81776f4c601926b54_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:992588aab0cfe3ec909418e827ca46828d0a07d9e3e1479fed437c9c445d7ff0_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:a80038bcbb994457fda1443b37dee5fbe66bbb02972b38139a9877e978c73835_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:cf2318bcce1f1a565bcfdb722d89e0ddb2e88a523db237e926def3934add78e5_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-operator-bundle@sha256:24c95ad401a653c88d072a7753052850cfa6738686ce9aec7ba5f6fcbc92e7fc_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:189d8de6e11f86cd47891d2268c2a91134a6fe617ecbbc433dda7a7f68519421_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:61007260c34ec5113e4286f679a5377c64fb6ad934aee5de6928f4c06c54e969_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:779614a189b230b5c78cd28e360d9e7fabb519aef73a5acacb26b3c26716c68d_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:898bf1c9ee31508ffb2d72deaa97f0b02639e22063788448bbe55f5b98d8db7b_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:0a2acfdea8fb6b49a6117d8914e9ae56bc4668ce882131a47923fc0c7ab7c6b6_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:37415ef53ed46fcc1fd8010da38f13ffc9015f8435306b7dcf16bb3ed117083b_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:626527f0b4701d00b845c8bca201f81756a0577a555447ea90b8903b0f968e12_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:98ad870b2929bc5db27a7cf0f9f0791f82d6889673ce7d102838616c466af612_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:2d1e27a8dc06bc78b251796816e89ff0ad7ee91ccd9077db47d245fb5ae5d291_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:c472058fc730b6ea6d064cd77dfa583340976209afe109fee9296012f02df66f_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:d3ca3c7f85c104a6ae087dccd37e328e1cdeb5b93a880b48e1f2c99c015fd101_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:fa3f9534ea19d8828c2342b3557f652196aec37552fa49e83af6dd1b0c356d69_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:4570de210e87e6d64af57fe4ecb072e732365e62e7a23c3b1a8c04cf508bc876_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:6d070525b6e7b75f61f2999dac4dbcbc6fda96c882a17978e7bf8edbc008847b_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:92ee83df52ef773c4bcad66c277f608832de60b2bd00adb41fb877e33040077b_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:be7f5c4ca3cbba8944f0c275ccf847b701c6ae7a25052272fb80d8144f61fc9c_arm64 | — |
Workaround
|
A flaw was found in golang.org/x/net/idna. ToASCII and ToUnicode incorrectly accept Punycode-encoded labels that decode to an ASCII-only hostname (for example, xn--example-.com returns example.com instead of an error). Applications that validate the ASCII form then convert to Unicode may grant access to a restricted hostname the ASCII check would have rejected.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:09fdae42b81088e67a3f29e32ac980d57652d8ddbe9665b86aab69b37a4327bd_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:0ef830a815d07df60291e9c7b89a03dd40c0ceabfc3071f1fe188575f65a0542_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:59bc241a2a06804393a63785eeb8f0a8165a99263f08e0ffc3e727671c214114_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:af26444b2b45eb9c726b8d0cc92f023c4f4e52c9fb839198ad862d6513e2683f_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:7bfbb56d32556a602f9bbe422ea0a583e7e79e0de7503ce362962b3ffc5e5d62_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:aef0c6d237fba5ce37a219b78da4e7c566c6de1d37a9fcd0529c514322f09e77_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:b2361437d1f6d5ee61b23867ea903668f611f76cc76142713785b2faa00fcd63_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:fecc167995f30887629cd176971af5f7b3cb1cc377f8e3a329008e83133e8361_ppc64le | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:0a189209a84ceddfbbfdba58e43fe94b5ddd211982a58a0929eb9997d3bf585a_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:2d8b7f64fa620bfce0130c52b977942ec9118fafddc9c090994609ab274df00c_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:a18b4c58e2b285058541b77a47d6482a9db6be58756651df3b3c648548a44f8e_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:cebcaaef5272faa6e6f147eeb966803b7cb3d3fbc86514132f6ad2e8b51e4557_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:64c957565dd799994cab0828a9c1169c128ca20e8b103af6b6ac2f422077e322_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:8c8aa38871ee6d945a186d0e3a7b129bafd08d53e52278e1eb6d8011491240dd_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:a473e11982fd3d970a3e28d7e103ee40fd50217cb0de7028edfae345c34bcbc0_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:ccf2448519c0998d9843fa570f128f420326e849c8c69dd3c5b526c3444d9f50_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:7bda73fcb94b412a8799bd11915066b07ed341fed2cd0ab81776f4c601926b54_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:992588aab0cfe3ec909418e827ca46828d0a07d9e3e1479fed437c9c445d7ff0_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:a80038bcbb994457fda1443b37dee5fbe66bbb02972b38139a9877e978c73835_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:cf2318bcce1f1a565bcfdb722d89e0ddb2e88a523db237e926def3934add78e5_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-operator-bundle@sha256:24c95ad401a653c88d072a7753052850cfa6738686ce9aec7ba5f6fcbc92e7fc_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:189d8de6e11f86cd47891d2268c2a91134a6fe617ecbbc433dda7a7f68519421_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:61007260c34ec5113e4286f679a5377c64fb6ad934aee5de6928f4c06c54e969_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:779614a189b230b5c78cd28e360d9e7fabb519aef73a5acacb26b3c26716c68d_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:898bf1c9ee31508ffb2d72deaa97f0b02639e22063788448bbe55f5b98d8db7b_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:0a2acfdea8fb6b49a6117d8914e9ae56bc4668ce882131a47923fc0c7ab7c6b6_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:37415ef53ed46fcc1fd8010da38f13ffc9015f8435306b7dcf16bb3ed117083b_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:626527f0b4701d00b845c8bca201f81756a0577a555447ea90b8903b0f968e12_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:98ad870b2929bc5db27a7cf0f9f0791f82d6889673ce7d102838616c466af612_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:2d1e27a8dc06bc78b251796816e89ff0ad7ee91ccd9077db47d245fb5ae5d291_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:c472058fc730b6ea6d064cd77dfa583340976209afe109fee9296012f02df66f_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:d3ca3c7f85c104a6ae087dccd37e328e1cdeb5b93a880b48e1f2c99c015fd101_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:fa3f9534ea19d8828c2342b3557f652196aec37552fa49e83af6dd1b0c356d69_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:4570de210e87e6d64af57fe4ecb072e732365e62e7a23c3b1a8c04cf508bc876_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:6d070525b6e7b75f61f2999dac4dbcbc6fda96c882a17978e7bf8edbc008847b_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:92ee83df52ef773c4bcad66c277f608832de60b2bd00adb41fb877e33040077b_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:be7f5c4ca3cbba8944f0c275ccf847b701c6ae7a25052272fb80d8144f61fc9c_arm64 | — |
Workaround
|
A flaw was found in golang.org/x/crypto/ssh. A remote attacker could exploit this vulnerability when an SSH server authentication callback returned a PartialSuccessError with non-nil permissions. This flaw caused these permissions to be silently discarded, potentially bypassing certificate restrictions, such as a force-command, after a second authentication factor succeeded. This could lead to unauthorized command execution or access.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:09fdae42b81088e67a3f29e32ac980d57652d8ddbe9665b86aab69b37a4327bd_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:0ef830a815d07df60291e9c7b89a03dd40c0ceabfc3071f1fe188575f65a0542_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:59bc241a2a06804393a63785eeb8f0a8165a99263f08e0ffc3e727671c214114_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:af26444b2b45eb9c726b8d0cc92f023c4f4e52c9fb839198ad862d6513e2683f_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:0a189209a84ceddfbbfdba58e43fe94b5ddd211982a58a0929eb9997d3bf585a_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:2d8b7f64fa620bfce0130c52b977942ec9118fafddc9c090994609ab274df00c_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:a18b4c58e2b285058541b77a47d6482a9db6be58756651df3b3c648548a44f8e_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:cebcaaef5272faa6e6f147eeb966803b7cb3d3fbc86514132f6ad2e8b51e4557_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:64c957565dd799994cab0828a9c1169c128ca20e8b103af6b6ac2f422077e322_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:8c8aa38871ee6d945a186d0e3a7b129bafd08d53e52278e1eb6d8011491240dd_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:a473e11982fd3d970a3e28d7e103ee40fd50217cb0de7028edfae345c34bcbc0_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:ccf2448519c0998d9843fa570f128f420326e849c8c69dd3c5b526c3444d9f50_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:7bda73fcb94b412a8799bd11915066b07ed341fed2cd0ab81776f4c601926b54_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:992588aab0cfe3ec909418e827ca46828d0a07d9e3e1479fed437c9c445d7ff0_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:a80038bcbb994457fda1443b37dee5fbe66bbb02972b38139a9877e978c73835_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:cf2318bcce1f1a565bcfdb722d89e0ddb2e88a523db237e926def3934add78e5_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:7bfbb56d32556a602f9bbe422ea0a583e7e79e0de7503ce362962b3ffc5e5d62_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:aef0c6d237fba5ce37a219b78da4e7c566c6de1d37a9fcd0529c514322f09e77_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:b2361437d1f6d5ee61b23867ea903668f611f76cc76142713785b2faa00fcd63_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:fecc167995f30887629cd176971af5f7b3cb1cc377f8e3a329008e83133e8361_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:4570de210e87e6d64af57fe4ecb072e732365e62e7a23c3b1a8c04cf508bc876_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:6d070525b6e7b75f61f2999dac4dbcbc6fda96c882a17978e7bf8edbc008847b_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:92ee83df52ef773c4bcad66c277f608832de60b2bd00adb41fb877e33040077b_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:be7f5c4ca3cbba8944f0c275ccf847b701c6ae7a25052272fb80d8144f61fc9c_arm64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-operator-bundle@sha256:24c95ad401a653c88d072a7753052850cfa6738686ce9aec7ba5f6fcbc92e7fc_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:189d8de6e11f86cd47891d2268c2a91134a6fe617ecbbc433dda7a7f68519421_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:61007260c34ec5113e4286f679a5377c64fb6ad934aee5de6928f4c06c54e969_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:779614a189b230b5c78cd28e360d9e7fabb519aef73a5acacb26b3c26716c68d_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:898bf1c9ee31508ffb2d72deaa97f0b02639e22063788448bbe55f5b98d8db7b_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:0a2acfdea8fb6b49a6117d8914e9ae56bc4668ce882131a47923fc0c7ab7c6b6_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:37415ef53ed46fcc1fd8010da38f13ffc9015f8435306b7dcf16bb3ed117083b_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:626527f0b4701d00b845c8bca201f81756a0577a555447ea90b8903b0f968e12_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:98ad870b2929bc5db27a7cf0f9f0791f82d6889673ce7d102838616c466af612_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:2d1e27a8dc06bc78b251796816e89ff0ad7ee91ccd9077db47d245fb5ae5d291_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:c472058fc730b6ea6d064cd77dfa583340976209afe109fee9296012f02df66f_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:d3ca3c7f85c104a6ae087dccd37e328e1cdeb5b93a880b48e1f2c99c015fd101_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:fa3f9534ea19d8828c2342b3557f652196aec37552fa49e83af6dd1b0c356d69_ppc64le | — |
Workaround
|
A flaw was found in golang.org/x/crypto/ssh. The RSA and DSA public key parsers in the affected component did not enforce size limits on key parameters. This vulnerability allows an unauthenticated client to provide a crafted public key with an excessively large modulus or DSA parameter during public key authentication. Successful exploitation could lead to a denial of service (DoS) due to prolonged CPU consumption during signature verification.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:09fdae42b81088e67a3f29e32ac980d57652d8ddbe9665b86aab69b37a4327bd_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:0ef830a815d07df60291e9c7b89a03dd40c0ceabfc3071f1fe188575f65a0542_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:59bc241a2a06804393a63785eeb8f0a8165a99263f08e0ffc3e727671c214114_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:af26444b2b45eb9c726b8d0cc92f023c4f4e52c9fb839198ad862d6513e2683f_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:0a189209a84ceddfbbfdba58e43fe94b5ddd211982a58a0929eb9997d3bf585a_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:2d8b7f64fa620bfce0130c52b977942ec9118fafddc9c090994609ab274df00c_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:a18b4c58e2b285058541b77a47d6482a9db6be58756651df3b3c648548a44f8e_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:cebcaaef5272faa6e6f147eeb966803b7cb3d3fbc86514132f6ad2e8b51e4557_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:64c957565dd799994cab0828a9c1169c128ca20e8b103af6b6ac2f422077e322_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:8c8aa38871ee6d945a186d0e3a7b129bafd08d53e52278e1eb6d8011491240dd_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:a473e11982fd3d970a3e28d7e103ee40fd50217cb0de7028edfae345c34bcbc0_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:ccf2448519c0998d9843fa570f128f420326e849c8c69dd3c5b526c3444d9f50_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:7bda73fcb94b412a8799bd11915066b07ed341fed2cd0ab81776f4c601926b54_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:992588aab0cfe3ec909418e827ca46828d0a07d9e3e1479fed437c9c445d7ff0_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:a80038bcbb994457fda1443b37dee5fbe66bbb02972b38139a9877e978c73835_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:cf2318bcce1f1a565bcfdb722d89e0ddb2e88a523db237e926def3934add78e5_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:7bfbb56d32556a602f9bbe422ea0a583e7e79e0de7503ce362962b3ffc5e5d62_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:aef0c6d237fba5ce37a219b78da4e7c566c6de1d37a9fcd0529c514322f09e77_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:b2361437d1f6d5ee61b23867ea903668f611f76cc76142713785b2faa00fcd63_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:fecc167995f30887629cd176971af5f7b3cb1cc377f8e3a329008e83133e8361_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:4570de210e87e6d64af57fe4ecb072e732365e62e7a23c3b1a8c04cf508bc876_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:6d070525b6e7b75f61f2999dac4dbcbc6fda96c882a17978e7bf8edbc008847b_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:92ee83df52ef773c4bcad66c277f608832de60b2bd00adb41fb877e33040077b_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:be7f5c4ca3cbba8944f0c275ccf847b701c6ae7a25052272fb80d8144f61fc9c_arm64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-operator-bundle@sha256:24c95ad401a653c88d072a7753052850cfa6738686ce9aec7ba5f6fcbc92e7fc_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:189d8de6e11f86cd47891d2268c2a91134a6fe617ecbbc433dda7a7f68519421_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:61007260c34ec5113e4286f679a5377c64fb6ad934aee5de6928f4c06c54e969_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:779614a189b230b5c78cd28e360d9e7fabb519aef73a5acacb26b3c26716c68d_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:898bf1c9ee31508ffb2d72deaa97f0b02639e22063788448bbe55f5b98d8db7b_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:0a2acfdea8fb6b49a6117d8914e9ae56bc4668ce882131a47923fc0c7ab7c6b6_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:37415ef53ed46fcc1fd8010da38f13ffc9015f8435306b7dcf16bb3ed117083b_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:626527f0b4701d00b845c8bca201f81756a0577a555447ea90b8903b0f968e12_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:98ad870b2929bc5db27a7cf0f9f0791f82d6889673ce7d102838616c466af612_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:2d1e27a8dc06bc78b251796816e89ff0ad7ee91ccd9077db47d245fb5ae5d291_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:c472058fc730b6ea6d064cd77dfa583340976209afe109fee9296012f02df66f_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:d3ca3c7f85c104a6ae087dccd37e328e1cdeb5b93a880b48e1f2c99c015fd101_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:fa3f9534ea19d8828c2342b3557f652196aec37552fa49e83af6dd1b0c356d69_ppc64le | — |
Workaround
|
A flaw was found in golang.org/x/crypto/ssh. A remote malicious SSH peer can exploit this by sending unsolicited global request responses, which fills an internal buffer and blocks the connection's read loop. This prevents the associated resources from being released, leading to a resource leak per connection. The consequence is a Denial of Service (DoS) for the affected system.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:09fdae42b81088e67a3f29e32ac980d57652d8ddbe9665b86aab69b37a4327bd_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:0ef830a815d07df60291e9c7b89a03dd40c0ceabfc3071f1fe188575f65a0542_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:59bc241a2a06804393a63785eeb8f0a8165a99263f08e0ffc3e727671c214114_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:af26444b2b45eb9c726b8d0cc92f023c4f4e52c9fb839198ad862d6513e2683f_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:0a189209a84ceddfbbfdba58e43fe94b5ddd211982a58a0929eb9997d3bf585a_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:2d8b7f64fa620bfce0130c52b977942ec9118fafddc9c090994609ab274df00c_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:a18b4c58e2b285058541b77a47d6482a9db6be58756651df3b3c648548a44f8e_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:cebcaaef5272faa6e6f147eeb966803b7cb3d3fbc86514132f6ad2e8b51e4557_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:64c957565dd799994cab0828a9c1169c128ca20e8b103af6b6ac2f422077e322_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:8c8aa38871ee6d945a186d0e3a7b129bafd08d53e52278e1eb6d8011491240dd_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:a473e11982fd3d970a3e28d7e103ee40fd50217cb0de7028edfae345c34bcbc0_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:ccf2448519c0998d9843fa570f128f420326e849c8c69dd3c5b526c3444d9f50_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:7bda73fcb94b412a8799bd11915066b07ed341fed2cd0ab81776f4c601926b54_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:992588aab0cfe3ec909418e827ca46828d0a07d9e3e1479fed437c9c445d7ff0_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:a80038bcbb994457fda1443b37dee5fbe66bbb02972b38139a9877e978c73835_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:cf2318bcce1f1a565bcfdb722d89e0ddb2e88a523db237e926def3934add78e5_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:7bfbb56d32556a602f9bbe422ea0a583e7e79e0de7503ce362962b3ffc5e5d62_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:aef0c6d237fba5ce37a219b78da4e7c566c6de1d37a9fcd0529c514322f09e77_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:b2361437d1f6d5ee61b23867ea903668f611f76cc76142713785b2faa00fcd63_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:fecc167995f30887629cd176971af5f7b3cb1cc377f8e3a329008e83133e8361_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:4570de210e87e6d64af57fe4ecb072e732365e62e7a23c3b1a8c04cf508bc876_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:6d070525b6e7b75f61f2999dac4dbcbc6fda96c882a17978e7bf8edbc008847b_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:92ee83df52ef773c4bcad66c277f608832de60b2bd00adb41fb877e33040077b_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:be7f5c4ca3cbba8944f0c275ccf847b701c6ae7a25052272fb80d8144f61fc9c_arm64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-operator-bundle@sha256:24c95ad401a653c88d072a7753052850cfa6738686ce9aec7ba5f6fcbc92e7fc_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:189d8de6e11f86cd47891d2268c2a91134a6fe617ecbbc433dda7a7f68519421_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:61007260c34ec5113e4286f679a5377c64fb6ad934aee5de6928f4c06c54e969_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:779614a189b230b5c78cd28e360d9e7fabb519aef73a5acacb26b3c26716c68d_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:898bf1c9ee31508ffb2d72deaa97f0b02639e22063788448bbe55f5b98d8db7b_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:0a2acfdea8fb6b49a6117d8914e9ae56bc4668ce882131a47923fc0c7ab7c6b6_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:37415ef53ed46fcc1fd8010da38f13ffc9015f8435306b7dcf16bb3ed117083b_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:626527f0b4701d00b845c8bca201f81756a0577a555447ea90b8903b0f968e12_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:98ad870b2929bc5db27a7cf0f9f0791f82d6889673ce7d102838616c466af612_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:2d1e27a8dc06bc78b251796816e89ff0ad7ee91ccd9077db47d245fb5ae5d291_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:c472058fc730b6ea6d064cd77dfa583340976209afe109fee9296012f02df66f_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:d3ca3c7f85c104a6ae087dccd37e328e1cdeb5b93a880b48e1f2c99c015fd101_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:fa3f9534ea19d8828c2342b3557f652196aec37552fa49e83af6dd1b0c356d69_ppc64le | — |
Workaround
|
A flaw was found in golang.org/x/crypto/ssh/agent. When a key was added to a remote agent, security restrictions, known as constraint extensions, were not properly processed during the request. This allowed these restrictions to be silently removed when keys were forwarded, leading to the unrestricted use of the key on the remote host. This vulnerability could enable an attacker to bypass intended security controls and perform unauthorized actions.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:09fdae42b81088e67a3f29e32ac980d57652d8ddbe9665b86aab69b37a4327bd_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:0ef830a815d07df60291e9c7b89a03dd40c0ceabfc3071f1fe188575f65a0542_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:59bc241a2a06804393a63785eeb8f0a8165a99263f08e0ffc3e727671c214114_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:af26444b2b45eb9c726b8d0cc92f023c4f4e52c9fb839198ad862d6513e2683f_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:0a189209a84ceddfbbfdba58e43fe94b5ddd211982a58a0929eb9997d3bf585a_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:2d8b7f64fa620bfce0130c52b977942ec9118fafddc9c090994609ab274df00c_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:a18b4c58e2b285058541b77a47d6482a9db6be58756651df3b3c648548a44f8e_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:cebcaaef5272faa6e6f147eeb966803b7cb3d3fbc86514132f6ad2e8b51e4557_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:64c957565dd799994cab0828a9c1169c128ca20e8b103af6b6ac2f422077e322_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:8c8aa38871ee6d945a186d0e3a7b129bafd08d53e52278e1eb6d8011491240dd_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:a473e11982fd3d970a3e28d7e103ee40fd50217cb0de7028edfae345c34bcbc0_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:ccf2448519c0998d9843fa570f128f420326e849c8c69dd3c5b526c3444d9f50_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:7bda73fcb94b412a8799bd11915066b07ed341fed2cd0ab81776f4c601926b54_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:992588aab0cfe3ec909418e827ca46828d0a07d9e3e1479fed437c9c445d7ff0_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:a80038bcbb994457fda1443b37dee5fbe66bbb02972b38139a9877e978c73835_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:cf2318bcce1f1a565bcfdb722d89e0ddb2e88a523db237e926def3934add78e5_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:7bfbb56d32556a602f9bbe422ea0a583e7e79e0de7503ce362962b3ffc5e5d62_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:aef0c6d237fba5ce37a219b78da4e7c566c6de1d37a9fcd0529c514322f09e77_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:b2361437d1f6d5ee61b23867ea903668f611f76cc76142713785b2faa00fcd63_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:fecc167995f30887629cd176971af5f7b3cb1cc377f8e3a329008e83133e8361_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:4570de210e87e6d64af57fe4ecb072e732365e62e7a23c3b1a8c04cf508bc876_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:6d070525b6e7b75f61f2999dac4dbcbc6fda96c882a17978e7bf8edbc008847b_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:92ee83df52ef773c4bcad66c277f608832de60b2bd00adb41fb877e33040077b_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:be7f5c4ca3cbba8944f0c275ccf847b701c6ae7a25052272fb80d8144f61fc9c_arm64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-operator-bundle@sha256:24c95ad401a653c88d072a7753052850cfa6738686ce9aec7ba5f6fcbc92e7fc_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:189d8de6e11f86cd47891d2268c2a91134a6fe617ecbbc433dda7a7f68519421_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:61007260c34ec5113e4286f679a5377c64fb6ad934aee5de6928f4c06c54e969_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:779614a189b230b5c78cd28e360d9e7fabb519aef73a5acacb26b3c26716c68d_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:898bf1c9ee31508ffb2d72deaa97f0b02639e22063788448bbe55f5b98d8db7b_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:0a2acfdea8fb6b49a6117d8914e9ae56bc4668ce882131a47923fc0c7ab7c6b6_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:37415ef53ed46fcc1fd8010da38f13ffc9015f8435306b7dcf16bb3ed117083b_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:626527f0b4701d00b845c8bca201f81756a0577a555447ea90b8903b0f968e12_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:98ad870b2929bc5db27a7cf0f9f0791f82d6889673ce7d102838616c466af612_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:2d1e27a8dc06bc78b251796816e89ff0ad7ee91ccd9077db47d245fb5ae5d291_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:c472058fc730b6ea6d064cd77dfa583340976209afe109fee9296012f02df66f_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:d3ca3c7f85c104a6ae087dccd37e328e1cdeb5b93a880b48e1f2c99c015fd101_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:fa3f9534ea19d8828c2342b3557f652196aec37552fa49e83af6dd1b0c356d69_ppc64le | — |
Workaround
|
A flaw was found in golang.org/x/crypto/ssh/agent. The NewKeyring() function, which creates an in-memory keyring, failed to enforce the ConfirmBeforeUse constraint on keys. This allowed keys configured to require user confirmation before use to perform signing operations without any prompt or indication to the user. Consequently, an attacker could potentially bypass intended security controls, leading to unauthorized cryptographic signing actions.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:09fdae42b81088e67a3f29e32ac980d57652d8ddbe9665b86aab69b37a4327bd_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:0ef830a815d07df60291e9c7b89a03dd40c0ceabfc3071f1fe188575f65a0542_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:59bc241a2a06804393a63785eeb8f0a8165a99263f08e0ffc3e727671c214114_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:af26444b2b45eb9c726b8d0cc92f023c4f4e52c9fb839198ad862d6513e2683f_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:0a189209a84ceddfbbfdba58e43fe94b5ddd211982a58a0929eb9997d3bf585a_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:2d8b7f64fa620bfce0130c52b977942ec9118fafddc9c090994609ab274df00c_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:a18b4c58e2b285058541b77a47d6482a9db6be58756651df3b3c648548a44f8e_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:cebcaaef5272faa6e6f147eeb966803b7cb3d3fbc86514132f6ad2e8b51e4557_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:64c957565dd799994cab0828a9c1169c128ca20e8b103af6b6ac2f422077e322_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:8c8aa38871ee6d945a186d0e3a7b129bafd08d53e52278e1eb6d8011491240dd_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:a473e11982fd3d970a3e28d7e103ee40fd50217cb0de7028edfae345c34bcbc0_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:ccf2448519c0998d9843fa570f128f420326e849c8c69dd3c5b526c3444d9f50_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:7bda73fcb94b412a8799bd11915066b07ed341fed2cd0ab81776f4c601926b54_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:992588aab0cfe3ec909418e827ca46828d0a07d9e3e1479fed437c9c445d7ff0_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:a80038bcbb994457fda1443b37dee5fbe66bbb02972b38139a9877e978c73835_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:cf2318bcce1f1a565bcfdb722d89e0ddb2e88a523db237e926def3934add78e5_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:7bfbb56d32556a602f9bbe422ea0a583e7e79e0de7503ce362962b3ffc5e5d62_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:aef0c6d237fba5ce37a219b78da4e7c566c6de1d37a9fcd0529c514322f09e77_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:b2361437d1f6d5ee61b23867ea903668f611f76cc76142713785b2faa00fcd63_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:fecc167995f30887629cd176971af5f7b3cb1cc377f8e3a329008e83133e8361_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:4570de210e87e6d64af57fe4ecb072e732365e62e7a23c3b1a8c04cf508bc876_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:6d070525b6e7b75f61f2999dac4dbcbc6fda96c882a17978e7bf8edbc008847b_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:92ee83df52ef773c4bcad66c277f608832de60b2bd00adb41fb877e33040077b_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:be7f5c4ca3cbba8944f0c275ccf847b701c6ae7a25052272fb80d8144f61fc9c_arm64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-operator-bundle@sha256:24c95ad401a653c88d072a7753052850cfa6738686ce9aec7ba5f6fcbc92e7fc_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:189d8de6e11f86cd47891d2268c2a91134a6fe617ecbbc433dda7a7f68519421_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:61007260c34ec5113e4286f679a5377c64fb6ad934aee5de6928f4c06c54e969_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:779614a189b230b5c78cd28e360d9e7fabb519aef73a5acacb26b3c26716c68d_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:898bf1c9ee31508ffb2d72deaa97f0b02639e22063788448bbe55f5b98d8db7b_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:0a2acfdea8fb6b49a6117d8914e9ae56bc4668ce882131a47923fc0c7ab7c6b6_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:37415ef53ed46fcc1fd8010da38f13ffc9015f8435306b7dcf16bb3ed117083b_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:626527f0b4701d00b845c8bca201f81756a0577a555447ea90b8903b0f968e12_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:98ad870b2929bc5db27a7cf0f9f0791f82d6889673ce7d102838616c466af612_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:2d1e27a8dc06bc78b251796816e89ff0ad7ee91ccd9077db47d245fb5ae5d291_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:c472058fc730b6ea6d064cd77dfa583340976209afe109fee9296012f02df66f_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:d3ca3c7f85c104a6ae087dccd37e328e1cdeb5b93a880b48e1f2c99c015fd101_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:fa3f9534ea19d8828c2342b3557f652196aec37552fa49e83af6dd1b0c356d69_ppc64le | — |
Workaround
|
A flaw was found in golang.org/x/crypto/ssh. SSH servers configured to use CertChecker as a public key callback, without explicitly setting IsUserAuthority or IsHostAuthority, are vulnerable. A remote attacker can exploit this by presenting a specially crafted certificate, causing the server to panic and resulting in a Denial of Service (DoS).
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:09fdae42b81088e67a3f29e32ac980d57652d8ddbe9665b86aab69b37a4327bd_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:0ef830a815d07df60291e9c7b89a03dd40c0ceabfc3071f1fe188575f65a0542_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:59bc241a2a06804393a63785eeb8f0a8165a99263f08e0ffc3e727671c214114_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:af26444b2b45eb9c726b8d0cc92f023c4f4e52c9fb839198ad862d6513e2683f_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:0a189209a84ceddfbbfdba58e43fe94b5ddd211982a58a0929eb9997d3bf585a_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:2d8b7f64fa620bfce0130c52b977942ec9118fafddc9c090994609ab274df00c_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:a18b4c58e2b285058541b77a47d6482a9db6be58756651df3b3c648548a44f8e_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:cebcaaef5272faa6e6f147eeb966803b7cb3d3fbc86514132f6ad2e8b51e4557_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:64c957565dd799994cab0828a9c1169c128ca20e8b103af6b6ac2f422077e322_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:8c8aa38871ee6d945a186d0e3a7b129bafd08d53e52278e1eb6d8011491240dd_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:a473e11982fd3d970a3e28d7e103ee40fd50217cb0de7028edfae345c34bcbc0_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:ccf2448519c0998d9843fa570f128f420326e849c8c69dd3c5b526c3444d9f50_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:7bda73fcb94b412a8799bd11915066b07ed341fed2cd0ab81776f4c601926b54_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:992588aab0cfe3ec909418e827ca46828d0a07d9e3e1479fed437c9c445d7ff0_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:a80038bcbb994457fda1443b37dee5fbe66bbb02972b38139a9877e978c73835_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:cf2318bcce1f1a565bcfdb722d89e0ddb2e88a523db237e926def3934add78e5_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:7bfbb56d32556a602f9bbe422ea0a583e7e79e0de7503ce362962b3ffc5e5d62_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:aef0c6d237fba5ce37a219b78da4e7c566c6de1d37a9fcd0529c514322f09e77_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:b2361437d1f6d5ee61b23867ea903668f611f76cc76142713785b2faa00fcd63_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:fecc167995f30887629cd176971af5f7b3cb1cc377f8e3a329008e83133e8361_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:4570de210e87e6d64af57fe4ecb072e732365e62e7a23c3b1a8c04cf508bc876_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:6d070525b6e7b75f61f2999dac4dbcbc6fda96c882a17978e7bf8edbc008847b_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:92ee83df52ef773c4bcad66c277f608832de60b2bd00adb41fb877e33040077b_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:be7f5c4ca3cbba8944f0c275ccf847b701c6ae7a25052272fb80d8144f61fc9c_arm64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-operator-bundle@sha256:24c95ad401a653c88d072a7753052850cfa6738686ce9aec7ba5f6fcbc92e7fc_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:189d8de6e11f86cd47891d2268c2a91134a6fe617ecbbc433dda7a7f68519421_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:61007260c34ec5113e4286f679a5377c64fb6ad934aee5de6928f4c06c54e969_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:779614a189b230b5c78cd28e360d9e7fabb519aef73a5acacb26b3c26716c68d_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:898bf1c9ee31508ffb2d72deaa97f0b02639e22063788448bbe55f5b98d8db7b_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:0a2acfdea8fb6b49a6117d8914e9ae56bc4668ce882131a47923fc0c7ab7c6b6_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:37415ef53ed46fcc1fd8010da38f13ffc9015f8435306b7dcf16bb3ed117083b_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:626527f0b4701d00b845c8bca201f81756a0577a555447ea90b8903b0f968e12_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:98ad870b2929bc5db27a7cf0f9f0791f82d6889673ce7d102838616c466af612_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:2d1e27a8dc06bc78b251796816e89ff0ad7ee91ccd9077db47d245fb5ae5d291_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:c472058fc730b6ea6d064cd77dfa583340976209afe109fee9296012f02df66f_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:d3ca3c7f85c104a6ae087dccd37e328e1cdeb5b93a880b48e1f2c99c015fd101_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:fa3f9534ea19d8828c2342b3557f652196aec37552fa49e83af6dd1b0c356d69_ppc64le | — |
Workaround
|
A flaw was found in golang.org/x/crypto/ssh/knownhosts. This vulnerability occurs because the system did not correctly check for the revocation status of a SignatureKey belonging to a Certificate Authority (CA). A remote attacker could potentially exploit this by presenting a revoked key, leading to the system accepting it as valid. This could allow an attacker to bypass security checks and potentially gain unauthorized access or spoof legitimate entities.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:7bfbb56d32556a602f9bbe422ea0a583e7e79e0de7503ce362962b3ffc5e5d62_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:aef0c6d237fba5ce37a219b78da4e7c566c6de1d37a9fcd0529c514322f09e77_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:b2361437d1f6d5ee61b23867ea903668f611f76cc76142713785b2faa00fcd63_arm64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:fecc167995f30887629cd176971af5f7b3cb1cc377f8e3a329008e83133e8361_ppc64le | — |
Vendor Fix
fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:09fdae42b81088e67a3f29e32ac980d57652d8ddbe9665b86aab69b37a4327bd_arm64 | — | ||
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:0ef830a815d07df60291e9c7b89a03dd40c0ceabfc3071f1fe188575f65a0542_amd64 | — | ||
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:59bc241a2a06804393a63785eeb8f0a8165a99263f08e0ffc3e727671c214114_ppc64le | — | ||
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:af26444b2b45eb9c726b8d0cc92f023c4f4e52c9fb839198ad862d6513e2683f_s390x | — | ||
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:0a189209a84ceddfbbfdba58e43fe94b5ddd211982a58a0929eb9997d3bf585a_s390x | — | ||
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:2d8b7f64fa620bfce0130c52b977942ec9118fafddc9c090994609ab274df00c_ppc64le | — | ||
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:a18b4c58e2b285058541b77a47d6482a9db6be58756651df3b3c648548a44f8e_arm64 | — | ||
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:cebcaaef5272faa6e6f147eeb966803b7cb3d3fbc86514132f6ad2e8b51e4557_amd64 | — | ||
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:64c957565dd799994cab0828a9c1169c128ca20e8b103af6b6ac2f422077e322_amd64 | — | ||
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:8c8aa38871ee6d945a186d0e3a7b129bafd08d53e52278e1eb6d8011491240dd_arm64 | — | ||
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:a473e11982fd3d970a3e28d7e103ee40fd50217cb0de7028edfae345c34bcbc0_s390x | — | ||
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:ccf2448519c0998d9843fa570f128f420326e849c8c69dd3c5b526c3444d9f50_ppc64le | — | ||
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:7bda73fcb94b412a8799bd11915066b07ed341fed2cd0ab81776f4c601926b54_ppc64le | — | ||
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:992588aab0cfe3ec909418e827ca46828d0a07d9e3e1479fed437c9c445d7ff0_amd64 | — | ||
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:a80038bcbb994457fda1443b37dee5fbe66bbb02972b38139a9877e978c73835_s390x | — | ||
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:cf2318bcce1f1a565bcfdb722d89e0ddb2e88a523db237e926def3934add78e5_arm64 | — | ||
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-operator-bundle@sha256:24c95ad401a653c88d072a7753052850cfa6738686ce9aec7ba5f6fcbc92e7fc_amd64 | — | ||
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:189d8de6e11f86cd47891d2268c2a91134a6fe617ecbbc433dda7a7f68519421_s390x | — | ||
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:61007260c34ec5113e4286f679a5377c64fb6ad934aee5de6928f4c06c54e969_amd64 | — | ||
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:779614a189b230b5c78cd28e360d9e7fabb519aef73a5acacb26b3c26716c68d_arm64 | — | ||
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:898bf1c9ee31508ffb2d72deaa97f0b02639e22063788448bbe55f5b98d8db7b_ppc64le | — | ||
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:0a2acfdea8fb6b49a6117d8914e9ae56bc4668ce882131a47923fc0c7ab7c6b6_arm64 | — | ||
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:37415ef53ed46fcc1fd8010da38f13ffc9015f8435306b7dcf16bb3ed117083b_amd64 | — | ||
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:626527f0b4701d00b845c8bca201f81756a0577a555447ea90b8903b0f968e12_s390x | — | ||
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:98ad870b2929bc5db27a7cf0f9f0791f82d6889673ce7d102838616c466af612_ppc64le | — | ||
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:2d1e27a8dc06bc78b251796816e89ff0ad7ee91ccd9077db47d245fb5ae5d291_arm64 | — | ||
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:c472058fc730b6ea6d064cd77dfa583340976209afe109fee9296012f02df66f_amd64 | — | ||
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:d3ca3c7f85c104a6ae087dccd37e328e1cdeb5b93a880b48e1f2c99c015fd101_s390x | — | ||
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:fa3f9534ea19d8828c2342b3557f652196aec37552fa49e83af6dd1b0c356d69_ppc64le | — | ||
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:4570de210e87e6d64af57fe4ecb072e732365e62e7a23c3b1a8c04cf508bc876_s390x | — | ||
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:6d070525b6e7b75f61f2999dac4dbcbc6fda96c882a17978e7bf8edbc008847b_amd64 | — | ||
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:92ee83df52ef773c4bcad66c277f608832de60b2bd00adb41fb877e33040077b_ppc64le | — | ||
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:be7f5c4ca3cbba8944f0c275ccf847b701c6ae7a25052272fb80d8144f61fc9c_arm64 | — |
A flaw was found in golang.org/x/crypto/ssh. Source-address validation can be skipped when an SSH server configuration uses an authentication callback type other than public key, allowing authorization bypass in misconfigured servers. This is a follow-on to incomplete coverage from the CVE-2024-45337 fix.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:7bfbb56d32556a602f9bbe422ea0a583e7e79e0de7503ce362962b3ffc5e5d62_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:aef0c6d237fba5ce37a219b78da4e7c566c6de1d37a9fcd0529c514322f09e77_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:b2361437d1f6d5ee61b23867ea903668f611f76cc76142713785b2faa00fcd63_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:fecc167995f30887629cd176971af5f7b3cb1cc377f8e3a329008e83133e8361_ppc64le | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:09fdae42b81088e67a3f29e32ac980d57652d8ddbe9665b86aab69b37a4327bd_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:0ef830a815d07df60291e9c7b89a03dd40c0ceabfc3071f1fe188575f65a0542_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:59bc241a2a06804393a63785eeb8f0a8165a99263f08e0ffc3e727671c214114_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:af26444b2b45eb9c726b8d0cc92f023c4f4e52c9fb839198ad862d6513e2683f_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:0a189209a84ceddfbbfdba58e43fe94b5ddd211982a58a0929eb9997d3bf585a_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:2d8b7f64fa620bfce0130c52b977942ec9118fafddc9c090994609ab274df00c_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:a18b4c58e2b285058541b77a47d6482a9db6be58756651df3b3c648548a44f8e_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:cebcaaef5272faa6e6f147eeb966803b7cb3d3fbc86514132f6ad2e8b51e4557_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:64c957565dd799994cab0828a9c1169c128ca20e8b103af6b6ac2f422077e322_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:8c8aa38871ee6d945a186d0e3a7b129bafd08d53e52278e1eb6d8011491240dd_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:a473e11982fd3d970a3e28d7e103ee40fd50217cb0de7028edfae345c34bcbc0_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:ccf2448519c0998d9843fa570f128f420326e849c8c69dd3c5b526c3444d9f50_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:7bda73fcb94b412a8799bd11915066b07ed341fed2cd0ab81776f4c601926b54_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:992588aab0cfe3ec909418e827ca46828d0a07d9e3e1479fed437c9c445d7ff0_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:a80038bcbb994457fda1443b37dee5fbe66bbb02972b38139a9877e978c73835_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:cf2318bcce1f1a565bcfdb722d89e0ddb2e88a523db237e926def3934add78e5_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-operator-bundle@sha256:24c95ad401a653c88d072a7753052850cfa6738686ce9aec7ba5f6fcbc92e7fc_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:189d8de6e11f86cd47891d2268c2a91134a6fe617ecbbc433dda7a7f68519421_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:61007260c34ec5113e4286f679a5377c64fb6ad934aee5de6928f4c06c54e969_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:779614a189b230b5c78cd28e360d9e7fabb519aef73a5acacb26b3c26716c68d_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:898bf1c9ee31508ffb2d72deaa97f0b02639e22063788448bbe55f5b98d8db7b_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:0a2acfdea8fb6b49a6117d8914e9ae56bc4668ce882131a47923fc0c7ab7c6b6_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:37415ef53ed46fcc1fd8010da38f13ffc9015f8435306b7dcf16bb3ed117083b_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:626527f0b4701d00b845c8bca201f81756a0577a555447ea90b8903b0f968e12_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:98ad870b2929bc5db27a7cf0f9f0791f82d6889673ce7d102838616c466af612_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:2d1e27a8dc06bc78b251796816e89ff0ad7ee91ccd9077db47d245fb5ae5d291_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:c472058fc730b6ea6d064cd77dfa583340976209afe109fee9296012f02df66f_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:d3ca3c7f85c104a6ae087dccd37e328e1cdeb5b93a880b48e1f2c99c015fd101_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:fa3f9534ea19d8828c2342b3557f652196aec37552fa49e83af6dd1b0c356d69_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:4570de210e87e6d64af57fe4ecb072e732365e62e7a23c3b1a8c04cf508bc876_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:6d070525b6e7b75f61f2999dac4dbcbc6fda96c882a17978e7bf8edbc008847b_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:92ee83df52ef773c4bcad66c277f608832de60b2bd00adb41fb877e33040077b_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:be7f5c4ca3cbba8944f0c275ccf847b701c6ae7a25052272fb80d8144f61fc9c_arm64 | — |
Workaround
|
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Red Hat OpenShift Builds 1.7.4",
"title": "Topic"
},
{
"category": "general",
"text": "Releases of Red Hat OpenShift Builds 1.7.4",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2026:36648",
"url": "https://access.redhat.com/errata/RHSA-2026:36648"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-10840",
"url": "https://access.redhat.com/security/cve/CVE-2026-10840"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-27145",
"url": "https://access.redhat.com/security/cve/CVE-2026-27145"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-33811",
"url": "https://access.redhat.com/security/cve/CVE-2026-33811"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-39821",
"url": "https://access.redhat.com/security/cve/CVE-2026-39821"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-39828",
"url": "https://access.redhat.com/security/cve/CVE-2026-39828"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-39829",
"url": "https://access.redhat.com/security/cve/CVE-2026-39829"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-39830",
"url": "https://access.redhat.com/security/cve/CVE-2026-39830"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-39832",
"url": "https://access.redhat.com/security/cve/CVE-2026-39832"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-39833",
"url": "https://access.redhat.com/security/cve/CVE-2026-39833"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-39835",
"url": "https://access.redhat.com/security/cve/CVE-2026-39835"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-42508",
"url": "https://access.redhat.com/security/cve/CVE-2026-42508"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-46595",
"url": "https://access.redhat.com/security/cve/CVE-2026-46595"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/",
"url": "https://access.redhat.com/security/updates/classification/"
},
{
"category": "external",
"summary": "https://docs.redhat.com/en/documentation/builds_for_red_hat_openshift/1.7",
"url": "https://docs.redhat.com/en/documentation/builds_for_red_hat_openshift/1.7"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2026/rhsa-2026_36648.json"
}
],
"title": "Red Hat Security Advisory: Red Hat OpenShift Builds 1.7.4",
"tracking": {
"current_release_date": "2026-07-10T19:40:46+00:00",
"generator": {
"date": "2026-07-10T19:40:46+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "5.3.2"
}
},
"id": "RHSA-2026:36648",
"initial_release_date": "2026-07-08T09:20:18+00:00",
"revision_history": [
{
"date": "2026-07-08T09:20:18+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2026-07-08T09:20:27+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2026-07-10T19:40:46+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat OpenShift Builds 1.7.4",
"product": {
"name": "Red Hat OpenShift Builds 1.7.4",
"product_id": "Red Hat OpenShift Builds 1.7.4",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:openshift_builds:1.7::el9"
}
}
}
],
"category": "product_family",
"name": "Red Hat OpenShift Builds"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:0ef830a815d07df60291e9c7b89a03dd40c0ceabfc3071f1fe188575f65a0542_amd64",
"product": {
"name": "registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:0ef830a815d07df60291e9c7b89a03dd40c0ceabfc3071f1fe188575f65a0542_amd64",
"product_id": "registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:0ef830a815d07df60291e9c7b89a03dd40c0ceabfc3071f1fe188575f65a0542_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openshift-builds-controller-rhel9@sha256%3A0ef830a815d07df60291e9c7b89a03dd40c0ceabfc3071f1fe188575f65a0542?arch=amd64\u0026repository_url=registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9\u0026tag=1783057515"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:cebcaaef5272faa6e6f147eeb966803b7cb3d3fbc86514132f6ad2e8b51e4557_amd64",
"product": {
"name": "registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:cebcaaef5272faa6e6f147eeb966803b7cb3d3fbc86514132f6ad2e8b51e4557_amd64",
"product_id": "registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:cebcaaef5272faa6e6f147eeb966803b7cb3d3fbc86514132f6ad2e8b51e4557_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openshift-builds-git-cloner-rhel9@sha256%3Acebcaaef5272faa6e6f147eeb966803b7cb3d3fbc86514132f6ad2e8b51e4557?arch=amd64\u0026repository_url=registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9\u0026tag=1783057529"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:64c957565dd799994cab0828a9c1169c128ca20e8b103af6b6ac2f422077e322_amd64",
"product": {
"name": "registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:64c957565dd799994cab0828a9c1169c128ca20e8b103af6b6ac2f422077e322_amd64",
"product_id": "registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:64c957565dd799994cab0828a9c1169c128ca20e8b103af6b6ac2f422077e322_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openshift-builds-image-bundler-rhel9@sha256%3A64c957565dd799994cab0828a9c1169c128ca20e8b103af6b6ac2f422077e322?arch=amd64\u0026repository_url=registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9\u0026tag=1783057884"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:992588aab0cfe3ec909418e827ca46828d0a07d9e3e1479fed437c9c445d7ff0_amd64",
"product": {
"name": "registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:992588aab0cfe3ec909418e827ca46828d0a07d9e3e1479fed437c9c445d7ff0_amd64",
"product_id": "registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:992588aab0cfe3ec909418e827ca46828d0a07d9e3e1479fed437c9c445d7ff0_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openshift-builds-image-processing-rhel9@sha256%3A992588aab0cfe3ec909418e827ca46828d0a07d9e3e1479fed437c9c445d7ff0?arch=amd64\u0026repository_url=registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9\u0026tag=1783058067"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:61007260c34ec5113e4286f679a5377c64fb6ad934aee5de6928f4c06c54e969_amd64",
"product": {
"name": "registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:61007260c34ec5113e4286f679a5377c64fb6ad934aee5de6928f4c06c54e969_amd64",
"product_id": "registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:61007260c34ec5113e4286f679a5377c64fb6ad934aee5de6928f4c06c54e969_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openshift-builds-rhel9-operator@sha256%3A61007260c34ec5113e4286f679a5377c64fb6ad934aee5de6928f4c06c54e969?arch=amd64\u0026repository_url=registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator\u0026tag=1783341609"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-builds/openshift-builds-operator-bundle@sha256:24c95ad401a653c88d072a7753052850cfa6738686ce9aec7ba5f6fcbc92e7fc_amd64",
"product": {
"name": "registry.redhat.io/openshift-builds/openshift-builds-operator-bundle@sha256:24c95ad401a653c88d072a7753052850cfa6738686ce9aec7ba5f6fcbc92e7fc_amd64",
"product_id": "registry.redhat.io/openshift-builds/openshift-builds-operator-bundle@sha256:24c95ad401a653c88d072a7753052850cfa6738686ce9aec7ba5f6fcbc92e7fc_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openshift-builds-operator-bundle@sha256%3A24c95ad401a653c88d072a7753052850cfa6738686ce9aec7ba5f6fcbc92e7fc?arch=amd64\u0026repository_url=registry.redhat.io/openshift-builds/openshift-builds-operator-bundle\u0026tag=1783413402"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:37415ef53ed46fcc1fd8010da38f13ffc9015f8435306b7dcf16bb3ed117083b_amd64",
"product": {
"name": "registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:37415ef53ed46fcc1fd8010da38f13ffc9015f8435306b7dcf16bb3ed117083b_amd64",
"product_id": "registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:37415ef53ed46fcc1fd8010da38f13ffc9015f8435306b7dcf16bb3ed117083b_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openshift-builds-shared-resource-rhel9@sha256%3A37415ef53ed46fcc1fd8010da38f13ffc9015f8435306b7dcf16bb3ed117083b?arch=amd64\u0026repository_url=registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9\u0026tag=1783334059"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:c472058fc730b6ea6d064cd77dfa583340976209afe109fee9296012f02df66f_amd64",
"product": {
"name": "registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:c472058fc730b6ea6d064cd77dfa583340976209afe109fee9296012f02df66f_amd64",
"product_id": "registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:c472058fc730b6ea6d064cd77dfa583340976209afe109fee9296012f02df66f_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openshift-builds-shared-resource-webhook-rhel9@sha256%3Ac472058fc730b6ea6d064cd77dfa583340976209afe109fee9296012f02df66f?arch=amd64\u0026repository_url=registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9\u0026tag=1783333779"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:7bfbb56d32556a602f9bbe422ea0a583e7e79e0de7503ce362962b3ffc5e5d62_amd64",
"product": {
"name": "registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:7bfbb56d32556a602f9bbe422ea0a583e7e79e0de7503ce362962b3ffc5e5d62_amd64",
"product_id": "registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:7bfbb56d32556a602f9bbe422ea0a583e7e79e0de7503ce362962b3ffc5e5d62_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openshift-builds-waiters-rhel9@sha256%3A7bfbb56d32556a602f9bbe422ea0a583e7e79e0de7503ce362962b3ffc5e5d62?arch=amd64\u0026repository_url=registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9\u0026tag=1783057868"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:6d070525b6e7b75f61f2999dac4dbcbc6fda96c882a17978e7bf8edbc008847b_amd64",
"product": {
"name": "registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:6d070525b6e7b75f61f2999dac4dbcbc6fda96c882a17978e7bf8edbc008847b_amd64",
"product_id": "registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:6d070525b6e7b75f61f2999dac4dbcbc6fda96c882a17978e7bf8edbc008847b_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openshift-builds-webhook-rhel9@sha256%3A6d070525b6e7b75f61f2999dac4dbcbc6fda96c882a17978e7bf8edbc008847b?arch=amd64\u0026repository_url=registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9\u0026tag=1783058284"
}
}
}
],
"category": "architecture",
"name": "amd64"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:09fdae42b81088e67a3f29e32ac980d57652d8ddbe9665b86aab69b37a4327bd_arm64",
"product": {
"name": "registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:09fdae42b81088e67a3f29e32ac980d57652d8ddbe9665b86aab69b37a4327bd_arm64",
"product_id": "registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:09fdae42b81088e67a3f29e32ac980d57652d8ddbe9665b86aab69b37a4327bd_arm64",
"product_identification_helper": {
"purl": "pkg:oci/openshift-builds-controller-rhel9@sha256%3A09fdae42b81088e67a3f29e32ac980d57652d8ddbe9665b86aab69b37a4327bd?arch=arm64\u0026repository_url=registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9\u0026tag=1783057515"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:a18b4c58e2b285058541b77a47d6482a9db6be58756651df3b3c648548a44f8e_arm64",
"product": {
"name": "registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:a18b4c58e2b285058541b77a47d6482a9db6be58756651df3b3c648548a44f8e_arm64",
"product_id": "registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:a18b4c58e2b285058541b77a47d6482a9db6be58756651df3b3c648548a44f8e_arm64",
"product_identification_helper": {
"purl": "pkg:oci/openshift-builds-git-cloner-rhel9@sha256%3Aa18b4c58e2b285058541b77a47d6482a9db6be58756651df3b3c648548a44f8e?arch=arm64\u0026repository_url=registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9\u0026tag=1783057529"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:8c8aa38871ee6d945a186d0e3a7b129bafd08d53e52278e1eb6d8011491240dd_arm64",
"product": {
"name": "registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:8c8aa38871ee6d945a186d0e3a7b129bafd08d53e52278e1eb6d8011491240dd_arm64",
"product_id": "registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:8c8aa38871ee6d945a186d0e3a7b129bafd08d53e52278e1eb6d8011491240dd_arm64",
"product_identification_helper": {
"purl": "pkg:oci/openshift-builds-image-bundler-rhel9@sha256%3A8c8aa38871ee6d945a186d0e3a7b129bafd08d53e52278e1eb6d8011491240dd?arch=arm64\u0026repository_url=registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9\u0026tag=1783057884"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:cf2318bcce1f1a565bcfdb722d89e0ddb2e88a523db237e926def3934add78e5_arm64",
"product": {
"name": "registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:cf2318bcce1f1a565bcfdb722d89e0ddb2e88a523db237e926def3934add78e5_arm64",
"product_id": "registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:cf2318bcce1f1a565bcfdb722d89e0ddb2e88a523db237e926def3934add78e5_arm64",
"product_identification_helper": {
"purl": "pkg:oci/openshift-builds-image-processing-rhel9@sha256%3Acf2318bcce1f1a565bcfdb722d89e0ddb2e88a523db237e926def3934add78e5?arch=arm64\u0026repository_url=registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9\u0026tag=1783058067"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:779614a189b230b5c78cd28e360d9e7fabb519aef73a5acacb26b3c26716c68d_arm64",
"product": {
"name": "registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:779614a189b230b5c78cd28e360d9e7fabb519aef73a5acacb26b3c26716c68d_arm64",
"product_id": "registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:779614a189b230b5c78cd28e360d9e7fabb519aef73a5acacb26b3c26716c68d_arm64",
"product_identification_helper": {
"purl": "pkg:oci/openshift-builds-rhel9-operator@sha256%3A779614a189b230b5c78cd28e360d9e7fabb519aef73a5acacb26b3c26716c68d?arch=arm64\u0026repository_url=registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator\u0026tag=1783341609"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:0a2acfdea8fb6b49a6117d8914e9ae56bc4668ce882131a47923fc0c7ab7c6b6_arm64",
"product": {
"name": "registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:0a2acfdea8fb6b49a6117d8914e9ae56bc4668ce882131a47923fc0c7ab7c6b6_arm64",
"product_id": "registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:0a2acfdea8fb6b49a6117d8914e9ae56bc4668ce882131a47923fc0c7ab7c6b6_arm64",
"product_identification_helper": {
"purl": "pkg:oci/openshift-builds-shared-resource-rhel9@sha256%3A0a2acfdea8fb6b49a6117d8914e9ae56bc4668ce882131a47923fc0c7ab7c6b6?arch=arm64\u0026repository_url=registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9\u0026tag=1783334059"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:2d1e27a8dc06bc78b251796816e89ff0ad7ee91ccd9077db47d245fb5ae5d291_arm64",
"product": {
"name": "registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:2d1e27a8dc06bc78b251796816e89ff0ad7ee91ccd9077db47d245fb5ae5d291_arm64",
"product_id": "registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:2d1e27a8dc06bc78b251796816e89ff0ad7ee91ccd9077db47d245fb5ae5d291_arm64",
"product_identification_helper": {
"purl": "pkg:oci/openshift-builds-shared-resource-webhook-rhel9@sha256%3A2d1e27a8dc06bc78b251796816e89ff0ad7ee91ccd9077db47d245fb5ae5d291?arch=arm64\u0026repository_url=registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9\u0026tag=1783333779"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:b2361437d1f6d5ee61b23867ea903668f611f76cc76142713785b2faa00fcd63_arm64",
"product": {
"name": "registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:b2361437d1f6d5ee61b23867ea903668f611f76cc76142713785b2faa00fcd63_arm64",
"product_id": "registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:b2361437d1f6d5ee61b23867ea903668f611f76cc76142713785b2faa00fcd63_arm64",
"product_identification_helper": {
"purl": "pkg:oci/openshift-builds-waiters-rhel9@sha256%3Ab2361437d1f6d5ee61b23867ea903668f611f76cc76142713785b2faa00fcd63?arch=arm64\u0026repository_url=registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9\u0026tag=1783057868"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:be7f5c4ca3cbba8944f0c275ccf847b701c6ae7a25052272fb80d8144f61fc9c_arm64",
"product": {
"name": "registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:be7f5c4ca3cbba8944f0c275ccf847b701c6ae7a25052272fb80d8144f61fc9c_arm64",
"product_id": "registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:be7f5c4ca3cbba8944f0c275ccf847b701c6ae7a25052272fb80d8144f61fc9c_arm64",
"product_identification_helper": {
"purl": "pkg:oci/openshift-builds-webhook-rhel9@sha256%3Abe7f5c4ca3cbba8944f0c275ccf847b701c6ae7a25052272fb80d8144f61fc9c?arch=arm64\u0026repository_url=registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9\u0026tag=1783058284"
}
}
}
],
"category": "architecture",
"name": "arm64"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:59bc241a2a06804393a63785eeb8f0a8165a99263f08e0ffc3e727671c214114_ppc64le",
"product": {
"name": "registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:59bc241a2a06804393a63785eeb8f0a8165a99263f08e0ffc3e727671c214114_ppc64le",
"product_id": "registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:59bc241a2a06804393a63785eeb8f0a8165a99263f08e0ffc3e727671c214114_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/openshift-builds-controller-rhel9@sha256%3A59bc241a2a06804393a63785eeb8f0a8165a99263f08e0ffc3e727671c214114?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9\u0026tag=1783057515"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:2d8b7f64fa620bfce0130c52b977942ec9118fafddc9c090994609ab274df00c_ppc64le",
"product": {
"name": "registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:2d8b7f64fa620bfce0130c52b977942ec9118fafddc9c090994609ab274df00c_ppc64le",
"product_id": "registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:2d8b7f64fa620bfce0130c52b977942ec9118fafddc9c090994609ab274df00c_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/openshift-builds-git-cloner-rhel9@sha256%3A2d8b7f64fa620bfce0130c52b977942ec9118fafddc9c090994609ab274df00c?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9\u0026tag=1783057529"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:ccf2448519c0998d9843fa570f128f420326e849c8c69dd3c5b526c3444d9f50_ppc64le",
"product": {
"name": "registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:ccf2448519c0998d9843fa570f128f420326e849c8c69dd3c5b526c3444d9f50_ppc64le",
"product_id": "registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:ccf2448519c0998d9843fa570f128f420326e849c8c69dd3c5b526c3444d9f50_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/openshift-builds-image-bundler-rhel9@sha256%3Accf2448519c0998d9843fa570f128f420326e849c8c69dd3c5b526c3444d9f50?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9\u0026tag=1783057884"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:7bda73fcb94b412a8799bd11915066b07ed341fed2cd0ab81776f4c601926b54_ppc64le",
"product": {
"name": "registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:7bda73fcb94b412a8799bd11915066b07ed341fed2cd0ab81776f4c601926b54_ppc64le",
"product_id": "registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:7bda73fcb94b412a8799bd11915066b07ed341fed2cd0ab81776f4c601926b54_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/openshift-builds-image-processing-rhel9@sha256%3A7bda73fcb94b412a8799bd11915066b07ed341fed2cd0ab81776f4c601926b54?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9\u0026tag=1783058067"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:898bf1c9ee31508ffb2d72deaa97f0b02639e22063788448bbe55f5b98d8db7b_ppc64le",
"product": {
"name": "registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:898bf1c9ee31508ffb2d72deaa97f0b02639e22063788448bbe55f5b98d8db7b_ppc64le",
"product_id": "registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:898bf1c9ee31508ffb2d72deaa97f0b02639e22063788448bbe55f5b98d8db7b_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/openshift-builds-rhel9-operator@sha256%3A898bf1c9ee31508ffb2d72deaa97f0b02639e22063788448bbe55f5b98d8db7b?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator\u0026tag=1783341609"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:98ad870b2929bc5db27a7cf0f9f0791f82d6889673ce7d102838616c466af612_ppc64le",
"product": {
"name": "registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:98ad870b2929bc5db27a7cf0f9f0791f82d6889673ce7d102838616c466af612_ppc64le",
"product_id": "registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:98ad870b2929bc5db27a7cf0f9f0791f82d6889673ce7d102838616c466af612_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/openshift-builds-shared-resource-rhel9@sha256%3A98ad870b2929bc5db27a7cf0f9f0791f82d6889673ce7d102838616c466af612?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9\u0026tag=1783334059"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:fa3f9534ea19d8828c2342b3557f652196aec37552fa49e83af6dd1b0c356d69_ppc64le",
"product": {
"name": "registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:fa3f9534ea19d8828c2342b3557f652196aec37552fa49e83af6dd1b0c356d69_ppc64le",
"product_id": "registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:fa3f9534ea19d8828c2342b3557f652196aec37552fa49e83af6dd1b0c356d69_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/openshift-builds-shared-resource-webhook-rhel9@sha256%3Afa3f9534ea19d8828c2342b3557f652196aec37552fa49e83af6dd1b0c356d69?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9\u0026tag=1783333779"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:fecc167995f30887629cd176971af5f7b3cb1cc377f8e3a329008e83133e8361_ppc64le",
"product": {
"name": "registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:fecc167995f30887629cd176971af5f7b3cb1cc377f8e3a329008e83133e8361_ppc64le",
"product_id": "registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:fecc167995f30887629cd176971af5f7b3cb1cc377f8e3a329008e83133e8361_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/openshift-builds-waiters-rhel9@sha256%3Afecc167995f30887629cd176971af5f7b3cb1cc377f8e3a329008e83133e8361?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9\u0026tag=1783057868"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:92ee83df52ef773c4bcad66c277f608832de60b2bd00adb41fb877e33040077b_ppc64le",
"product": {
"name": "registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:92ee83df52ef773c4bcad66c277f608832de60b2bd00adb41fb877e33040077b_ppc64le",
"product_id": "registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:92ee83df52ef773c4bcad66c277f608832de60b2bd00adb41fb877e33040077b_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/openshift-builds-webhook-rhel9@sha256%3A92ee83df52ef773c4bcad66c277f608832de60b2bd00adb41fb877e33040077b?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9\u0026tag=1783058284"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:af26444b2b45eb9c726b8d0cc92f023c4f4e52c9fb839198ad862d6513e2683f_s390x",
"product": {
"name": "registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:af26444b2b45eb9c726b8d0cc92f023c4f4e52c9fb839198ad862d6513e2683f_s390x",
"product_id": "registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:af26444b2b45eb9c726b8d0cc92f023c4f4e52c9fb839198ad862d6513e2683f_s390x",
"product_identification_helper": {
"purl": "pkg:oci/openshift-builds-controller-rhel9@sha256%3Aaf26444b2b45eb9c726b8d0cc92f023c4f4e52c9fb839198ad862d6513e2683f?arch=s390x\u0026repository_url=registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9\u0026tag=1783057515"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:0a189209a84ceddfbbfdba58e43fe94b5ddd211982a58a0929eb9997d3bf585a_s390x",
"product": {
"name": "registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:0a189209a84ceddfbbfdba58e43fe94b5ddd211982a58a0929eb9997d3bf585a_s390x",
"product_id": "registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:0a189209a84ceddfbbfdba58e43fe94b5ddd211982a58a0929eb9997d3bf585a_s390x",
"product_identification_helper": {
"purl": "pkg:oci/openshift-builds-git-cloner-rhel9@sha256%3A0a189209a84ceddfbbfdba58e43fe94b5ddd211982a58a0929eb9997d3bf585a?arch=s390x\u0026repository_url=registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9\u0026tag=1783057529"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:a473e11982fd3d970a3e28d7e103ee40fd50217cb0de7028edfae345c34bcbc0_s390x",
"product": {
"name": "registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:a473e11982fd3d970a3e28d7e103ee40fd50217cb0de7028edfae345c34bcbc0_s390x",
"product_id": "registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:a473e11982fd3d970a3e28d7e103ee40fd50217cb0de7028edfae345c34bcbc0_s390x",
"product_identification_helper": {
"purl": "pkg:oci/openshift-builds-image-bundler-rhel9@sha256%3Aa473e11982fd3d970a3e28d7e103ee40fd50217cb0de7028edfae345c34bcbc0?arch=s390x\u0026repository_url=registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9\u0026tag=1783057884"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:a80038bcbb994457fda1443b37dee5fbe66bbb02972b38139a9877e978c73835_s390x",
"product": {
"name": "registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:a80038bcbb994457fda1443b37dee5fbe66bbb02972b38139a9877e978c73835_s390x",
"product_id": "registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:a80038bcbb994457fda1443b37dee5fbe66bbb02972b38139a9877e978c73835_s390x",
"product_identification_helper": {
"purl": "pkg:oci/openshift-builds-image-processing-rhel9@sha256%3Aa80038bcbb994457fda1443b37dee5fbe66bbb02972b38139a9877e978c73835?arch=s390x\u0026repository_url=registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9\u0026tag=1783058067"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:189d8de6e11f86cd47891d2268c2a91134a6fe617ecbbc433dda7a7f68519421_s390x",
"product": {
"name": "registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:189d8de6e11f86cd47891d2268c2a91134a6fe617ecbbc433dda7a7f68519421_s390x",
"product_id": "registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:189d8de6e11f86cd47891d2268c2a91134a6fe617ecbbc433dda7a7f68519421_s390x",
"product_identification_helper": {
"purl": "pkg:oci/openshift-builds-rhel9-operator@sha256%3A189d8de6e11f86cd47891d2268c2a91134a6fe617ecbbc433dda7a7f68519421?arch=s390x\u0026repository_url=registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator\u0026tag=1783341609"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:626527f0b4701d00b845c8bca201f81756a0577a555447ea90b8903b0f968e12_s390x",
"product": {
"name": "registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:626527f0b4701d00b845c8bca201f81756a0577a555447ea90b8903b0f968e12_s390x",
"product_id": "registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:626527f0b4701d00b845c8bca201f81756a0577a555447ea90b8903b0f968e12_s390x",
"product_identification_helper": {
"purl": "pkg:oci/openshift-builds-shared-resource-rhel9@sha256%3A626527f0b4701d00b845c8bca201f81756a0577a555447ea90b8903b0f968e12?arch=s390x\u0026repository_url=registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9\u0026tag=1783334059"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:d3ca3c7f85c104a6ae087dccd37e328e1cdeb5b93a880b48e1f2c99c015fd101_s390x",
"product": {
"name": "registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:d3ca3c7f85c104a6ae087dccd37e328e1cdeb5b93a880b48e1f2c99c015fd101_s390x",
"product_id": "registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:d3ca3c7f85c104a6ae087dccd37e328e1cdeb5b93a880b48e1f2c99c015fd101_s390x",
"product_identification_helper": {
"purl": "pkg:oci/openshift-builds-shared-resource-webhook-rhel9@sha256%3Ad3ca3c7f85c104a6ae087dccd37e328e1cdeb5b93a880b48e1f2c99c015fd101?arch=s390x\u0026repository_url=registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9\u0026tag=1783333779"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:aef0c6d237fba5ce37a219b78da4e7c566c6de1d37a9fcd0529c514322f09e77_s390x",
"product": {
"name": "registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:aef0c6d237fba5ce37a219b78da4e7c566c6de1d37a9fcd0529c514322f09e77_s390x",
"product_id": "registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:aef0c6d237fba5ce37a219b78da4e7c566c6de1d37a9fcd0529c514322f09e77_s390x",
"product_identification_helper": {
"purl": "pkg:oci/openshift-builds-waiters-rhel9@sha256%3Aaef0c6d237fba5ce37a219b78da4e7c566c6de1d37a9fcd0529c514322f09e77?arch=s390x\u0026repository_url=registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9\u0026tag=1783057868"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:4570de210e87e6d64af57fe4ecb072e732365e62e7a23c3b1a8c04cf508bc876_s390x",
"product": {
"name": "registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:4570de210e87e6d64af57fe4ecb072e732365e62e7a23c3b1a8c04cf508bc876_s390x",
"product_id": "registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:4570de210e87e6d64af57fe4ecb072e732365e62e7a23c3b1a8c04cf508bc876_s390x",
"product_identification_helper": {
"purl": "pkg:oci/openshift-builds-webhook-rhel9@sha256%3A4570de210e87e6d64af57fe4ecb072e732365e62e7a23c3b1a8c04cf508bc876?arch=s390x\u0026repository_url=registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9\u0026tag=1783058284"
}
}
}
],
"category": "architecture",
"name": "s390x"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:09fdae42b81088e67a3f29e32ac980d57652d8ddbe9665b86aab69b37a4327bd_arm64 as a component of Red Hat OpenShift Builds 1.7.4",
"product_id": "Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:09fdae42b81088e67a3f29e32ac980d57652d8ddbe9665b86aab69b37a4327bd_arm64"
},
"product_reference": "registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:09fdae42b81088e67a3f29e32ac980d57652d8ddbe9665b86aab69b37a4327bd_arm64",
"relates_to_product_reference": "Red Hat OpenShift Builds 1.7.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:0ef830a815d07df60291e9c7b89a03dd40c0ceabfc3071f1fe188575f65a0542_amd64 as a component of Red Hat OpenShift Builds 1.7.4",
"product_id": "Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:0ef830a815d07df60291e9c7b89a03dd40c0ceabfc3071f1fe188575f65a0542_amd64"
},
"product_reference": "registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:0ef830a815d07df60291e9c7b89a03dd40c0ceabfc3071f1fe188575f65a0542_amd64",
"relates_to_product_reference": "Red Hat OpenShift Builds 1.7.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:59bc241a2a06804393a63785eeb8f0a8165a99263f08e0ffc3e727671c214114_ppc64le as a component of Red Hat OpenShift Builds 1.7.4",
"product_id": "Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:59bc241a2a06804393a63785eeb8f0a8165a99263f08e0ffc3e727671c214114_ppc64le"
},
"product_reference": "registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:59bc241a2a06804393a63785eeb8f0a8165a99263f08e0ffc3e727671c214114_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift Builds 1.7.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:af26444b2b45eb9c726b8d0cc92f023c4f4e52c9fb839198ad862d6513e2683f_s390x as a component of Red Hat OpenShift Builds 1.7.4",
"product_id": "Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:af26444b2b45eb9c726b8d0cc92f023c4f4e52c9fb839198ad862d6513e2683f_s390x"
},
"product_reference": "registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:af26444b2b45eb9c726b8d0cc92f023c4f4e52c9fb839198ad862d6513e2683f_s390x",
"relates_to_product_reference": "Red Hat OpenShift Builds 1.7.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:0a189209a84ceddfbbfdba58e43fe94b5ddd211982a58a0929eb9997d3bf585a_s390x as a component of Red Hat OpenShift Builds 1.7.4",
"product_id": "Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:0a189209a84ceddfbbfdba58e43fe94b5ddd211982a58a0929eb9997d3bf585a_s390x"
},
"product_reference": "registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:0a189209a84ceddfbbfdba58e43fe94b5ddd211982a58a0929eb9997d3bf585a_s390x",
"relates_to_product_reference": "Red Hat OpenShift Builds 1.7.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:2d8b7f64fa620bfce0130c52b977942ec9118fafddc9c090994609ab274df00c_ppc64le as a component of Red Hat OpenShift Builds 1.7.4",
"product_id": "Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:2d8b7f64fa620bfce0130c52b977942ec9118fafddc9c090994609ab274df00c_ppc64le"
},
"product_reference": "registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:2d8b7f64fa620bfce0130c52b977942ec9118fafddc9c090994609ab274df00c_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift Builds 1.7.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:a18b4c58e2b285058541b77a47d6482a9db6be58756651df3b3c648548a44f8e_arm64 as a component of Red Hat OpenShift Builds 1.7.4",
"product_id": "Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:a18b4c58e2b285058541b77a47d6482a9db6be58756651df3b3c648548a44f8e_arm64"
},
"product_reference": "registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:a18b4c58e2b285058541b77a47d6482a9db6be58756651df3b3c648548a44f8e_arm64",
"relates_to_product_reference": "Red Hat OpenShift Builds 1.7.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:cebcaaef5272faa6e6f147eeb966803b7cb3d3fbc86514132f6ad2e8b51e4557_amd64 as a component of Red Hat OpenShift Builds 1.7.4",
"product_id": "Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:cebcaaef5272faa6e6f147eeb966803b7cb3d3fbc86514132f6ad2e8b51e4557_amd64"
},
"product_reference": "registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:cebcaaef5272faa6e6f147eeb966803b7cb3d3fbc86514132f6ad2e8b51e4557_amd64",
"relates_to_product_reference": "Red Hat OpenShift Builds 1.7.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:64c957565dd799994cab0828a9c1169c128ca20e8b103af6b6ac2f422077e322_amd64 as a component of Red Hat OpenShift Builds 1.7.4",
"product_id": "Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:64c957565dd799994cab0828a9c1169c128ca20e8b103af6b6ac2f422077e322_amd64"
},
"product_reference": "registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:64c957565dd799994cab0828a9c1169c128ca20e8b103af6b6ac2f422077e322_amd64",
"relates_to_product_reference": "Red Hat OpenShift Builds 1.7.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:8c8aa38871ee6d945a186d0e3a7b129bafd08d53e52278e1eb6d8011491240dd_arm64 as a component of Red Hat OpenShift Builds 1.7.4",
"product_id": "Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:8c8aa38871ee6d945a186d0e3a7b129bafd08d53e52278e1eb6d8011491240dd_arm64"
},
"product_reference": "registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:8c8aa38871ee6d945a186d0e3a7b129bafd08d53e52278e1eb6d8011491240dd_arm64",
"relates_to_product_reference": "Red Hat OpenShift Builds 1.7.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:a473e11982fd3d970a3e28d7e103ee40fd50217cb0de7028edfae345c34bcbc0_s390x as a component of Red Hat OpenShift Builds 1.7.4",
"product_id": "Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:a473e11982fd3d970a3e28d7e103ee40fd50217cb0de7028edfae345c34bcbc0_s390x"
},
"product_reference": "registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:a473e11982fd3d970a3e28d7e103ee40fd50217cb0de7028edfae345c34bcbc0_s390x",
"relates_to_product_reference": "Red Hat OpenShift Builds 1.7.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:ccf2448519c0998d9843fa570f128f420326e849c8c69dd3c5b526c3444d9f50_ppc64le as a component of Red Hat OpenShift Builds 1.7.4",
"product_id": "Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:ccf2448519c0998d9843fa570f128f420326e849c8c69dd3c5b526c3444d9f50_ppc64le"
},
"product_reference": "registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:ccf2448519c0998d9843fa570f128f420326e849c8c69dd3c5b526c3444d9f50_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift Builds 1.7.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:7bda73fcb94b412a8799bd11915066b07ed341fed2cd0ab81776f4c601926b54_ppc64le as a component of Red Hat OpenShift Builds 1.7.4",
"product_id": "Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:7bda73fcb94b412a8799bd11915066b07ed341fed2cd0ab81776f4c601926b54_ppc64le"
},
"product_reference": "registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:7bda73fcb94b412a8799bd11915066b07ed341fed2cd0ab81776f4c601926b54_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift Builds 1.7.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:992588aab0cfe3ec909418e827ca46828d0a07d9e3e1479fed437c9c445d7ff0_amd64 as a component of Red Hat OpenShift Builds 1.7.4",
"product_id": "Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:992588aab0cfe3ec909418e827ca46828d0a07d9e3e1479fed437c9c445d7ff0_amd64"
},
"product_reference": "registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:992588aab0cfe3ec909418e827ca46828d0a07d9e3e1479fed437c9c445d7ff0_amd64",
"relates_to_product_reference": "Red Hat OpenShift Builds 1.7.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:a80038bcbb994457fda1443b37dee5fbe66bbb02972b38139a9877e978c73835_s390x as a component of Red Hat OpenShift Builds 1.7.4",
"product_id": "Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:a80038bcbb994457fda1443b37dee5fbe66bbb02972b38139a9877e978c73835_s390x"
},
"product_reference": "registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:a80038bcbb994457fda1443b37dee5fbe66bbb02972b38139a9877e978c73835_s390x",
"relates_to_product_reference": "Red Hat OpenShift Builds 1.7.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:cf2318bcce1f1a565bcfdb722d89e0ddb2e88a523db237e926def3934add78e5_arm64 as a component of Red Hat OpenShift Builds 1.7.4",
"product_id": "Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:cf2318bcce1f1a565bcfdb722d89e0ddb2e88a523db237e926def3934add78e5_arm64"
},
"product_reference": "registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:cf2318bcce1f1a565bcfdb722d89e0ddb2e88a523db237e926def3934add78e5_arm64",
"relates_to_product_reference": "Red Hat OpenShift Builds 1.7.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-builds/openshift-builds-operator-bundle@sha256:24c95ad401a653c88d072a7753052850cfa6738686ce9aec7ba5f6fcbc92e7fc_amd64 as a component of Red Hat OpenShift Builds 1.7.4",
"product_id": "Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-operator-bundle@sha256:24c95ad401a653c88d072a7753052850cfa6738686ce9aec7ba5f6fcbc92e7fc_amd64"
},
"product_reference": "registry.redhat.io/openshift-builds/openshift-builds-operator-bundle@sha256:24c95ad401a653c88d072a7753052850cfa6738686ce9aec7ba5f6fcbc92e7fc_amd64",
"relates_to_product_reference": "Red Hat OpenShift Builds 1.7.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:189d8de6e11f86cd47891d2268c2a91134a6fe617ecbbc433dda7a7f68519421_s390x as a component of Red Hat OpenShift Builds 1.7.4",
"product_id": "Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:189d8de6e11f86cd47891d2268c2a91134a6fe617ecbbc433dda7a7f68519421_s390x"
},
"product_reference": "registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:189d8de6e11f86cd47891d2268c2a91134a6fe617ecbbc433dda7a7f68519421_s390x",
"relates_to_product_reference": "Red Hat OpenShift Builds 1.7.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:61007260c34ec5113e4286f679a5377c64fb6ad934aee5de6928f4c06c54e969_amd64 as a component of Red Hat OpenShift Builds 1.7.4",
"product_id": "Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:61007260c34ec5113e4286f679a5377c64fb6ad934aee5de6928f4c06c54e969_amd64"
},
"product_reference": "registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:61007260c34ec5113e4286f679a5377c64fb6ad934aee5de6928f4c06c54e969_amd64",
"relates_to_product_reference": "Red Hat OpenShift Builds 1.7.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:779614a189b230b5c78cd28e360d9e7fabb519aef73a5acacb26b3c26716c68d_arm64 as a component of Red Hat OpenShift Builds 1.7.4",
"product_id": "Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:779614a189b230b5c78cd28e360d9e7fabb519aef73a5acacb26b3c26716c68d_arm64"
},
"product_reference": "registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:779614a189b230b5c78cd28e360d9e7fabb519aef73a5acacb26b3c26716c68d_arm64",
"relates_to_product_reference": "Red Hat OpenShift Builds 1.7.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:898bf1c9ee31508ffb2d72deaa97f0b02639e22063788448bbe55f5b98d8db7b_ppc64le as a component of Red Hat OpenShift Builds 1.7.4",
"product_id": "Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:898bf1c9ee31508ffb2d72deaa97f0b02639e22063788448bbe55f5b98d8db7b_ppc64le"
},
"product_reference": "registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:898bf1c9ee31508ffb2d72deaa97f0b02639e22063788448bbe55f5b98d8db7b_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift Builds 1.7.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:0a2acfdea8fb6b49a6117d8914e9ae56bc4668ce882131a47923fc0c7ab7c6b6_arm64 as a component of Red Hat OpenShift Builds 1.7.4",
"product_id": "Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:0a2acfdea8fb6b49a6117d8914e9ae56bc4668ce882131a47923fc0c7ab7c6b6_arm64"
},
"product_reference": "registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:0a2acfdea8fb6b49a6117d8914e9ae56bc4668ce882131a47923fc0c7ab7c6b6_arm64",
"relates_to_product_reference": "Red Hat OpenShift Builds 1.7.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:37415ef53ed46fcc1fd8010da38f13ffc9015f8435306b7dcf16bb3ed117083b_amd64 as a component of Red Hat OpenShift Builds 1.7.4",
"product_id": "Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:37415ef53ed46fcc1fd8010da38f13ffc9015f8435306b7dcf16bb3ed117083b_amd64"
},
"product_reference": "registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:37415ef53ed46fcc1fd8010da38f13ffc9015f8435306b7dcf16bb3ed117083b_amd64",
"relates_to_product_reference": "Red Hat OpenShift Builds 1.7.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:626527f0b4701d00b845c8bca201f81756a0577a555447ea90b8903b0f968e12_s390x as a component of Red Hat OpenShift Builds 1.7.4",
"product_id": "Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:626527f0b4701d00b845c8bca201f81756a0577a555447ea90b8903b0f968e12_s390x"
},
"product_reference": "registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:626527f0b4701d00b845c8bca201f81756a0577a555447ea90b8903b0f968e12_s390x",
"relates_to_product_reference": "Red Hat OpenShift Builds 1.7.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:98ad870b2929bc5db27a7cf0f9f0791f82d6889673ce7d102838616c466af612_ppc64le as a component of Red Hat OpenShift Builds 1.7.4",
"product_id": "Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:98ad870b2929bc5db27a7cf0f9f0791f82d6889673ce7d102838616c466af612_ppc64le"
},
"product_reference": "registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:98ad870b2929bc5db27a7cf0f9f0791f82d6889673ce7d102838616c466af612_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift Builds 1.7.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:2d1e27a8dc06bc78b251796816e89ff0ad7ee91ccd9077db47d245fb5ae5d291_arm64 as a component of Red Hat OpenShift Builds 1.7.4",
"product_id": "Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:2d1e27a8dc06bc78b251796816e89ff0ad7ee91ccd9077db47d245fb5ae5d291_arm64"
},
"product_reference": "registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:2d1e27a8dc06bc78b251796816e89ff0ad7ee91ccd9077db47d245fb5ae5d291_arm64",
"relates_to_product_reference": "Red Hat OpenShift Builds 1.7.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:c472058fc730b6ea6d064cd77dfa583340976209afe109fee9296012f02df66f_amd64 as a component of Red Hat OpenShift Builds 1.7.4",
"product_id": "Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:c472058fc730b6ea6d064cd77dfa583340976209afe109fee9296012f02df66f_amd64"
},
"product_reference": "registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:c472058fc730b6ea6d064cd77dfa583340976209afe109fee9296012f02df66f_amd64",
"relates_to_product_reference": "Red Hat OpenShift Builds 1.7.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:d3ca3c7f85c104a6ae087dccd37e328e1cdeb5b93a880b48e1f2c99c015fd101_s390x as a component of Red Hat OpenShift Builds 1.7.4",
"product_id": "Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:d3ca3c7f85c104a6ae087dccd37e328e1cdeb5b93a880b48e1f2c99c015fd101_s390x"
},
"product_reference": "registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:d3ca3c7f85c104a6ae087dccd37e328e1cdeb5b93a880b48e1f2c99c015fd101_s390x",
"relates_to_product_reference": "Red Hat OpenShift Builds 1.7.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:fa3f9534ea19d8828c2342b3557f652196aec37552fa49e83af6dd1b0c356d69_ppc64le as a component of Red Hat OpenShift Builds 1.7.4",
"product_id": "Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:fa3f9534ea19d8828c2342b3557f652196aec37552fa49e83af6dd1b0c356d69_ppc64le"
},
"product_reference": "registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:fa3f9534ea19d8828c2342b3557f652196aec37552fa49e83af6dd1b0c356d69_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift Builds 1.7.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:7bfbb56d32556a602f9bbe422ea0a583e7e79e0de7503ce362962b3ffc5e5d62_amd64 as a component of Red Hat OpenShift Builds 1.7.4",
"product_id": "Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:7bfbb56d32556a602f9bbe422ea0a583e7e79e0de7503ce362962b3ffc5e5d62_amd64"
},
"product_reference": "registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:7bfbb56d32556a602f9bbe422ea0a583e7e79e0de7503ce362962b3ffc5e5d62_amd64",
"relates_to_product_reference": "Red Hat OpenShift Builds 1.7.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:aef0c6d237fba5ce37a219b78da4e7c566c6de1d37a9fcd0529c514322f09e77_s390x as a component of Red Hat OpenShift Builds 1.7.4",
"product_id": "Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:aef0c6d237fba5ce37a219b78da4e7c566c6de1d37a9fcd0529c514322f09e77_s390x"
},
"product_reference": "registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:aef0c6d237fba5ce37a219b78da4e7c566c6de1d37a9fcd0529c514322f09e77_s390x",
"relates_to_product_reference": "Red Hat OpenShift Builds 1.7.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:b2361437d1f6d5ee61b23867ea903668f611f76cc76142713785b2faa00fcd63_arm64 as a component of Red Hat OpenShift Builds 1.7.4",
"product_id": "Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:b2361437d1f6d5ee61b23867ea903668f611f76cc76142713785b2faa00fcd63_arm64"
},
"product_reference": "registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:b2361437d1f6d5ee61b23867ea903668f611f76cc76142713785b2faa00fcd63_arm64",
"relates_to_product_reference": "Red Hat OpenShift Builds 1.7.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:fecc167995f30887629cd176971af5f7b3cb1cc377f8e3a329008e83133e8361_ppc64le as a component of Red Hat OpenShift Builds 1.7.4",
"product_id": "Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:fecc167995f30887629cd176971af5f7b3cb1cc377f8e3a329008e83133e8361_ppc64le"
},
"product_reference": "registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:fecc167995f30887629cd176971af5f7b3cb1cc377f8e3a329008e83133e8361_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift Builds 1.7.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:4570de210e87e6d64af57fe4ecb072e732365e62e7a23c3b1a8c04cf508bc876_s390x as a component of Red Hat OpenShift Builds 1.7.4",
"product_id": "Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:4570de210e87e6d64af57fe4ecb072e732365e62e7a23c3b1a8c04cf508bc876_s390x"
},
"product_reference": "registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:4570de210e87e6d64af57fe4ecb072e732365e62e7a23c3b1a8c04cf508bc876_s390x",
"relates_to_product_reference": "Red Hat OpenShift Builds 1.7.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:6d070525b6e7b75f61f2999dac4dbcbc6fda96c882a17978e7bf8edbc008847b_amd64 as a component of Red Hat OpenShift Builds 1.7.4",
"product_id": "Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:6d070525b6e7b75f61f2999dac4dbcbc6fda96c882a17978e7bf8edbc008847b_amd64"
},
"product_reference": "registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:6d070525b6e7b75f61f2999dac4dbcbc6fda96c882a17978e7bf8edbc008847b_amd64",
"relates_to_product_reference": "Red Hat OpenShift Builds 1.7.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:92ee83df52ef773c4bcad66c277f608832de60b2bd00adb41fb877e33040077b_ppc64le as a component of Red Hat OpenShift Builds 1.7.4",
"product_id": "Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:92ee83df52ef773c4bcad66c277f608832de60b2bd00adb41fb877e33040077b_ppc64le"
},
"product_reference": "registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:92ee83df52ef773c4bcad66c277f608832de60b2bd00adb41fb877e33040077b_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift Builds 1.7.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:be7f5c4ca3cbba8944f0c275ccf847b701c6ae7a25052272fb80d8144f61fc9c_arm64 as a component of Red Hat OpenShift Builds 1.7.4",
"product_id": "Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:be7f5c4ca3cbba8944f0c275ccf847b701c6ae7a25052272fb80d8144f61fc9c_arm64"
},
"product_reference": "registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:be7f5c4ca3cbba8944f0c275ccf847b701c6ae7a25052272fb80d8144f61fc9c_arm64",
"relates_to_product_reference": "Red Hat OpenShift Builds 1.7.4"
}
]
},
"vulnerabilities": [
{
"acknowledgments": [
{
"names": [
"Christopher Lusk"
],
"organization": "North Echo Security Research"
}
],
"cve": "CVE-2026-10840",
"cwe": {
"id": "CWE-732",
"name": "Incorrect Permission Assignment for Critical Resource"
},
"discovery_date": "2026-04-25T00:00:00+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:09fdae42b81088e67a3f29e32ac980d57652d8ddbe9665b86aab69b37a4327bd_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:0ef830a815d07df60291e9c7b89a03dd40c0ceabfc3071f1fe188575f65a0542_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:59bc241a2a06804393a63785eeb8f0a8165a99263f08e0ffc3e727671c214114_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:af26444b2b45eb9c726b8d0cc92f023c4f4e52c9fb839198ad862d6513e2683f_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:0a189209a84ceddfbbfdba58e43fe94b5ddd211982a58a0929eb9997d3bf585a_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:2d8b7f64fa620bfce0130c52b977942ec9118fafddc9c090994609ab274df00c_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:a18b4c58e2b285058541b77a47d6482a9db6be58756651df3b3c648548a44f8e_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:cebcaaef5272faa6e6f147eeb966803b7cb3d3fbc86514132f6ad2e8b51e4557_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:64c957565dd799994cab0828a9c1169c128ca20e8b103af6b6ac2f422077e322_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:8c8aa38871ee6d945a186d0e3a7b129bafd08d53e52278e1eb6d8011491240dd_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:a473e11982fd3d970a3e28d7e103ee40fd50217cb0de7028edfae345c34bcbc0_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:ccf2448519c0998d9843fa570f128f420326e849c8c69dd3c5b526c3444d9f50_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:7bda73fcb94b412a8799bd11915066b07ed341fed2cd0ab81776f4c601926b54_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:992588aab0cfe3ec909418e827ca46828d0a07d9e3e1479fed437c9c445d7ff0_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:a80038bcbb994457fda1443b37dee5fbe66bbb02972b38139a9877e978c73835_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:cf2318bcce1f1a565bcfdb722d89e0ddb2e88a523db237e926def3934add78e5_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-operator-bundle@sha256:24c95ad401a653c88d072a7753052850cfa6738686ce9aec7ba5f6fcbc92e7fc_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:0a2acfdea8fb6b49a6117d8914e9ae56bc4668ce882131a47923fc0c7ab7c6b6_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:37415ef53ed46fcc1fd8010da38f13ffc9015f8435306b7dcf16bb3ed117083b_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:626527f0b4701d00b845c8bca201f81756a0577a555447ea90b8903b0f968e12_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:98ad870b2929bc5db27a7cf0f9f0791f82d6889673ce7d102838616c466af612_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:2d1e27a8dc06bc78b251796816e89ff0ad7ee91ccd9077db47d245fb5ae5d291_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:c472058fc730b6ea6d064cd77dfa583340976209afe109fee9296012f02df66f_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:d3ca3c7f85c104a6ae087dccd37e328e1cdeb5b93a880b48e1f2c99c015fd101_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:fa3f9534ea19d8828c2342b3557f652196aec37552fa49e83af6dd1b0c356d69_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:7bfbb56d32556a602f9bbe422ea0a583e7e79e0de7503ce362962b3ffc5e5d62_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:aef0c6d237fba5ce37a219b78da4e7c566c6de1d37a9fcd0529c514322f09e77_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:b2361437d1f6d5ee61b23867ea903668f611f76cc76142713785b2faa00fcd63_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:fecc167995f30887629cd176971af5f7b3cb1cc377f8e3a329008e83133e8361_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:4570de210e87e6d64af57fe4ecb072e732365e62e7a23c3b1a8c04cf508bc876_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:6d070525b6e7b75f61f2999dac4dbcbc6fda96c882a17978e7bf8edbc008847b_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:92ee83df52ef773c4bcad66c277f608832de60b2bd00adb41fb877e33040077b_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:be7f5c4ca3cbba8944f0c275ccf847b701c6ae7a25052272fb80d8144f61fc9c_arm64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2484720"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the OpenShift Pipelines operator. The tekton-scheduler-rolebinding ClusterRoleBinding grants the system:authenticated group write access to Kueue and cert-manager custom resources via the tekton-scheduler-role ClusterRole. When Kueue or cert-manager CRDs are present on the cluster, any authenticated user can disrupt workload scheduling, tamper with scheduling priorities, delete other tenants\u0027 Workload objects, or induce cert-manager to overwrite TLS Secrets including the default ingress controller certificate.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "openshift-pipelines-operator-rh: openshift-pipelines-operator: tekton-scheduler-rolebinding grants system:authenticated write access to Kueue and cert-manager resources",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This is an Important flaw in the OpenShift Pipelines operator where the `tekton-scheduler-rolebinding` grants `system:authenticated` users cluster-wide write access to Kueue and cert-manager resources. This allows any authenticated user to disrupt workload scheduling, manipulate priorities, delete Workload objects, or may overwrite TLS Secrets, such as the default ingress controller certificate, by leveraging cert-manager\u0027s privileges. The vulnerable RBAC objects are deployed regardless of whether the Tekton Scheduler feature is enabled.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:189d8de6e11f86cd47891d2268c2a91134a6fe617ecbbc433dda7a7f68519421_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:61007260c34ec5113e4286f679a5377c64fb6ad934aee5de6928f4c06c54e969_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:779614a189b230b5c78cd28e360d9e7fabb519aef73a5acacb26b3c26716c68d_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:898bf1c9ee31508ffb2d72deaa97f0b02639e22063788448bbe55f5b98d8db7b_ppc64le"
],
"known_not_affected": [
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:09fdae42b81088e67a3f29e32ac980d57652d8ddbe9665b86aab69b37a4327bd_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:0ef830a815d07df60291e9c7b89a03dd40c0ceabfc3071f1fe188575f65a0542_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:59bc241a2a06804393a63785eeb8f0a8165a99263f08e0ffc3e727671c214114_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:af26444b2b45eb9c726b8d0cc92f023c4f4e52c9fb839198ad862d6513e2683f_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:0a189209a84ceddfbbfdba58e43fe94b5ddd211982a58a0929eb9997d3bf585a_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:2d8b7f64fa620bfce0130c52b977942ec9118fafddc9c090994609ab274df00c_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:a18b4c58e2b285058541b77a47d6482a9db6be58756651df3b3c648548a44f8e_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:cebcaaef5272faa6e6f147eeb966803b7cb3d3fbc86514132f6ad2e8b51e4557_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:64c957565dd799994cab0828a9c1169c128ca20e8b103af6b6ac2f422077e322_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:8c8aa38871ee6d945a186d0e3a7b129bafd08d53e52278e1eb6d8011491240dd_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:a473e11982fd3d970a3e28d7e103ee40fd50217cb0de7028edfae345c34bcbc0_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:ccf2448519c0998d9843fa570f128f420326e849c8c69dd3c5b526c3444d9f50_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:7bda73fcb94b412a8799bd11915066b07ed341fed2cd0ab81776f4c601926b54_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:992588aab0cfe3ec909418e827ca46828d0a07d9e3e1479fed437c9c445d7ff0_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:a80038bcbb994457fda1443b37dee5fbe66bbb02972b38139a9877e978c73835_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:cf2318bcce1f1a565bcfdb722d89e0ddb2e88a523db237e926def3934add78e5_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-operator-bundle@sha256:24c95ad401a653c88d072a7753052850cfa6738686ce9aec7ba5f6fcbc92e7fc_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:0a2acfdea8fb6b49a6117d8914e9ae56bc4668ce882131a47923fc0c7ab7c6b6_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:37415ef53ed46fcc1fd8010da38f13ffc9015f8435306b7dcf16bb3ed117083b_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:626527f0b4701d00b845c8bca201f81756a0577a555447ea90b8903b0f968e12_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:98ad870b2929bc5db27a7cf0f9f0791f82d6889673ce7d102838616c466af612_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:2d1e27a8dc06bc78b251796816e89ff0ad7ee91ccd9077db47d245fb5ae5d291_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:c472058fc730b6ea6d064cd77dfa583340976209afe109fee9296012f02df66f_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:d3ca3c7f85c104a6ae087dccd37e328e1cdeb5b93a880b48e1f2c99c015fd101_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:fa3f9534ea19d8828c2342b3557f652196aec37552fa49e83af6dd1b0c356d69_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:7bfbb56d32556a602f9bbe422ea0a583e7e79e0de7503ce362962b3ffc5e5d62_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:aef0c6d237fba5ce37a219b78da4e7c566c6de1d37a9fcd0529c514322f09e77_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:b2361437d1f6d5ee61b23867ea903668f611f76cc76142713785b2faa00fcd63_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:fecc167995f30887629cd176971af5f7b3cb1cc377f8e3a329008e83133e8361_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:4570de210e87e6d64af57fe4ecb072e732365e62e7a23c3b1a8c04cf508bc876_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:6d070525b6e7b75f61f2999dac4dbcbc6fda96c882a17978e7bf8edbc008847b_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:92ee83df52ef773c4bcad66c277f608832de60b2bd00adb41fb877e33040077b_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:be7f5c4ca3cbba8944f0c275ccf847b701c6ae7a25052272fb80d8144f61fc9c_arm64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-10840"
},
{
"category": "external",
"summary": "RHBZ#2484720",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2484720"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-10840",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-10840"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-10840",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-10840"
}
],
"release_date": "2026-04-25T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T09:20:18+00:00",
"details": "It is recommended that existing users of Red Hat OpenShift Builds 1.7.3 upgrade to 1.7.4",
"product_ids": [
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:189d8de6e11f86cd47891d2268c2a91134a6fe617ecbbc433dda7a7f68519421_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:61007260c34ec5113e4286f679a5377c64fb6ad934aee5de6928f4c06c54e969_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:779614a189b230b5c78cd28e360d9e7fabb519aef73a5acacb26b3c26716c68d_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:898bf1c9ee31508ffb2d72deaa97f0b02639e22063788448bbe55f5b98d8db7b_ppc64le"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36648"
},
{
"category": "workaround",
"details": "If the Tekton Scheduler feature is not in use, administrators can mitigate this by patching the ClusterRoleBinding to reference a specific ServiceAccount instead of system:authenticated:\n\noc patch clusterrolebinding tekton-scheduler-rolebinding --type=merge -p \u0027{\"subjects\": [{\"kind\": \"ServiceAccount\", \"name\": \"openshift-pipelines-operator\", \"namespace\": \"openshift-operators\"}]}\u0027\n\nIMPORTANT: The OpenShift Pipelines operator\u0027s reconciliation loop may revert this manual patch. Verify that the operator does not reconcile this binding back to system:authenticated after applying the mitigation. If it does, scale down the operator deployment or configure the operator to skip reconciliation of this object.\n\nAlternatively, the ClusterRoleBinding can be deleted if the Tekton Scheduler is not enabled.",
"product_ids": [
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:09fdae42b81088e67a3f29e32ac980d57652d8ddbe9665b86aab69b37a4327bd_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:0ef830a815d07df60291e9c7b89a03dd40c0ceabfc3071f1fe188575f65a0542_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:59bc241a2a06804393a63785eeb8f0a8165a99263f08e0ffc3e727671c214114_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:af26444b2b45eb9c726b8d0cc92f023c4f4e52c9fb839198ad862d6513e2683f_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:0a189209a84ceddfbbfdba58e43fe94b5ddd211982a58a0929eb9997d3bf585a_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:2d8b7f64fa620bfce0130c52b977942ec9118fafddc9c090994609ab274df00c_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:a18b4c58e2b285058541b77a47d6482a9db6be58756651df3b3c648548a44f8e_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:cebcaaef5272faa6e6f147eeb966803b7cb3d3fbc86514132f6ad2e8b51e4557_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:64c957565dd799994cab0828a9c1169c128ca20e8b103af6b6ac2f422077e322_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:8c8aa38871ee6d945a186d0e3a7b129bafd08d53e52278e1eb6d8011491240dd_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:a473e11982fd3d970a3e28d7e103ee40fd50217cb0de7028edfae345c34bcbc0_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:ccf2448519c0998d9843fa570f128f420326e849c8c69dd3c5b526c3444d9f50_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:7bda73fcb94b412a8799bd11915066b07ed341fed2cd0ab81776f4c601926b54_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:992588aab0cfe3ec909418e827ca46828d0a07d9e3e1479fed437c9c445d7ff0_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:a80038bcbb994457fda1443b37dee5fbe66bbb02972b38139a9877e978c73835_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:cf2318bcce1f1a565bcfdb722d89e0ddb2e88a523db237e926def3934add78e5_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-operator-bundle@sha256:24c95ad401a653c88d072a7753052850cfa6738686ce9aec7ba5f6fcbc92e7fc_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:189d8de6e11f86cd47891d2268c2a91134a6fe617ecbbc433dda7a7f68519421_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:61007260c34ec5113e4286f679a5377c64fb6ad934aee5de6928f4c06c54e969_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:779614a189b230b5c78cd28e360d9e7fabb519aef73a5acacb26b3c26716c68d_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:898bf1c9ee31508ffb2d72deaa97f0b02639e22063788448bbe55f5b98d8db7b_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:0a2acfdea8fb6b49a6117d8914e9ae56bc4668ce882131a47923fc0c7ab7c6b6_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:37415ef53ed46fcc1fd8010da38f13ffc9015f8435306b7dcf16bb3ed117083b_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:626527f0b4701d00b845c8bca201f81756a0577a555447ea90b8903b0f968e12_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:98ad870b2929bc5db27a7cf0f9f0791f82d6889673ce7d102838616c466af612_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:2d1e27a8dc06bc78b251796816e89ff0ad7ee91ccd9077db47d245fb5ae5d291_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:c472058fc730b6ea6d064cd77dfa583340976209afe109fee9296012f02df66f_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:d3ca3c7f85c104a6ae087dccd37e328e1cdeb5b93a880b48e1f2c99c015fd101_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:fa3f9534ea19d8828c2342b3557f652196aec37552fa49e83af6dd1b0c356d69_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:7bfbb56d32556a602f9bbe422ea0a583e7e79e0de7503ce362962b3ffc5e5d62_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:aef0c6d237fba5ce37a219b78da4e7c566c6de1d37a9fcd0529c514322f09e77_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:b2361437d1f6d5ee61b23867ea903668f611f76cc76142713785b2faa00fcd63_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:fecc167995f30887629cd176971af5f7b3cb1cc377f8e3a329008e83133e8361_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:4570de210e87e6d64af57fe4ecb072e732365e62e7a23c3b1a8c04cf508bc876_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:6d070525b6e7b75f61f2999dac4dbcbc6fda96c882a17978e7bf8edbc008847b_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:92ee83df52ef773c4bcad66c277f608832de60b2bd00adb41fb877e33040077b_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:be7f5c4ca3cbba8944f0c275ccf847b701c6ae7a25052272fb80d8144f61fc9c_arm64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.1,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "LOW",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:09fdae42b81088e67a3f29e32ac980d57652d8ddbe9665b86aab69b37a4327bd_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:0ef830a815d07df60291e9c7b89a03dd40c0ceabfc3071f1fe188575f65a0542_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:59bc241a2a06804393a63785eeb8f0a8165a99263f08e0ffc3e727671c214114_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:af26444b2b45eb9c726b8d0cc92f023c4f4e52c9fb839198ad862d6513e2683f_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:0a189209a84ceddfbbfdba58e43fe94b5ddd211982a58a0929eb9997d3bf585a_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:2d8b7f64fa620bfce0130c52b977942ec9118fafddc9c090994609ab274df00c_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:a18b4c58e2b285058541b77a47d6482a9db6be58756651df3b3c648548a44f8e_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:cebcaaef5272faa6e6f147eeb966803b7cb3d3fbc86514132f6ad2e8b51e4557_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:64c957565dd799994cab0828a9c1169c128ca20e8b103af6b6ac2f422077e322_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:8c8aa38871ee6d945a186d0e3a7b129bafd08d53e52278e1eb6d8011491240dd_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:a473e11982fd3d970a3e28d7e103ee40fd50217cb0de7028edfae345c34bcbc0_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:ccf2448519c0998d9843fa570f128f420326e849c8c69dd3c5b526c3444d9f50_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:7bda73fcb94b412a8799bd11915066b07ed341fed2cd0ab81776f4c601926b54_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:992588aab0cfe3ec909418e827ca46828d0a07d9e3e1479fed437c9c445d7ff0_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:a80038bcbb994457fda1443b37dee5fbe66bbb02972b38139a9877e978c73835_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:cf2318bcce1f1a565bcfdb722d89e0ddb2e88a523db237e926def3934add78e5_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-operator-bundle@sha256:24c95ad401a653c88d072a7753052850cfa6738686ce9aec7ba5f6fcbc92e7fc_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:189d8de6e11f86cd47891d2268c2a91134a6fe617ecbbc433dda7a7f68519421_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:61007260c34ec5113e4286f679a5377c64fb6ad934aee5de6928f4c06c54e969_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:779614a189b230b5c78cd28e360d9e7fabb519aef73a5acacb26b3c26716c68d_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:898bf1c9ee31508ffb2d72deaa97f0b02639e22063788448bbe55f5b98d8db7b_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:0a2acfdea8fb6b49a6117d8914e9ae56bc4668ce882131a47923fc0c7ab7c6b6_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:37415ef53ed46fcc1fd8010da38f13ffc9015f8435306b7dcf16bb3ed117083b_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:626527f0b4701d00b845c8bca201f81756a0577a555447ea90b8903b0f968e12_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:98ad870b2929bc5db27a7cf0f9f0791f82d6889673ce7d102838616c466af612_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:2d1e27a8dc06bc78b251796816e89ff0ad7ee91ccd9077db47d245fb5ae5d291_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:c472058fc730b6ea6d064cd77dfa583340976209afe109fee9296012f02df66f_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:d3ca3c7f85c104a6ae087dccd37e328e1cdeb5b93a880b48e1f2c99c015fd101_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:fa3f9534ea19d8828c2342b3557f652196aec37552fa49e83af6dd1b0c356d69_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:7bfbb56d32556a602f9bbe422ea0a583e7e79e0de7503ce362962b3ffc5e5d62_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:aef0c6d237fba5ce37a219b78da4e7c566c6de1d37a9fcd0529c514322f09e77_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:b2361437d1f6d5ee61b23867ea903668f611f76cc76142713785b2faa00fcd63_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:fecc167995f30887629cd176971af5f7b3cb1cc377f8e3a329008e83133e8361_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:4570de210e87e6d64af57fe4ecb072e732365e62e7a23c3b1a8c04cf508bc876_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:6d070525b6e7b75f61f2999dac4dbcbc6fda96c882a17978e7bf8edbc008847b_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:92ee83df52ef773c4bcad66c277f608832de60b2bd00adb41fb877e33040077b_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:be7f5c4ca3cbba8944f0c275ccf847b701c6ae7a25052272fb80d8144f61fc9c_arm64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "openshift-pipelines-operator-rh: openshift-pipelines-operator: tekton-scheduler-rolebinding grants system:authenticated write access to Kueue and cert-manager resources"
},
{
"cve": "CVE-2026-27145",
"cwe": {
"id": "CWE-606",
"name": "Unchecked Input for Loop Condition"
},
"discovery_date": "2026-06-02T23:01:08.992540+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:09fdae42b81088e67a3f29e32ac980d57652d8ddbe9665b86aab69b37a4327bd_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:0ef830a815d07df60291e9c7b89a03dd40c0ceabfc3071f1fe188575f65a0542_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:59bc241a2a06804393a63785eeb8f0a8165a99263f08e0ffc3e727671c214114_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:af26444b2b45eb9c726b8d0cc92f023c4f4e52c9fb839198ad862d6513e2683f_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:0a189209a84ceddfbbfdba58e43fe94b5ddd211982a58a0929eb9997d3bf585a_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:2d8b7f64fa620bfce0130c52b977942ec9118fafddc9c090994609ab274df00c_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:a18b4c58e2b285058541b77a47d6482a9db6be58756651df3b3c648548a44f8e_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:cebcaaef5272faa6e6f147eeb966803b7cb3d3fbc86514132f6ad2e8b51e4557_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:64c957565dd799994cab0828a9c1169c128ca20e8b103af6b6ac2f422077e322_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:8c8aa38871ee6d945a186d0e3a7b129bafd08d53e52278e1eb6d8011491240dd_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:a473e11982fd3d970a3e28d7e103ee40fd50217cb0de7028edfae345c34bcbc0_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:ccf2448519c0998d9843fa570f128f420326e849c8c69dd3c5b526c3444d9f50_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:7bda73fcb94b412a8799bd11915066b07ed341fed2cd0ab81776f4c601926b54_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:992588aab0cfe3ec909418e827ca46828d0a07d9e3e1479fed437c9c445d7ff0_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:a80038bcbb994457fda1443b37dee5fbe66bbb02972b38139a9877e978c73835_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:cf2318bcce1f1a565bcfdb722d89e0ddb2e88a523db237e926def3934add78e5_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-operator-bundle@sha256:24c95ad401a653c88d072a7753052850cfa6738686ce9aec7ba5f6fcbc92e7fc_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:189d8de6e11f86cd47891d2268c2a91134a6fe617ecbbc433dda7a7f68519421_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:61007260c34ec5113e4286f679a5377c64fb6ad934aee5de6928f4c06c54e969_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:779614a189b230b5c78cd28e360d9e7fabb519aef73a5acacb26b3c26716c68d_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:898bf1c9ee31508ffb2d72deaa97f0b02639e22063788448bbe55f5b98d8db7b_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:0a2acfdea8fb6b49a6117d8914e9ae56bc4668ce882131a47923fc0c7ab7c6b6_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:37415ef53ed46fcc1fd8010da38f13ffc9015f8435306b7dcf16bb3ed117083b_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:626527f0b4701d00b845c8bca201f81756a0577a555447ea90b8903b0f968e12_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:98ad870b2929bc5db27a7cf0f9f0791f82d6889673ce7d102838616c466af612_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:2d1e27a8dc06bc78b251796816e89ff0ad7ee91ccd9077db47d245fb5ae5d291_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:c472058fc730b6ea6d064cd77dfa583340976209afe109fee9296012f02df66f_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:d3ca3c7f85c104a6ae087dccd37e328e1cdeb5b93a880b48e1f2c99c015fd101_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:fa3f9534ea19d8828c2342b3557f652196aec37552fa49e83af6dd1b0c356d69_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:4570de210e87e6d64af57fe4ecb072e732365e62e7a23c3b1a8c04cf508bc876_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:6d070525b6e7b75f61f2999dac4dbcbc6fda96c882a17978e7bf8edbc008847b_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:92ee83df52ef773c4bcad66c277f608832de60b2bd00adb41fb877e33040077b_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:be7f5c4ca3cbba8944f0c275ccf847b701c6ae7a25052272fb80d8144f61fc9c_arm64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2484207"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the `crypto/x509` package of `golang`. This vulnerability allows a remote attacker to cause a Denial of Service (DoS) by presenting a specially crafted X.509 certificate with a large number of DNS Subject Alternative Name (SAN) entries. The certificate verification process, specifically the `VerifyHostname` function, incurs excessive computational overhead due to repeated string operations when processing these entries. This can lead to a significant performance degradation or unresponsiveness of systems validating such certificates.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "crypto/x509: golang: golang crypto/x509: Denial of Service via excessive processing of DNS SAN entries",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "A flaw was found in the Go standard library crypto/x509 package. When verifying a TLS certificate hostname, VerifyHostname processed each DNS Subject Alternative Name (SAN) entry in a loop and repeatedly split the candidate hostname on \".\" characters. For certificates with a very large DNS SAN list, CPU use could grow quadratically with the number of SAN entries and hostname labels. Because hostname verification runs before the certificate chain is built, this overhead can occur even when the certificate is not trusted.\n\nRed Hat rates this issue as Important. It affects Red Hat products that include the Go standard library crypto/x509 code from an affected Go toolchain version (before Go 1.25.11, or from Go 1.26.0 through Go 1.26.3). Applications and container images built with a fixed Go release (1.25.11 or later, or 1.26.4 or later) are not affected. Community distributions such as Fedora are also affected.\n\nUpstream fix: Go 1.25.11 and Go 1.26.4 (GO-2026-5037).",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:7bfbb56d32556a602f9bbe422ea0a583e7e79e0de7503ce362962b3ffc5e5d62_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:aef0c6d237fba5ce37a219b78da4e7c566c6de1d37a9fcd0529c514322f09e77_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:b2361437d1f6d5ee61b23867ea903668f611f76cc76142713785b2faa00fcd63_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:fecc167995f30887629cd176971af5f7b3cb1cc377f8e3a329008e83133e8361_ppc64le"
],
"known_not_affected": [
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:09fdae42b81088e67a3f29e32ac980d57652d8ddbe9665b86aab69b37a4327bd_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:0ef830a815d07df60291e9c7b89a03dd40c0ceabfc3071f1fe188575f65a0542_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:59bc241a2a06804393a63785eeb8f0a8165a99263f08e0ffc3e727671c214114_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:af26444b2b45eb9c726b8d0cc92f023c4f4e52c9fb839198ad862d6513e2683f_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:0a189209a84ceddfbbfdba58e43fe94b5ddd211982a58a0929eb9997d3bf585a_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:2d8b7f64fa620bfce0130c52b977942ec9118fafddc9c090994609ab274df00c_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:a18b4c58e2b285058541b77a47d6482a9db6be58756651df3b3c648548a44f8e_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:cebcaaef5272faa6e6f147eeb966803b7cb3d3fbc86514132f6ad2e8b51e4557_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:64c957565dd799994cab0828a9c1169c128ca20e8b103af6b6ac2f422077e322_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:8c8aa38871ee6d945a186d0e3a7b129bafd08d53e52278e1eb6d8011491240dd_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:a473e11982fd3d970a3e28d7e103ee40fd50217cb0de7028edfae345c34bcbc0_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:ccf2448519c0998d9843fa570f128f420326e849c8c69dd3c5b526c3444d9f50_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:7bda73fcb94b412a8799bd11915066b07ed341fed2cd0ab81776f4c601926b54_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:992588aab0cfe3ec909418e827ca46828d0a07d9e3e1479fed437c9c445d7ff0_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:a80038bcbb994457fda1443b37dee5fbe66bbb02972b38139a9877e978c73835_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:cf2318bcce1f1a565bcfdb722d89e0ddb2e88a523db237e926def3934add78e5_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-operator-bundle@sha256:24c95ad401a653c88d072a7753052850cfa6738686ce9aec7ba5f6fcbc92e7fc_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:189d8de6e11f86cd47891d2268c2a91134a6fe617ecbbc433dda7a7f68519421_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:61007260c34ec5113e4286f679a5377c64fb6ad934aee5de6928f4c06c54e969_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:779614a189b230b5c78cd28e360d9e7fabb519aef73a5acacb26b3c26716c68d_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:898bf1c9ee31508ffb2d72deaa97f0b02639e22063788448bbe55f5b98d8db7b_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:0a2acfdea8fb6b49a6117d8914e9ae56bc4668ce882131a47923fc0c7ab7c6b6_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:37415ef53ed46fcc1fd8010da38f13ffc9015f8435306b7dcf16bb3ed117083b_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:626527f0b4701d00b845c8bca201f81756a0577a555447ea90b8903b0f968e12_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:98ad870b2929bc5db27a7cf0f9f0791f82d6889673ce7d102838616c466af612_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:2d1e27a8dc06bc78b251796816e89ff0ad7ee91ccd9077db47d245fb5ae5d291_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:c472058fc730b6ea6d064cd77dfa583340976209afe109fee9296012f02df66f_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:d3ca3c7f85c104a6ae087dccd37e328e1cdeb5b93a880b48e1f2c99c015fd101_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:fa3f9534ea19d8828c2342b3557f652196aec37552fa49e83af6dd1b0c356d69_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:4570de210e87e6d64af57fe4ecb072e732365e62e7a23c3b1a8c04cf508bc876_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:6d070525b6e7b75f61f2999dac4dbcbc6fda96c882a17978e7bf8edbc008847b_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:92ee83df52ef773c4bcad66c277f608832de60b2bd00adb41fb877e33040077b_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:be7f5c4ca3cbba8944f0c275ccf847b701c6ae7a25052272fb80d8144f61fc9c_arm64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-27145"
},
{
"category": "external",
"summary": "RHBZ#2484207",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2484207"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-27145",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-27145"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-27145",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-27145"
},
{
"category": "external",
"summary": "https://go.dev/cl/783621",
"url": "https://go.dev/cl/783621"
},
{
"category": "external",
"summary": "https://go.dev/issue/79694",
"url": "https://go.dev/issue/79694"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/tKs3rmcBcKw",
"url": "https://groups.google.com/g/golang-announce/c/tKs3rmcBcKw"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-5037",
"url": "https://pkg.go.dev/vuln/GO-2026-5037"
}
],
"release_date": "2026-06-02T22:01:36.954000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T09:20:18+00:00",
"details": "It is recommended that existing users of Red Hat OpenShift Builds 1.7.3 upgrade to 1.7.4",
"product_ids": [
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:7bfbb56d32556a602f9bbe422ea0a583e7e79e0de7503ce362962b3ffc5e5d62_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:aef0c6d237fba5ce37a219b78da4e7c566c6de1d37a9fcd0529c514322f09e77_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:b2361437d1f6d5ee61b23867ea903668f611f76cc76142713785b2faa00fcd63_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:fecc167995f30887629cd176971af5f7b3cb1cc377f8e3a329008e83133e8361_ppc64le"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36648"
},
{
"category": "workaround",
"details": "A flaw was found in the Go standard library crypto/x509 package. When verifying a TLS certificate hostname, VerifyHostname processed each DNS Subject Alternative Name (SAN) entry in a loop and repeatedly split the candidate hostname on \".\" characters. For certificates with a very large DNS SAN list, CPU use could grow quadratically with the number of SAN entries and hostname labels. Because hostname verification runs before the certificate chain is built, this overhead can occur even when the certificate is not trusted.\n\nRed Hat rates this issue as Important. It affects Red Hat products that include the Go standard library crypto/x509 code from an affected Go toolchain version (before Go 1.25.11, or from Go 1.26.0 through Go 1.26.3). Applications and container images built with a fixed Go release (1.25.11 or later, or 1.26.4 or later) are not affected. Community distributions such as Fedora are also affected.\n\nUpstream fix: Go 1.25.11 and Go 1.26.4 (GO-2026-5037).",
"product_ids": [
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:09fdae42b81088e67a3f29e32ac980d57652d8ddbe9665b86aab69b37a4327bd_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:0ef830a815d07df60291e9c7b89a03dd40c0ceabfc3071f1fe188575f65a0542_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:59bc241a2a06804393a63785eeb8f0a8165a99263f08e0ffc3e727671c214114_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:af26444b2b45eb9c726b8d0cc92f023c4f4e52c9fb839198ad862d6513e2683f_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:0a189209a84ceddfbbfdba58e43fe94b5ddd211982a58a0929eb9997d3bf585a_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:2d8b7f64fa620bfce0130c52b977942ec9118fafddc9c090994609ab274df00c_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:a18b4c58e2b285058541b77a47d6482a9db6be58756651df3b3c648548a44f8e_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:cebcaaef5272faa6e6f147eeb966803b7cb3d3fbc86514132f6ad2e8b51e4557_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:64c957565dd799994cab0828a9c1169c128ca20e8b103af6b6ac2f422077e322_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:8c8aa38871ee6d945a186d0e3a7b129bafd08d53e52278e1eb6d8011491240dd_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:a473e11982fd3d970a3e28d7e103ee40fd50217cb0de7028edfae345c34bcbc0_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:ccf2448519c0998d9843fa570f128f420326e849c8c69dd3c5b526c3444d9f50_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:7bda73fcb94b412a8799bd11915066b07ed341fed2cd0ab81776f4c601926b54_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:992588aab0cfe3ec909418e827ca46828d0a07d9e3e1479fed437c9c445d7ff0_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:a80038bcbb994457fda1443b37dee5fbe66bbb02972b38139a9877e978c73835_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:cf2318bcce1f1a565bcfdb722d89e0ddb2e88a523db237e926def3934add78e5_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-operator-bundle@sha256:24c95ad401a653c88d072a7753052850cfa6738686ce9aec7ba5f6fcbc92e7fc_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:189d8de6e11f86cd47891d2268c2a91134a6fe617ecbbc433dda7a7f68519421_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:61007260c34ec5113e4286f679a5377c64fb6ad934aee5de6928f4c06c54e969_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:779614a189b230b5c78cd28e360d9e7fabb519aef73a5acacb26b3c26716c68d_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:898bf1c9ee31508ffb2d72deaa97f0b02639e22063788448bbe55f5b98d8db7b_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:0a2acfdea8fb6b49a6117d8914e9ae56bc4668ce882131a47923fc0c7ab7c6b6_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:37415ef53ed46fcc1fd8010da38f13ffc9015f8435306b7dcf16bb3ed117083b_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:626527f0b4701d00b845c8bca201f81756a0577a555447ea90b8903b0f968e12_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:98ad870b2929bc5db27a7cf0f9f0791f82d6889673ce7d102838616c466af612_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:2d1e27a8dc06bc78b251796816e89ff0ad7ee91ccd9077db47d245fb5ae5d291_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:c472058fc730b6ea6d064cd77dfa583340976209afe109fee9296012f02df66f_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:d3ca3c7f85c104a6ae087dccd37e328e1cdeb5b93a880b48e1f2c99c015fd101_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:fa3f9534ea19d8828c2342b3557f652196aec37552fa49e83af6dd1b0c356d69_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:7bfbb56d32556a602f9bbe422ea0a583e7e79e0de7503ce362962b3ffc5e5d62_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:aef0c6d237fba5ce37a219b78da4e7c566c6de1d37a9fcd0529c514322f09e77_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:b2361437d1f6d5ee61b23867ea903668f611f76cc76142713785b2faa00fcd63_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:fecc167995f30887629cd176971af5f7b3cb1cc377f8e3a329008e83133e8361_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:4570de210e87e6d64af57fe4ecb072e732365e62e7a23c3b1a8c04cf508bc876_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:6d070525b6e7b75f61f2999dac4dbcbc6fda96c882a17978e7bf8edbc008847b_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:92ee83df52ef773c4bcad66c277f608832de60b2bd00adb41fb877e33040077b_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:be7f5c4ca3cbba8944f0c275ccf847b701c6ae7a25052272fb80d8144f61fc9c_arm64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:09fdae42b81088e67a3f29e32ac980d57652d8ddbe9665b86aab69b37a4327bd_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:0ef830a815d07df60291e9c7b89a03dd40c0ceabfc3071f1fe188575f65a0542_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:59bc241a2a06804393a63785eeb8f0a8165a99263f08e0ffc3e727671c214114_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:af26444b2b45eb9c726b8d0cc92f023c4f4e52c9fb839198ad862d6513e2683f_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:0a189209a84ceddfbbfdba58e43fe94b5ddd211982a58a0929eb9997d3bf585a_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:2d8b7f64fa620bfce0130c52b977942ec9118fafddc9c090994609ab274df00c_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:a18b4c58e2b285058541b77a47d6482a9db6be58756651df3b3c648548a44f8e_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:cebcaaef5272faa6e6f147eeb966803b7cb3d3fbc86514132f6ad2e8b51e4557_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:64c957565dd799994cab0828a9c1169c128ca20e8b103af6b6ac2f422077e322_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:8c8aa38871ee6d945a186d0e3a7b129bafd08d53e52278e1eb6d8011491240dd_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:a473e11982fd3d970a3e28d7e103ee40fd50217cb0de7028edfae345c34bcbc0_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:ccf2448519c0998d9843fa570f128f420326e849c8c69dd3c5b526c3444d9f50_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:7bda73fcb94b412a8799bd11915066b07ed341fed2cd0ab81776f4c601926b54_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:992588aab0cfe3ec909418e827ca46828d0a07d9e3e1479fed437c9c445d7ff0_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:a80038bcbb994457fda1443b37dee5fbe66bbb02972b38139a9877e978c73835_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:cf2318bcce1f1a565bcfdb722d89e0ddb2e88a523db237e926def3934add78e5_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-operator-bundle@sha256:24c95ad401a653c88d072a7753052850cfa6738686ce9aec7ba5f6fcbc92e7fc_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:189d8de6e11f86cd47891d2268c2a91134a6fe617ecbbc433dda7a7f68519421_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:61007260c34ec5113e4286f679a5377c64fb6ad934aee5de6928f4c06c54e969_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:779614a189b230b5c78cd28e360d9e7fabb519aef73a5acacb26b3c26716c68d_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:898bf1c9ee31508ffb2d72deaa97f0b02639e22063788448bbe55f5b98d8db7b_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:0a2acfdea8fb6b49a6117d8914e9ae56bc4668ce882131a47923fc0c7ab7c6b6_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:37415ef53ed46fcc1fd8010da38f13ffc9015f8435306b7dcf16bb3ed117083b_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:626527f0b4701d00b845c8bca201f81756a0577a555447ea90b8903b0f968e12_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:98ad870b2929bc5db27a7cf0f9f0791f82d6889673ce7d102838616c466af612_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:2d1e27a8dc06bc78b251796816e89ff0ad7ee91ccd9077db47d245fb5ae5d291_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:c472058fc730b6ea6d064cd77dfa583340976209afe109fee9296012f02df66f_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:d3ca3c7f85c104a6ae087dccd37e328e1cdeb5b93a880b48e1f2c99c015fd101_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:fa3f9534ea19d8828c2342b3557f652196aec37552fa49e83af6dd1b0c356d69_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:7bfbb56d32556a602f9bbe422ea0a583e7e79e0de7503ce362962b3ffc5e5d62_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:aef0c6d237fba5ce37a219b78da4e7c566c6de1d37a9fcd0529c514322f09e77_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:b2361437d1f6d5ee61b23867ea903668f611f76cc76142713785b2faa00fcd63_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:fecc167995f30887629cd176971af5f7b3cb1cc377f8e3a329008e83133e8361_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:4570de210e87e6d64af57fe4ecb072e732365e62e7a23c3b1a8c04cf508bc876_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:6d070525b6e7b75f61f2999dac4dbcbc6fda96c882a17978e7bf8edbc008847b_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:92ee83df52ef773c4bcad66c277f608832de60b2bd00adb41fb877e33040077b_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:be7f5c4ca3cbba8944f0c275ccf847b701c6ae7a25052272fb80d8144f61fc9c_arm64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "crypto/x509: golang: golang crypto/x509: Denial of Service via excessive processing of DNS SAN entries"
},
{
"cve": "CVE-2026-33811",
"cwe": {
"id": "CWE-1341",
"name": "Multiple Releases of Same Resource or Handle"
},
"discovery_date": "2026-05-07T20:01:34.913869+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:09fdae42b81088e67a3f29e32ac980d57652d8ddbe9665b86aab69b37a4327bd_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:0ef830a815d07df60291e9c7b89a03dd40c0ceabfc3071f1fe188575f65a0542_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:59bc241a2a06804393a63785eeb8f0a8165a99263f08e0ffc3e727671c214114_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:af26444b2b45eb9c726b8d0cc92f023c4f4e52c9fb839198ad862d6513e2683f_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:0a189209a84ceddfbbfdba58e43fe94b5ddd211982a58a0929eb9997d3bf585a_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:2d8b7f64fa620bfce0130c52b977942ec9118fafddc9c090994609ab274df00c_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:a18b4c58e2b285058541b77a47d6482a9db6be58756651df3b3c648548a44f8e_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:cebcaaef5272faa6e6f147eeb966803b7cb3d3fbc86514132f6ad2e8b51e4557_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:64c957565dd799994cab0828a9c1169c128ca20e8b103af6b6ac2f422077e322_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:8c8aa38871ee6d945a186d0e3a7b129bafd08d53e52278e1eb6d8011491240dd_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:a473e11982fd3d970a3e28d7e103ee40fd50217cb0de7028edfae345c34bcbc0_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:ccf2448519c0998d9843fa570f128f420326e849c8c69dd3c5b526c3444d9f50_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:7bda73fcb94b412a8799bd11915066b07ed341fed2cd0ab81776f4c601926b54_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:992588aab0cfe3ec909418e827ca46828d0a07d9e3e1479fed437c9c445d7ff0_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:a80038bcbb994457fda1443b37dee5fbe66bbb02972b38139a9877e978c73835_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:cf2318bcce1f1a565bcfdb722d89e0ddb2e88a523db237e926def3934add78e5_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-operator-bundle@sha256:24c95ad401a653c88d072a7753052850cfa6738686ce9aec7ba5f6fcbc92e7fc_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:189d8de6e11f86cd47891d2268c2a91134a6fe617ecbbc433dda7a7f68519421_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:61007260c34ec5113e4286f679a5377c64fb6ad934aee5de6928f4c06c54e969_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:779614a189b230b5c78cd28e360d9e7fabb519aef73a5acacb26b3c26716c68d_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:898bf1c9ee31508ffb2d72deaa97f0b02639e22063788448bbe55f5b98d8db7b_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:0a2acfdea8fb6b49a6117d8914e9ae56bc4668ce882131a47923fc0c7ab7c6b6_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:37415ef53ed46fcc1fd8010da38f13ffc9015f8435306b7dcf16bb3ed117083b_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:626527f0b4701d00b845c8bca201f81756a0577a555447ea90b8903b0f968e12_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:98ad870b2929bc5db27a7cf0f9f0791f82d6889673ce7d102838616c466af612_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:2d1e27a8dc06bc78b251796816e89ff0ad7ee91ccd9077db47d245fb5ae5d291_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:c472058fc730b6ea6d064cd77dfa583340976209afe109fee9296012f02df66f_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:d3ca3c7f85c104a6ae087dccd37e328e1cdeb5b93a880b48e1f2c99c015fd101_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:fa3f9534ea19d8828c2342b3557f652196aec37552fa49e83af6dd1b0c356d69_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:4570de210e87e6d64af57fe4ecb072e732365e62e7a23c3b1a8c04cf508bc876_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:6d070525b6e7b75f61f2999dac4dbcbc6fda96c882a17978e7bf8edbc008847b_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:92ee83df52ef773c4bcad66c277f608832de60b2bd00adb41fb877e33040077b_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:be7f5c4ca3cbba8944f0c275ccf847b701c6ae7a25052272fb80d8144f61fc9c_arm64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2467822"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the `net` package of Go (golang), specifically when using the `LookupCNAME` function with the `cgo` DNS resolver. A remote attacker could exploit this by providing a very long Canonical Name (CNAME) response. This can trigger a double-free of C memory, leading to a crash and a Denial of Service (DoS) for the affected application.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "net: golang: Go net package: Denial of Service via long CNAME response in LookupCNAME",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This is an Important denial of service vulnerability in the Go `net` package, affecting applications configured to use the `cgo` DNS resolver. A remote attacker could trigger a double-free memory error by providing a very long CNAME response, leading to a crash of the vulnerable application and impacting service availability.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:7bfbb56d32556a602f9bbe422ea0a583e7e79e0de7503ce362962b3ffc5e5d62_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:aef0c6d237fba5ce37a219b78da4e7c566c6de1d37a9fcd0529c514322f09e77_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:b2361437d1f6d5ee61b23867ea903668f611f76cc76142713785b2faa00fcd63_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:fecc167995f30887629cd176971af5f7b3cb1cc377f8e3a329008e83133e8361_ppc64le"
],
"known_not_affected": [
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:09fdae42b81088e67a3f29e32ac980d57652d8ddbe9665b86aab69b37a4327bd_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:0ef830a815d07df60291e9c7b89a03dd40c0ceabfc3071f1fe188575f65a0542_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:59bc241a2a06804393a63785eeb8f0a8165a99263f08e0ffc3e727671c214114_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:af26444b2b45eb9c726b8d0cc92f023c4f4e52c9fb839198ad862d6513e2683f_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:0a189209a84ceddfbbfdba58e43fe94b5ddd211982a58a0929eb9997d3bf585a_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:2d8b7f64fa620bfce0130c52b977942ec9118fafddc9c090994609ab274df00c_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:a18b4c58e2b285058541b77a47d6482a9db6be58756651df3b3c648548a44f8e_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:cebcaaef5272faa6e6f147eeb966803b7cb3d3fbc86514132f6ad2e8b51e4557_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:64c957565dd799994cab0828a9c1169c128ca20e8b103af6b6ac2f422077e322_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:8c8aa38871ee6d945a186d0e3a7b129bafd08d53e52278e1eb6d8011491240dd_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:a473e11982fd3d970a3e28d7e103ee40fd50217cb0de7028edfae345c34bcbc0_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:ccf2448519c0998d9843fa570f128f420326e849c8c69dd3c5b526c3444d9f50_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:7bda73fcb94b412a8799bd11915066b07ed341fed2cd0ab81776f4c601926b54_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:992588aab0cfe3ec909418e827ca46828d0a07d9e3e1479fed437c9c445d7ff0_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:a80038bcbb994457fda1443b37dee5fbe66bbb02972b38139a9877e978c73835_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:cf2318bcce1f1a565bcfdb722d89e0ddb2e88a523db237e926def3934add78e5_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-operator-bundle@sha256:24c95ad401a653c88d072a7753052850cfa6738686ce9aec7ba5f6fcbc92e7fc_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:189d8de6e11f86cd47891d2268c2a91134a6fe617ecbbc433dda7a7f68519421_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:61007260c34ec5113e4286f679a5377c64fb6ad934aee5de6928f4c06c54e969_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:779614a189b230b5c78cd28e360d9e7fabb519aef73a5acacb26b3c26716c68d_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:898bf1c9ee31508ffb2d72deaa97f0b02639e22063788448bbe55f5b98d8db7b_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:0a2acfdea8fb6b49a6117d8914e9ae56bc4668ce882131a47923fc0c7ab7c6b6_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:37415ef53ed46fcc1fd8010da38f13ffc9015f8435306b7dcf16bb3ed117083b_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:626527f0b4701d00b845c8bca201f81756a0577a555447ea90b8903b0f968e12_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:98ad870b2929bc5db27a7cf0f9f0791f82d6889673ce7d102838616c466af612_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:2d1e27a8dc06bc78b251796816e89ff0ad7ee91ccd9077db47d245fb5ae5d291_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:c472058fc730b6ea6d064cd77dfa583340976209afe109fee9296012f02df66f_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:d3ca3c7f85c104a6ae087dccd37e328e1cdeb5b93a880b48e1f2c99c015fd101_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:fa3f9534ea19d8828c2342b3557f652196aec37552fa49e83af6dd1b0c356d69_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:4570de210e87e6d64af57fe4ecb072e732365e62e7a23c3b1a8c04cf508bc876_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:6d070525b6e7b75f61f2999dac4dbcbc6fda96c882a17978e7bf8edbc008847b_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:92ee83df52ef773c4bcad66c277f608832de60b2bd00adb41fb877e33040077b_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:be7f5c4ca3cbba8944f0c275ccf847b701c6ae7a25052272fb80d8144f61fc9c_arm64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-33811"
},
{
"category": "external",
"summary": "RHBZ#2467822",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2467822"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-33811",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-33811"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-33811",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-33811"
},
{
"category": "external",
"summary": "https://go.dev/cl/767860",
"url": "https://go.dev/cl/767860"
},
{
"category": "external",
"summary": "https://go.dev/issue/78803",
"url": "https://go.dev/issue/78803"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/qcCIEXso47M",
"url": "https://groups.google.com/g/golang-announce/c/qcCIEXso47M"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-4981",
"url": "https://pkg.go.dev/vuln/GO-2026-4981"
}
],
"release_date": "2026-05-07T19:41:19.285000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T09:20:18+00:00",
"details": "It is recommended that existing users of Red Hat OpenShift Builds 1.7.3 upgrade to 1.7.4",
"product_ids": [
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:7bfbb56d32556a602f9bbe422ea0a583e7e79e0de7503ce362962b3ffc5e5d62_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:aef0c6d237fba5ce37a219b78da4e7c566c6de1d37a9fcd0529c514322f09e77_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:b2361437d1f6d5ee61b23867ea903668f611f76cc76142713785b2faa00fcd63_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:fecc167995f30887629cd176971af5f7b3cb1cc377f8e3a329008e83133e8361_ppc64le"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36648"
},
{
"category": "workaround",
"details": "To mitigate this issue, applications can be configured to use the pure Go DNS resolver instead of the `cgo` DNS resolver. This can be achieved by setting the `GODEBUG` environment variable to `netdns=go`. For example, to run a Go application with this mitigation: `GODEBUG=netdns=go /path/to/your/go/application`. This change may require restarting affected applications or services to take effect. Users should verify that this change does not negatively impact DNS resolution for their specific application environment.",
"product_ids": [
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:09fdae42b81088e67a3f29e32ac980d57652d8ddbe9665b86aab69b37a4327bd_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:0ef830a815d07df60291e9c7b89a03dd40c0ceabfc3071f1fe188575f65a0542_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:59bc241a2a06804393a63785eeb8f0a8165a99263f08e0ffc3e727671c214114_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:af26444b2b45eb9c726b8d0cc92f023c4f4e52c9fb839198ad862d6513e2683f_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:0a189209a84ceddfbbfdba58e43fe94b5ddd211982a58a0929eb9997d3bf585a_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:2d8b7f64fa620bfce0130c52b977942ec9118fafddc9c090994609ab274df00c_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:a18b4c58e2b285058541b77a47d6482a9db6be58756651df3b3c648548a44f8e_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:cebcaaef5272faa6e6f147eeb966803b7cb3d3fbc86514132f6ad2e8b51e4557_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:64c957565dd799994cab0828a9c1169c128ca20e8b103af6b6ac2f422077e322_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:8c8aa38871ee6d945a186d0e3a7b129bafd08d53e52278e1eb6d8011491240dd_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:a473e11982fd3d970a3e28d7e103ee40fd50217cb0de7028edfae345c34bcbc0_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:ccf2448519c0998d9843fa570f128f420326e849c8c69dd3c5b526c3444d9f50_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:7bda73fcb94b412a8799bd11915066b07ed341fed2cd0ab81776f4c601926b54_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:992588aab0cfe3ec909418e827ca46828d0a07d9e3e1479fed437c9c445d7ff0_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:a80038bcbb994457fda1443b37dee5fbe66bbb02972b38139a9877e978c73835_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:cf2318bcce1f1a565bcfdb722d89e0ddb2e88a523db237e926def3934add78e5_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-operator-bundle@sha256:24c95ad401a653c88d072a7753052850cfa6738686ce9aec7ba5f6fcbc92e7fc_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:189d8de6e11f86cd47891d2268c2a91134a6fe617ecbbc433dda7a7f68519421_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:61007260c34ec5113e4286f679a5377c64fb6ad934aee5de6928f4c06c54e969_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:779614a189b230b5c78cd28e360d9e7fabb519aef73a5acacb26b3c26716c68d_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:898bf1c9ee31508ffb2d72deaa97f0b02639e22063788448bbe55f5b98d8db7b_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:0a2acfdea8fb6b49a6117d8914e9ae56bc4668ce882131a47923fc0c7ab7c6b6_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:37415ef53ed46fcc1fd8010da38f13ffc9015f8435306b7dcf16bb3ed117083b_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:626527f0b4701d00b845c8bca201f81756a0577a555447ea90b8903b0f968e12_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:98ad870b2929bc5db27a7cf0f9f0791f82d6889673ce7d102838616c466af612_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:2d1e27a8dc06bc78b251796816e89ff0ad7ee91ccd9077db47d245fb5ae5d291_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:c472058fc730b6ea6d064cd77dfa583340976209afe109fee9296012f02df66f_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:d3ca3c7f85c104a6ae087dccd37e328e1cdeb5b93a880b48e1f2c99c015fd101_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:fa3f9534ea19d8828c2342b3557f652196aec37552fa49e83af6dd1b0c356d69_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:7bfbb56d32556a602f9bbe422ea0a583e7e79e0de7503ce362962b3ffc5e5d62_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:aef0c6d237fba5ce37a219b78da4e7c566c6de1d37a9fcd0529c514322f09e77_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:b2361437d1f6d5ee61b23867ea903668f611f76cc76142713785b2faa00fcd63_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:fecc167995f30887629cd176971af5f7b3cb1cc377f8e3a329008e83133e8361_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:4570de210e87e6d64af57fe4ecb072e732365e62e7a23c3b1a8c04cf508bc876_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:6d070525b6e7b75f61f2999dac4dbcbc6fda96c882a17978e7bf8edbc008847b_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:92ee83df52ef773c4bcad66c277f608832de60b2bd00adb41fb877e33040077b_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:be7f5c4ca3cbba8944f0c275ccf847b701c6ae7a25052272fb80d8144f61fc9c_arm64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:09fdae42b81088e67a3f29e32ac980d57652d8ddbe9665b86aab69b37a4327bd_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:0ef830a815d07df60291e9c7b89a03dd40c0ceabfc3071f1fe188575f65a0542_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:59bc241a2a06804393a63785eeb8f0a8165a99263f08e0ffc3e727671c214114_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:af26444b2b45eb9c726b8d0cc92f023c4f4e52c9fb839198ad862d6513e2683f_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:0a189209a84ceddfbbfdba58e43fe94b5ddd211982a58a0929eb9997d3bf585a_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:2d8b7f64fa620bfce0130c52b977942ec9118fafddc9c090994609ab274df00c_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:a18b4c58e2b285058541b77a47d6482a9db6be58756651df3b3c648548a44f8e_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:cebcaaef5272faa6e6f147eeb966803b7cb3d3fbc86514132f6ad2e8b51e4557_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:64c957565dd799994cab0828a9c1169c128ca20e8b103af6b6ac2f422077e322_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:8c8aa38871ee6d945a186d0e3a7b129bafd08d53e52278e1eb6d8011491240dd_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:a473e11982fd3d970a3e28d7e103ee40fd50217cb0de7028edfae345c34bcbc0_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:ccf2448519c0998d9843fa570f128f420326e849c8c69dd3c5b526c3444d9f50_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:7bda73fcb94b412a8799bd11915066b07ed341fed2cd0ab81776f4c601926b54_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:992588aab0cfe3ec909418e827ca46828d0a07d9e3e1479fed437c9c445d7ff0_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:a80038bcbb994457fda1443b37dee5fbe66bbb02972b38139a9877e978c73835_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:cf2318bcce1f1a565bcfdb722d89e0ddb2e88a523db237e926def3934add78e5_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-operator-bundle@sha256:24c95ad401a653c88d072a7753052850cfa6738686ce9aec7ba5f6fcbc92e7fc_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:189d8de6e11f86cd47891d2268c2a91134a6fe617ecbbc433dda7a7f68519421_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:61007260c34ec5113e4286f679a5377c64fb6ad934aee5de6928f4c06c54e969_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:779614a189b230b5c78cd28e360d9e7fabb519aef73a5acacb26b3c26716c68d_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:898bf1c9ee31508ffb2d72deaa97f0b02639e22063788448bbe55f5b98d8db7b_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:0a2acfdea8fb6b49a6117d8914e9ae56bc4668ce882131a47923fc0c7ab7c6b6_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:37415ef53ed46fcc1fd8010da38f13ffc9015f8435306b7dcf16bb3ed117083b_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:626527f0b4701d00b845c8bca201f81756a0577a555447ea90b8903b0f968e12_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:98ad870b2929bc5db27a7cf0f9f0791f82d6889673ce7d102838616c466af612_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:2d1e27a8dc06bc78b251796816e89ff0ad7ee91ccd9077db47d245fb5ae5d291_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:c472058fc730b6ea6d064cd77dfa583340976209afe109fee9296012f02df66f_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:d3ca3c7f85c104a6ae087dccd37e328e1cdeb5b93a880b48e1f2c99c015fd101_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:fa3f9534ea19d8828c2342b3557f652196aec37552fa49e83af6dd1b0c356d69_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:7bfbb56d32556a602f9bbe422ea0a583e7e79e0de7503ce362962b3ffc5e5d62_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:aef0c6d237fba5ce37a219b78da4e7c566c6de1d37a9fcd0529c514322f09e77_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:b2361437d1f6d5ee61b23867ea903668f611f76cc76142713785b2faa00fcd63_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:fecc167995f30887629cd176971af5f7b3cb1cc377f8e3a329008e83133e8361_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:4570de210e87e6d64af57fe4ecb072e732365e62e7a23c3b1a8c04cf508bc876_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:6d070525b6e7b75f61f2999dac4dbcbc6fda96c882a17978e7bf8edbc008847b_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:92ee83df52ef773c4bcad66c277f608832de60b2bd00adb41fb877e33040077b_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:be7f5c4ca3cbba8944f0c275ccf847b701c6ae7a25052272fb80d8144f61fc9c_arm64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "net: golang: Go net package: Denial of Service via long CNAME response in LookupCNAME"
},
{
"cve": "CVE-2026-39821",
"cwe": {
"id": "CWE-1289",
"name": "Improper Validation of Unsafe Equivalence in Input"
},
"discovery_date": "2026-05-22T16:00:52.844126+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:0a189209a84ceddfbbfdba58e43fe94b5ddd211982a58a0929eb9997d3bf585a_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:2d8b7f64fa620bfce0130c52b977942ec9118fafddc9c090994609ab274df00c_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:a18b4c58e2b285058541b77a47d6482a9db6be58756651df3b3c648548a44f8e_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:cebcaaef5272faa6e6f147eeb966803b7cb3d3fbc86514132f6ad2e8b51e4557_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:64c957565dd799994cab0828a9c1169c128ca20e8b103af6b6ac2f422077e322_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:8c8aa38871ee6d945a186d0e3a7b129bafd08d53e52278e1eb6d8011491240dd_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:a473e11982fd3d970a3e28d7e103ee40fd50217cb0de7028edfae345c34bcbc0_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:ccf2448519c0998d9843fa570f128f420326e849c8c69dd3c5b526c3444d9f50_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:7bda73fcb94b412a8799bd11915066b07ed341fed2cd0ab81776f4c601926b54_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:992588aab0cfe3ec909418e827ca46828d0a07d9e3e1479fed437c9c445d7ff0_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:a80038bcbb994457fda1443b37dee5fbe66bbb02972b38139a9877e978c73835_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:cf2318bcce1f1a565bcfdb722d89e0ddb2e88a523db237e926def3934add78e5_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-operator-bundle@sha256:24c95ad401a653c88d072a7753052850cfa6738686ce9aec7ba5f6fcbc92e7fc_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:189d8de6e11f86cd47891d2268c2a91134a6fe617ecbbc433dda7a7f68519421_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:61007260c34ec5113e4286f679a5377c64fb6ad934aee5de6928f4c06c54e969_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:779614a189b230b5c78cd28e360d9e7fabb519aef73a5acacb26b3c26716c68d_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:898bf1c9ee31508ffb2d72deaa97f0b02639e22063788448bbe55f5b98d8db7b_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:0a2acfdea8fb6b49a6117d8914e9ae56bc4668ce882131a47923fc0c7ab7c6b6_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:37415ef53ed46fcc1fd8010da38f13ffc9015f8435306b7dcf16bb3ed117083b_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:626527f0b4701d00b845c8bca201f81756a0577a555447ea90b8903b0f968e12_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:98ad870b2929bc5db27a7cf0f9f0791f82d6889673ce7d102838616c466af612_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:2d1e27a8dc06bc78b251796816e89ff0ad7ee91ccd9077db47d245fb5ae5d291_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:c472058fc730b6ea6d064cd77dfa583340976209afe109fee9296012f02df66f_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:d3ca3c7f85c104a6ae087dccd37e328e1cdeb5b93a880b48e1f2c99c015fd101_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:fa3f9534ea19d8828c2342b3557f652196aec37552fa49e83af6dd1b0c356d69_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:4570de210e87e6d64af57fe4ecb072e732365e62e7a23c3b1a8c04cf508bc876_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:6d070525b6e7b75f61f2999dac4dbcbc6fda96c882a17978e7bf8edbc008847b_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:92ee83df52ef773c4bcad66c277f608832de60b2bd00adb41fb877e33040077b_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:be7f5c4ca3cbba8944f0c275ccf847b701c6ae7a25052272fb80d8144f61fc9c_arm64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2480756"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in golang.org/x/net/idna. ToASCII and ToUnicode incorrectly accept Punycode-encoded labels that decode to an ASCII-only hostname (for example, xn--example-.com returns example.com instead of an error). Applications that validate the ASCII form then convert to Unicode may grant access to a restricted hostname the ASCII check would have rejected.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang.org/x/net/idna: golang: golang.org/x/net/idna: Privilege escalation via incorrect Punycode label processing",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "golang.org/x/net/idna is vulnerable to privilege escalation through incorrect Punycode label handling in ToASCII and ToUnicode. An attacker who can supply a Punycode hostname that passes an ASCII-only authorization check may have it normalized to a restricted ASCII name the application intended to block. Red Hat exposure is broad across products shipping the Go toolchain or bundling golang.org/x/net, including RHEL and RHEL-AI golang RPMs, hummingbird Go runtimes, OpenShift and ODF container builds, and Ceph/OpenShift components compiled against affected x/net versions.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:09fdae42b81088e67a3f29e32ac980d57652d8ddbe9665b86aab69b37a4327bd_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:0ef830a815d07df60291e9c7b89a03dd40c0ceabfc3071f1fe188575f65a0542_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:59bc241a2a06804393a63785eeb8f0a8165a99263f08e0ffc3e727671c214114_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:af26444b2b45eb9c726b8d0cc92f023c4f4e52c9fb839198ad862d6513e2683f_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:7bfbb56d32556a602f9bbe422ea0a583e7e79e0de7503ce362962b3ffc5e5d62_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:aef0c6d237fba5ce37a219b78da4e7c566c6de1d37a9fcd0529c514322f09e77_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:b2361437d1f6d5ee61b23867ea903668f611f76cc76142713785b2faa00fcd63_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:fecc167995f30887629cd176971af5f7b3cb1cc377f8e3a329008e83133e8361_ppc64le"
],
"known_not_affected": [
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:0a189209a84ceddfbbfdba58e43fe94b5ddd211982a58a0929eb9997d3bf585a_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:2d8b7f64fa620bfce0130c52b977942ec9118fafddc9c090994609ab274df00c_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:a18b4c58e2b285058541b77a47d6482a9db6be58756651df3b3c648548a44f8e_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:cebcaaef5272faa6e6f147eeb966803b7cb3d3fbc86514132f6ad2e8b51e4557_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:64c957565dd799994cab0828a9c1169c128ca20e8b103af6b6ac2f422077e322_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:8c8aa38871ee6d945a186d0e3a7b129bafd08d53e52278e1eb6d8011491240dd_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:a473e11982fd3d970a3e28d7e103ee40fd50217cb0de7028edfae345c34bcbc0_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:ccf2448519c0998d9843fa570f128f420326e849c8c69dd3c5b526c3444d9f50_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:7bda73fcb94b412a8799bd11915066b07ed341fed2cd0ab81776f4c601926b54_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:992588aab0cfe3ec909418e827ca46828d0a07d9e3e1479fed437c9c445d7ff0_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:a80038bcbb994457fda1443b37dee5fbe66bbb02972b38139a9877e978c73835_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:cf2318bcce1f1a565bcfdb722d89e0ddb2e88a523db237e926def3934add78e5_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-operator-bundle@sha256:24c95ad401a653c88d072a7753052850cfa6738686ce9aec7ba5f6fcbc92e7fc_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:189d8de6e11f86cd47891d2268c2a91134a6fe617ecbbc433dda7a7f68519421_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:61007260c34ec5113e4286f679a5377c64fb6ad934aee5de6928f4c06c54e969_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:779614a189b230b5c78cd28e360d9e7fabb519aef73a5acacb26b3c26716c68d_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:898bf1c9ee31508ffb2d72deaa97f0b02639e22063788448bbe55f5b98d8db7b_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:0a2acfdea8fb6b49a6117d8914e9ae56bc4668ce882131a47923fc0c7ab7c6b6_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:37415ef53ed46fcc1fd8010da38f13ffc9015f8435306b7dcf16bb3ed117083b_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:626527f0b4701d00b845c8bca201f81756a0577a555447ea90b8903b0f968e12_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:98ad870b2929bc5db27a7cf0f9f0791f82d6889673ce7d102838616c466af612_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:2d1e27a8dc06bc78b251796816e89ff0ad7ee91ccd9077db47d245fb5ae5d291_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:c472058fc730b6ea6d064cd77dfa583340976209afe109fee9296012f02df66f_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:d3ca3c7f85c104a6ae087dccd37e328e1cdeb5b93a880b48e1f2c99c015fd101_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:fa3f9534ea19d8828c2342b3557f652196aec37552fa49e83af6dd1b0c356d69_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:4570de210e87e6d64af57fe4ecb072e732365e62e7a23c3b1a8c04cf508bc876_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:6d070525b6e7b75f61f2999dac4dbcbc6fda96c882a17978e7bf8edbc008847b_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:92ee83df52ef773c4bcad66c277f608832de60b2bd00adb41fb877e33040077b_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:be7f5c4ca3cbba8944f0c275ccf847b701c6ae7a25052272fb80d8144f61fc9c_arm64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-39821"
},
{
"category": "external",
"summary": "RHBZ#2480756",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2480756"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-39821",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-39821"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-39821",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-39821"
},
{
"category": "external",
"summary": "https://go.dev/cl/767220",
"url": "https://go.dev/cl/767220"
},
{
"category": "external",
"summary": "https://go.dev/issue/78760",
"url": "https://go.dev/issue/78760"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/iI-mYSI0lu8",
"url": "https://groups.google.com/g/golang-announce/c/iI-mYSI0lu8"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-5026",
"url": "https://pkg.go.dev/vuln/GO-2026-5026"
}
],
"release_date": "2026-05-22T15:01:21.462000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T09:20:18+00:00",
"details": "It is recommended that existing users of Red Hat OpenShift Builds 1.7.3 upgrade to 1.7.4",
"product_ids": [
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:09fdae42b81088e67a3f29e32ac980d57652d8ddbe9665b86aab69b37a4327bd_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:0ef830a815d07df60291e9c7b89a03dd40c0ceabfc3071f1fe188575f65a0542_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:59bc241a2a06804393a63785eeb8f0a8165a99263f08e0ffc3e727671c214114_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:af26444b2b45eb9c726b8d0cc92f023c4f4e52c9fb839198ad862d6513e2683f_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:7bfbb56d32556a602f9bbe422ea0a583e7e79e0de7503ce362962b3ffc5e5d62_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:aef0c6d237fba5ce37a219b78da4e7c566c6de1d37a9fcd0529c514322f09e77_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:b2361437d1f6d5ee61b23867ea903668f611f76cc76142713785b2faa00fcd63_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:fecc167995f30887629cd176971af5f7b3cb1cc377f8e3a329008e83133e8361_ppc64le"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36648"
},
{
"category": "workaround",
"details": "Upgrade to a fixed golang.org/x/net release that includes the idna correction, via updated golang or dependent package rebuilds.",
"product_ids": [
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:09fdae42b81088e67a3f29e32ac980d57652d8ddbe9665b86aab69b37a4327bd_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:0ef830a815d07df60291e9c7b89a03dd40c0ceabfc3071f1fe188575f65a0542_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:59bc241a2a06804393a63785eeb8f0a8165a99263f08e0ffc3e727671c214114_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:af26444b2b45eb9c726b8d0cc92f023c4f4e52c9fb839198ad862d6513e2683f_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:0a189209a84ceddfbbfdba58e43fe94b5ddd211982a58a0929eb9997d3bf585a_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:2d8b7f64fa620bfce0130c52b977942ec9118fafddc9c090994609ab274df00c_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:a18b4c58e2b285058541b77a47d6482a9db6be58756651df3b3c648548a44f8e_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:cebcaaef5272faa6e6f147eeb966803b7cb3d3fbc86514132f6ad2e8b51e4557_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:64c957565dd799994cab0828a9c1169c128ca20e8b103af6b6ac2f422077e322_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:8c8aa38871ee6d945a186d0e3a7b129bafd08d53e52278e1eb6d8011491240dd_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:a473e11982fd3d970a3e28d7e103ee40fd50217cb0de7028edfae345c34bcbc0_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:ccf2448519c0998d9843fa570f128f420326e849c8c69dd3c5b526c3444d9f50_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:7bda73fcb94b412a8799bd11915066b07ed341fed2cd0ab81776f4c601926b54_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:992588aab0cfe3ec909418e827ca46828d0a07d9e3e1479fed437c9c445d7ff0_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:a80038bcbb994457fda1443b37dee5fbe66bbb02972b38139a9877e978c73835_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:cf2318bcce1f1a565bcfdb722d89e0ddb2e88a523db237e926def3934add78e5_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-operator-bundle@sha256:24c95ad401a653c88d072a7753052850cfa6738686ce9aec7ba5f6fcbc92e7fc_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:189d8de6e11f86cd47891d2268c2a91134a6fe617ecbbc433dda7a7f68519421_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:61007260c34ec5113e4286f679a5377c64fb6ad934aee5de6928f4c06c54e969_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:779614a189b230b5c78cd28e360d9e7fabb519aef73a5acacb26b3c26716c68d_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:898bf1c9ee31508ffb2d72deaa97f0b02639e22063788448bbe55f5b98d8db7b_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:0a2acfdea8fb6b49a6117d8914e9ae56bc4668ce882131a47923fc0c7ab7c6b6_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:37415ef53ed46fcc1fd8010da38f13ffc9015f8435306b7dcf16bb3ed117083b_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:626527f0b4701d00b845c8bca201f81756a0577a555447ea90b8903b0f968e12_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:98ad870b2929bc5db27a7cf0f9f0791f82d6889673ce7d102838616c466af612_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:2d1e27a8dc06bc78b251796816e89ff0ad7ee91ccd9077db47d245fb5ae5d291_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:c472058fc730b6ea6d064cd77dfa583340976209afe109fee9296012f02df66f_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:d3ca3c7f85c104a6ae087dccd37e328e1cdeb5b93a880b48e1f2c99c015fd101_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:fa3f9534ea19d8828c2342b3557f652196aec37552fa49e83af6dd1b0c356d69_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:7bfbb56d32556a602f9bbe422ea0a583e7e79e0de7503ce362962b3ffc5e5d62_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:aef0c6d237fba5ce37a219b78da4e7c566c6de1d37a9fcd0529c514322f09e77_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:b2361437d1f6d5ee61b23867ea903668f611f76cc76142713785b2faa00fcd63_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:fecc167995f30887629cd176971af5f7b3cb1cc377f8e3a329008e83133e8361_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:4570de210e87e6d64af57fe4ecb072e732365e62e7a23c3b1a8c04cf508bc876_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:6d070525b6e7b75f61f2999dac4dbcbc6fda96c882a17978e7bf8edbc008847b_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:92ee83df52ef773c4bcad66c277f608832de60b2bd00adb41fb877e33040077b_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:be7f5c4ca3cbba8944f0c275ccf847b701c6ae7a25052272fb80d8144f61fc9c_arm64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 8.2,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:09fdae42b81088e67a3f29e32ac980d57652d8ddbe9665b86aab69b37a4327bd_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:0ef830a815d07df60291e9c7b89a03dd40c0ceabfc3071f1fe188575f65a0542_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:59bc241a2a06804393a63785eeb8f0a8165a99263f08e0ffc3e727671c214114_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:af26444b2b45eb9c726b8d0cc92f023c4f4e52c9fb839198ad862d6513e2683f_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:0a189209a84ceddfbbfdba58e43fe94b5ddd211982a58a0929eb9997d3bf585a_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:2d8b7f64fa620bfce0130c52b977942ec9118fafddc9c090994609ab274df00c_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:a18b4c58e2b285058541b77a47d6482a9db6be58756651df3b3c648548a44f8e_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:cebcaaef5272faa6e6f147eeb966803b7cb3d3fbc86514132f6ad2e8b51e4557_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:64c957565dd799994cab0828a9c1169c128ca20e8b103af6b6ac2f422077e322_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:8c8aa38871ee6d945a186d0e3a7b129bafd08d53e52278e1eb6d8011491240dd_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:a473e11982fd3d970a3e28d7e103ee40fd50217cb0de7028edfae345c34bcbc0_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:ccf2448519c0998d9843fa570f128f420326e849c8c69dd3c5b526c3444d9f50_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:7bda73fcb94b412a8799bd11915066b07ed341fed2cd0ab81776f4c601926b54_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:992588aab0cfe3ec909418e827ca46828d0a07d9e3e1479fed437c9c445d7ff0_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:a80038bcbb994457fda1443b37dee5fbe66bbb02972b38139a9877e978c73835_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:cf2318bcce1f1a565bcfdb722d89e0ddb2e88a523db237e926def3934add78e5_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-operator-bundle@sha256:24c95ad401a653c88d072a7753052850cfa6738686ce9aec7ba5f6fcbc92e7fc_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:189d8de6e11f86cd47891d2268c2a91134a6fe617ecbbc433dda7a7f68519421_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:61007260c34ec5113e4286f679a5377c64fb6ad934aee5de6928f4c06c54e969_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:779614a189b230b5c78cd28e360d9e7fabb519aef73a5acacb26b3c26716c68d_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:898bf1c9ee31508ffb2d72deaa97f0b02639e22063788448bbe55f5b98d8db7b_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:0a2acfdea8fb6b49a6117d8914e9ae56bc4668ce882131a47923fc0c7ab7c6b6_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:37415ef53ed46fcc1fd8010da38f13ffc9015f8435306b7dcf16bb3ed117083b_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:626527f0b4701d00b845c8bca201f81756a0577a555447ea90b8903b0f968e12_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:98ad870b2929bc5db27a7cf0f9f0791f82d6889673ce7d102838616c466af612_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:2d1e27a8dc06bc78b251796816e89ff0ad7ee91ccd9077db47d245fb5ae5d291_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:c472058fc730b6ea6d064cd77dfa583340976209afe109fee9296012f02df66f_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:d3ca3c7f85c104a6ae087dccd37e328e1cdeb5b93a880b48e1f2c99c015fd101_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:fa3f9534ea19d8828c2342b3557f652196aec37552fa49e83af6dd1b0c356d69_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:7bfbb56d32556a602f9bbe422ea0a583e7e79e0de7503ce362962b3ffc5e5d62_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:aef0c6d237fba5ce37a219b78da4e7c566c6de1d37a9fcd0529c514322f09e77_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:b2361437d1f6d5ee61b23867ea903668f611f76cc76142713785b2faa00fcd63_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:fecc167995f30887629cd176971af5f7b3cb1cc377f8e3a329008e83133e8361_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:4570de210e87e6d64af57fe4ecb072e732365e62e7a23c3b1a8c04cf508bc876_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:6d070525b6e7b75f61f2999dac4dbcbc6fda96c882a17978e7bf8edbc008847b_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:92ee83df52ef773c4bcad66c277f608832de60b2bd00adb41fb877e33040077b_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:be7f5c4ca3cbba8944f0c275ccf847b701c6ae7a25052272fb80d8144f61fc9c_arm64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang.org/x/net/idna: golang: golang.org/x/net/idna: Privilege escalation via incorrect Punycode label processing"
},
{
"cve": "CVE-2026-39828",
"cwe": {
"id": "CWE-281",
"name": "Improper Preservation of Permissions"
},
"discovery_date": "2026-05-22T04:01:46.775641+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-operator-bundle@sha256:24c95ad401a653c88d072a7753052850cfa6738686ce9aec7ba5f6fcbc92e7fc_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:189d8de6e11f86cd47891d2268c2a91134a6fe617ecbbc433dda7a7f68519421_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:61007260c34ec5113e4286f679a5377c64fb6ad934aee5de6928f4c06c54e969_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:779614a189b230b5c78cd28e360d9e7fabb519aef73a5acacb26b3c26716c68d_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:898bf1c9ee31508ffb2d72deaa97f0b02639e22063788448bbe55f5b98d8db7b_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:0a2acfdea8fb6b49a6117d8914e9ae56bc4668ce882131a47923fc0c7ab7c6b6_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:37415ef53ed46fcc1fd8010da38f13ffc9015f8435306b7dcf16bb3ed117083b_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:626527f0b4701d00b845c8bca201f81756a0577a555447ea90b8903b0f968e12_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:98ad870b2929bc5db27a7cf0f9f0791f82d6889673ce7d102838616c466af612_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:2d1e27a8dc06bc78b251796816e89ff0ad7ee91ccd9077db47d245fb5ae5d291_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:c472058fc730b6ea6d064cd77dfa583340976209afe109fee9296012f02df66f_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:d3ca3c7f85c104a6ae087dccd37e328e1cdeb5b93a880b48e1f2c99c015fd101_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:fa3f9534ea19d8828c2342b3557f652196aec37552fa49e83af6dd1b0c356d69_ppc64le"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2480687"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in golang.org/x/crypto/ssh. A remote attacker could exploit this vulnerability when an SSH server authentication callback returned a PartialSuccessError with non-nil permissions. This flaw caused these permissions to be silently discarded, potentially bypassing certificate restrictions, such as a force-command, after a second authentication factor succeeded. This could lead to unauthorized command execution or access.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang.org/x/crypto/ssh: golang.org/x/crypto/ssh: Unauthorized command execution via discarded SSH permissions",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This is an Important security flaw in the `golang.org/x/crypto/ssh` library. When an SSH server utilizing this library is configured with specific authentication callbacks that return a `PartialSuccessError` with non-nil permissions, an attacker could bypass intended certificate restrictions, such as `force-command`. This bypass could lead to unauthorized command execution or access on affected Red Hat systems configured with multi-factor authentication and certificate-based access controls.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:09fdae42b81088e67a3f29e32ac980d57652d8ddbe9665b86aab69b37a4327bd_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:0ef830a815d07df60291e9c7b89a03dd40c0ceabfc3071f1fe188575f65a0542_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:59bc241a2a06804393a63785eeb8f0a8165a99263f08e0ffc3e727671c214114_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:af26444b2b45eb9c726b8d0cc92f023c4f4e52c9fb839198ad862d6513e2683f_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:0a189209a84ceddfbbfdba58e43fe94b5ddd211982a58a0929eb9997d3bf585a_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:2d8b7f64fa620bfce0130c52b977942ec9118fafddc9c090994609ab274df00c_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:a18b4c58e2b285058541b77a47d6482a9db6be58756651df3b3c648548a44f8e_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:cebcaaef5272faa6e6f147eeb966803b7cb3d3fbc86514132f6ad2e8b51e4557_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:64c957565dd799994cab0828a9c1169c128ca20e8b103af6b6ac2f422077e322_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:8c8aa38871ee6d945a186d0e3a7b129bafd08d53e52278e1eb6d8011491240dd_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:a473e11982fd3d970a3e28d7e103ee40fd50217cb0de7028edfae345c34bcbc0_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:ccf2448519c0998d9843fa570f128f420326e849c8c69dd3c5b526c3444d9f50_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:7bda73fcb94b412a8799bd11915066b07ed341fed2cd0ab81776f4c601926b54_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:992588aab0cfe3ec909418e827ca46828d0a07d9e3e1479fed437c9c445d7ff0_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:a80038bcbb994457fda1443b37dee5fbe66bbb02972b38139a9877e978c73835_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:cf2318bcce1f1a565bcfdb722d89e0ddb2e88a523db237e926def3934add78e5_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:7bfbb56d32556a602f9bbe422ea0a583e7e79e0de7503ce362962b3ffc5e5d62_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:aef0c6d237fba5ce37a219b78da4e7c566c6de1d37a9fcd0529c514322f09e77_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:b2361437d1f6d5ee61b23867ea903668f611f76cc76142713785b2faa00fcd63_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:fecc167995f30887629cd176971af5f7b3cb1cc377f8e3a329008e83133e8361_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:4570de210e87e6d64af57fe4ecb072e732365e62e7a23c3b1a8c04cf508bc876_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:6d070525b6e7b75f61f2999dac4dbcbc6fda96c882a17978e7bf8edbc008847b_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:92ee83df52ef773c4bcad66c277f608832de60b2bd00adb41fb877e33040077b_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:be7f5c4ca3cbba8944f0c275ccf847b701c6ae7a25052272fb80d8144f61fc9c_arm64"
],
"known_not_affected": [
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-operator-bundle@sha256:24c95ad401a653c88d072a7753052850cfa6738686ce9aec7ba5f6fcbc92e7fc_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:189d8de6e11f86cd47891d2268c2a91134a6fe617ecbbc433dda7a7f68519421_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:61007260c34ec5113e4286f679a5377c64fb6ad934aee5de6928f4c06c54e969_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:779614a189b230b5c78cd28e360d9e7fabb519aef73a5acacb26b3c26716c68d_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:898bf1c9ee31508ffb2d72deaa97f0b02639e22063788448bbe55f5b98d8db7b_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:0a2acfdea8fb6b49a6117d8914e9ae56bc4668ce882131a47923fc0c7ab7c6b6_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:37415ef53ed46fcc1fd8010da38f13ffc9015f8435306b7dcf16bb3ed117083b_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:626527f0b4701d00b845c8bca201f81756a0577a555447ea90b8903b0f968e12_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:98ad870b2929bc5db27a7cf0f9f0791f82d6889673ce7d102838616c466af612_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:2d1e27a8dc06bc78b251796816e89ff0ad7ee91ccd9077db47d245fb5ae5d291_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:c472058fc730b6ea6d064cd77dfa583340976209afe109fee9296012f02df66f_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:d3ca3c7f85c104a6ae087dccd37e328e1cdeb5b93a880b48e1f2c99c015fd101_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:fa3f9534ea19d8828c2342b3557f652196aec37552fa49e83af6dd1b0c356d69_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-39828"
},
{
"category": "external",
"summary": "RHBZ#2480687",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2480687"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-39828",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-39828"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-39828",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-39828"
},
{
"category": "external",
"summary": "https://go.dev/cl/781621",
"url": "https://go.dev/cl/781621"
},
{
"category": "external",
"summary": "https://go.dev/issue/79562",
"url": "https://go.dev/issue/79562"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/a082jnz-LvI",
"url": "https://groups.google.com/g/golang-announce/c/a082jnz-LvI"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-5014",
"url": "https://pkg.go.dev/vuln/GO-2026-5014"
}
],
"release_date": "2026-05-22T02:31:26.883000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T09:20:18+00:00",
"details": "It is recommended that existing users of Red Hat OpenShift Builds 1.7.3 upgrade to 1.7.4",
"product_ids": [
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:09fdae42b81088e67a3f29e32ac980d57652d8ddbe9665b86aab69b37a4327bd_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:0ef830a815d07df60291e9c7b89a03dd40c0ceabfc3071f1fe188575f65a0542_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:59bc241a2a06804393a63785eeb8f0a8165a99263f08e0ffc3e727671c214114_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:af26444b2b45eb9c726b8d0cc92f023c4f4e52c9fb839198ad862d6513e2683f_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:0a189209a84ceddfbbfdba58e43fe94b5ddd211982a58a0929eb9997d3bf585a_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:2d8b7f64fa620bfce0130c52b977942ec9118fafddc9c090994609ab274df00c_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:a18b4c58e2b285058541b77a47d6482a9db6be58756651df3b3c648548a44f8e_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:cebcaaef5272faa6e6f147eeb966803b7cb3d3fbc86514132f6ad2e8b51e4557_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:64c957565dd799994cab0828a9c1169c128ca20e8b103af6b6ac2f422077e322_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:8c8aa38871ee6d945a186d0e3a7b129bafd08d53e52278e1eb6d8011491240dd_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:a473e11982fd3d970a3e28d7e103ee40fd50217cb0de7028edfae345c34bcbc0_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:ccf2448519c0998d9843fa570f128f420326e849c8c69dd3c5b526c3444d9f50_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:7bda73fcb94b412a8799bd11915066b07ed341fed2cd0ab81776f4c601926b54_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:992588aab0cfe3ec909418e827ca46828d0a07d9e3e1479fed437c9c445d7ff0_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:a80038bcbb994457fda1443b37dee5fbe66bbb02972b38139a9877e978c73835_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:cf2318bcce1f1a565bcfdb722d89e0ddb2e88a523db237e926def3934add78e5_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:7bfbb56d32556a602f9bbe422ea0a583e7e79e0de7503ce362962b3ffc5e5d62_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:aef0c6d237fba5ce37a219b78da4e7c566c6de1d37a9fcd0529c514322f09e77_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:b2361437d1f6d5ee61b23867ea903668f611f76cc76142713785b2faa00fcd63_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:fecc167995f30887629cd176971af5f7b3cb1cc377f8e3a329008e83133e8361_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:4570de210e87e6d64af57fe4ecb072e732365e62e7a23c3b1a8c04cf508bc876_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:6d070525b6e7b75f61f2999dac4dbcbc6fda96c882a17978e7bf8edbc008847b_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:92ee83df52ef773c4bcad66c277f608832de60b2bd00adb41fb877e33040077b_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:be7f5c4ca3cbba8944f0c275ccf847b701c6ae7a25052272fb80d8144f61fc9c_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36648"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability.",
"product_ids": [
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:09fdae42b81088e67a3f29e32ac980d57652d8ddbe9665b86aab69b37a4327bd_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:0ef830a815d07df60291e9c7b89a03dd40c0ceabfc3071f1fe188575f65a0542_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:59bc241a2a06804393a63785eeb8f0a8165a99263f08e0ffc3e727671c214114_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:af26444b2b45eb9c726b8d0cc92f023c4f4e52c9fb839198ad862d6513e2683f_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:0a189209a84ceddfbbfdba58e43fe94b5ddd211982a58a0929eb9997d3bf585a_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:2d8b7f64fa620bfce0130c52b977942ec9118fafddc9c090994609ab274df00c_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:a18b4c58e2b285058541b77a47d6482a9db6be58756651df3b3c648548a44f8e_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:cebcaaef5272faa6e6f147eeb966803b7cb3d3fbc86514132f6ad2e8b51e4557_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:64c957565dd799994cab0828a9c1169c128ca20e8b103af6b6ac2f422077e322_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:8c8aa38871ee6d945a186d0e3a7b129bafd08d53e52278e1eb6d8011491240dd_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:a473e11982fd3d970a3e28d7e103ee40fd50217cb0de7028edfae345c34bcbc0_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:ccf2448519c0998d9843fa570f128f420326e849c8c69dd3c5b526c3444d9f50_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:7bda73fcb94b412a8799bd11915066b07ed341fed2cd0ab81776f4c601926b54_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:992588aab0cfe3ec909418e827ca46828d0a07d9e3e1479fed437c9c445d7ff0_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:a80038bcbb994457fda1443b37dee5fbe66bbb02972b38139a9877e978c73835_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:cf2318bcce1f1a565bcfdb722d89e0ddb2e88a523db237e926def3934add78e5_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-operator-bundle@sha256:24c95ad401a653c88d072a7753052850cfa6738686ce9aec7ba5f6fcbc92e7fc_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:189d8de6e11f86cd47891d2268c2a91134a6fe617ecbbc433dda7a7f68519421_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:61007260c34ec5113e4286f679a5377c64fb6ad934aee5de6928f4c06c54e969_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:779614a189b230b5c78cd28e360d9e7fabb519aef73a5acacb26b3c26716c68d_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:898bf1c9ee31508ffb2d72deaa97f0b02639e22063788448bbe55f5b98d8db7b_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:0a2acfdea8fb6b49a6117d8914e9ae56bc4668ce882131a47923fc0c7ab7c6b6_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:37415ef53ed46fcc1fd8010da38f13ffc9015f8435306b7dcf16bb3ed117083b_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:626527f0b4701d00b845c8bca201f81756a0577a555447ea90b8903b0f968e12_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:98ad870b2929bc5db27a7cf0f9f0791f82d6889673ce7d102838616c466af612_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:2d1e27a8dc06bc78b251796816e89ff0ad7ee91ccd9077db47d245fb5ae5d291_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:c472058fc730b6ea6d064cd77dfa583340976209afe109fee9296012f02df66f_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:d3ca3c7f85c104a6ae087dccd37e328e1cdeb5b93a880b48e1f2c99c015fd101_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:fa3f9534ea19d8828c2342b3557f652196aec37552fa49e83af6dd1b0c356d69_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:7bfbb56d32556a602f9bbe422ea0a583e7e79e0de7503ce362962b3ffc5e5d62_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:aef0c6d237fba5ce37a219b78da4e7c566c6de1d37a9fcd0529c514322f09e77_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:b2361437d1f6d5ee61b23867ea903668f611f76cc76142713785b2faa00fcd63_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:fecc167995f30887629cd176971af5f7b3cb1cc377f8e3a329008e83133e8361_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:4570de210e87e6d64af57fe4ecb072e732365e62e7a23c3b1a8c04cf508bc876_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:6d070525b6e7b75f61f2999dac4dbcbc6fda96c882a17978e7bf8edbc008847b_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:92ee83df52ef773c4bcad66c277f608832de60b2bd00adb41fb877e33040077b_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:be7f5c4ca3cbba8944f0c275ccf847b701c6ae7a25052272fb80d8144f61fc9c_arm64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:09fdae42b81088e67a3f29e32ac980d57652d8ddbe9665b86aab69b37a4327bd_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:0ef830a815d07df60291e9c7b89a03dd40c0ceabfc3071f1fe188575f65a0542_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:59bc241a2a06804393a63785eeb8f0a8165a99263f08e0ffc3e727671c214114_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:af26444b2b45eb9c726b8d0cc92f023c4f4e52c9fb839198ad862d6513e2683f_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:0a189209a84ceddfbbfdba58e43fe94b5ddd211982a58a0929eb9997d3bf585a_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:2d8b7f64fa620bfce0130c52b977942ec9118fafddc9c090994609ab274df00c_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:a18b4c58e2b285058541b77a47d6482a9db6be58756651df3b3c648548a44f8e_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:cebcaaef5272faa6e6f147eeb966803b7cb3d3fbc86514132f6ad2e8b51e4557_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:64c957565dd799994cab0828a9c1169c128ca20e8b103af6b6ac2f422077e322_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:8c8aa38871ee6d945a186d0e3a7b129bafd08d53e52278e1eb6d8011491240dd_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:a473e11982fd3d970a3e28d7e103ee40fd50217cb0de7028edfae345c34bcbc0_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:ccf2448519c0998d9843fa570f128f420326e849c8c69dd3c5b526c3444d9f50_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:7bda73fcb94b412a8799bd11915066b07ed341fed2cd0ab81776f4c601926b54_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:992588aab0cfe3ec909418e827ca46828d0a07d9e3e1479fed437c9c445d7ff0_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:a80038bcbb994457fda1443b37dee5fbe66bbb02972b38139a9877e978c73835_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:cf2318bcce1f1a565bcfdb722d89e0ddb2e88a523db237e926def3934add78e5_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-operator-bundle@sha256:24c95ad401a653c88d072a7753052850cfa6738686ce9aec7ba5f6fcbc92e7fc_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:189d8de6e11f86cd47891d2268c2a91134a6fe617ecbbc433dda7a7f68519421_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:61007260c34ec5113e4286f679a5377c64fb6ad934aee5de6928f4c06c54e969_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:779614a189b230b5c78cd28e360d9e7fabb519aef73a5acacb26b3c26716c68d_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:898bf1c9ee31508ffb2d72deaa97f0b02639e22063788448bbe55f5b98d8db7b_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:0a2acfdea8fb6b49a6117d8914e9ae56bc4668ce882131a47923fc0c7ab7c6b6_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:37415ef53ed46fcc1fd8010da38f13ffc9015f8435306b7dcf16bb3ed117083b_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:626527f0b4701d00b845c8bca201f81756a0577a555447ea90b8903b0f968e12_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:98ad870b2929bc5db27a7cf0f9f0791f82d6889673ce7d102838616c466af612_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:2d1e27a8dc06bc78b251796816e89ff0ad7ee91ccd9077db47d245fb5ae5d291_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:c472058fc730b6ea6d064cd77dfa583340976209afe109fee9296012f02df66f_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:d3ca3c7f85c104a6ae087dccd37e328e1cdeb5b93a880b48e1f2c99c015fd101_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:fa3f9534ea19d8828c2342b3557f652196aec37552fa49e83af6dd1b0c356d69_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:7bfbb56d32556a602f9bbe422ea0a583e7e79e0de7503ce362962b3ffc5e5d62_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:aef0c6d237fba5ce37a219b78da4e7c566c6de1d37a9fcd0529c514322f09e77_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:b2361437d1f6d5ee61b23867ea903668f611f76cc76142713785b2faa00fcd63_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:fecc167995f30887629cd176971af5f7b3cb1cc377f8e3a329008e83133e8361_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:4570de210e87e6d64af57fe4ecb072e732365e62e7a23c3b1a8c04cf508bc876_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:6d070525b6e7b75f61f2999dac4dbcbc6fda96c882a17978e7bf8edbc008847b_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:92ee83df52ef773c4bcad66c277f608832de60b2bd00adb41fb877e33040077b_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:be7f5c4ca3cbba8944f0c275ccf847b701c6ae7a25052272fb80d8144f61fc9c_arm64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang.org/x/crypto/ssh: golang.org/x/crypto/ssh: Unauthorized command execution via discarded SSH permissions"
},
{
"cve": "CVE-2026-39829",
"cwe": {
"id": "CWE-1284",
"name": "Improper Validation of Specified Quantity in Input"
},
"discovery_date": "2026-05-22T04:01:30.092249+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-operator-bundle@sha256:24c95ad401a653c88d072a7753052850cfa6738686ce9aec7ba5f6fcbc92e7fc_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:189d8de6e11f86cd47891d2268c2a91134a6fe617ecbbc433dda7a7f68519421_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:61007260c34ec5113e4286f679a5377c64fb6ad934aee5de6928f4c06c54e969_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:779614a189b230b5c78cd28e360d9e7fabb519aef73a5acacb26b3c26716c68d_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:898bf1c9ee31508ffb2d72deaa97f0b02639e22063788448bbe55f5b98d8db7b_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:0a2acfdea8fb6b49a6117d8914e9ae56bc4668ce882131a47923fc0c7ab7c6b6_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:37415ef53ed46fcc1fd8010da38f13ffc9015f8435306b7dcf16bb3ed117083b_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:626527f0b4701d00b845c8bca201f81756a0577a555447ea90b8903b0f968e12_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:98ad870b2929bc5db27a7cf0f9f0791f82d6889673ce7d102838616c466af612_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:2d1e27a8dc06bc78b251796816e89ff0ad7ee91ccd9077db47d245fb5ae5d291_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:c472058fc730b6ea6d064cd77dfa583340976209afe109fee9296012f02df66f_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:d3ca3c7f85c104a6ae087dccd37e328e1cdeb5b93a880b48e1f2c99c015fd101_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:fa3f9534ea19d8828c2342b3557f652196aec37552fa49e83af6dd1b0c356d69_ppc64le"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2480681"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in golang.org/x/crypto/ssh. The RSA and DSA public key parsers in the affected component did not enforce size limits on key parameters. This vulnerability allows an unauthenticated client to provide a crafted public key with an excessively large modulus or DSA parameter during public key authentication. Successful exploitation could lead to a denial of service (DoS) due to prolonged CPU consumption during signature verification.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang.org/x/crypto/ssh: golang.org/x/crypto/ssh: Denial of Service via crafted public key with excessive parameters",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability in golang.org/x/crypto/ssh is rated as Important. An unauthenticated remote attacker could trigger a denial of service by providing a specially crafted public key with excessively large parameters during SSH public key authentication. This could lead to prolonged CPU consumption on the server, impacting service availability.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:09fdae42b81088e67a3f29e32ac980d57652d8ddbe9665b86aab69b37a4327bd_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:0ef830a815d07df60291e9c7b89a03dd40c0ceabfc3071f1fe188575f65a0542_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:59bc241a2a06804393a63785eeb8f0a8165a99263f08e0ffc3e727671c214114_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:af26444b2b45eb9c726b8d0cc92f023c4f4e52c9fb839198ad862d6513e2683f_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:0a189209a84ceddfbbfdba58e43fe94b5ddd211982a58a0929eb9997d3bf585a_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:2d8b7f64fa620bfce0130c52b977942ec9118fafddc9c090994609ab274df00c_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:a18b4c58e2b285058541b77a47d6482a9db6be58756651df3b3c648548a44f8e_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:cebcaaef5272faa6e6f147eeb966803b7cb3d3fbc86514132f6ad2e8b51e4557_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:64c957565dd799994cab0828a9c1169c128ca20e8b103af6b6ac2f422077e322_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:8c8aa38871ee6d945a186d0e3a7b129bafd08d53e52278e1eb6d8011491240dd_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:a473e11982fd3d970a3e28d7e103ee40fd50217cb0de7028edfae345c34bcbc0_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:ccf2448519c0998d9843fa570f128f420326e849c8c69dd3c5b526c3444d9f50_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:7bda73fcb94b412a8799bd11915066b07ed341fed2cd0ab81776f4c601926b54_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:992588aab0cfe3ec909418e827ca46828d0a07d9e3e1479fed437c9c445d7ff0_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:a80038bcbb994457fda1443b37dee5fbe66bbb02972b38139a9877e978c73835_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:cf2318bcce1f1a565bcfdb722d89e0ddb2e88a523db237e926def3934add78e5_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:7bfbb56d32556a602f9bbe422ea0a583e7e79e0de7503ce362962b3ffc5e5d62_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:aef0c6d237fba5ce37a219b78da4e7c566c6de1d37a9fcd0529c514322f09e77_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:b2361437d1f6d5ee61b23867ea903668f611f76cc76142713785b2faa00fcd63_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:fecc167995f30887629cd176971af5f7b3cb1cc377f8e3a329008e83133e8361_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:4570de210e87e6d64af57fe4ecb072e732365e62e7a23c3b1a8c04cf508bc876_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:6d070525b6e7b75f61f2999dac4dbcbc6fda96c882a17978e7bf8edbc008847b_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:92ee83df52ef773c4bcad66c277f608832de60b2bd00adb41fb877e33040077b_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:be7f5c4ca3cbba8944f0c275ccf847b701c6ae7a25052272fb80d8144f61fc9c_arm64"
],
"known_not_affected": [
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-operator-bundle@sha256:24c95ad401a653c88d072a7753052850cfa6738686ce9aec7ba5f6fcbc92e7fc_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:189d8de6e11f86cd47891d2268c2a91134a6fe617ecbbc433dda7a7f68519421_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:61007260c34ec5113e4286f679a5377c64fb6ad934aee5de6928f4c06c54e969_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:779614a189b230b5c78cd28e360d9e7fabb519aef73a5acacb26b3c26716c68d_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:898bf1c9ee31508ffb2d72deaa97f0b02639e22063788448bbe55f5b98d8db7b_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:0a2acfdea8fb6b49a6117d8914e9ae56bc4668ce882131a47923fc0c7ab7c6b6_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:37415ef53ed46fcc1fd8010da38f13ffc9015f8435306b7dcf16bb3ed117083b_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:626527f0b4701d00b845c8bca201f81756a0577a555447ea90b8903b0f968e12_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:98ad870b2929bc5db27a7cf0f9f0791f82d6889673ce7d102838616c466af612_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:2d1e27a8dc06bc78b251796816e89ff0ad7ee91ccd9077db47d245fb5ae5d291_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:c472058fc730b6ea6d064cd77dfa583340976209afe109fee9296012f02df66f_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:d3ca3c7f85c104a6ae087dccd37e328e1cdeb5b93a880b48e1f2c99c015fd101_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:fa3f9534ea19d8828c2342b3557f652196aec37552fa49e83af6dd1b0c356d69_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-39829"
},
{
"category": "external",
"summary": "RHBZ#2480681",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2480681"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-39829",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-39829"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-39829",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-39829"
},
{
"category": "external",
"summary": "https://go.dev/cl/781641",
"url": "https://go.dev/cl/781641"
},
{
"category": "external",
"summary": "https://go.dev/cl/781661",
"url": "https://go.dev/cl/781661"
},
{
"category": "external",
"summary": "https://go.dev/issue/79565",
"url": "https://go.dev/issue/79565"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/a082jnz-LvI",
"url": "https://groups.google.com/g/golang-announce/c/a082jnz-LvI"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-5018",
"url": "https://pkg.go.dev/vuln/GO-2026-5018"
}
],
"release_date": "2026-05-22T02:31:27.324000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T09:20:18+00:00",
"details": "It is recommended that existing users of Red Hat OpenShift Builds 1.7.3 upgrade to 1.7.4",
"product_ids": [
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:09fdae42b81088e67a3f29e32ac980d57652d8ddbe9665b86aab69b37a4327bd_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:0ef830a815d07df60291e9c7b89a03dd40c0ceabfc3071f1fe188575f65a0542_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:59bc241a2a06804393a63785eeb8f0a8165a99263f08e0ffc3e727671c214114_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:af26444b2b45eb9c726b8d0cc92f023c4f4e52c9fb839198ad862d6513e2683f_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:0a189209a84ceddfbbfdba58e43fe94b5ddd211982a58a0929eb9997d3bf585a_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:2d8b7f64fa620bfce0130c52b977942ec9118fafddc9c090994609ab274df00c_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:a18b4c58e2b285058541b77a47d6482a9db6be58756651df3b3c648548a44f8e_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:cebcaaef5272faa6e6f147eeb966803b7cb3d3fbc86514132f6ad2e8b51e4557_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:64c957565dd799994cab0828a9c1169c128ca20e8b103af6b6ac2f422077e322_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:8c8aa38871ee6d945a186d0e3a7b129bafd08d53e52278e1eb6d8011491240dd_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:a473e11982fd3d970a3e28d7e103ee40fd50217cb0de7028edfae345c34bcbc0_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:ccf2448519c0998d9843fa570f128f420326e849c8c69dd3c5b526c3444d9f50_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:7bda73fcb94b412a8799bd11915066b07ed341fed2cd0ab81776f4c601926b54_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:992588aab0cfe3ec909418e827ca46828d0a07d9e3e1479fed437c9c445d7ff0_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:a80038bcbb994457fda1443b37dee5fbe66bbb02972b38139a9877e978c73835_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:cf2318bcce1f1a565bcfdb722d89e0ddb2e88a523db237e926def3934add78e5_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:7bfbb56d32556a602f9bbe422ea0a583e7e79e0de7503ce362962b3ffc5e5d62_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:aef0c6d237fba5ce37a219b78da4e7c566c6de1d37a9fcd0529c514322f09e77_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:b2361437d1f6d5ee61b23867ea903668f611f76cc76142713785b2faa00fcd63_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:fecc167995f30887629cd176971af5f7b3cb1cc377f8e3a329008e83133e8361_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:4570de210e87e6d64af57fe4ecb072e732365e62e7a23c3b1a8c04cf508bc876_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:6d070525b6e7b75f61f2999dac4dbcbc6fda96c882a17978e7bf8edbc008847b_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:92ee83df52ef773c4bcad66c277f608832de60b2bd00adb41fb877e33040077b_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:be7f5c4ca3cbba8944f0c275ccf847b701c6ae7a25052272fb80d8144f61fc9c_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36648"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability.",
"product_ids": [
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:09fdae42b81088e67a3f29e32ac980d57652d8ddbe9665b86aab69b37a4327bd_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:0ef830a815d07df60291e9c7b89a03dd40c0ceabfc3071f1fe188575f65a0542_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:59bc241a2a06804393a63785eeb8f0a8165a99263f08e0ffc3e727671c214114_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:af26444b2b45eb9c726b8d0cc92f023c4f4e52c9fb839198ad862d6513e2683f_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:0a189209a84ceddfbbfdba58e43fe94b5ddd211982a58a0929eb9997d3bf585a_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:2d8b7f64fa620bfce0130c52b977942ec9118fafddc9c090994609ab274df00c_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:a18b4c58e2b285058541b77a47d6482a9db6be58756651df3b3c648548a44f8e_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:cebcaaef5272faa6e6f147eeb966803b7cb3d3fbc86514132f6ad2e8b51e4557_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:64c957565dd799994cab0828a9c1169c128ca20e8b103af6b6ac2f422077e322_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:8c8aa38871ee6d945a186d0e3a7b129bafd08d53e52278e1eb6d8011491240dd_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:a473e11982fd3d970a3e28d7e103ee40fd50217cb0de7028edfae345c34bcbc0_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:ccf2448519c0998d9843fa570f128f420326e849c8c69dd3c5b526c3444d9f50_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:7bda73fcb94b412a8799bd11915066b07ed341fed2cd0ab81776f4c601926b54_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:992588aab0cfe3ec909418e827ca46828d0a07d9e3e1479fed437c9c445d7ff0_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:a80038bcbb994457fda1443b37dee5fbe66bbb02972b38139a9877e978c73835_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:cf2318bcce1f1a565bcfdb722d89e0ddb2e88a523db237e926def3934add78e5_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-operator-bundle@sha256:24c95ad401a653c88d072a7753052850cfa6738686ce9aec7ba5f6fcbc92e7fc_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:189d8de6e11f86cd47891d2268c2a91134a6fe617ecbbc433dda7a7f68519421_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:61007260c34ec5113e4286f679a5377c64fb6ad934aee5de6928f4c06c54e969_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:779614a189b230b5c78cd28e360d9e7fabb519aef73a5acacb26b3c26716c68d_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:898bf1c9ee31508ffb2d72deaa97f0b02639e22063788448bbe55f5b98d8db7b_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:0a2acfdea8fb6b49a6117d8914e9ae56bc4668ce882131a47923fc0c7ab7c6b6_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:37415ef53ed46fcc1fd8010da38f13ffc9015f8435306b7dcf16bb3ed117083b_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:626527f0b4701d00b845c8bca201f81756a0577a555447ea90b8903b0f968e12_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:98ad870b2929bc5db27a7cf0f9f0791f82d6889673ce7d102838616c466af612_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:2d1e27a8dc06bc78b251796816e89ff0ad7ee91ccd9077db47d245fb5ae5d291_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:c472058fc730b6ea6d064cd77dfa583340976209afe109fee9296012f02df66f_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:d3ca3c7f85c104a6ae087dccd37e328e1cdeb5b93a880b48e1f2c99c015fd101_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:fa3f9534ea19d8828c2342b3557f652196aec37552fa49e83af6dd1b0c356d69_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:7bfbb56d32556a602f9bbe422ea0a583e7e79e0de7503ce362962b3ffc5e5d62_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:aef0c6d237fba5ce37a219b78da4e7c566c6de1d37a9fcd0529c514322f09e77_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:b2361437d1f6d5ee61b23867ea903668f611f76cc76142713785b2faa00fcd63_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:fecc167995f30887629cd176971af5f7b3cb1cc377f8e3a329008e83133e8361_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:4570de210e87e6d64af57fe4ecb072e732365e62e7a23c3b1a8c04cf508bc876_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:6d070525b6e7b75f61f2999dac4dbcbc6fda96c882a17978e7bf8edbc008847b_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:92ee83df52ef773c4bcad66c277f608832de60b2bd00adb41fb877e33040077b_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:be7f5c4ca3cbba8944f0c275ccf847b701c6ae7a25052272fb80d8144f61fc9c_arm64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:09fdae42b81088e67a3f29e32ac980d57652d8ddbe9665b86aab69b37a4327bd_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:0ef830a815d07df60291e9c7b89a03dd40c0ceabfc3071f1fe188575f65a0542_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:59bc241a2a06804393a63785eeb8f0a8165a99263f08e0ffc3e727671c214114_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:af26444b2b45eb9c726b8d0cc92f023c4f4e52c9fb839198ad862d6513e2683f_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:0a189209a84ceddfbbfdba58e43fe94b5ddd211982a58a0929eb9997d3bf585a_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:2d8b7f64fa620bfce0130c52b977942ec9118fafddc9c090994609ab274df00c_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:a18b4c58e2b285058541b77a47d6482a9db6be58756651df3b3c648548a44f8e_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:cebcaaef5272faa6e6f147eeb966803b7cb3d3fbc86514132f6ad2e8b51e4557_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:64c957565dd799994cab0828a9c1169c128ca20e8b103af6b6ac2f422077e322_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:8c8aa38871ee6d945a186d0e3a7b129bafd08d53e52278e1eb6d8011491240dd_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:a473e11982fd3d970a3e28d7e103ee40fd50217cb0de7028edfae345c34bcbc0_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:ccf2448519c0998d9843fa570f128f420326e849c8c69dd3c5b526c3444d9f50_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:7bda73fcb94b412a8799bd11915066b07ed341fed2cd0ab81776f4c601926b54_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:992588aab0cfe3ec909418e827ca46828d0a07d9e3e1479fed437c9c445d7ff0_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:a80038bcbb994457fda1443b37dee5fbe66bbb02972b38139a9877e978c73835_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:cf2318bcce1f1a565bcfdb722d89e0ddb2e88a523db237e926def3934add78e5_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-operator-bundle@sha256:24c95ad401a653c88d072a7753052850cfa6738686ce9aec7ba5f6fcbc92e7fc_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:189d8de6e11f86cd47891d2268c2a91134a6fe617ecbbc433dda7a7f68519421_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:61007260c34ec5113e4286f679a5377c64fb6ad934aee5de6928f4c06c54e969_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:779614a189b230b5c78cd28e360d9e7fabb519aef73a5acacb26b3c26716c68d_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:898bf1c9ee31508ffb2d72deaa97f0b02639e22063788448bbe55f5b98d8db7b_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:0a2acfdea8fb6b49a6117d8914e9ae56bc4668ce882131a47923fc0c7ab7c6b6_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:37415ef53ed46fcc1fd8010da38f13ffc9015f8435306b7dcf16bb3ed117083b_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:626527f0b4701d00b845c8bca201f81756a0577a555447ea90b8903b0f968e12_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:98ad870b2929bc5db27a7cf0f9f0791f82d6889673ce7d102838616c466af612_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:2d1e27a8dc06bc78b251796816e89ff0ad7ee91ccd9077db47d245fb5ae5d291_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:c472058fc730b6ea6d064cd77dfa583340976209afe109fee9296012f02df66f_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:d3ca3c7f85c104a6ae087dccd37e328e1cdeb5b93a880b48e1f2c99c015fd101_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:fa3f9534ea19d8828c2342b3557f652196aec37552fa49e83af6dd1b0c356d69_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:7bfbb56d32556a602f9bbe422ea0a583e7e79e0de7503ce362962b3ffc5e5d62_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:aef0c6d237fba5ce37a219b78da4e7c566c6de1d37a9fcd0529c514322f09e77_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:b2361437d1f6d5ee61b23867ea903668f611f76cc76142713785b2faa00fcd63_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:fecc167995f30887629cd176971af5f7b3cb1cc377f8e3a329008e83133e8361_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:4570de210e87e6d64af57fe4ecb072e732365e62e7a23c3b1a8c04cf508bc876_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:6d070525b6e7b75f61f2999dac4dbcbc6fda96c882a17978e7bf8edbc008847b_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:92ee83df52ef773c4bcad66c277f608832de60b2bd00adb41fb877e33040077b_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:be7f5c4ca3cbba8944f0c275ccf847b701c6ae7a25052272fb80d8144f61fc9c_arm64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang.org/x/crypto/ssh: golang.org/x/crypto/ssh: Denial of Service via crafted public key with excessive parameters"
},
{
"cve": "CVE-2026-39830",
"cwe": {
"id": "CWE-772",
"name": "Missing Release of Resource after Effective Lifetime"
},
"discovery_date": "2026-05-22T04:01:38.517202+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-operator-bundle@sha256:24c95ad401a653c88d072a7753052850cfa6738686ce9aec7ba5f6fcbc92e7fc_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:189d8de6e11f86cd47891d2268c2a91134a6fe617ecbbc433dda7a7f68519421_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:61007260c34ec5113e4286f679a5377c64fb6ad934aee5de6928f4c06c54e969_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:779614a189b230b5c78cd28e360d9e7fabb519aef73a5acacb26b3c26716c68d_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:898bf1c9ee31508ffb2d72deaa97f0b02639e22063788448bbe55f5b98d8db7b_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:0a2acfdea8fb6b49a6117d8914e9ae56bc4668ce882131a47923fc0c7ab7c6b6_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:37415ef53ed46fcc1fd8010da38f13ffc9015f8435306b7dcf16bb3ed117083b_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:626527f0b4701d00b845c8bca201f81756a0577a555447ea90b8903b0f968e12_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:98ad870b2929bc5db27a7cf0f9f0791f82d6889673ce7d102838616c466af612_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:2d1e27a8dc06bc78b251796816e89ff0ad7ee91ccd9077db47d245fb5ae5d291_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:c472058fc730b6ea6d064cd77dfa583340976209afe109fee9296012f02df66f_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:d3ca3c7f85c104a6ae087dccd37e328e1cdeb5b93a880b48e1f2c99c015fd101_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:fa3f9534ea19d8828c2342b3557f652196aec37552fa49e83af6dd1b0c356d69_ppc64le"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2480684"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in golang.org/x/crypto/ssh. A remote malicious SSH peer can exploit this by sending unsolicited global request responses, which fills an internal buffer and blocks the connection\u0027s read loop. This prevents the associated resources from being released, leading to a resource leak per connection. The consequence is a Denial of Service (DoS) for the affected system.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang.org/x/crypto/ssh: golang.org/x/crypto/ssh: Denial of Service via resource leak from unsolicited SSH responses",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This is an Important denial of service flaw in `golang.org/x/crypto/ssh`. A remote, unauthenticated attacker can exploit this vulnerability by sending unsolicited global request responses to an affected SSH server, leading to resource exhaustion and a denial of service. The impact is considered Important due to the potential for unauthenticated remote disruption of services utilizing the vulnerable SSH library.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:09fdae42b81088e67a3f29e32ac980d57652d8ddbe9665b86aab69b37a4327bd_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:0ef830a815d07df60291e9c7b89a03dd40c0ceabfc3071f1fe188575f65a0542_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:59bc241a2a06804393a63785eeb8f0a8165a99263f08e0ffc3e727671c214114_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:af26444b2b45eb9c726b8d0cc92f023c4f4e52c9fb839198ad862d6513e2683f_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:0a189209a84ceddfbbfdba58e43fe94b5ddd211982a58a0929eb9997d3bf585a_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:2d8b7f64fa620bfce0130c52b977942ec9118fafddc9c090994609ab274df00c_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:a18b4c58e2b285058541b77a47d6482a9db6be58756651df3b3c648548a44f8e_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:cebcaaef5272faa6e6f147eeb966803b7cb3d3fbc86514132f6ad2e8b51e4557_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:64c957565dd799994cab0828a9c1169c128ca20e8b103af6b6ac2f422077e322_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:8c8aa38871ee6d945a186d0e3a7b129bafd08d53e52278e1eb6d8011491240dd_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:a473e11982fd3d970a3e28d7e103ee40fd50217cb0de7028edfae345c34bcbc0_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:ccf2448519c0998d9843fa570f128f420326e849c8c69dd3c5b526c3444d9f50_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:7bda73fcb94b412a8799bd11915066b07ed341fed2cd0ab81776f4c601926b54_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:992588aab0cfe3ec909418e827ca46828d0a07d9e3e1479fed437c9c445d7ff0_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:a80038bcbb994457fda1443b37dee5fbe66bbb02972b38139a9877e978c73835_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:cf2318bcce1f1a565bcfdb722d89e0ddb2e88a523db237e926def3934add78e5_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:7bfbb56d32556a602f9bbe422ea0a583e7e79e0de7503ce362962b3ffc5e5d62_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:aef0c6d237fba5ce37a219b78da4e7c566c6de1d37a9fcd0529c514322f09e77_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:b2361437d1f6d5ee61b23867ea903668f611f76cc76142713785b2faa00fcd63_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:fecc167995f30887629cd176971af5f7b3cb1cc377f8e3a329008e83133e8361_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:4570de210e87e6d64af57fe4ecb072e732365e62e7a23c3b1a8c04cf508bc876_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:6d070525b6e7b75f61f2999dac4dbcbc6fda96c882a17978e7bf8edbc008847b_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:92ee83df52ef773c4bcad66c277f608832de60b2bd00adb41fb877e33040077b_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:be7f5c4ca3cbba8944f0c275ccf847b701c6ae7a25052272fb80d8144f61fc9c_arm64"
],
"known_not_affected": [
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-operator-bundle@sha256:24c95ad401a653c88d072a7753052850cfa6738686ce9aec7ba5f6fcbc92e7fc_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:189d8de6e11f86cd47891d2268c2a91134a6fe617ecbbc433dda7a7f68519421_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:61007260c34ec5113e4286f679a5377c64fb6ad934aee5de6928f4c06c54e969_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:779614a189b230b5c78cd28e360d9e7fabb519aef73a5acacb26b3c26716c68d_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:898bf1c9ee31508ffb2d72deaa97f0b02639e22063788448bbe55f5b98d8db7b_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:0a2acfdea8fb6b49a6117d8914e9ae56bc4668ce882131a47923fc0c7ab7c6b6_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:37415ef53ed46fcc1fd8010da38f13ffc9015f8435306b7dcf16bb3ed117083b_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:626527f0b4701d00b845c8bca201f81756a0577a555447ea90b8903b0f968e12_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:98ad870b2929bc5db27a7cf0f9f0791f82d6889673ce7d102838616c466af612_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:2d1e27a8dc06bc78b251796816e89ff0ad7ee91ccd9077db47d245fb5ae5d291_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:c472058fc730b6ea6d064cd77dfa583340976209afe109fee9296012f02df66f_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:d3ca3c7f85c104a6ae087dccd37e328e1cdeb5b93a880b48e1f2c99c015fd101_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:fa3f9534ea19d8828c2342b3557f652196aec37552fa49e83af6dd1b0c356d69_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-39830"
},
{
"category": "external",
"summary": "RHBZ#2480684",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2480684"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-39830",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-39830"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-39830",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-39830"
},
{
"category": "external",
"summary": "https://go.dev/cl/781640",
"url": "https://go.dev/cl/781640"
},
{
"category": "external",
"summary": "https://go.dev/cl/781664",
"url": "https://go.dev/cl/781664"
},
{
"category": "external",
"summary": "https://go.dev/issue/79564",
"url": "https://go.dev/issue/79564"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/a082jnz-LvI",
"url": "https://groups.google.com/g/golang-announce/c/a082jnz-LvI"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-5017",
"url": "https://pkg.go.dev/vuln/GO-2026-5017"
}
],
"release_date": "2026-05-22T02:31:27.208000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T09:20:18+00:00",
"details": "It is recommended that existing users of Red Hat OpenShift Builds 1.7.3 upgrade to 1.7.4",
"product_ids": [
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:09fdae42b81088e67a3f29e32ac980d57652d8ddbe9665b86aab69b37a4327bd_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:0ef830a815d07df60291e9c7b89a03dd40c0ceabfc3071f1fe188575f65a0542_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:59bc241a2a06804393a63785eeb8f0a8165a99263f08e0ffc3e727671c214114_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:af26444b2b45eb9c726b8d0cc92f023c4f4e52c9fb839198ad862d6513e2683f_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:0a189209a84ceddfbbfdba58e43fe94b5ddd211982a58a0929eb9997d3bf585a_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:2d8b7f64fa620bfce0130c52b977942ec9118fafddc9c090994609ab274df00c_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:a18b4c58e2b285058541b77a47d6482a9db6be58756651df3b3c648548a44f8e_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:cebcaaef5272faa6e6f147eeb966803b7cb3d3fbc86514132f6ad2e8b51e4557_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:64c957565dd799994cab0828a9c1169c128ca20e8b103af6b6ac2f422077e322_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:8c8aa38871ee6d945a186d0e3a7b129bafd08d53e52278e1eb6d8011491240dd_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:a473e11982fd3d970a3e28d7e103ee40fd50217cb0de7028edfae345c34bcbc0_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:ccf2448519c0998d9843fa570f128f420326e849c8c69dd3c5b526c3444d9f50_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:7bda73fcb94b412a8799bd11915066b07ed341fed2cd0ab81776f4c601926b54_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:992588aab0cfe3ec909418e827ca46828d0a07d9e3e1479fed437c9c445d7ff0_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:a80038bcbb994457fda1443b37dee5fbe66bbb02972b38139a9877e978c73835_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:cf2318bcce1f1a565bcfdb722d89e0ddb2e88a523db237e926def3934add78e5_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:7bfbb56d32556a602f9bbe422ea0a583e7e79e0de7503ce362962b3ffc5e5d62_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:aef0c6d237fba5ce37a219b78da4e7c566c6de1d37a9fcd0529c514322f09e77_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:b2361437d1f6d5ee61b23867ea903668f611f76cc76142713785b2faa00fcd63_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:fecc167995f30887629cd176971af5f7b3cb1cc377f8e3a329008e83133e8361_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:4570de210e87e6d64af57fe4ecb072e732365e62e7a23c3b1a8c04cf508bc876_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:6d070525b6e7b75f61f2999dac4dbcbc6fda96c882a17978e7bf8edbc008847b_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:92ee83df52ef773c4bcad66c277f608832de60b2bd00adb41fb877e33040077b_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:be7f5c4ca3cbba8944f0c275ccf847b701c6ae7a25052272fb80d8144f61fc9c_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36648"
},
{
"category": "workaround",
"details": "To mitigate this denial of service vulnerability, restrict network access to any service that utilizes the `golang.org/x/crypto/ssh` library and is exposed to untrusted networks. Implement firewall rules to allow connections only from trusted hosts or networks. This action limits the ability of malicious peers to send unsolicited global request responses. A restart of the affected service may be necessary for the new network rules to be applied effectively.",
"product_ids": [
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:09fdae42b81088e67a3f29e32ac980d57652d8ddbe9665b86aab69b37a4327bd_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:0ef830a815d07df60291e9c7b89a03dd40c0ceabfc3071f1fe188575f65a0542_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:59bc241a2a06804393a63785eeb8f0a8165a99263f08e0ffc3e727671c214114_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:af26444b2b45eb9c726b8d0cc92f023c4f4e52c9fb839198ad862d6513e2683f_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:0a189209a84ceddfbbfdba58e43fe94b5ddd211982a58a0929eb9997d3bf585a_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:2d8b7f64fa620bfce0130c52b977942ec9118fafddc9c090994609ab274df00c_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:a18b4c58e2b285058541b77a47d6482a9db6be58756651df3b3c648548a44f8e_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:cebcaaef5272faa6e6f147eeb966803b7cb3d3fbc86514132f6ad2e8b51e4557_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:64c957565dd799994cab0828a9c1169c128ca20e8b103af6b6ac2f422077e322_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:8c8aa38871ee6d945a186d0e3a7b129bafd08d53e52278e1eb6d8011491240dd_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:a473e11982fd3d970a3e28d7e103ee40fd50217cb0de7028edfae345c34bcbc0_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:ccf2448519c0998d9843fa570f128f420326e849c8c69dd3c5b526c3444d9f50_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:7bda73fcb94b412a8799bd11915066b07ed341fed2cd0ab81776f4c601926b54_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:992588aab0cfe3ec909418e827ca46828d0a07d9e3e1479fed437c9c445d7ff0_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:a80038bcbb994457fda1443b37dee5fbe66bbb02972b38139a9877e978c73835_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:cf2318bcce1f1a565bcfdb722d89e0ddb2e88a523db237e926def3934add78e5_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-operator-bundle@sha256:24c95ad401a653c88d072a7753052850cfa6738686ce9aec7ba5f6fcbc92e7fc_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:189d8de6e11f86cd47891d2268c2a91134a6fe617ecbbc433dda7a7f68519421_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:61007260c34ec5113e4286f679a5377c64fb6ad934aee5de6928f4c06c54e969_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:779614a189b230b5c78cd28e360d9e7fabb519aef73a5acacb26b3c26716c68d_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:898bf1c9ee31508ffb2d72deaa97f0b02639e22063788448bbe55f5b98d8db7b_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:0a2acfdea8fb6b49a6117d8914e9ae56bc4668ce882131a47923fc0c7ab7c6b6_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:37415ef53ed46fcc1fd8010da38f13ffc9015f8435306b7dcf16bb3ed117083b_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:626527f0b4701d00b845c8bca201f81756a0577a555447ea90b8903b0f968e12_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:98ad870b2929bc5db27a7cf0f9f0791f82d6889673ce7d102838616c466af612_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:2d1e27a8dc06bc78b251796816e89ff0ad7ee91ccd9077db47d245fb5ae5d291_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:c472058fc730b6ea6d064cd77dfa583340976209afe109fee9296012f02df66f_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:d3ca3c7f85c104a6ae087dccd37e328e1cdeb5b93a880b48e1f2c99c015fd101_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:fa3f9534ea19d8828c2342b3557f652196aec37552fa49e83af6dd1b0c356d69_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:7bfbb56d32556a602f9bbe422ea0a583e7e79e0de7503ce362962b3ffc5e5d62_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:aef0c6d237fba5ce37a219b78da4e7c566c6de1d37a9fcd0529c514322f09e77_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:b2361437d1f6d5ee61b23867ea903668f611f76cc76142713785b2faa00fcd63_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:fecc167995f30887629cd176971af5f7b3cb1cc377f8e3a329008e83133e8361_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:4570de210e87e6d64af57fe4ecb072e732365e62e7a23c3b1a8c04cf508bc876_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:6d070525b6e7b75f61f2999dac4dbcbc6fda96c882a17978e7bf8edbc008847b_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:92ee83df52ef773c4bcad66c277f608832de60b2bd00adb41fb877e33040077b_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:be7f5c4ca3cbba8944f0c275ccf847b701c6ae7a25052272fb80d8144f61fc9c_arm64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:09fdae42b81088e67a3f29e32ac980d57652d8ddbe9665b86aab69b37a4327bd_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:0ef830a815d07df60291e9c7b89a03dd40c0ceabfc3071f1fe188575f65a0542_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:59bc241a2a06804393a63785eeb8f0a8165a99263f08e0ffc3e727671c214114_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:af26444b2b45eb9c726b8d0cc92f023c4f4e52c9fb839198ad862d6513e2683f_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:0a189209a84ceddfbbfdba58e43fe94b5ddd211982a58a0929eb9997d3bf585a_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:2d8b7f64fa620bfce0130c52b977942ec9118fafddc9c090994609ab274df00c_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:a18b4c58e2b285058541b77a47d6482a9db6be58756651df3b3c648548a44f8e_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:cebcaaef5272faa6e6f147eeb966803b7cb3d3fbc86514132f6ad2e8b51e4557_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:64c957565dd799994cab0828a9c1169c128ca20e8b103af6b6ac2f422077e322_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:8c8aa38871ee6d945a186d0e3a7b129bafd08d53e52278e1eb6d8011491240dd_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:a473e11982fd3d970a3e28d7e103ee40fd50217cb0de7028edfae345c34bcbc0_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:ccf2448519c0998d9843fa570f128f420326e849c8c69dd3c5b526c3444d9f50_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:7bda73fcb94b412a8799bd11915066b07ed341fed2cd0ab81776f4c601926b54_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:992588aab0cfe3ec909418e827ca46828d0a07d9e3e1479fed437c9c445d7ff0_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:a80038bcbb994457fda1443b37dee5fbe66bbb02972b38139a9877e978c73835_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:cf2318bcce1f1a565bcfdb722d89e0ddb2e88a523db237e926def3934add78e5_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-operator-bundle@sha256:24c95ad401a653c88d072a7753052850cfa6738686ce9aec7ba5f6fcbc92e7fc_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:189d8de6e11f86cd47891d2268c2a91134a6fe617ecbbc433dda7a7f68519421_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:61007260c34ec5113e4286f679a5377c64fb6ad934aee5de6928f4c06c54e969_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:779614a189b230b5c78cd28e360d9e7fabb519aef73a5acacb26b3c26716c68d_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:898bf1c9ee31508ffb2d72deaa97f0b02639e22063788448bbe55f5b98d8db7b_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:0a2acfdea8fb6b49a6117d8914e9ae56bc4668ce882131a47923fc0c7ab7c6b6_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:37415ef53ed46fcc1fd8010da38f13ffc9015f8435306b7dcf16bb3ed117083b_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:626527f0b4701d00b845c8bca201f81756a0577a555447ea90b8903b0f968e12_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:98ad870b2929bc5db27a7cf0f9f0791f82d6889673ce7d102838616c466af612_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:2d1e27a8dc06bc78b251796816e89ff0ad7ee91ccd9077db47d245fb5ae5d291_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:c472058fc730b6ea6d064cd77dfa583340976209afe109fee9296012f02df66f_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:d3ca3c7f85c104a6ae087dccd37e328e1cdeb5b93a880b48e1f2c99c015fd101_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:fa3f9534ea19d8828c2342b3557f652196aec37552fa49e83af6dd1b0c356d69_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:7bfbb56d32556a602f9bbe422ea0a583e7e79e0de7503ce362962b3ffc5e5d62_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:aef0c6d237fba5ce37a219b78da4e7c566c6de1d37a9fcd0529c514322f09e77_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:b2361437d1f6d5ee61b23867ea903668f611f76cc76142713785b2faa00fcd63_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:fecc167995f30887629cd176971af5f7b3cb1cc377f8e3a329008e83133e8361_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:4570de210e87e6d64af57fe4ecb072e732365e62e7a23c3b1a8c04cf508bc876_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:6d070525b6e7b75f61f2999dac4dbcbc6fda96c882a17978e7bf8edbc008847b_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:92ee83df52ef773c4bcad66c277f608832de60b2bd00adb41fb877e33040077b_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:be7f5c4ca3cbba8944f0c275ccf847b701c6ae7a25052272fb80d8144f61fc9c_arm64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang.org/x/crypto/ssh: golang.org/x/crypto/ssh: Denial of Service via resource leak from unsolicited SSH responses"
},
{
"cve": "CVE-2026-39832",
"cwe": {
"id": "CWE-281",
"name": "Improper Preservation of Permissions"
},
"discovery_date": "2026-05-22T04:01:41.402561+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-operator-bundle@sha256:24c95ad401a653c88d072a7753052850cfa6738686ce9aec7ba5f6fcbc92e7fc_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:189d8de6e11f86cd47891d2268c2a91134a6fe617ecbbc433dda7a7f68519421_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:61007260c34ec5113e4286f679a5377c64fb6ad934aee5de6928f4c06c54e969_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:779614a189b230b5c78cd28e360d9e7fabb519aef73a5acacb26b3c26716c68d_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:898bf1c9ee31508ffb2d72deaa97f0b02639e22063788448bbe55f5b98d8db7b_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:0a2acfdea8fb6b49a6117d8914e9ae56bc4668ce882131a47923fc0c7ab7c6b6_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:37415ef53ed46fcc1fd8010da38f13ffc9015f8435306b7dcf16bb3ed117083b_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:626527f0b4701d00b845c8bca201f81756a0577a555447ea90b8903b0f968e12_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:98ad870b2929bc5db27a7cf0f9f0791f82d6889673ce7d102838616c466af612_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:2d1e27a8dc06bc78b251796816e89ff0ad7ee91ccd9077db47d245fb5ae5d291_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:c472058fc730b6ea6d064cd77dfa583340976209afe109fee9296012f02df66f_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:d3ca3c7f85c104a6ae087dccd37e328e1cdeb5b93a880b48e1f2c99c015fd101_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:fa3f9534ea19d8828c2342b3557f652196aec37552fa49e83af6dd1b0c356d69_ppc64le"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2480685"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in golang.org/x/crypto/ssh/agent. When a key was added to a remote agent, security restrictions, known as constraint extensions, were not properly processed during the request. This allowed these restrictions to be silently removed when keys were forwarded, leading to the unrestricted use of the key on the remote host. This vulnerability could enable an attacker to bypass intended security controls and perform unauthorized actions.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang.org/x/crypto/ssh/agent: golang.org/x/crypto/ssh/agent: Security bypass due to improper handling of key restrictions",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This Important vulnerability in `golang.org/x/crypto/ssh/agent` allows for a security bypass when SSH keys with destination restrictions are forwarded via an SSH agent. This flaw could lead to unintended exposure of SSH keys, enabling an attacker to use the forwarded key without the specified restrictions on remote hosts. Red Hat products utilizing `golang.org/x/crypto/ssh/agent` for key forwarding may be affected if users rely on constraint extensions for limiting key usage.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:09fdae42b81088e67a3f29e32ac980d57652d8ddbe9665b86aab69b37a4327bd_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:0ef830a815d07df60291e9c7b89a03dd40c0ceabfc3071f1fe188575f65a0542_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:59bc241a2a06804393a63785eeb8f0a8165a99263f08e0ffc3e727671c214114_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:af26444b2b45eb9c726b8d0cc92f023c4f4e52c9fb839198ad862d6513e2683f_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:0a189209a84ceddfbbfdba58e43fe94b5ddd211982a58a0929eb9997d3bf585a_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:2d8b7f64fa620bfce0130c52b977942ec9118fafddc9c090994609ab274df00c_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:a18b4c58e2b285058541b77a47d6482a9db6be58756651df3b3c648548a44f8e_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:cebcaaef5272faa6e6f147eeb966803b7cb3d3fbc86514132f6ad2e8b51e4557_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:64c957565dd799994cab0828a9c1169c128ca20e8b103af6b6ac2f422077e322_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:8c8aa38871ee6d945a186d0e3a7b129bafd08d53e52278e1eb6d8011491240dd_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:a473e11982fd3d970a3e28d7e103ee40fd50217cb0de7028edfae345c34bcbc0_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:ccf2448519c0998d9843fa570f128f420326e849c8c69dd3c5b526c3444d9f50_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:7bda73fcb94b412a8799bd11915066b07ed341fed2cd0ab81776f4c601926b54_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:992588aab0cfe3ec909418e827ca46828d0a07d9e3e1479fed437c9c445d7ff0_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:a80038bcbb994457fda1443b37dee5fbe66bbb02972b38139a9877e978c73835_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:cf2318bcce1f1a565bcfdb722d89e0ddb2e88a523db237e926def3934add78e5_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:7bfbb56d32556a602f9bbe422ea0a583e7e79e0de7503ce362962b3ffc5e5d62_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:aef0c6d237fba5ce37a219b78da4e7c566c6de1d37a9fcd0529c514322f09e77_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:b2361437d1f6d5ee61b23867ea903668f611f76cc76142713785b2faa00fcd63_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:fecc167995f30887629cd176971af5f7b3cb1cc377f8e3a329008e83133e8361_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:4570de210e87e6d64af57fe4ecb072e732365e62e7a23c3b1a8c04cf508bc876_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:6d070525b6e7b75f61f2999dac4dbcbc6fda96c882a17978e7bf8edbc008847b_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:92ee83df52ef773c4bcad66c277f608832de60b2bd00adb41fb877e33040077b_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:be7f5c4ca3cbba8944f0c275ccf847b701c6ae7a25052272fb80d8144f61fc9c_arm64"
],
"known_not_affected": [
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-operator-bundle@sha256:24c95ad401a653c88d072a7753052850cfa6738686ce9aec7ba5f6fcbc92e7fc_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:189d8de6e11f86cd47891d2268c2a91134a6fe617ecbbc433dda7a7f68519421_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:61007260c34ec5113e4286f679a5377c64fb6ad934aee5de6928f4c06c54e969_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:779614a189b230b5c78cd28e360d9e7fabb519aef73a5acacb26b3c26716c68d_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:898bf1c9ee31508ffb2d72deaa97f0b02639e22063788448bbe55f5b98d8db7b_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:0a2acfdea8fb6b49a6117d8914e9ae56bc4668ce882131a47923fc0c7ab7c6b6_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:37415ef53ed46fcc1fd8010da38f13ffc9015f8435306b7dcf16bb3ed117083b_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:626527f0b4701d00b845c8bca201f81756a0577a555447ea90b8903b0f968e12_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:98ad870b2929bc5db27a7cf0f9f0791f82d6889673ce7d102838616c466af612_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:2d1e27a8dc06bc78b251796816e89ff0ad7ee91ccd9077db47d245fb5ae5d291_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:c472058fc730b6ea6d064cd77dfa583340976209afe109fee9296012f02df66f_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:d3ca3c7f85c104a6ae087dccd37e328e1cdeb5b93a880b48e1f2c99c015fd101_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:fa3f9534ea19d8828c2342b3557f652196aec37552fa49e83af6dd1b0c356d69_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-39832"
},
{
"category": "external",
"summary": "RHBZ#2480685",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2480685"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-39832",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-39832"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-39832",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-39832"
},
{
"category": "external",
"summary": "https://go.dev/cl/778642",
"url": "https://go.dev/cl/778642"
},
{
"category": "external",
"summary": "https://go.dev/issue/79435",
"url": "https://go.dev/issue/79435"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/a082jnz-LvI",
"url": "https://groups.google.com/g/golang-announce/c/a082jnz-LvI"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-5006",
"url": "https://pkg.go.dev/vuln/GO-2026-5006"
}
],
"release_date": "2026-05-22T02:31:26.660000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T09:20:18+00:00",
"details": "It is recommended that existing users of Red Hat OpenShift Builds 1.7.3 upgrade to 1.7.4",
"product_ids": [
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:09fdae42b81088e67a3f29e32ac980d57652d8ddbe9665b86aab69b37a4327bd_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:0ef830a815d07df60291e9c7b89a03dd40c0ceabfc3071f1fe188575f65a0542_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:59bc241a2a06804393a63785eeb8f0a8165a99263f08e0ffc3e727671c214114_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:af26444b2b45eb9c726b8d0cc92f023c4f4e52c9fb839198ad862d6513e2683f_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:0a189209a84ceddfbbfdba58e43fe94b5ddd211982a58a0929eb9997d3bf585a_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:2d8b7f64fa620bfce0130c52b977942ec9118fafddc9c090994609ab274df00c_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:a18b4c58e2b285058541b77a47d6482a9db6be58756651df3b3c648548a44f8e_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:cebcaaef5272faa6e6f147eeb966803b7cb3d3fbc86514132f6ad2e8b51e4557_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:64c957565dd799994cab0828a9c1169c128ca20e8b103af6b6ac2f422077e322_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:8c8aa38871ee6d945a186d0e3a7b129bafd08d53e52278e1eb6d8011491240dd_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:a473e11982fd3d970a3e28d7e103ee40fd50217cb0de7028edfae345c34bcbc0_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:ccf2448519c0998d9843fa570f128f420326e849c8c69dd3c5b526c3444d9f50_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:7bda73fcb94b412a8799bd11915066b07ed341fed2cd0ab81776f4c601926b54_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:992588aab0cfe3ec909418e827ca46828d0a07d9e3e1479fed437c9c445d7ff0_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:a80038bcbb994457fda1443b37dee5fbe66bbb02972b38139a9877e978c73835_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:cf2318bcce1f1a565bcfdb722d89e0ddb2e88a523db237e926def3934add78e5_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:7bfbb56d32556a602f9bbe422ea0a583e7e79e0de7503ce362962b3ffc5e5d62_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:aef0c6d237fba5ce37a219b78da4e7c566c6de1d37a9fcd0529c514322f09e77_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:b2361437d1f6d5ee61b23867ea903668f611f76cc76142713785b2faa00fcd63_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:fecc167995f30887629cd176971af5f7b3cb1cc377f8e3a329008e83133e8361_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:4570de210e87e6d64af57fe4ecb072e732365e62e7a23c3b1a8c04cf508bc876_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:6d070525b6e7b75f61f2999dac4dbcbc6fda96c882a17978e7bf8edbc008847b_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:92ee83df52ef773c4bcad66c277f608832de60b2bd00adb41fb877e33040077b_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:be7f5c4ca3cbba8944f0c275ccf847b701c6ae7a25052272fb80d8144f61fc9c_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36648"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability.",
"product_ids": [
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:09fdae42b81088e67a3f29e32ac980d57652d8ddbe9665b86aab69b37a4327bd_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:0ef830a815d07df60291e9c7b89a03dd40c0ceabfc3071f1fe188575f65a0542_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:59bc241a2a06804393a63785eeb8f0a8165a99263f08e0ffc3e727671c214114_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:af26444b2b45eb9c726b8d0cc92f023c4f4e52c9fb839198ad862d6513e2683f_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:0a189209a84ceddfbbfdba58e43fe94b5ddd211982a58a0929eb9997d3bf585a_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:2d8b7f64fa620bfce0130c52b977942ec9118fafddc9c090994609ab274df00c_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:a18b4c58e2b285058541b77a47d6482a9db6be58756651df3b3c648548a44f8e_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:cebcaaef5272faa6e6f147eeb966803b7cb3d3fbc86514132f6ad2e8b51e4557_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:64c957565dd799994cab0828a9c1169c128ca20e8b103af6b6ac2f422077e322_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:8c8aa38871ee6d945a186d0e3a7b129bafd08d53e52278e1eb6d8011491240dd_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:a473e11982fd3d970a3e28d7e103ee40fd50217cb0de7028edfae345c34bcbc0_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:ccf2448519c0998d9843fa570f128f420326e849c8c69dd3c5b526c3444d9f50_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:7bda73fcb94b412a8799bd11915066b07ed341fed2cd0ab81776f4c601926b54_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:992588aab0cfe3ec909418e827ca46828d0a07d9e3e1479fed437c9c445d7ff0_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:a80038bcbb994457fda1443b37dee5fbe66bbb02972b38139a9877e978c73835_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:cf2318bcce1f1a565bcfdb722d89e0ddb2e88a523db237e926def3934add78e5_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-operator-bundle@sha256:24c95ad401a653c88d072a7753052850cfa6738686ce9aec7ba5f6fcbc92e7fc_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:189d8de6e11f86cd47891d2268c2a91134a6fe617ecbbc433dda7a7f68519421_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:61007260c34ec5113e4286f679a5377c64fb6ad934aee5de6928f4c06c54e969_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:779614a189b230b5c78cd28e360d9e7fabb519aef73a5acacb26b3c26716c68d_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:898bf1c9ee31508ffb2d72deaa97f0b02639e22063788448bbe55f5b98d8db7b_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:0a2acfdea8fb6b49a6117d8914e9ae56bc4668ce882131a47923fc0c7ab7c6b6_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:37415ef53ed46fcc1fd8010da38f13ffc9015f8435306b7dcf16bb3ed117083b_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:626527f0b4701d00b845c8bca201f81756a0577a555447ea90b8903b0f968e12_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:98ad870b2929bc5db27a7cf0f9f0791f82d6889673ce7d102838616c466af612_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:2d1e27a8dc06bc78b251796816e89ff0ad7ee91ccd9077db47d245fb5ae5d291_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:c472058fc730b6ea6d064cd77dfa583340976209afe109fee9296012f02df66f_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:d3ca3c7f85c104a6ae087dccd37e328e1cdeb5b93a880b48e1f2c99c015fd101_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:fa3f9534ea19d8828c2342b3557f652196aec37552fa49e83af6dd1b0c356d69_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:7bfbb56d32556a602f9bbe422ea0a583e7e79e0de7503ce362962b3ffc5e5d62_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:aef0c6d237fba5ce37a219b78da4e7c566c6de1d37a9fcd0529c514322f09e77_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:b2361437d1f6d5ee61b23867ea903668f611f76cc76142713785b2faa00fcd63_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:fecc167995f30887629cd176971af5f7b3cb1cc377f8e3a329008e83133e8361_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:4570de210e87e6d64af57fe4ecb072e732365e62e7a23c3b1a8c04cf508bc876_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:6d070525b6e7b75f61f2999dac4dbcbc6fda96c882a17978e7bf8edbc008847b_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:92ee83df52ef773c4bcad66c277f608832de60b2bd00adb41fb877e33040077b_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:be7f5c4ca3cbba8944f0c275ccf847b701c6ae7a25052272fb80d8144f61fc9c_arm64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 8.7,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "CHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:09fdae42b81088e67a3f29e32ac980d57652d8ddbe9665b86aab69b37a4327bd_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:0ef830a815d07df60291e9c7b89a03dd40c0ceabfc3071f1fe188575f65a0542_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:59bc241a2a06804393a63785eeb8f0a8165a99263f08e0ffc3e727671c214114_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:af26444b2b45eb9c726b8d0cc92f023c4f4e52c9fb839198ad862d6513e2683f_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:0a189209a84ceddfbbfdba58e43fe94b5ddd211982a58a0929eb9997d3bf585a_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:2d8b7f64fa620bfce0130c52b977942ec9118fafddc9c090994609ab274df00c_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:a18b4c58e2b285058541b77a47d6482a9db6be58756651df3b3c648548a44f8e_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:cebcaaef5272faa6e6f147eeb966803b7cb3d3fbc86514132f6ad2e8b51e4557_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:64c957565dd799994cab0828a9c1169c128ca20e8b103af6b6ac2f422077e322_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:8c8aa38871ee6d945a186d0e3a7b129bafd08d53e52278e1eb6d8011491240dd_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:a473e11982fd3d970a3e28d7e103ee40fd50217cb0de7028edfae345c34bcbc0_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:ccf2448519c0998d9843fa570f128f420326e849c8c69dd3c5b526c3444d9f50_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:7bda73fcb94b412a8799bd11915066b07ed341fed2cd0ab81776f4c601926b54_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:992588aab0cfe3ec909418e827ca46828d0a07d9e3e1479fed437c9c445d7ff0_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:a80038bcbb994457fda1443b37dee5fbe66bbb02972b38139a9877e978c73835_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:cf2318bcce1f1a565bcfdb722d89e0ddb2e88a523db237e926def3934add78e5_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-operator-bundle@sha256:24c95ad401a653c88d072a7753052850cfa6738686ce9aec7ba5f6fcbc92e7fc_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:189d8de6e11f86cd47891d2268c2a91134a6fe617ecbbc433dda7a7f68519421_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:61007260c34ec5113e4286f679a5377c64fb6ad934aee5de6928f4c06c54e969_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:779614a189b230b5c78cd28e360d9e7fabb519aef73a5acacb26b3c26716c68d_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:898bf1c9ee31508ffb2d72deaa97f0b02639e22063788448bbe55f5b98d8db7b_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:0a2acfdea8fb6b49a6117d8914e9ae56bc4668ce882131a47923fc0c7ab7c6b6_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:37415ef53ed46fcc1fd8010da38f13ffc9015f8435306b7dcf16bb3ed117083b_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:626527f0b4701d00b845c8bca201f81756a0577a555447ea90b8903b0f968e12_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:98ad870b2929bc5db27a7cf0f9f0791f82d6889673ce7d102838616c466af612_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:2d1e27a8dc06bc78b251796816e89ff0ad7ee91ccd9077db47d245fb5ae5d291_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:c472058fc730b6ea6d064cd77dfa583340976209afe109fee9296012f02df66f_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:d3ca3c7f85c104a6ae087dccd37e328e1cdeb5b93a880b48e1f2c99c015fd101_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:fa3f9534ea19d8828c2342b3557f652196aec37552fa49e83af6dd1b0c356d69_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:7bfbb56d32556a602f9bbe422ea0a583e7e79e0de7503ce362962b3ffc5e5d62_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:aef0c6d237fba5ce37a219b78da4e7c566c6de1d37a9fcd0529c514322f09e77_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:b2361437d1f6d5ee61b23867ea903668f611f76cc76142713785b2faa00fcd63_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:fecc167995f30887629cd176971af5f7b3cb1cc377f8e3a329008e83133e8361_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:4570de210e87e6d64af57fe4ecb072e732365e62e7a23c3b1a8c04cf508bc876_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:6d070525b6e7b75f61f2999dac4dbcbc6fda96c882a17978e7bf8edbc008847b_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:92ee83df52ef773c4bcad66c277f608832de60b2bd00adb41fb877e33040077b_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:be7f5c4ca3cbba8944f0c275ccf847b701c6ae7a25052272fb80d8144f61fc9c_arm64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang.org/x/crypto/ssh/agent: golang.org/x/crypto/ssh/agent: Security bypass due to improper handling of key restrictions"
},
{
"cve": "CVE-2026-39833",
"cwe": {
"id": "CWE-358",
"name": "Improperly Implemented Security Check for Standard"
},
"discovery_date": "2026-05-22T04:01:35.714593+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-operator-bundle@sha256:24c95ad401a653c88d072a7753052850cfa6738686ce9aec7ba5f6fcbc92e7fc_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:189d8de6e11f86cd47891d2268c2a91134a6fe617ecbbc433dda7a7f68519421_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:61007260c34ec5113e4286f679a5377c64fb6ad934aee5de6928f4c06c54e969_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:779614a189b230b5c78cd28e360d9e7fabb519aef73a5acacb26b3c26716c68d_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:898bf1c9ee31508ffb2d72deaa97f0b02639e22063788448bbe55f5b98d8db7b_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:0a2acfdea8fb6b49a6117d8914e9ae56bc4668ce882131a47923fc0c7ab7c6b6_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:37415ef53ed46fcc1fd8010da38f13ffc9015f8435306b7dcf16bb3ed117083b_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:626527f0b4701d00b845c8bca201f81756a0577a555447ea90b8903b0f968e12_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:98ad870b2929bc5db27a7cf0f9f0791f82d6889673ce7d102838616c466af612_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:2d1e27a8dc06bc78b251796816e89ff0ad7ee91ccd9077db47d245fb5ae5d291_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:c472058fc730b6ea6d064cd77dfa583340976209afe109fee9296012f02df66f_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:d3ca3c7f85c104a6ae087dccd37e328e1cdeb5b93a880b48e1f2c99c015fd101_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:fa3f9534ea19d8828c2342b3557f652196aec37552fa49e83af6dd1b0c356d69_ppc64le"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2480683"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in golang.org/x/crypto/ssh/agent. The NewKeyring() function, which creates an in-memory keyring, failed to enforce the ConfirmBeforeUse constraint on keys. This allowed keys configured to require user confirmation before use to perform signing operations without any prompt or indication to the user. Consequently, an attacker could potentially bypass intended security controls, leading to unauthorized cryptographic signing actions.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang.org/x/crypto/ssh/agent: golang.org/x/crypto/ssh/agent: Security bypass due to unenforced key confirmation",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Red Hat rates this issue as Moderate with RH CVSS 5.5 (CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N). A flaw was found in golang.org/x/crypto/ssh/agent where the in-memory keyring returned by NewKeyring() silently accepted SSH agent keys with the ConfirmBeforeUse constraint but did not enforce interactive confirmation before signing. Exploitation requires local access and low privileges on a system where an affected application uses NewKeyring() with ConfirmBeforeUse. Most Red Hat products that bundle golang.org/x/crypto do not use the ssh/agent ConfirmBeforeUse feature in their supported execution paths. The upstream CISA CVSS 9.1 assumes a broader network attack context that does not reflect Red Hat product deployment.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:09fdae42b81088e67a3f29e32ac980d57652d8ddbe9665b86aab69b37a4327bd_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:0ef830a815d07df60291e9c7b89a03dd40c0ceabfc3071f1fe188575f65a0542_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:59bc241a2a06804393a63785eeb8f0a8165a99263f08e0ffc3e727671c214114_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:af26444b2b45eb9c726b8d0cc92f023c4f4e52c9fb839198ad862d6513e2683f_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:0a189209a84ceddfbbfdba58e43fe94b5ddd211982a58a0929eb9997d3bf585a_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:2d8b7f64fa620bfce0130c52b977942ec9118fafddc9c090994609ab274df00c_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:a18b4c58e2b285058541b77a47d6482a9db6be58756651df3b3c648548a44f8e_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:cebcaaef5272faa6e6f147eeb966803b7cb3d3fbc86514132f6ad2e8b51e4557_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:64c957565dd799994cab0828a9c1169c128ca20e8b103af6b6ac2f422077e322_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:8c8aa38871ee6d945a186d0e3a7b129bafd08d53e52278e1eb6d8011491240dd_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:a473e11982fd3d970a3e28d7e103ee40fd50217cb0de7028edfae345c34bcbc0_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:ccf2448519c0998d9843fa570f128f420326e849c8c69dd3c5b526c3444d9f50_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:7bda73fcb94b412a8799bd11915066b07ed341fed2cd0ab81776f4c601926b54_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:992588aab0cfe3ec909418e827ca46828d0a07d9e3e1479fed437c9c445d7ff0_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:a80038bcbb994457fda1443b37dee5fbe66bbb02972b38139a9877e978c73835_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:cf2318bcce1f1a565bcfdb722d89e0ddb2e88a523db237e926def3934add78e5_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:7bfbb56d32556a602f9bbe422ea0a583e7e79e0de7503ce362962b3ffc5e5d62_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:aef0c6d237fba5ce37a219b78da4e7c566c6de1d37a9fcd0529c514322f09e77_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:b2361437d1f6d5ee61b23867ea903668f611f76cc76142713785b2faa00fcd63_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:fecc167995f30887629cd176971af5f7b3cb1cc377f8e3a329008e83133e8361_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:4570de210e87e6d64af57fe4ecb072e732365e62e7a23c3b1a8c04cf508bc876_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:6d070525b6e7b75f61f2999dac4dbcbc6fda96c882a17978e7bf8edbc008847b_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:92ee83df52ef773c4bcad66c277f608832de60b2bd00adb41fb877e33040077b_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:be7f5c4ca3cbba8944f0c275ccf847b701c6ae7a25052272fb80d8144f61fc9c_arm64"
],
"known_not_affected": [
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-operator-bundle@sha256:24c95ad401a653c88d072a7753052850cfa6738686ce9aec7ba5f6fcbc92e7fc_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:189d8de6e11f86cd47891d2268c2a91134a6fe617ecbbc433dda7a7f68519421_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:61007260c34ec5113e4286f679a5377c64fb6ad934aee5de6928f4c06c54e969_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:779614a189b230b5c78cd28e360d9e7fabb519aef73a5acacb26b3c26716c68d_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:898bf1c9ee31508ffb2d72deaa97f0b02639e22063788448bbe55f5b98d8db7b_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:0a2acfdea8fb6b49a6117d8914e9ae56bc4668ce882131a47923fc0c7ab7c6b6_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:37415ef53ed46fcc1fd8010da38f13ffc9015f8435306b7dcf16bb3ed117083b_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:626527f0b4701d00b845c8bca201f81756a0577a555447ea90b8903b0f968e12_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:98ad870b2929bc5db27a7cf0f9f0791f82d6889673ce7d102838616c466af612_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:2d1e27a8dc06bc78b251796816e89ff0ad7ee91ccd9077db47d245fb5ae5d291_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:c472058fc730b6ea6d064cd77dfa583340976209afe109fee9296012f02df66f_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:d3ca3c7f85c104a6ae087dccd37e328e1cdeb5b93a880b48e1f2c99c015fd101_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:fa3f9534ea19d8828c2342b3557f652196aec37552fa49e83af6dd1b0c356d69_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-39833"
},
{
"category": "external",
"summary": "RHBZ#2480683",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2480683"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-39833",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-39833"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-39833",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-39833"
},
{
"category": "external",
"summary": "https://go.dev/cl/778640",
"url": "https://go.dev/cl/778640"
},
{
"category": "external",
"summary": "https://go.dev/cl/778641",
"url": "https://go.dev/cl/778641"
},
{
"category": "external",
"summary": "https://go.dev/issue/79436",
"url": "https://go.dev/issue/79436"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/a082jnz-LvI",
"url": "https://groups.google.com/g/golang-announce/c/a082jnz-LvI"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-5005",
"url": "https://pkg.go.dev/vuln/GO-2026-5005"
}
],
"release_date": "2026-05-22T02:31:26.294000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T09:20:18+00:00",
"details": "It is recommended that existing users of Red Hat OpenShift Builds 1.7.3 upgrade to 1.7.4",
"product_ids": [
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:09fdae42b81088e67a3f29e32ac980d57652d8ddbe9665b86aab69b37a4327bd_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:0ef830a815d07df60291e9c7b89a03dd40c0ceabfc3071f1fe188575f65a0542_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:59bc241a2a06804393a63785eeb8f0a8165a99263f08e0ffc3e727671c214114_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:af26444b2b45eb9c726b8d0cc92f023c4f4e52c9fb839198ad862d6513e2683f_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:0a189209a84ceddfbbfdba58e43fe94b5ddd211982a58a0929eb9997d3bf585a_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:2d8b7f64fa620bfce0130c52b977942ec9118fafddc9c090994609ab274df00c_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:a18b4c58e2b285058541b77a47d6482a9db6be58756651df3b3c648548a44f8e_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:cebcaaef5272faa6e6f147eeb966803b7cb3d3fbc86514132f6ad2e8b51e4557_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:64c957565dd799994cab0828a9c1169c128ca20e8b103af6b6ac2f422077e322_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:8c8aa38871ee6d945a186d0e3a7b129bafd08d53e52278e1eb6d8011491240dd_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:a473e11982fd3d970a3e28d7e103ee40fd50217cb0de7028edfae345c34bcbc0_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:ccf2448519c0998d9843fa570f128f420326e849c8c69dd3c5b526c3444d9f50_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:7bda73fcb94b412a8799bd11915066b07ed341fed2cd0ab81776f4c601926b54_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:992588aab0cfe3ec909418e827ca46828d0a07d9e3e1479fed437c9c445d7ff0_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:a80038bcbb994457fda1443b37dee5fbe66bbb02972b38139a9877e978c73835_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:cf2318bcce1f1a565bcfdb722d89e0ddb2e88a523db237e926def3934add78e5_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:7bfbb56d32556a602f9bbe422ea0a583e7e79e0de7503ce362962b3ffc5e5d62_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:aef0c6d237fba5ce37a219b78da4e7c566c6de1d37a9fcd0529c514322f09e77_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:b2361437d1f6d5ee61b23867ea903668f611f76cc76142713785b2faa00fcd63_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:fecc167995f30887629cd176971af5f7b3cb1cc377f8e3a329008e83133e8361_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:4570de210e87e6d64af57fe4ecb072e732365e62e7a23c3b1a8c04cf508bc876_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:6d070525b6e7b75f61f2999dac4dbcbc6fda96c882a17978e7bf8edbc008847b_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:92ee83df52ef773c4bcad66c277f608832de60b2bd00adb41fb877e33040077b_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:be7f5c4ca3cbba8944f0c275ccf847b701c6ae7a25052272fb80d8144f61fc9c_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36648"
},
{
"category": "workaround",
"details": "Update affected Go applications to use golang.org/x/crypto version 0.52.0 or later, which rejects unsupported ConfirmBeforeUse keys instead of silently ignoring the constraint. As a workaround, do not add keys with ConfirmBeforeUse to the in-memory keyring from golang.org/x/crypto/ssh/agent, or use an SSH agent implementation that correctly enforces confirm-before-use.",
"product_ids": [
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:09fdae42b81088e67a3f29e32ac980d57652d8ddbe9665b86aab69b37a4327bd_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:0ef830a815d07df60291e9c7b89a03dd40c0ceabfc3071f1fe188575f65a0542_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:59bc241a2a06804393a63785eeb8f0a8165a99263f08e0ffc3e727671c214114_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:af26444b2b45eb9c726b8d0cc92f023c4f4e52c9fb839198ad862d6513e2683f_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:0a189209a84ceddfbbfdba58e43fe94b5ddd211982a58a0929eb9997d3bf585a_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:2d8b7f64fa620bfce0130c52b977942ec9118fafddc9c090994609ab274df00c_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:a18b4c58e2b285058541b77a47d6482a9db6be58756651df3b3c648548a44f8e_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:cebcaaef5272faa6e6f147eeb966803b7cb3d3fbc86514132f6ad2e8b51e4557_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:64c957565dd799994cab0828a9c1169c128ca20e8b103af6b6ac2f422077e322_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:8c8aa38871ee6d945a186d0e3a7b129bafd08d53e52278e1eb6d8011491240dd_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:a473e11982fd3d970a3e28d7e103ee40fd50217cb0de7028edfae345c34bcbc0_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:ccf2448519c0998d9843fa570f128f420326e849c8c69dd3c5b526c3444d9f50_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:7bda73fcb94b412a8799bd11915066b07ed341fed2cd0ab81776f4c601926b54_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:992588aab0cfe3ec909418e827ca46828d0a07d9e3e1479fed437c9c445d7ff0_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:a80038bcbb994457fda1443b37dee5fbe66bbb02972b38139a9877e978c73835_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:cf2318bcce1f1a565bcfdb722d89e0ddb2e88a523db237e926def3934add78e5_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-operator-bundle@sha256:24c95ad401a653c88d072a7753052850cfa6738686ce9aec7ba5f6fcbc92e7fc_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:189d8de6e11f86cd47891d2268c2a91134a6fe617ecbbc433dda7a7f68519421_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:61007260c34ec5113e4286f679a5377c64fb6ad934aee5de6928f4c06c54e969_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:779614a189b230b5c78cd28e360d9e7fabb519aef73a5acacb26b3c26716c68d_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:898bf1c9ee31508ffb2d72deaa97f0b02639e22063788448bbe55f5b98d8db7b_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:0a2acfdea8fb6b49a6117d8914e9ae56bc4668ce882131a47923fc0c7ab7c6b6_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:37415ef53ed46fcc1fd8010da38f13ffc9015f8435306b7dcf16bb3ed117083b_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:626527f0b4701d00b845c8bca201f81756a0577a555447ea90b8903b0f968e12_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:98ad870b2929bc5db27a7cf0f9f0791f82d6889673ce7d102838616c466af612_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:2d1e27a8dc06bc78b251796816e89ff0ad7ee91ccd9077db47d245fb5ae5d291_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:c472058fc730b6ea6d064cd77dfa583340976209afe109fee9296012f02df66f_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:d3ca3c7f85c104a6ae087dccd37e328e1cdeb5b93a880b48e1f2c99c015fd101_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:fa3f9534ea19d8828c2342b3557f652196aec37552fa49e83af6dd1b0c356d69_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:7bfbb56d32556a602f9bbe422ea0a583e7e79e0de7503ce362962b3ffc5e5d62_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:aef0c6d237fba5ce37a219b78da4e7c566c6de1d37a9fcd0529c514322f09e77_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:b2361437d1f6d5ee61b23867ea903668f611f76cc76142713785b2faa00fcd63_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:fecc167995f30887629cd176971af5f7b3cb1cc377f8e3a329008e83133e8361_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:4570de210e87e6d64af57fe4ecb072e732365e62e7a23c3b1a8c04cf508bc876_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:6d070525b6e7b75f61f2999dac4dbcbc6fda96c882a17978e7bf8edbc008847b_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:92ee83df52ef773c4bcad66c277f608832de60b2bd00adb41fb877e33040077b_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:be7f5c4ca3cbba8944f0c275ccf847b701c6ae7a25052272fb80d8144f61fc9c_arm64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "NONE",
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:09fdae42b81088e67a3f29e32ac980d57652d8ddbe9665b86aab69b37a4327bd_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:0ef830a815d07df60291e9c7b89a03dd40c0ceabfc3071f1fe188575f65a0542_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:59bc241a2a06804393a63785eeb8f0a8165a99263f08e0ffc3e727671c214114_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:af26444b2b45eb9c726b8d0cc92f023c4f4e52c9fb839198ad862d6513e2683f_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:0a189209a84ceddfbbfdba58e43fe94b5ddd211982a58a0929eb9997d3bf585a_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:2d8b7f64fa620bfce0130c52b977942ec9118fafddc9c090994609ab274df00c_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:a18b4c58e2b285058541b77a47d6482a9db6be58756651df3b3c648548a44f8e_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:cebcaaef5272faa6e6f147eeb966803b7cb3d3fbc86514132f6ad2e8b51e4557_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:64c957565dd799994cab0828a9c1169c128ca20e8b103af6b6ac2f422077e322_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:8c8aa38871ee6d945a186d0e3a7b129bafd08d53e52278e1eb6d8011491240dd_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:a473e11982fd3d970a3e28d7e103ee40fd50217cb0de7028edfae345c34bcbc0_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:ccf2448519c0998d9843fa570f128f420326e849c8c69dd3c5b526c3444d9f50_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:7bda73fcb94b412a8799bd11915066b07ed341fed2cd0ab81776f4c601926b54_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:992588aab0cfe3ec909418e827ca46828d0a07d9e3e1479fed437c9c445d7ff0_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:a80038bcbb994457fda1443b37dee5fbe66bbb02972b38139a9877e978c73835_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:cf2318bcce1f1a565bcfdb722d89e0ddb2e88a523db237e926def3934add78e5_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-operator-bundle@sha256:24c95ad401a653c88d072a7753052850cfa6738686ce9aec7ba5f6fcbc92e7fc_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:189d8de6e11f86cd47891d2268c2a91134a6fe617ecbbc433dda7a7f68519421_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:61007260c34ec5113e4286f679a5377c64fb6ad934aee5de6928f4c06c54e969_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:779614a189b230b5c78cd28e360d9e7fabb519aef73a5acacb26b3c26716c68d_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:898bf1c9ee31508ffb2d72deaa97f0b02639e22063788448bbe55f5b98d8db7b_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:0a2acfdea8fb6b49a6117d8914e9ae56bc4668ce882131a47923fc0c7ab7c6b6_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:37415ef53ed46fcc1fd8010da38f13ffc9015f8435306b7dcf16bb3ed117083b_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:626527f0b4701d00b845c8bca201f81756a0577a555447ea90b8903b0f968e12_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:98ad870b2929bc5db27a7cf0f9f0791f82d6889673ce7d102838616c466af612_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:2d1e27a8dc06bc78b251796816e89ff0ad7ee91ccd9077db47d245fb5ae5d291_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:c472058fc730b6ea6d064cd77dfa583340976209afe109fee9296012f02df66f_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:d3ca3c7f85c104a6ae087dccd37e328e1cdeb5b93a880b48e1f2c99c015fd101_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:fa3f9534ea19d8828c2342b3557f652196aec37552fa49e83af6dd1b0c356d69_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:7bfbb56d32556a602f9bbe422ea0a583e7e79e0de7503ce362962b3ffc5e5d62_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:aef0c6d237fba5ce37a219b78da4e7c566c6de1d37a9fcd0529c514322f09e77_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:b2361437d1f6d5ee61b23867ea903668f611f76cc76142713785b2faa00fcd63_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:fecc167995f30887629cd176971af5f7b3cb1cc377f8e3a329008e83133e8361_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:4570de210e87e6d64af57fe4ecb072e732365e62e7a23c3b1a8c04cf508bc876_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:6d070525b6e7b75f61f2999dac4dbcbc6fda96c882a17978e7bf8edbc008847b_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:92ee83df52ef773c4bcad66c277f608832de60b2bd00adb41fb877e33040077b_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:be7f5c4ca3cbba8944f0c275ccf847b701c6ae7a25052272fb80d8144f61fc9c_arm64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "golang.org/x/crypto/ssh/agent: golang.org/x/crypto/ssh/agent: Security bypass due to unenforced key confirmation"
},
{
"cve": "CVE-2026-39835",
"cwe": {
"id": "CWE-476",
"name": "NULL Pointer Dereference"
},
"discovery_date": "2026-05-22T04:01:27.279943+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-operator-bundle@sha256:24c95ad401a653c88d072a7753052850cfa6738686ce9aec7ba5f6fcbc92e7fc_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:189d8de6e11f86cd47891d2268c2a91134a6fe617ecbbc433dda7a7f68519421_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:61007260c34ec5113e4286f679a5377c64fb6ad934aee5de6928f4c06c54e969_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:779614a189b230b5c78cd28e360d9e7fabb519aef73a5acacb26b3c26716c68d_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:898bf1c9ee31508ffb2d72deaa97f0b02639e22063788448bbe55f5b98d8db7b_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:0a2acfdea8fb6b49a6117d8914e9ae56bc4668ce882131a47923fc0c7ab7c6b6_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:37415ef53ed46fcc1fd8010da38f13ffc9015f8435306b7dcf16bb3ed117083b_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:626527f0b4701d00b845c8bca201f81756a0577a555447ea90b8903b0f968e12_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:98ad870b2929bc5db27a7cf0f9f0791f82d6889673ce7d102838616c466af612_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:2d1e27a8dc06bc78b251796816e89ff0ad7ee91ccd9077db47d245fb5ae5d291_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:c472058fc730b6ea6d064cd77dfa583340976209afe109fee9296012f02df66f_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:d3ca3c7f85c104a6ae087dccd37e328e1cdeb5b93a880b48e1f2c99c015fd101_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:fa3f9534ea19d8828c2342b3557f652196aec37552fa49e83af6dd1b0c356d69_ppc64le"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2480680"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in golang.org/x/crypto/ssh. SSH servers configured to use CertChecker as a public key callback, without explicitly setting IsUserAuthority or IsHostAuthority, are vulnerable. A remote attacker can exploit this by presenting a specially crafted certificate, causing the server to panic and resulting in a Denial of Service (DoS).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang.org/x/crypto/ssh: golang: golang.org/x/crypto/ssh: Denial of Service via crafted SSH certificate",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This is an Important denial of service flaw in `golang.org/x/crypto/ssh` affecting SSH servers that utilize `CertChecker` as a public key callback without explicitly configuring `IsUserAuthority` or `IsHostAuthority`. A remote, unauthenticated attacker can trigger a server panic by presenting a specially crafted certificate, leading to service disruption. Exploitation requires a specific, non-default configuration of the `CertChecker`.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:09fdae42b81088e67a3f29e32ac980d57652d8ddbe9665b86aab69b37a4327bd_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:0ef830a815d07df60291e9c7b89a03dd40c0ceabfc3071f1fe188575f65a0542_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:59bc241a2a06804393a63785eeb8f0a8165a99263f08e0ffc3e727671c214114_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:af26444b2b45eb9c726b8d0cc92f023c4f4e52c9fb839198ad862d6513e2683f_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:0a189209a84ceddfbbfdba58e43fe94b5ddd211982a58a0929eb9997d3bf585a_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:2d8b7f64fa620bfce0130c52b977942ec9118fafddc9c090994609ab274df00c_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:a18b4c58e2b285058541b77a47d6482a9db6be58756651df3b3c648548a44f8e_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:cebcaaef5272faa6e6f147eeb966803b7cb3d3fbc86514132f6ad2e8b51e4557_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:64c957565dd799994cab0828a9c1169c128ca20e8b103af6b6ac2f422077e322_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:8c8aa38871ee6d945a186d0e3a7b129bafd08d53e52278e1eb6d8011491240dd_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:a473e11982fd3d970a3e28d7e103ee40fd50217cb0de7028edfae345c34bcbc0_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:ccf2448519c0998d9843fa570f128f420326e849c8c69dd3c5b526c3444d9f50_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:7bda73fcb94b412a8799bd11915066b07ed341fed2cd0ab81776f4c601926b54_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:992588aab0cfe3ec909418e827ca46828d0a07d9e3e1479fed437c9c445d7ff0_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:a80038bcbb994457fda1443b37dee5fbe66bbb02972b38139a9877e978c73835_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:cf2318bcce1f1a565bcfdb722d89e0ddb2e88a523db237e926def3934add78e5_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:7bfbb56d32556a602f9bbe422ea0a583e7e79e0de7503ce362962b3ffc5e5d62_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:aef0c6d237fba5ce37a219b78da4e7c566c6de1d37a9fcd0529c514322f09e77_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:b2361437d1f6d5ee61b23867ea903668f611f76cc76142713785b2faa00fcd63_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:fecc167995f30887629cd176971af5f7b3cb1cc377f8e3a329008e83133e8361_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:4570de210e87e6d64af57fe4ecb072e732365e62e7a23c3b1a8c04cf508bc876_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:6d070525b6e7b75f61f2999dac4dbcbc6fda96c882a17978e7bf8edbc008847b_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:92ee83df52ef773c4bcad66c277f608832de60b2bd00adb41fb877e33040077b_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:be7f5c4ca3cbba8944f0c275ccf847b701c6ae7a25052272fb80d8144f61fc9c_arm64"
],
"known_not_affected": [
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-operator-bundle@sha256:24c95ad401a653c88d072a7753052850cfa6738686ce9aec7ba5f6fcbc92e7fc_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:189d8de6e11f86cd47891d2268c2a91134a6fe617ecbbc433dda7a7f68519421_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:61007260c34ec5113e4286f679a5377c64fb6ad934aee5de6928f4c06c54e969_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:779614a189b230b5c78cd28e360d9e7fabb519aef73a5acacb26b3c26716c68d_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:898bf1c9ee31508ffb2d72deaa97f0b02639e22063788448bbe55f5b98d8db7b_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:0a2acfdea8fb6b49a6117d8914e9ae56bc4668ce882131a47923fc0c7ab7c6b6_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:37415ef53ed46fcc1fd8010da38f13ffc9015f8435306b7dcf16bb3ed117083b_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:626527f0b4701d00b845c8bca201f81756a0577a555447ea90b8903b0f968e12_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:98ad870b2929bc5db27a7cf0f9f0791f82d6889673ce7d102838616c466af612_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:2d1e27a8dc06bc78b251796816e89ff0ad7ee91ccd9077db47d245fb5ae5d291_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:c472058fc730b6ea6d064cd77dfa583340976209afe109fee9296012f02df66f_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:d3ca3c7f85c104a6ae087dccd37e328e1cdeb5b93a880b48e1f2c99c015fd101_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:fa3f9534ea19d8828c2342b3557f652196aec37552fa49e83af6dd1b0c356d69_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-39835"
},
{
"category": "external",
"summary": "RHBZ#2480680",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2480680"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-39835",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-39835"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-39835",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-39835"
},
{
"category": "external",
"summary": "https://go.dev/cl/781660",
"url": "https://go.dev/cl/781660"
},
{
"category": "external",
"summary": "https://go.dev/issue/79563",
"url": "https://go.dev/issue/79563"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/a082jnz-LvI",
"url": "https://groups.google.com/g/golang-announce/c/a082jnz-LvI"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-5015",
"url": "https://pkg.go.dev/vuln/GO-2026-5015"
}
],
"release_date": "2026-05-22T02:31:26.982000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T09:20:18+00:00",
"details": "It is recommended that existing users of Red Hat OpenShift Builds 1.7.3 upgrade to 1.7.4",
"product_ids": [
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:09fdae42b81088e67a3f29e32ac980d57652d8ddbe9665b86aab69b37a4327bd_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:0ef830a815d07df60291e9c7b89a03dd40c0ceabfc3071f1fe188575f65a0542_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:59bc241a2a06804393a63785eeb8f0a8165a99263f08e0ffc3e727671c214114_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:af26444b2b45eb9c726b8d0cc92f023c4f4e52c9fb839198ad862d6513e2683f_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:0a189209a84ceddfbbfdba58e43fe94b5ddd211982a58a0929eb9997d3bf585a_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:2d8b7f64fa620bfce0130c52b977942ec9118fafddc9c090994609ab274df00c_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:a18b4c58e2b285058541b77a47d6482a9db6be58756651df3b3c648548a44f8e_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:cebcaaef5272faa6e6f147eeb966803b7cb3d3fbc86514132f6ad2e8b51e4557_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:64c957565dd799994cab0828a9c1169c128ca20e8b103af6b6ac2f422077e322_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:8c8aa38871ee6d945a186d0e3a7b129bafd08d53e52278e1eb6d8011491240dd_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:a473e11982fd3d970a3e28d7e103ee40fd50217cb0de7028edfae345c34bcbc0_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:ccf2448519c0998d9843fa570f128f420326e849c8c69dd3c5b526c3444d9f50_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:7bda73fcb94b412a8799bd11915066b07ed341fed2cd0ab81776f4c601926b54_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:992588aab0cfe3ec909418e827ca46828d0a07d9e3e1479fed437c9c445d7ff0_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:a80038bcbb994457fda1443b37dee5fbe66bbb02972b38139a9877e978c73835_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:cf2318bcce1f1a565bcfdb722d89e0ddb2e88a523db237e926def3934add78e5_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:7bfbb56d32556a602f9bbe422ea0a583e7e79e0de7503ce362962b3ffc5e5d62_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:aef0c6d237fba5ce37a219b78da4e7c566c6de1d37a9fcd0529c514322f09e77_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:b2361437d1f6d5ee61b23867ea903668f611f76cc76142713785b2faa00fcd63_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:fecc167995f30887629cd176971af5f7b3cb1cc377f8e3a329008e83133e8361_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:4570de210e87e6d64af57fe4ecb072e732365e62e7a23c3b1a8c04cf508bc876_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:6d070525b6e7b75f61f2999dac4dbcbc6fda96c882a17978e7bf8edbc008847b_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:92ee83df52ef773c4bcad66c277f608832de60b2bd00adb41fb877e33040077b_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:be7f5c4ca3cbba8944f0c275ccf847b701c6ae7a25052272fb80d8144f61fc9c_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36648"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability.",
"product_ids": [
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:09fdae42b81088e67a3f29e32ac980d57652d8ddbe9665b86aab69b37a4327bd_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:0ef830a815d07df60291e9c7b89a03dd40c0ceabfc3071f1fe188575f65a0542_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:59bc241a2a06804393a63785eeb8f0a8165a99263f08e0ffc3e727671c214114_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:af26444b2b45eb9c726b8d0cc92f023c4f4e52c9fb839198ad862d6513e2683f_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:0a189209a84ceddfbbfdba58e43fe94b5ddd211982a58a0929eb9997d3bf585a_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:2d8b7f64fa620bfce0130c52b977942ec9118fafddc9c090994609ab274df00c_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:a18b4c58e2b285058541b77a47d6482a9db6be58756651df3b3c648548a44f8e_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:cebcaaef5272faa6e6f147eeb966803b7cb3d3fbc86514132f6ad2e8b51e4557_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:64c957565dd799994cab0828a9c1169c128ca20e8b103af6b6ac2f422077e322_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:8c8aa38871ee6d945a186d0e3a7b129bafd08d53e52278e1eb6d8011491240dd_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:a473e11982fd3d970a3e28d7e103ee40fd50217cb0de7028edfae345c34bcbc0_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:ccf2448519c0998d9843fa570f128f420326e849c8c69dd3c5b526c3444d9f50_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:7bda73fcb94b412a8799bd11915066b07ed341fed2cd0ab81776f4c601926b54_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:992588aab0cfe3ec909418e827ca46828d0a07d9e3e1479fed437c9c445d7ff0_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:a80038bcbb994457fda1443b37dee5fbe66bbb02972b38139a9877e978c73835_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:cf2318bcce1f1a565bcfdb722d89e0ddb2e88a523db237e926def3934add78e5_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-operator-bundle@sha256:24c95ad401a653c88d072a7753052850cfa6738686ce9aec7ba5f6fcbc92e7fc_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:189d8de6e11f86cd47891d2268c2a91134a6fe617ecbbc433dda7a7f68519421_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:61007260c34ec5113e4286f679a5377c64fb6ad934aee5de6928f4c06c54e969_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:779614a189b230b5c78cd28e360d9e7fabb519aef73a5acacb26b3c26716c68d_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:898bf1c9ee31508ffb2d72deaa97f0b02639e22063788448bbe55f5b98d8db7b_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:0a2acfdea8fb6b49a6117d8914e9ae56bc4668ce882131a47923fc0c7ab7c6b6_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:37415ef53ed46fcc1fd8010da38f13ffc9015f8435306b7dcf16bb3ed117083b_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:626527f0b4701d00b845c8bca201f81756a0577a555447ea90b8903b0f968e12_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:98ad870b2929bc5db27a7cf0f9f0791f82d6889673ce7d102838616c466af612_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:2d1e27a8dc06bc78b251796816e89ff0ad7ee91ccd9077db47d245fb5ae5d291_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:c472058fc730b6ea6d064cd77dfa583340976209afe109fee9296012f02df66f_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:d3ca3c7f85c104a6ae087dccd37e328e1cdeb5b93a880b48e1f2c99c015fd101_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:fa3f9534ea19d8828c2342b3557f652196aec37552fa49e83af6dd1b0c356d69_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:7bfbb56d32556a602f9bbe422ea0a583e7e79e0de7503ce362962b3ffc5e5d62_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:aef0c6d237fba5ce37a219b78da4e7c566c6de1d37a9fcd0529c514322f09e77_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:b2361437d1f6d5ee61b23867ea903668f611f76cc76142713785b2faa00fcd63_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:fecc167995f30887629cd176971af5f7b3cb1cc377f8e3a329008e83133e8361_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:4570de210e87e6d64af57fe4ecb072e732365e62e7a23c3b1a8c04cf508bc876_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:6d070525b6e7b75f61f2999dac4dbcbc6fda96c882a17978e7bf8edbc008847b_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:92ee83df52ef773c4bcad66c277f608832de60b2bd00adb41fb877e33040077b_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:be7f5c4ca3cbba8944f0c275ccf847b701c6ae7a25052272fb80d8144f61fc9c_arm64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:09fdae42b81088e67a3f29e32ac980d57652d8ddbe9665b86aab69b37a4327bd_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:0ef830a815d07df60291e9c7b89a03dd40c0ceabfc3071f1fe188575f65a0542_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:59bc241a2a06804393a63785eeb8f0a8165a99263f08e0ffc3e727671c214114_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:af26444b2b45eb9c726b8d0cc92f023c4f4e52c9fb839198ad862d6513e2683f_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:0a189209a84ceddfbbfdba58e43fe94b5ddd211982a58a0929eb9997d3bf585a_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:2d8b7f64fa620bfce0130c52b977942ec9118fafddc9c090994609ab274df00c_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:a18b4c58e2b285058541b77a47d6482a9db6be58756651df3b3c648548a44f8e_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:cebcaaef5272faa6e6f147eeb966803b7cb3d3fbc86514132f6ad2e8b51e4557_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:64c957565dd799994cab0828a9c1169c128ca20e8b103af6b6ac2f422077e322_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:8c8aa38871ee6d945a186d0e3a7b129bafd08d53e52278e1eb6d8011491240dd_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:a473e11982fd3d970a3e28d7e103ee40fd50217cb0de7028edfae345c34bcbc0_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:ccf2448519c0998d9843fa570f128f420326e849c8c69dd3c5b526c3444d9f50_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:7bda73fcb94b412a8799bd11915066b07ed341fed2cd0ab81776f4c601926b54_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:992588aab0cfe3ec909418e827ca46828d0a07d9e3e1479fed437c9c445d7ff0_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:a80038bcbb994457fda1443b37dee5fbe66bbb02972b38139a9877e978c73835_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:cf2318bcce1f1a565bcfdb722d89e0ddb2e88a523db237e926def3934add78e5_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-operator-bundle@sha256:24c95ad401a653c88d072a7753052850cfa6738686ce9aec7ba5f6fcbc92e7fc_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:189d8de6e11f86cd47891d2268c2a91134a6fe617ecbbc433dda7a7f68519421_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:61007260c34ec5113e4286f679a5377c64fb6ad934aee5de6928f4c06c54e969_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:779614a189b230b5c78cd28e360d9e7fabb519aef73a5acacb26b3c26716c68d_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:898bf1c9ee31508ffb2d72deaa97f0b02639e22063788448bbe55f5b98d8db7b_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:0a2acfdea8fb6b49a6117d8914e9ae56bc4668ce882131a47923fc0c7ab7c6b6_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:37415ef53ed46fcc1fd8010da38f13ffc9015f8435306b7dcf16bb3ed117083b_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:626527f0b4701d00b845c8bca201f81756a0577a555447ea90b8903b0f968e12_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:98ad870b2929bc5db27a7cf0f9f0791f82d6889673ce7d102838616c466af612_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:2d1e27a8dc06bc78b251796816e89ff0ad7ee91ccd9077db47d245fb5ae5d291_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:c472058fc730b6ea6d064cd77dfa583340976209afe109fee9296012f02df66f_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:d3ca3c7f85c104a6ae087dccd37e328e1cdeb5b93a880b48e1f2c99c015fd101_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:fa3f9534ea19d8828c2342b3557f652196aec37552fa49e83af6dd1b0c356d69_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:7bfbb56d32556a602f9bbe422ea0a583e7e79e0de7503ce362962b3ffc5e5d62_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:aef0c6d237fba5ce37a219b78da4e7c566c6de1d37a9fcd0529c514322f09e77_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:b2361437d1f6d5ee61b23867ea903668f611f76cc76142713785b2faa00fcd63_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:fecc167995f30887629cd176971af5f7b3cb1cc377f8e3a329008e83133e8361_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:4570de210e87e6d64af57fe4ecb072e732365e62e7a23c3b1a8c04cf508bc876_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:6d070525b6e7b75f61f2999dac4dbcbc6fda96c882a17978e7bf8edbc008847b_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:92ee83df52ef773c4bcad66c277f608832de60b2bd00adb41fb877e33040077b_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:be7f5c4ca3cbba8944f0c275ccf847b701c6ae7a25052272fb80d8144f61fc9c_arm64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang.org/x/crypto/ssh: golang: golang.org/x/crypto/ssh: Denial of Service via crafted SSH certificate"
},
{
"cve": "CVE-2026-42508",
"cwe": {
"id": "CWE-295",
"name": "Improper Certificate Validation"
},
"discovery_date": "2026-05-22T04:01:49.515058+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:09fdae42b81088e67a3f29e32ac980d57652d8ddbe9665b86aab69b37a4327bd_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:0ef830a815d07df60291e9c7b89a03dd40c0ceabfc3071f1fe188575f65a0542_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:59bc241a2a06804393a63785eeb8f0a8165a99263f08e0ffc3e727671c214114_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:af26444b2b45eb9c726b8d0cc92f023c4f4e52c9fb839198ad862d6513e2683f_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:0a189209a84ceddfbbfdba58e43fe94b5ddd211982a58a0929eb9997d3bf585a_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:2d8b7f64fa620bfce0130c52b977942ec9118fafddc9c090994609ab274df00c_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:a18b4c58e2b285058541b77a47d6482a9db6be58756651df3b3c648548a44f8e_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:cebcaaef5272faa6e6f147eeb966803b7cb3d3fbc86514132f6ad2e8b51e4557_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:64c957565dd799994cab0828a9c1169c128ca20e8b103af6b6ac2f422077e322_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:8c8aa38871ee6d945a186d0e3a7b129bafd08d53e52278e1eb6d8011491240dd_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:a473e11982fd3d970a3e28d7e103ee40fd50217cb0de7028edfae345c34bcbc0_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:ccf2448519c0998d9843fa570f128f420326e849c8c69dd3c5b526c3444d9f50_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:7bda73fcb94b412a8799bd11915066b07ed341fed2cd0ab81776f4c601926b54_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:992588aab0cfe3ec909418e827ca46828d0a07d9e3e1479fed437c9c445d7ff0_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:a80038bcbb994457fda1443b37dee5fbe66bbb02972b38139a9877e978c73835_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:cf2318bcce1f1a565bcfdb722d89e0ddb2e88a523db237e926def3934add78e5_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-operator-bundle@sha256:24c95ad401a653c88d072a7753052850cfa6738686ce9aec7ba5f6fcbc92e7fc_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:189d8de6e11f86cd47891d2268c2a91134a6fe617ecbbc433dda7a7f68519421_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:61007260c34ec5113e4286f679a5377c64fb6ad934aee5de6928f4c06c54e969_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:779614a189b230b5c78cd28e360d9e7fabb519aef73a5acacb26b3c26716c68d_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:898bf1c9ee31508ffb2d72deaa97f0b02639e22063788448bbe55f5b98d8db7b_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:0a2acfdea8fb6b49a6117d8914e9ae56bc4668ce882131a47923fc0c7ab7c6b6_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:37415ef53ed46fcc1fd8010da38f13ffc9015f8435306b7dcf16bb3ed117083b_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:626527f0b4701d00b845c8bca201f81756a0577a555447ea90b8903b0f968e12_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:98ad870b2929bc5db27a7cf0f9f0791f82d6889673ce7d102838616c466af612_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:2d1e27a8dc06bc78b251796816e89ff0ad7ee91ccd9077db47d245fb5ae5d291_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:c472058fc730b6ea6d064cd77dfa583340976209afe109fee9296012f02df66f_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:d3ca3c7f85c104a6ae087dccd37e328e1cdeb5b93a880b48e1f2c99c015fd101_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:fa3f9534ea19d8828c2342b3557f652196aec37552fa49e83af6dd1b0c356d69_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:4570de210e87e6d64af57fe4ecb072e732365e62e7a23c3b1a8c04cf508bc876_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:6d070525b6e7b75f61f2999dac4dbcbc6fda96c882a17978e7bf8edbc008847b_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:92ee83df52ef773c4bcad66c277f608832de60b2bd00adb41fb877e33040077b_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:be7f5c4ca3cbba8944f0c275ccf847b701c6ae7a25052272fb80d8144f61fc9c_arm64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2480688"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in golang.org/x/crypto/ssh/knownhosts. This vulnerability occurs because the system did not correctly check for the revocation status of a SignatureKey belonging to a Certificate Authority (CA). A remote attacker could potentially exploit this by presenting a revoked key, leading to the system accepting it as valid. This could allow an attacker to bypass security checks and potentially gain unauthorized access or spoof legitimate entities.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang.org/x/crypto/ssh/knownhosts: golang: golang.org/x/crypto/ssh/knownhosts: Revocation bypass via unchecked SignatureKey",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Important: A flaw in `golang.org/x/crypto/ssh/knownhosts` allows a remote attacker to bypass security checks. This vulnerability arises because the system fails to properly verify the revocation status of a Certificate Authority (CA) `SignatureKey`. In Red Hat environments, this could enable an attacker to present a revoked key, leading to its acceptance as valid and potentially granting unauthorized access or facilitating the spoofing of legitimate entities.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:7bfbb56d32556a602f9bbe422ea0a583e7e79e0de7503ce362962b3ffc5e5d62_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:aef0c6d237fba5ce37a219b78da4e7c566c6de1d37a9fcd0529c514322f09e77_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:b2361437d1f6d5ee61b23867ea903668f611f76cc76142713785b2faa00fcd63_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:fecc167995f30887629cd176971af5f7b3cb1cc377f8e3a329008e83133e8361_ppc64le"
],
"known_not_affected": [
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:09fdae42b81088e67a3f29e32ac980d57652d8ddbe9665b86aab69b37a4327bd_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:0ef830a815d07df60291e9c7b89a03dd40c0ceabfc3071f1fe188575f65a0542_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:59bc241a2a06804393a63785eeb8f0a8165a99263f08e0ffc3e727671c214114_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:af26444b2b45eb9c726b8d0cc92f023c4f4e52c9fb839198ad862d6513e2683f_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:0a189209a84ceddfbbfdba58e43fe94b5ddd211982a58a0929eb9997d3bf585a_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:2d8b7f64fa620bfce0130c52b977942ec9118fafddc9c090994609ab274df00c_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:a18b4c58e2b285058541b77a47d6482a9db6be58756651df3b3c648548a44f8e_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:cebcaaef5272faa6e6f147eeb966803b7cb3d3fbc86514132f6ad2e8b51e4557_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:64c957565dd799994cab0828a9c1169c128ca20e8b103af6b6ac2f422077e322_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:8c8aa38871ee6d945a186d0e3a7b129bafd08d53e52278e1eb6d8011491240dd_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:a473e11982fd3d970a3e28d7e103ee40fd50217cb0de7028edfae345c34bcbc0_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:ccf2448519c0998d9843fa570f128f420326e849c8c69dd3c5b526c3444d9f50_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:7bda73fcb94b412a8799bd11915066b07ed341fed2cd0ab81776f4c601926b54_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:992588aab0cfe3ec909418e827ca46828d0a07d9e3e1479fed437c9c445d7ff0_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:a80038bcbb994457fda1443b37dee5fbe66bbb02972b38139a9877e978c73835_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:cf2318bcce1f1a565bcfdb722d89e0ddb2e88a523db237e926def3934add78e5_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-operator-bundle@sha256:24c95ad401a653c88d072a7753052850cfa6738686ce9aec7ba5f6fcbc92e7fc_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:189d8de6e11f86cd47891d2268c2a91134a6fe617ecbbc433dda7a7f68519421_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:61007260c34ec5113e4286f679a5377c64fb6ad934aee5de6928f4c06c54e969_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:779614a189b230b5c78cd28e360d9e7fabb519aef73a5acacb26b3c26716c68d_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:898bf1c9ee31508ffb2d72deaa97f0b02639e22063788448bbe55f5b98d8db7b_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:0a2acfdea8fb6b49a6117d8914e9ae56bc4668ce882131a47923fc0c7ab7c6b6_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:37415ef53ed46fcc1fd8010da38f13ffc9015f8435306b7dcf16bb3ed117083b_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:626527f0b4701d00b845c8bca201f81756a0577a555447ea90b8903b0f968e12_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:98ad870b2929bc5db27a7cf0f9f0791f82d6889673ce7d102838616c466af612_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:2d1e27a8dc06bc78b251796816e89ff0ad7ee91ccd9077db47d245fb5ae5d291_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:c472058fc730b6ea6d064cd77dfa583340976209afe109fee9296012f02df66f_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:d3ca3c7f85c104a6ae087dccd37e328e1cdeb5b93a880b48e1f2c99c015fd101_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:fa3f9534ea19d8828c2342b3557f652196aec37552fa49e83af6dd1b0c356d69_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:4570de210e87e6d64af57fe4ecb072e732365e62e7a23c3b1a8c04cf508bc876_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:6d070525b6e7b75f61f2999dac4dbcbc6fda96c882a17978e7bf8edbc008847b_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:92ee83df52ef773c4bcad66c277f608832de60b2bd00adb41fb877e33040077b_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:be7f5c4ca3cbba8944f0c275ccf847b701c6ae7a25052272fb80d8144f61fc9c_arm64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-42508"
},
{
"category": "external",
"summary": "RHBZ#2480688",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2480688"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-42508",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-42508"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-42508",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-42508"
},
{
"category": "external",
"summary": "https://go.dev/cl/781220",
"url": "https://go.dev/cl/781220"
},
{
"category": "external",
"summary": "https://go.dev/issue/79568",
"url": "https://go.dev/issue/79568"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/a082jnz-LvI",
"url": "https://groups.google.com/g/golang-announce/c/a082jnz-LvI"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-5021",
"url": "https://pkg.go.dev/vuln/GO-2026-5021"
}
],
"release_date": "2026-05-22T02:31:27.644000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T09:20:18+00:00",
"details": "It is recommended that existing users of Red Hat OpenShift Builds 1.7.3 upgrade to 1.7.4",
"product_ids": [
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:7bfbb56d32556a602f9bbe422ea0a583e7e79e0de7503ce362962b3ffc5e5d62_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:aef0c6d237fba5ce37a219b78da4e7c566c6de1d37a9fcd0529c514322f09e77_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:b2361437d1f6d5ee61b23867ea903668f611f76cc76142713785b2faa00fcd63_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:fecc167995f30887629cd176971af5f7b3cb1cc377f8e3a329008e83133e8361_ppc64le"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36648"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.4,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:09fdae42b81088e67a3f29e32ac980d57652d8ddbe9665b86aab69b37a4327bd_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:0ef830a815d07df60291e9c7b89a03dd40c0ceabfc3071f1fe188575f65a0542_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:59bc241a2a06804393a63785eeb8f0a8165a99263f08e0ffc3e727671c214114_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:af26444b2b45eb9c726b8d0cc92f023c4f4e52c9fb839198ad862d6513e2683f_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:0a189209a84ceddfbbfdba58e43fe94b5ddd211982a58a0929eb9997d3bf585a_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:2d8b7f64fa620bfce0130c52b977942ec9118fafddc9c090994609ab274df00c_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:a18b4c58e2b285058541b77a47d6482a9db6be58756651df3b3c648548a44f8e_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:cebcaaef5272faa6e6f147eeb966803b7cb3d3fbc86514132f6ad2e8b51e4557_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:64c957565dd799994cab0828a9c1169c128ca20e8b103af6b6ac2f422077e322_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:8c8aa38871ee6d945a186d0e3a7b129bafd08d53e52278e1eb6d8011491240dd_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:a473e11982fd3d970a3e28d7e103ee40fd50217cb0de7028edfae345c34bcbc0_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:ccf2448519c0998d9843fa570f128f420326e849c8c69dd3c5b526c3444d9f50_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:7bda73fcb94b412a8799bd11915066b07ed341fed2cd0ab81776f4c601926b54_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:992588aab0cfe3ec909418e827ca46828d0a07d9e3e1479fed437c9c445d7ff0_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:a80038bcbb994457fda1443b37dee5fbe66bbb02972b38139a9877e978c73835_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:cf2318bcce1f1a565bcfdb722d89e0ddb2e88a523db237e926def3934add78e5_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-operator-bundle@sha256:24c95ad401a653c88d072a7753052850cfa6738686ce9aec7ba5f6fcbc92e7fc_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:189d8de6e11f86cd47891d2268c2a91134a6fe617ecbbc433dda7a7f68519421_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:61007260c34ec5113e4286f679a5377c64fb6ad934aee5de6928f4c06c54e969_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:779614a189b230b5c78cd28e360d9e7fabb519aef73a5acacb26b3c26716c68d_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:898bf1c9ee31508ffb2d72deaa97f0b02639e22063788448bbe55f5b98d8db7b_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:0a2acfdea8fb6b49a6117d8914e9ae56bc4668ce882131a47923fc0c7ab7c6b6_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:37415ef53ed46fcc1fd8010da38f13ffc9015f8435306b7dcf16bb3ed117083b_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:626527f0b4701d00b845c8bca201f81756a0577a555447ea90b8903b0f968e12_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:98ad870b2929bc5db27a7cf0f9f0791f82d6889673ce7d102838616c466af612_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:2d1e27a8dc06bc78b251796816e89ff0ad7ee91ccd9077db47d245fb5ae5d291_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:c472058fc730b6ea6d064cd77dfa583340976209afe109fee9296012f02df66f_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:d3ca3c7f85c104a6ae087dccd37e328e1cdeb5b93a880b48e1f2c99c015fd101_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:fa3f9534ea19d8828c2342b3557f652196aec37552fa49e83af6dd1b0c356d69_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:7bfbb56d32556a602f9bbe422ea0a583e7e79e0de7503ce362962b3ffc5e5d62_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:aef0c6d237fba5ce37a219b78da4e7c566c6de1d37a9fcd0529c514322f09e77_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:b2361437d1f6d5ee61b23867ea903668f611f76cc76142713785b2faa00fcd63_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:fecc167995f30887629cd176971af5f7b3cb1cc377f8e3a329008e83133e8361_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:4570de210e87e6d64af57fe4ecb072e732365e62e7a23c3b1a8c04cf508bc876_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:6d070525b6e7b75f61f2999dac4dbcbc6fda96c882a17978e7bf8edbc008847b_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:92ee83df52ef773c4bcad66c277f608832de60b2bd00adb41fb877e33040077b_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:be7f5c4ca3cbba8944f0c275ccf847b701c6ae7a25052272fb80d8144f61fc9c_arm64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang.org/x/crypto/ssh/knownhosts: golang: golang.org/x/crypto/ssh/knownhosts: Revocation bypass via unchecked SignatureKey"
},
{
"cve": "CVE-2026-46595",
"cwe": {
"id": "CWE-303",
"name": "Incorrect Implementation of Authentication Algorithm"
},
"discovery_date": "2026-05-22T04:01:52.215134+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:09fdae42b81088e67a3f29e32ac980d57652d8ddbe9665b86aab69b37a4327bd_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:0ef830a815d07df60291e9c7b89a03dd40c0ceabfc3071f1fe188575f65a0542_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:59bc241a2a06804393a63785eeb8f0a8165a99263f08e0ffc3e727671c214114_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:af26444b2b45eb9c726b8d0cc92f023c4f4e52c9fb839198ad862d6513e2683f_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:0a189209a84ceddfbbfdba58e43fe94b5ddd211982a58a0929eb9997d3bf585a_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:2d8b7f64fa620bfce0130c52b977942ec9118fafddc9c090994609ab274df00c_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:a18b4c58e2b285058541b77a47d6482a9db6be58756651df3b3c648548a44f8e_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:cebcaaef5272faa6e6f147eeb966803b7cb3d3fbc86514132f6ad2e8b51e4557_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:64c957565dd799994cab0828a9c1169c128ca20e8b103af6b6ac2f422077e322_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:8c8aa38871ee6d945a186d0e3a7b129bafd08d53e52278e1eb6d8011491240dd_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:a473e11982fd3d970a3e28d7e103ee40fd50217cb0de7028edfae345c34bcbc0_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:ccf2448519c0998d9843fa570f128f420326e849c8c69dd3c5b526c3444d9f50_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:7bda73fcb94b412a8799bd11915066b07ed341fed2cd0ab81776f4c601926b54_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:992588aab0cfe3ec909418e827ca46828d0a07d9e3e1479fed437c9c445d7ff0_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:a80038bcbb994457fda1443b37dee5fbe66bbb02972b38139a9877e978c73835_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:cf2318bcce1f1a565bcfdb722d89e0ddb2e88a523db237e926def3934add78e5_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-operator-bundle@sha256:24c95ad401a653c88d072a7753052850cfa6738686ce9aec7ba5f6fcbc92e7fc_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:189d8de6e11f86cd47891d2268c2a91134a6fe617ecbbc433dda7a7f68519421_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:61007260c34ec5113e4286f679a5377c64fb6ad934aee5de6928f4c06c54e969_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:779614a189b230b5c78cd28e360d9e7fabb519aef73a5acacb26b3c26716c68d_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:898bf1c9ee31508ffb2d72deaa97f0b02639e22063788448bbe55f5b98d8db7b_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:0a2acfdea8fb6b49a6117d8914e9ae56bc4668ce882131a47923fc0c7ab7c6b6_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:37415ef53ed46fcc1fd8010da38f13ffc9015f8435306b7dcf16bb3ed117083b_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:626527f0b4701d00b845c8bca201f81756a0577a555447ea90b8903b0f968e12_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:98ad870b2929bc5db27a7cf0f9f0791f82d6889673ce7d102838616c466af612_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:2d1e27a8dc06bc78b251796816e89ff0ad7ee91ccd9077db47d245fb5ae5d291_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:c472058fc730b6ea6d064cd77dfa583340976209afe109fee9296012f02df66f_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:d3ca3c7f85c104a6ae087dccd37e328e1cdeb5b93a880b48e1f2c99c015fd101_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:fa3f9534ea19d8828c2342b3557f652196aec37552fa49e83af6dd1b0c356d69_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:4570de210e87e6d64af57fe4ecb072e732365e62e7a23c3b1a8c04cf508bc876_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:6d070525b6e7b75f61f2999dac4dbcbc6fda96c882a17978e7bf8edbc008847b_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:92ee83df52ef773c4bcad66c277f608832de60b2bd00adb41fb877e33040077b_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:be7f5c4ca3cbba8944f0c275ccf847b701c6ae7a25052272fb80d8144f61fc9c_arm64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2480689"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in golang.org/x/crypto/ssh. Source-address validation can be skipped when an SSH server configuration uses an authentication callback type other than public key, allowing authorization bypass in misconfigured servers. This is a follow-on to incomplete coverage from the CVE-2024-45337 fix.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang.org/x/crypto/ssh: golang.org/x/crypto/ssh: Authorization bypass due to skipped source-address validation",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "golang.org/x/crypto/ssh is vulnerable to authorization bypass when SSH server configurations rely on source-address validation alongside non-public-key authentication callbacks. An attacker with low privileges who can authenticate through such a callback path may bypass intended source-address restrictions and gain unauthorized SSH access. Red Hat impact sits in services built with affected x/crypto/ssh, including RHEL golang streams, hummingbird Go toolchains, RHACM/MCE agents, and OpenShift or Ceph components that embed Go SSH servers with mixed callback types.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:7bfbb56d32556a602f9bbe422ea0a583e7e79e0de7503ce362962b3ffc5e5d62_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:aef0c6d237fba5ce37a219b78da4e7c566c6de1d37a9fcd0529c514322f09e77_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:b2361437d1f6d5ee61b23867ea903668f611f76cc76142713785b2faa00fcd63_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:fecc167995f30887629cd176971af5f7b3cb1cc377f8e3a329008e83133e8361_ppc64le"
],
"known_not_affected": [
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:09fdae42b81088e67a3f29e32ac980d57652d8ddbe9665b86aab69b37a4327bd_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:0ef830a815d07df60291e9c7b89a03dd40c0ceabfc3071f1fe188575f65a0542_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:59bc241a2a06804393a63785eeb8f0a8165a99263f08e0ffc3e727671c214114_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:af26444b2b45eb9c726b8d0cc92f023c4f4e52c9fb839198ad862d6513e2683f_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:0a189209a84ceddfbbfdba58e43fe94b5ddd211982a58a0929eb9997d3bf585a_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:2d8b7f64fa620bfce0130c52b977942ec9118fafddc9c090994609ab274df00c_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:a18b4c58e2b285058541b77a47d6482a9db6be58756651df3b3c648548a44f8e_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:cebcaaef5272faa6e6f147eeb966803b7cb3d3fbc86514132f6ad2e8b51e4557_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:64c957565dd799994cab0828a9c1169c128ca20e8b103af6b6ac2f422077e322_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:8c8aa38871ee6d945a186d0e3a7b129bafd08d53e52278e1eb6d8011491240dd_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:a473e11982fd3d970a3e28d7e103ee40fd50217cb0de7028edfae345c34bcbc0_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:ccf2448519c0998d9843fa570f128f420326e849c8c69dd3c5b526c3444d9f50_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:7bda73fcb94b412a8799bd11915066b07ed341fed2cd0ab81776f4c601926b54_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:992588aab0cfe3ec909418e827ca46828d0a07d9e3e1479fed437c9c445d7ff0_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:a80038bcbb994457fda1443b37dee5fbe66bbb02972b38139a9877e978c73835_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:cf2318bcce1f1a565bcfdb722d89e0ddb2e88a523db237e926def3934add78e5_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-operator-bundle@sha256:24c95ad401a653c88d072a7753052850cfa6738686ce9aec7ba5f6fcbc92e7fc_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:189d8de6e11f86cd47891d2268c2a91134a6fe617ecbbc433dda7a7f68519421_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:61007260c34ec5113e4286f679a5377c64fb6ad934aee5de6928f4c06c54e969_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:779614a189b230b5c78cd28e360d9e7fabb519aef73a5acacb26b3c26716c68d_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:898bf1c9ee31508ffb2d72deaa97f0b02639e22063788448bbe55f5b98d8db7b_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:0a2acfdea8fb6b49a6117d8914e9ae56bc4668ce882131a47923fc0c7ab7c6b6_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:37415ef53ed46fcc1fd8010da38f13ffc9015f8435306b7dcf16bb3ed117083b_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:626527f0b4701d00b845c8bca201f81756a0577a555447ea90b8903b0f968e12_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:98ad870b2929bc5db27a7cf0f9f0791f82d6889673ce7d102838616c466af612_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:2d1e27a8dc06bc78b251796816e89ff0ad7ee91ccd9077db47d245fb5ae5d291_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:c472058fc730b6ea6d064cd77dfa583340976209afe109fee9296012f02df66f_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:d3ca3c7f85c104a6ae087dccd37e328e1cdeb5b93a880b48e1f2c99c015fd101_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:fa3f9534ea19d8828c2342b3557f652196aec37552fa49e83af6dd1b0c356d69_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:4570de210e87e6d64af57fe4ecb072e732365e62e7a23c3b1a8c04cf508bc876_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:6d070525b6e7b75f61f2999dac4dbcbc6fda96c882a17978e7bf8edbc008847b_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:92ee83df52ef773c4bcad66c277f608832de60b2bd00adb41fb877e33040077b_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:be7f5c4ca3cbba8944f0c275ccf847b701c6ae7a25052272fb80d8144f61fc9c_arm64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-46595"
},
{
"category": "external",
"summary": "RHBZ#2480689",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2480689"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-46595",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-46595"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-46595",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-46595"
},
{
"category": "external",
"summary": "https://go.dev/cl/781642",
"url": "https://go.dev/cl/781642"
},
{
"category": "external",
"summary": "https://go.dev/issue/79570",
"url": "https://go.dev/issue/79570"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/a082jnz-LvI",
"url": "https://groups.google.com/g/golang-announce/c/a082jnz-LvI"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-5023",
"url": "https://pkg.go.dev/vuln/GO-2026-5023"
}
],
"release_date": "2026-05-22T02:31:27.894000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T09:20:18+00:00",
"details": "It is recommended that existing users of Red Hat OpenShift Builds 1.7.3 upgrade to 1.7.4",
"product_ids": [
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:7bfbb56d32556a602f9bbe422ea0a583e7e79e0de7503ce362962b3ffc5e5d62_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:aef0c6d237fba5ce37a219b78da4e7c566c6de1d37a9fcd0529c514322f09e77_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:b2361437d1f6d5ee61b23867ea903668f611f76cc76142713785b2faa00fcd63_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:fecc167995f30887629cd176971af5f7b3cb1cc377f8e3a329008e83133e8361_ppc64le"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36648"
},
{
"category": "workaround",
"details": "Upgrade to a fixed golang.org/x/crypto/ssh release via updated golang or package rebuilds. Ensure SSH servers use supported public-key callback configurations with source-address validation as intended.",
"product_ids": [
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:09fdae42b81088e67a3f29e32ac980d57652d8ddbe9665b86aab69b37a4327bd_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:0ef830a815d07df60291e9c7b89a03dd40c0ceabfc3071f1fe188575f65a0542_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:59bc241a2a06804393a63785eeb8f0a8165a99263f08e0ffc3e727671c214114_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:af26444b2b45eb9c726b8d0cc92f023c4f4e52c9fb839198ad862d6513e2683f_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:0a189209a84ceddfbbfdba58e43fe94b5ddd211982a58a0929eb9997d3bf585a_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:2d8b7f64fa620bfce0130c52b977942ec9118fafddc9c090994609ab274df00c_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:a18b4c58e2b285058541b77a47d6482a9db6be58756651df3b3c648548a44f8e_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:cebcaaef5272faa6e6f147eeb966803b7cb3d3fbc86514132f6ad2e8b51e4557_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:64c957565dd799994cab0828a9c1169c128ca20e8b103af6b6ac2f422077e322_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:8c8aa38871ee6d945a186d0e3a7b129bafd08d53e52278e1eb6d8011491240dd_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:a473e11982fd3d970a3e28d7e103ee40fd50217cb0de7028edfae345c34bcbc0_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:ccf2448519c0998d9843fa570f128f420326e849c8c69dd3c5b526c3444d9f50_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:7bda73fcb94b412a8799bd11915066b07ed341fed2cd0ab81776f4c601926b54_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:992588aab0cfe3ec909418e827ca46828d0a07d9e3e1479fed437c9c445d7ff0_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:a80038bcbb994457fda1443b37dee5fbe66bbb02972b38139a9877e978c73835_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:cf2318bcce1f1a565bcfdb722d89e0ddb2e88a523db237e926def3934add78e5_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-operator-bundle@sha256:24c95ad401a653c88d072a7753052850cfa6738686ce9aec7ba5f6fcbc92e7fc_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:189d8de6e11f86cd47891d2268c2a91134a6fe617ecbbc433dda7a7f68519421_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:61007260c34ec5113e4286f679a5377c64fb6ad934aee5de6928f4c06c54e969_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:779614a189b230b5c78cd28e360d9e7fabb519aef73a5acacb26b3c26716c68d_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:898bf1c9ee31508ffb2d72deaa97f0b02639e22063788448bbe55f5b98d8db7b_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:0a2acfdea8fb6b49a6117d8914e9ae56bc4668ce882131a47923fc0c7ab7c6b6_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:37415ef53ed46fcc1fd8010da38f13ffc9015f8435306b7dcf16bb3ed117083b_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:626527f0b4701d00b845c8bca201f81756a0577a555447ea90b8903b0f968e12_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:98ad870b2929bc5db27a7cf0f9f0791f82d6889673ce7d102838616c466af612_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:2d1e27a8dc06bc78b251796816e89ff0ad7ee91ccd9077db47d245fb5ae5d291_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:c472058fc730b6ea6d064cd77dfa583340976209afe109fee9296012f02df66f_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:d3ca3c7f85c104a6ae087dccd37e328e1cdeb5b93a880b48e1f2c99c015fd101_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:fa3f9534ea19d8828c2342b3557f652196aec37552fa49e83af6dd1b0c356d69_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:7bfbb56d32556a602f9bbe422ea0a583e7e79e0de7503ce362962b3ffc5e5d62_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:aef0c6d237fba5ce37a219b78da4e7c566c6de1d37a9fcd0529c514322f09e77_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:b2361437d1f6d5ee61b23867ea903668f611f76cc76142713785b2faa00fcd63_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:fecc167995f30887629cd176971af5f7b3cb1cc377f8e3a329008e83133e8361_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:4570de210e87e6d64af57fe4ecb072e732365e62e7a23c3b1a8c04cf508bc876_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:6d070525b6e7b75f61f2999dac4dbcbc6fda96c882a17978e7bf8edbc008847b_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:92ee83df52ef773c4bcad66c277f608832de60b2bd00adb41fb877e33040077b_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:be7f5c4ca3cbba8944f0c275ccf847b701c6ae7a25052272fb80d8144f61fc9c_arm64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 7.1,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:L",
"version": "3.1"
},
"products": [
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:09fdae42b81088e67a3f29e32ac980d57652d8ddbe9665b86aab69b37a4327bd_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:0ef830a815d07df60291e9c7b89a03dd40c0ceabfc3071f1fe188575f65a0542_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:59bc241a2a06804393a63785eeb8f0a8165a99263f08e0ffc3e727671c214114_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:af26444b2b45eb9c726b8d0cc92f023c4f4e52c9fb839198ad862d6513e2683f_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:0a189209a84ceddfbbfdba58e43fe94b5ddd211982a58a0929eb9997d3bf585a_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:2d8b7f64fa620bfce0130c52b977942ec9118fafddc9c090994609ab274df00c_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:a18b4c58e2b285058541b77a47d6482a9db6be58756651df3b3c648548a44f8e_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:cebcaaef5272faa6e6f147eeb966803b7cb3d3fbc86514132f6ad2e8b51e4557_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:64c957565dd799994cab0828a9c1169c128ca20e8b103af6b6ac2f422077e322_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:8c8aa38871ee6d945a186d0e3a7b129bafd08d53e52278e1eb6d8011491240dd_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:a473e11982fd3d970a3e28d7e103ee40fd50217cb0de7028edfae345c34bcbc0_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:ccf2448519c0998d9843fa570f128f420326e849c8c69dd3c5b526c3444d9f50_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:7bda73fcb94b412a8799bd11915066b07ed341fed2cd0ab81776f4c601926b54_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:992588aab0cfe3ec909418e827ca46828d0a07d9e3e1479fed437c9c445d7ff0_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:a80038bcbb994457fda1443b37dee5fbe66bbb02972b38139a9877e978c73835_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:cf2318bcce1f1a565bcfdb722d89e0ddb2e88a523db237e926def3934add78e5_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-operator-bundle@sha256:24c95ad401a653c88d072a7753052850cfa6738686ce9aec7ba5f6fcbc92e7fc_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:189d8de6e11f86cd47891d2268c2a91134a6fe617ecbbc433dda7a7f68519421_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:61007260c34ec5113e4286f679a5377c64fb6ad934aee5de6928f4c06c54e969_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:779614a189b230b5c78cd28e360d9e7fabb519aef73a5acacb26b3c26716c68d_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:898bf1c9ee31508ffb2d72deaa97f0b02639e22063788448bbe55f5b98d8db7b_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:0a2acfdea8fb6b49a6117d8914e9ae56bc4668ce882131a47923fc0c7ab7c6b6_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:37415ef53ed46fcc1fd8010da38f13ffc9015f8435306b7dcf16bb3ed117083b_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:626527f0b4701d00b845c8bca201f81756a0577a555447ea90b8903b0f968e12_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:98ad870b2929bc5db27a7cf0f9f0791f82d6889673ce7d102838616c466af612_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:2d1e27a8dc06bc78b251796816e89ff0ad7ee91ccd9077db47d245fb5ae5d291_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:c472058fc730b6ea6d064cd77dfa583340976209afe109fee9296012f02df66f_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:d3ca3c7f85c104a6ae087dccd37e328e1cdeb5b93a880b48e1f2c99c015fd101_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:fa3f9534ea19d8828c2342b3557f652196aec37552fa49e83af6dd1b0c356d69_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:7bfbb56d32556a602f9bbe422ea0a583e7e79e0de7503ce362962b3ffc5e5d62_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:aef0c6d237fba5ce37a219b78da4e7c566c6de1d37a9fcd0529c514322f09e77_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:b2361437d1f6d5ee61b23867ea903668f611f76cc76142713785b2faa00fcd63_arm64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:fecc167995f30887629cd176971af5f7b3cb1cc377f8e3a329008e83133e8361_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:4570de210e87e6d64af57fe4ecb072e732365e62e7a23c3b1a8c04cf508bc876_s390x",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:6d070525b6e7b75f61f2999dac4dbcbc6fda96c882a17978e7bf8edbc008847b_amd64",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:92ee83df52ef773c4bcad66c277f608832de60b2bd00adb41fb877e33040077b_ppc64le",
"Red Hat OpenShift Builds 1.7.4:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:be7f5c4ca3cbba8944f0c275ccf847b701c6ae7a25052272fb80d8144f61fc9c_arm64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang.org/x/crypto/ssh: golang.org/x/crypto/ssh: Authorization bypass due to skipped source-address validation"
}
]
}
RHSA-2026:36651
Vulnerability from csaf_redhat - Published: 2026-07-08 10:08 - Updated: 2026-07-13 03:54A flaw was found in Lodash. A prototype pollution vulnerability in the _.unset and _.omit functions allows an attacker able to control property paths to delete methods from global prototypes. By removing essential functionalities, this can result in a denial of service.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64 | — |
Workaround
|
A flaw was found in golang. A remote attacker could exploit this vulnerability by providing a specially crafted certificate during the error string construction process within the `HostnameError.Error()` function. This flaw, caused by unbounded string concatenation, leads to excessive resource consumption. Successful exploitation can result in a denial of service (DoS) for the affected system.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64 | — |
Vendor Fix
fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64 | — |
A flaw was found in the crypto/tls component. This vulnerability occurs during Transport Layer Security (TLS) session resumption when certificate authority (CA) settings are modified between the initial and resumed handshakes. An attacker could exploit this to bypass certificate validation, allowing a client or server to establish a connection that should have been rejected. This could lead to an authentication bypass under specific conditions.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64 | — |
Vendor Fix
fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64 | — |
A flaw was found in ajv. When the $data option is enabled, the value of the pattern keyword is passed directly to the JavaScript RegExp() constructor without sufficient validation. An attacker able to supply a malicious regular expression pattern can trigger a ReDoS (Regular Expression Denial of Service), causing the application to become unresponsive and resulting in a denial of service.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64 | — |
Workaround
|
A flaw was found in lodash. The fix for CVE-2021-23337 added validation for the variable option in _.template but did not apply the same validation to options.imports key names. Both paths flow into the same Function() constructor sink. Additionally, _.template uses assignInWith to merge imports, which enumerates inherited properties via for..in. If Object.prototype has been polluted by any other vector, the polluted keys are copied into the imports object and passed to Function().
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64 | — |
Workaround
|
A flaw was found in path-to-regexp. A remote attacker could exploit this vulnerability by providing specially crafted input that generates a regular expression with multiple sequential optional groups. This leads to an exponential growth in the generated regular expression, causing a Denial of Service (DoS) due to excessive resource consumption.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64 | — |
Workaround
|
A flaw was found in fast-uri. A remote attacker could exploit this vulnerability by crafting a malicious Uniform Resource Identifier (URI) that contains percent-encoded authority delimiters. The fast-uri library incorrectly decodes these delimiters during normalization and then re-emits them as raw separators, which can change the URI's intended authority. This issue allows applications that perform host allowlist checks, redirect validation, or outbound request routing to be steered to a different authority than specified, potentially bypassing security controls.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64 | — |
Vendor Fix
fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64 | — |
A cross site scripting flaw has been discovered in the npm react-router and @remix-run/router packages. React Router (and Remix v1/v2) SPA open navigation redirects originating from loaders or actions in Framework Mode, Data Mode, or the unstable RSC modes can result in unsafe URLs causing unintended javascript execution on the client. This is only an issue if you are creating redirect paths from untrusted content or via an open redirect.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64 | — |
Workaround
|
The Go standard library function net/url.Parse insufficiently validated the host/authority component and accepted some invalid URLs by effectively treating garbage before an IP-literal as ignorable. The function should have rejected this as invalid.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64 | — |
Workaround
|
A flaw was found in Immutable.js, a library for persistent immutable data structures. This vulnerability, known as Prototype Pollution, allows an attacker with low privileges to inject unwanted properties into core JavaScript object prototypes without user interaction. By manipulating specific APIs such as mergeDeep(), mergeDeepWith(), merge(), Map.toJS(), and Map.toObject(), a remote attacker could potentially execute arbitrary code or cause a denial of service (DoS).
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64 | — |
Vendor Fix
fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64 | — |
A denial of service flaw has been discovered in the flatted npm library. flatted's parse() function uses a recursive revive() phase to resolve circular references in deserialized JSON. When given a crafted payload with deeply nested or self-referential $ indices, the recursion depth is unbounded, causing a stack overflow that crashes the Node.js process.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64 | — |
Workaround
|
A flaw was found in the Go standard library packages `crypto/x509` and `crypto/tls`. During the process of building a certificate chain, an attacker can provide a large number of intermediate certificates. This excessive input is not properly limited, leading to an uncontrolled amount of work being performed. This can result in a denial of service (DoS) condition, making the affected system or application unavailable to legitimate users.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64 | — |
Vendor Fix
fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64 | — |
A flaw was found in gRPC-Go, the Go language implementation of gRPC. This vulnerability, an authorization bypass, is caused by improper input validation of the HTTP/2 `:path` pseudo-header. A remote attacker can exploit this by sending raw HTTP/2 frames with a malformed `:path` that omits the mandatory leading slash. This allows the attacker to bypass defined security policies, potentially leading to unauthorized access to services or information disclosure.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64 | — |
Workaround
|
A flaw was found in the `crypto/x509` package within Go (golang). When verifying a certificate chain, excluded DNS (Domain Name System) constraints are not correctly applied to wildcard DNS Subject Alternative Names (SANs) if the case of the SAN differs from the constraint. This oversight could allow an attacker to bypass certificate validation, potentially leading to the acceptance of a malicious certificate that should have been rejected. This issue specifically impacts the validation of trusted certificate chains.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64 | — |
Vendor Fix
fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64 | — |
A flaw was found in the `net` package of Go (golang), specifically when using the `LookupCNAME` function with the `cgo` DNS resolver. A remote attacker could exploit this by providing a very long Canonical Name (CNAME) response. This can trigger a double-free of C memory, leading to a crash and a Denial of Service (DoS) for the affected application.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64 | — |
Workaround
|
A flaw was found in golang.org/x/net/idna. ToASCII and ToUnicode incorrectly accept Punycode-encoded labels that decode to an ASCII-only hostname (for example, xn--example-.com returns example.com instead of an error). Applications that validate the ASCII form then convert to Unicode may grant access to a restricted hostname the ASCII check would have rejected.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64 | — |
Workaround
|
A flaw was found in golang.org/x/crypto/ssh. A remote attacker could exploit this vulnerability when an SSH server authentication callback returned a PartialSuccessError with non-nil permissions. This flaw caused these permissions to be silently discarded, potentially bypassing certificate restrictions, such as a force-command, after a second authentication factor succeeded. This could lead to unauthorized command execution or access.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64 | — |
Workaround
|
A flaw was found in golang.org/x/crypto/ssh. The RSA and DSA public key parsers in the affected component did not enforce size limits on key parameters. This vulnerability allows an unauthenticated client to provide a crafted public key with an excessively large modulus or DSA parameter during public key authentication. Successful exploitation could lead to a denial of service (DoS) due to prolonged CPU consumption during signature verification.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64 | — |
Workaround
|
A flaw was found in golang.org/x/crypto/ssh. A remote malicious SSH peer can exploit this by sending unsolicited global request responses, which fills an internal buffer and blocks the connection's read loop. This prevents the associated resources from being released, leading to a resource leak per connection. The consequence is a Denial of Service (DoS) for the affected system.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64 | — |
Workaround
|
A flaw was found in golang.org/x/crypto/ssh/agent. When a key was added to a remote agent, security restrictions, known as constraint extensions, were not properly processed during the request. This allowed these restrictions to be silently removed when keys were forwarded, leading to the unrestricted use of the key on the remote host. This vulnerability could enable an attacker to bypass intended security controls and perform unauthorized actions.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64 | — |
Workaround
|
A flaw was found in golang.org/x/crypto/ssh. SSH servers configured to use CertChecker as a public key callback, without explicitly setting IsUserAuthority or IsHostAuthority, are vulnerable. A remote attacker can exploit this by presenting a specially crafted certificate, causing the server to panic and resulting in a Denial of Service (DoS).
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64 | — |
Workaround
|
A flaw was found in Prometheus, an open-source monitoring system. The `client_secret` field within the Azure Active Directory (AD) remote write OAuth configuration was incorrectly handled as a plain string instead of a secure Secret type. This misconfiguration allowed any user or process with access to the `/-/config` HTTP API endpoint to view the Azure OAuth client secret in plaintext. This vulnerability leads to information disclosure, potentially compromising the security of integrated Azure AD services.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64 | — |
Vendor Fix
fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64 | — |
A flaw was found in Prometheus. An unauthenticated attacker can exploit the remote read endpoint (`/api/v1/read`) by sending a specially crafted, small snappy-compressed payload. This payload causes a disproportionately large memory allocation, leading to memory exhaustion and a Denial of Service (DoS) by crashing the Prometheus process.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64 | — |
Vendor Fix
fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64 | — |
A flaw was found in golang.org/x/crypto/ssh/knownhosts. This vulnerability occurs because the system did not correctly check for the revocation status of a SignatureKey belonging to a Certificate Authority (CA). A remote attacker could potentially exploit this by presenting a revoked key, leading to the system accepting it as valid. This could allow an attacker to bypass security checks and potentially gain unauthorized access or spoof legitimate entities.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64 | — |
Vendor Fix
fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64 | — |
A flaw was found in golang.org/x/crypto/ssh. Source-address validation can be skipped when an SSH server configuration uses an authentication callback type other than public key, allowing authorization bypass in misconfigured servers. This is a follow-on to incomplete coverage from the CVE-2024-45337 fix.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64 | — |
Workaround
|
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Red Hat Edge Manager Version 1.0.3 Security Update",
"title": "Topic"
},
{
"category": "general",
"text": "Red Hat Edge Manager (RHEM) provides simple, scalable, and security-focused\nmanagement of edge devices and applications. It supports image-mode RHEL and\ncontainer workloads that run on Podman/Docker or Kubernetes.\n\nRHEM is now available as a standalone feature, providing greater flexibility for\nedge deployments. In addition to the standalone version, RHEM continues to be\noffered as a plugin for the following platforms:\n\n* Red Hat Advanced Cluster Management (RHACM): Extends fleet management to edge\ndevices.\n* Red Hat Ansible Automation Platform (AAP): Integrates edge management with\nAnsible automation.\n\nThis integration enables organizations to optimize the management and\norchestration of their fleets of edge devices; whether its thousands of\ndispersed retail point-of-sale systems or industrial machinery on remote factory\nfloors.\n\nValue for customers and partners:\n\n* This solution not only helps customers manage thousands of devices but helps\nscale operations.\n* To manage large-scale deployments, customers need to be able to integrate with\ntheir existing management systems, support remote configuration and over-the-air\nupdates, and collect telemetry data for advanced analytics.\n* Red Hat Edge Manager offers a simple and security-focused lifecycle\nmanagement, from onboarding to decommissioning of edge devices.\n\nThis complete end-to-end solution empowers organizations to gain the most value\nfrom the fleets of devices that generate data, all from a centralized location.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2026:36651",
"url": "https://access.redhat.com/errata/RHSA-2026:36651"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2025-13465",
"url": "https://access.redhat.com/security/cve/CVE-2025-13465"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2025-61729",
"url": "https://access.redhat.com/security/cve/CVE-2025-61729"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2025-68121",
"url": "https://access.redhat.com/security/cve/CVE-2025-68121"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2025-69873",
"url": "https://access.redhat.com/security/cve/CVE-2025-69873"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-22029",
"url": "https://access.redhat.com/security/cve/CVE-2026-22029"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-25679",
"url": "https://access.redhat.com/security/cve/CVE-2026-25679"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-29063",
"url": "https://access.redhat.com/security/cve/CVE-2026-29063"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-32141",
"url": "https://access.redhat.com/security/cve/CVE-2026-32141"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-32280",
"url": "https://access.redhat.com/security/cve/CVE-2026-32280"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-33186",
"url": "https://access.redhat.com/security/cve/CVE-2026-33186"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-33810",
"url": "https://access.redhat.com/security/cve/CVE-2026-33810"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-33811",
"url": "https://access.redhat.com/security/cve/CVE-2026-33811"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-39821",
"url": "https://access.redhat.com/security/cve/CVE-2026-39821"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-39828",
"url": "https://access.redhat.com/security/cve/CVE-2026-39828"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-39829",
"url": "https://access.redhat.com/security/cve/CVE-2026-39829"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-39830",
"url": "https://access.redhat.com/security/cve/CVE-2026-39830"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-39832",
"url": "https://access.redhat.com/security/cve/CVE-2026-39832"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-39835",
"url": "https://access.redhat.com/security/cve/CVE-2026-39835"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-42151",
"url": "https://access.redhat.com/security/cve/CVE-2026-42151"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-42154",
"url": "https://access.redhat.com/security/cve/CVE-2026-42154"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-42508",
"url": "https://access.redhat.com/security/cve/CVE-2026-42508"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-46595",
"url": "https://access.redhat.com/security/cve/CVE-2026-46595"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-4800",
"url": "https://access.redhat.com/security/cve/CVE-2026-4800"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-4926",
"url": "https://access.redhat.com/security/cve/CVE-2026-4926"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-6322",
"url": "https://access.redhat.com/security/cve/CVE-2026-6322"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/",
"url": "https://access.redhat.com/security/updates/classification/"
},
{
"category": "external",
"summary": "https://docs.redhat.com/en/documentation/red_hat_advanced_cluster_management_for_kubernetes/2.15/html-single/edge_manager/index#edge-mgr-intro",
"url": "https://docs.redhat.com/en/documentation/red_hat_advanced_cluster_management_for_kubernetes/2.15/html-single/edge_manager/index#edge-mgr-intro"
},
{
"category": "external",
"summary": "https://docs.redhat.com/en/documentation/red_hat_ansible_automation_platform/2.5/html/managing_device_fleets_with_the_red_hat_edge_manager/assembly-edge-manager-intro",
"url": "https://docs.redhat.com/en/documentation/red_hat_ansible_automation_platform/2.5/html/managing_device_fleets_with_the_red_hat_edge_manager/assembly-edge-manager-intro"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2026/rhsa-2026_36651.json"
}
],
"title": "Red Hat Security Advisory: Red Hat Edge Manager Version 1.0.3 Security Update",
"tracking": {
"current_release_date": "2026-07-13T03:54:06+00:00",
"generator": {
"date": "2026-07-13T03:54:06+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "5.3.2"
}
},
"id": "RHSA-2026:36651",
"initial_release_date": "2026-07-08T10:08:44+00:00",
"revision_history": [
{
"date": "2026-07-08T10:08:44+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2026-07-08T10:08:59+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2026-07-13T03:54:06+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Edge Manager 1.0",
"product": {
"name": "Red Hat Edge Manager 1.0",
"product_id": "Red Hat Edge Manager 1.0",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:edge_manager:1.0::el9"
}
}
}
],
"category": "product_family",
"name": "Red Hat Edge Manager"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"product": {
"name": "registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"product_id": "registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"product_identification_helper": {
"purl": "pkg:oci/flightctl-alert-exporter-rhel9@sha256%3A7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95?arch=amd64\u0026repository_url=registry.redhat.io/rhem/flightctl-alert-exporter-rhel9\u0026tag=1783502022"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"product": {
"name": "registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"product_id": "registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"product_identification_helper": {
"purl": "pkg:oci/flightctl-alertmanager-proxy-rhel9@sha256%3A9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927?arch=amd64\u0026repository_url=registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9\u0026tag=1783502465"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"product": {
"name": "registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"product_id": "registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"product_identification_helper": {
"purl": "pkg:oci/flightctl-api-rhel9@sha256%3A5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d?arch=amd64\u0026repository_url=registry.redhat.io/rhem/flightctl-api-rhel9\u0026tag=1783502025"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"product": {
"name": "registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"product_id": "registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"product_identification_helper": {
"purl": "pkg:oci/flightctl-cli-artifacts-rhel9@sha256%3A3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607?arch=amd64\u0026repository_url=registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9\u0026tag=1783502494"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"product": {
"name": "registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"product_id": "registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"product_identification_helper": {
"purl": "pkg:oci/flightctl-db-setup-rhel9@sha256%3A0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d?arch=amd64\u0026repository_url=registry.redhat.io/rhem/flightctl-db-setup-rhel9\u0026tag=1783502401"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"product": {
"name": "registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"product_id": "registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"product_identification_helper": {
"purl": "pkg:oci/flightctl-pam-issuer-rhel9@sha256%3A6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568?arch=amd64\u0026repository_url=registry.redhat.io/rhem/flightctl-pam-issuer-rhel9\u0026tag=1783502403"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"product": {
"name": "registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"product_id": "registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"product_identification_helper": {
"purl": "pkg:oci/flightctl-periodic-rhel9@sha256%3Ab0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81?arch=amd64\u0026repository_url=registry.redhat.io/rhem/flightctl-periodic-rhel9\u0026tag=1783502022"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"product": {
"name": "registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"product_id": "registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"product_identification_helper": {
"purl": "pkg:oci/flightctl-telemetry-gateway-rhel9@sha256%3A51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f?arch=amd64\u0026repository_url=registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9\u0026tag=1783502023"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64",
"product": {
"name": "registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64",
"product_id": "registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64",
"product_identification_helper": {
"purl": "pkg:oci/flightctl-ui-rhel9@sha256%3Af1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70?arch=amd64\u0026repository_url=registry.redhat.io/rhem/flightctl-ui-rhel9\u0026tag=1783502438"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"product": {
"name": "registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"product_id": "registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"product_identification_helper": {
"purl": "pkg:oci/flightctl-ui-ocp-rhel9@sha256%3A5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad?arch=amd64\u0026repository_url=registry.redhat.io/rhem/flightctl-ui-ocp-rhel9\u0026tag=1783502765"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"product": {
"name": "registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"product_id": "registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"product_identification_helper": {
"purl": "pkg:oci/flightctl-userinfo-proxy-rhel9@sha256%3Aceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb?arch=amd64\u0026repository_url=registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9\u0026tag=1783502029"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"product": {
"name": "registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"product_id": "registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"product_identification_helper": {
"purl": "pkg:oci/flightctl-worker-rhel9@sha256%3A11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79?arch=amd64\u0026repository_url=registry.redhat.io/rhem/flightctl-worker-rhel9\u0026tag=1783502445"
}
}
}
],
"category": "architecture",
"name": "amd64"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"product": {
"name": "registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"product_id": "registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"product_identification_helper": {
"purl": "pkg:oci/flightctl-alert-exporter-rhel9@sha256%3Abb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7?arch=arm64\u0026repository_url=registry.redhat.io/rhem/flightctl-alert-exporter-rhel9\u0026tag=1783502022"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"product": {
"name": "registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"product_id": "registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"product_identification_helper": {
"purl": "pkg:oci/flightctl-alertmanager-proxy-rhel9@sha256%3Ae4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a?arch=arm64\u0026repository_url=registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9\u0026tag=1783502465"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"product": {
"name": "registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"product_id": "registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"product_identification_helper": {
"purl": "pkg:oci/flightctl-api-rhel9@sha256%3Afb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2?arch=arm64\u0026repository_url=registry.redhat.io/rhem/flightctl-api-rhel9\u0026tag=1783502025"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"product": {
"name": "registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"product_id": "registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"product_identification_helper": {
"purl": "pkg:oci/flightctl-cli-artifacts-rhel9@sha256%3Ac9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908?arch=arm64\u0026repository_url=registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9\u0026tag=1783502494"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"product": {
"name": "registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"product_id": "registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"product_identification_helper": {
"purl": "pkg:oci/flightctl-db-setup-rhel9@sha256%3A84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7?arch=arm64\u0026repository_url=registry.redhat.io/rhem/flightctl-db-setup-rhel9\u0026tag=1783502401"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"product": {
"name": "registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"product_id": "registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"product_identification_helper": {
"purl": "pkg:oci/flightctl-pam-issuer-rhel9@sha256%3A225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e?arch=arm64\u0026repository_url=registry.redhat.io/rhem/flightctl-pam-issuer-rhel9\u0026tag=1783502403"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"product": {
"name": "registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"product_id": "registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"product_identification_helper": {
"purl": "pkg:oci/flightctl-periodic-rhel9@sha256%3A0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b?arch=arm64\u0026repository_url=registry.redhat.io/rhem/flightctl-periodic-rhel9\u0026tag=1783502022"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"product": {
"name": "registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"product_id": "registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"product_identification_helper": {
"purl": "pkg:oci/flightctl-telemetry-gateway-rhel9@sha256%3Aaba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca?arch=arm64\u0026repository_url=registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9\u0026tag=1783502023"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"product": {
"name": "registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"product_id": "registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"product_identification_helper": {
"purl": "pkg:oci/flightctl-ui-rhel9@sha256%3Ae75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8?arch=arm64\u0026repository_url=registry.redhat.io/rhem/flightctl-ui-rhel9\u0026tag=1783502438"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"product": {
"name": "registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"product_id": "registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"product_identification_helper": {
"purl": "pkg:oci/flightctl-ui-ocp-rhel9@sha256%3Ae8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e?arch=arm64\u0026repository_url=registry.redhat.io/rhem/flightctl-ui-ocp-rhel9\u0026tag=1783502765"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"product": {
"name": "registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"product_id": "registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"product_identification_helper": {
"purl": "pkg:oci/flightctl-userinfo-proxy-rhel9@sha256%3A636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321?arch=arm64\u0026repository_url=registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9\u0026tag=1783502029"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64",
"product": {
"name": "registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64",
"product_id": "registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64",
"product_identification_helper": {
"purl": "pkg:oci/flightctl-worker-rhel9@sha256%3A4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395?arch=arm64\u0026repository_url=registry.redhat.io/rhem/flightctl-worker-rhel9\u0026tag=1783502445"
}
}
}
],
"category": "architecture",
"name": "arm64"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64 as a component of Red Hat Edge Manager 1.0",
"product_id": "Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64"
},
"product_reference": "registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"relates_to_product_reference": "Red Hat Edge Manager 1.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64 as a component of Red Hat Edge Manager 1.0",
"product_id": "Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64"
},
"product_reference": "registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"relates_to_product_reference": "Red Hat Edge Manager 1.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64 as a component of Red Hat Edge Manager 1.0",
"product_id": "Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64"
},
"product_reference": "registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"relates_to_product_reference": "Red Hat Edge Manager 1.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64 as a component of Red Hat Edge Manager 1.0",
"product_id": "Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64"
},
"product_reference": "registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"relates_to_product_reference": "Red Hat Edge Manager 1.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64 as a component of Red Hat Edge Manager 1.0",
"product_id": "Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64"
},
"product_reference": "registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"relates_to_product_reference": "Red Hat Edge Manager 1.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64 as a component of Red Hat Edge Manager 1.0",
"product_id": "Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64"
},
"product_reference": "registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"relates_to_product_reference": "Red Hat Edge Manager 1.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64 as a component of Red Hat Edge Manager 1.0",
"product_id": "Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64"
},
"product_reference": "registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"relates_to_product_reference": "Red Hat Edge Manager 1.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64 as a component of Red Hat Edge Manager 1.0",
"product_id": "Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64"
},
"product_reference": "registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"relates_to_product_reference": "Red Hat Edge Manager 1.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64 as a component of Red Hat Edge Manager 1.0",
"product_id": "Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64"
},
"product_reference": "registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"relates_to_product_reference": "Red Hat Edge Manager 1.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64 as a component of Red Hat Edge Manager 1.0",
"product_id": "Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64"
},
"product_reference": "registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"relates_to_product_reference": "Red Hat Edge Manager 1.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64 as a component of Red Hat Edge Manager 1.0",
"product_id": "Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64"
},
"product_reference": "registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"relates_to_product_reference": "Red Hat Edge Manager 1.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64 as a component of Red Hat Edge Manager 1.0",
"product_id": "Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64"
},
"product_reference": "registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"relates_to_product_reference": "Red Hat Edge Manager 1.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64 as a component of Red Hat Edge Manager 1.0",
"product_id": "Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64"
},
"product_reference": "registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"relates_to_product_reference": "Red Hat Edge Manager 1.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64 as a component of Red Hat Edge Manager 1.0",
"product_id": "Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64"
},
"product_reference": "registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"relates_to_product_reference": "Red Hat Edge Manager 1.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64 as a component of Red Hat Edge Manager 1.0",
"product_id": "Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64"
},
"product_reference": "registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"relates_to_product_reference": "Red Hat Edge Manager 1.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64 as a component of Red Hat Edge Manager 1.0",
"product_id": "Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64"
},
"product_reference": "registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"relates_to_product_reference": "Red Hat Edge Manager 1.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64 as a component of Red Hat Edge Manager 1.0",
"product_id": "Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64"
},
"product_reference": "registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"relates_to_product_reference": "Red Hat Edge Manager 1.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64 as a component of Red Hat Edge Manager 1.0",
"product_id": "Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64"
},
"product_reference": "registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"relates_to_product_reference": "Red Hat Edge Manager 1.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64 as a component of Red Hat Edge Manager 1.0",
"product_id": "Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64"
},
"product_reference": "registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"relates_to_product_reference": "Red Hat Edge Manager 1.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64 as a component of Red Hat Edge Manager 1.0",
"product_id": "Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64"
},
"product_reference": "registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64",
"relates_to_product_reference": "Red Hat Edge Manager 1.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64 as a component of Red Hat Edge Manager 1.0",
"product_id": "Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64"
},
"product_reference": "registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"relates_to_product_reference": "Red Hat Edge Manager 1.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64 as a component of Red Hat Edge Manager 1.0",
"product_id": "Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64"
},
"product_reference": "registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"relates_to_product_reference": "Red Hat Edge Manager 1.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64 as a component of Red Hat Edge Manager 1.0",
"product_id": "Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64"
},
"product_reference": "registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"relates_to_product_reference": "Red Hat Edge Manager 1.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64 as a component of Red Hat Edge Manager 1.0",
"product_id": "Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
},
"product_reference": "registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64",
"relates_to_product_reference": "Red Hat Edge Manager 1.0"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2025-13465",
"cwe": {
"id": "CWE-1321",
"name": "Improperly Controlled Modification of Object Prototype Attributes (\u0027Prototype Pollution\u0027)"
},
"discovery_date": "2026-01-21T20:01:28.774829+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2431740"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Lodash. A prototype pollution vulnerability in the _.unset and _.omit functions allows an attacker able to control property paths to delete methods from global prototypes. By removing essential functionalities, this can result in a denial of service.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "lodash: prototype pollution in _.unset and _.omit functions",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This issue is only exploitable by applications using the _.unset and _.omit functions on an object and allowing user input to determine the path of the property to be removed. This issue only allows the deletion of properties but does not allow overwriting their behavior, limiting the impact to a denial of service. Due to this reason, this vulnerability has been rated with an important severity.\n\nIn Grafana, JavaScript code runs only in the browser, while the server side is all Golang. Therefore, the worst-case scenario is a loss of functionality in the client application inside the browser. To reflect this, the CVSS availability metric and the severity of the Grafana and the Grafana-PCP component have been updated to low and moderate, respectively.\n\nThe lodash dependency is bundled and used by the pcs-web-ui component of the PCS package. In Red Hat Enterprise Linux 8.10, the pcs-web-ui component is no longer included in the PCS package. As a result, RHEL 8.10 does not ship the vulnerable lodash component within PCS and is therefore not-affected by this CVE.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64"
],
"known_not_affected": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-13465"
},
{
"category": "external",
"summary": "RHBZ#2431740",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2431740"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-13465",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-13465"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-13465",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-13465"
},
{
"category": "external",
"summary": "https://github.com/lodash/lodash/security/advisories/GHSA-xxjr-mmjv-4gpg",
"url": "https://github.com/lodash/lodash/security/advisories/GHSA-xxjr-mmjv-4gpg"
}
],
"release_date": "2026-01-21T19:05:28.846000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T10:08:44+00:00",
"details": "See the following documentation for details on how to enable Red Hat Edge Manager and more: https://docs.redhat.com/en/documentation/red_hat_edge_manager/1.0",
"product_ids": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36651"
},
{
"category": "workaround",
"details": "To mitigate this issue, implement strict input validation before passing any property paths to the _.unset and _.omit functions to block attempts to access the prototype chain. Ensure that strings like __proto__, constructor and prototype are blocked, for example.",
"product_ids": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.2,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "lodash: prototype pollution in _.unset and _.omit functions"
},
{
"cve": "CVE-2025-61729",
"cwe": {
"id": "CWE-1050",
"name": "Excessive Platform Resource Consumption within a Loop"
},
"discovery_date": "2025-12-02T20:01:45.330964+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2418462"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in golang. A remote attacker could exploit this vulnerability by providing a specially crafted certificate during the error string construction process within the `HostnameError.Error()` function. This flaw, caused by unbounded string concatenation, leads to excessive resource consumption. Successful exploitation can result in a denial of service (DoS) for the affected system.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "crypto/x509: golang: Denial of Service due to excessive resource consumption via crafted certificate",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64"
],
"known_not_affected": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-61729"
},
{
"category": "external",
"summary": "RHBZ#2418462",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2418462"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-61729",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-61729"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-61729",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-61729"
},
{
"category": "external",
"summary": "https://go.dev/cl/725920",
"url": "https://go.dev/cl/725920"
},
{
"category": "external",
"summary": "https://go.dev/issue/76445",
"url": "https://go.dev/issue/76445"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/8FJoBkPddm4",
"url": "https://groups.google.com/g/golang-announce/c/8FJoBkPddm4"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2025-4155",
"url": "https://pkg.go.dev/vuln/GO-2025-4155"
}
],
"release_date": "2025-12-02T18:54:10.166000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T10:08:44+00:00",
"details": "See the following documentation for details on how to enable Red Hat Edge Manager and more: https://docs.redhat.com/en/documentation/red_hat_edge_manager/1.0",
"product_ids": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36651"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "crypto/x509: golang: Denial of Service due to excessive resource consumption via crafted certificate"
},
{
"cve": "CVE-2025-68121",
"discovery_date": "2026-02-05T18:01:30.086058+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2437111"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the crypto/tls component. This vulnerability occurs during Transport Layer Security (TLS) session resumption when certificate authority (CA) settings are modified between the initial and resumed handshakes. An attacker could exploit this to bypass certificate validation, allowing a client or server to establish a connection that should have been rejected. This could lead to an authentication bypass under specific conditions.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "crypto/tls: crypto/tls: Incorrect certificate validation during TLS session resumption",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This is a moderate flaw because it only occurs under specific conditions, such as TLS session resumption with runtime changes to certificate authority settings. Exploitation is not straightforward and requires a controlled setup. The impact is limited to certificate validation within the same component and does not affect system availability.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64"
],
"known_not_affected": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-68121"
},
{
"category": "external",
"summary": "RHBZ#2437111",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2437111"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-68121",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68121"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-68121",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-68121"
},
{
"category": "external",
"summary": "https://go.dev/cl/737700",
"url": "https://go.dev/cl/737700"
},
{
"category": "external",
"summary": "https://go.dev/issue/77217",
"url": "https://go.dev/issue/77217"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/K09ubi9FQFk",
"url": "https://groups.google.com/g/golang-announce/c/K09ubi9FQFk"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-4337",
"url": "https://pkg.go.dev/vuln/GO-2026-4337"
}
],
"release_date": "2026-02-05T17:48:44.141000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T10:08:44+00:00",
"details": "See the following documentation for details on how to enable Red Hat Edge Manager and more: https://docs.redhat.com/en/documentation/red_hat_edge_manager/1.0",
"product_ids": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36651"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.4,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "crypto/tls: crypto/tls: Incorrect certificate validation during TLS session resumption"
},
{
"cve": "CVE-2025-69873",
"cwe": {
"id": "CWE-1333",
"name": "Inefficient Regular Expression Complexity"
},
"discovery_date": "2026-02-11T19:01:32.953264+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2439070"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in ajv. When the $data option is enabled, the value of the pattern keyword is passed directly to the JavaScript RegExp() constructor without sufficient validation. An attacker able to supply a malicious regular expression pattern can trigger a ReDoS (Regular Expression Denial of Service), causing the application to become unresponsive and resulting in a denial of service.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "ajv: ReDoS via $data reference",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "To exploit this issue, the $data option must be enabled and the attacker needs to be able to send a payload with a specially crafted regular expression to the application processing the input. A 31-character payload causes approximately 44 seconds of execution, with each additional character doubling the execution time. Therefore, even a small payload can cause an application to become unresponsive and eventually result in a denial of service. Due to this reason, this flaw has been rated with an important severity.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64"
],
"known_not_affected": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-69873"
},
{
"category": "external",
"summary": "RHBZ#2439070",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2439070"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-69873",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-69873"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-69873",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-69873"
},
{
"category": "external",
"summary": "https://github.com/EthanKim88/ethan-cve-disclosures/blob/main/CVE-2025-69873-ajv-ReDoS.md",
"url": "https://github.com/EthanKim88/ethan-cve-disclosures/blob/main/CVE-2025-69873-ajv-ReDoS.md"
}
],
"release_date": "2026-02-11T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T10:08:44+00:00",
"details": "See the following documentation for details on how to enable Red Hat Edge Manager and more: https://docs.redhat.com/en/documentation/red_hat_edge_manager/1.0",
"product_ids": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36651"
},
{
"category": "workaround",
"details": "To mitigate this issue, disable the $data feature if your application does not require it. If $data must be used, implement strict validation of the input fields that are referenced by the pattern keyword to ensure they contain only expected and safe characters.",
"product_ids": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "ajv: ReDoS via $data reference"
},
{
"cve": "CVE-2026-4800",
"cwe": {
"id": "CWE-94",
"name": "Improper Control of Generation of Code (\u0027Code Injection\u0027)"
},
"discovery_date": "2026-03-31T20:01:21.918257+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2453496"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in lodash. The fix for CVE-2021-23337 added validation for the variable option in _.template but did not apply the same validation to options.imports key names. Both paths flow into the same Function() constructor sink. Additionally, _.template uses assignInWith to merge imports, which enumerates inherited properties via for..in. If Object.prototype has been polluted by any other vector, the polluted keys are copied into the imports object and passed to Function().",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "lodash: lodash: Arbitrary code execution via untrusted input in template imports",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "In the context of Red Hat Enterprise Linux, the grafana and grafana-pcp packages execute the affected JavaScript entirely client-side within the user\u0027s browser. Consequently, the attack surface is strictly restricted to the local browser environment.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64"
],
"known_not_affected": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-4800"
},
{
"category": "external",
"summary": "RHBZ#2453496",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2453496"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-4800",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-4800"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-4800",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-4800"
},
{
"category": "external",
"summary": "https://cna.openjsf.org/security-advisories.html",
"url": "https://cna.openjsf.org/security-advisories.html"
},
{
"category": "external",
"summary": "https://github.com/advisories/GHSA-35jh-r3h4-6jhm",
"url": "https://github.com/advisories/GHSA-35jh-r3h4-6jhm"
},
{
"category": "external",
"summary": "https://github.com/lodash/lodash/commit/3469357cff396a26c363f8c1b5a91dde28ba4b1c",
"url": "https://github.com/lodash/lodash/commit/3469357cff396a26c363f8c1b5a91dde28ba4b1c"
}
],
"release_date": "2026-03-31T19:25:55.987000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T10:08:44+00:00",
"details": "See the following documentation for details on how to enable Red Hat Edge Manager and more: https://docs.redhat.com/en/documentation/red_hat_edge_manager/1.0",
"product_ids": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36651"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.1,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "lodash: lodash: Arbitrary code execution via untrusted input in template imports"
},
{
"cve": "CVE-2026-4926",
"cwe": {
"id": "CWE-1333",
"name": "Inefficient Regular Expression Complexity"
},
"discovery_date": "2026-03-26T20:03:28.427630+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2451867"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in path-to-regexp. A remote attacker could exploit this vulnerability by providing specially crafted input that generates a regular expression with multiple sequential optional groups. This leads to an exponential growth in the generated regular expression, causing a Denial of Service (DoS) due to excessive resource consumption.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "path-to-regexp: path-to-regexp: Denial of Service via crafted regular expressions",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This is an Important flaw in `path-to-regexp` that can lead to a Denial of Service. The vulnerability occurs when specially crafted input containing multiple sequential optional groups is used to generate regular expressions, causing exponential resource consumption.\n\nThe Red Hat Advanced Cluster Security is not affected by this issue since it\u0027s shipping a `path-to-regexp` version which doesn\u0027t contain the vulnerable code.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64"
],
"known_not_affected": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-4926"
},
{
"category": "external",
"summary": "RHBZ#2451867",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2451867"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-4926",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-4926"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-4926",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-4926"
},
{
"category": "external",
"summary": "https://cna.openjsf.org/security-advisories.html",
"url": "https://cna.openjsf.org/security-advisories.html"
}
],
"release_date": "2026-03-26T18:59:38+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T10:08:44+00:00",
"details": "See the following documentation for details on how to enable Red Hat Edge Manager and more: https://docs.redhat.com/en/documentation/red_hat_edge_manager/1.0",
"product_ids": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36651"
},
{
"category": "workaround",
"details": "To mitigate this vulnerability, limit the use of multiple sequential optional groups in route patterns within applications that use `path-to-regexp`. Additionally, avoid directly passing user-controlled input as route patterns to prevent the generation of maliciously crafted regular expressions.",
"product_ids": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "path-to-regexp: path-to-regexp: Denial of Service via crafted regular expressions"
},
{
"cve": "CVE-2026-6322",
"cwe": {
"id": "CWE-140",
"name": "Improper Neutralization of Delimiters"
},
"discovery_date": "2026-05-05T11:01:00.332189+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2466684"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in fast-uri. A remote attacker could exploit this vulnerability by crafting a malicious Uniform Resource Identifier (URI) that contains percent-encoded authority delimiters. The fast-uri library incorrectly decodes these delimiters during normalization and then re-emits them as raw separators, which can change the URI\u0027s intended authority. This issue allows applications that perform host allowlist checks, redirect validation, or outbound request routing to be steered to a different authority than specified, potentially bypassing security controls.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "fast-uri: fast-uri: URI authority bypass due to improper delimiter handling",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This Important flaw in the `fast-uri` library allows an attacker to bypass security controls in Red Hat products that process Uniform Resource Identifiers (URIs). By crafting a malicious URI with percent-encoded authority delimiters, an attacker can cause the library to incorrectly interpret the URI\u0027s authority, potentially redirecting applications to an unintended domain. This could lead to a bypass of host allowlist checks, redirect validation, or outbound request routing.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64"
],
"known_not_affected": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-6322"
},
{
"category": "external",
"summary": "RHBZ#2466684",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2466684"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-6322",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-6322"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-6322",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-6322"
},
{
"category": "external",
"summary": "https://cna.openjsf.org/security-advisories.html",
"url": "https://cna.openjsf.org/security-advisories.html"
},
{
"category": "external",
"summary": "https://github.com/fastify/fast-uri/security/advisories/GHSA-v39h-62p7-jpjc",
"url": "https://github.com/fastify/fast-uri/security/advisories/GHSA-v39h-62p7-jpjc"
}
],
"release_date": "2026-05-05T10:29:16.378000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T10:08:44+00:00",
"details": "See the following documentation for details on how to enable Red Hat Edge Manager and more: https://docs.redhat.com/en/documentation/red_hat_edge_manager/1.0",
"product_ids": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36651"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "fast-uri: fast-uri: URI authority bypass due to improper delimiter handling"
},
{
"cve": "CVE-2026-22029",
"cwe": {
"id": "CWE-79",
"name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
},
"discovery_date": "2026-01-10T04:01:03.694749+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2428412"
}
],
"notes": [
{
"category": "description",
"text": "A cross site scripting flaw has been discovered in the npm react-router and @remix-run/router packages. React Router (and Remix v1/v2) SPA open navigation redirects originating from loaders or actions in Framework Mode, Data Mode, or the unstable RSC modes can result in unsafe URLs causing unintended javascript execution on the client. This is only an issue if you are creating redirect paths from untrusted content or via an open redirect.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "@remix-run/router: react-router: React Router vulnerable to XSS via Open Redirects",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64"
],
"known_not_affected": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-22029"
},
{
"category": "external",
"summary": "RHBZ#2428412",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2428412"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-22029",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-22029"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-22029",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-22029"
},
{
"category": "external",
"summary": "https://github.com/remix-run/react-router/security/advisories/GHSA-2w69-qvjg-hvjx",
"url": "https://github.com/remix-run/react-router/security/advisories/GHSA-2w69-qvjg-hvjx"
}
],
"release_date": "2026-01-10T02:42:32.736000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T10:08:44+00:00",
"details": "See the following documentation for details on how to enable Red Hat Edge Manager and more: https://docs.redhat.com/en/documentation/red_hat_edge_manager/1.0",
"product_ids": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36651"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 8.0,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "@remix-run/router: react-router: React Router vulnerable to XSS via Open Redirects"
},
{
"cve": "CVE-2026-25679",
"cwe": {
"id": "CWE-1286",
"name": "Improper Validation of Syntactic Correctness of Input"
},
"discovery_date": "2026-03-06T22:02:11.567841+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2445356"
}
],
"notes": [
{
"category": "description",
"text": "The Go standard library function net/url.Parse insufficiently validated the host/authority component and accepted some invalid URLs by effectively treating garbage before an IP-literal as ignorable. The function should have rejected this as invalid.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "net/url: Incorrect parsing of IPv6 host literals in net/url",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64"
],
"known_not_affected": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-25679"
},
{
"category": "external",
"summary": "RHBZ#2445356",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2445356"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-25679",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-25679"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-25679",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-25679"
},
{
"category": "external",
"summary": "https://go.dev/cl/752180",
"url": "https://go.dev/cl/752180"
},
{
"category": "external",
"summary": "https://go.dev/issue/77578",
"url": "https://go.dev/issue/77578"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/EdhZqrQ98hk",
"url": "https://groups.google.com/g/golang-announce/c/EdhZqrQ98hk"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-4601",
"url": "https://pkg.go.dev/vuln/GO-2026-4601"
}
],
"release_date": "2026-03-06T21:28:14.211000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T10:08:44+00:00",
"details": "See the following documentation for details on how to enable Red Hat Edge Manager and more: https://docs.redhat.com/en/documentation/red_hat_edge_manager/1.0",
"product_ids": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36651"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "net/url: Incorrect parsing of IPv6 host literals in net/url"
},
{
"cve": "CVE-2026-29063",
"cwe": {
"id": "CWE-915",
"name": "Improperly Controlled Modification of Dynamically-Determined Object Attributes"
},
"discovery_date": "2026-03-06T19:00:57.982727+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2445291"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Immutable.js, a library for persistent immutable data structures. This vulnerability, known as Prototype Pollution, allows an attacker with low privileges to inject unwanted properties into core JavaScript object prototypes without user interaction. By manipulating specific APIs such as mergeDeep(), mergeDeepWith(), merge(), Map.toJS(), and Map.toObject(), a remote attacker could potentially execute arbitrary code or cause a denial of service (DoS).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "immutable-js: Immutable.js: Arbitrary code execution via Prototype Pollution",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Exploitation of this vulnerability requires that an attacker is able to provide arbitrary data to clients of this library in a way that calls the affected functions with data the attacker controls. In most deployments, the ability to provide data in this fashion requires that an attacker has some degree of privileges to access the affected applications.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64"
],
"known_not_affected": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-29063"
},
{
"category": "external",
"summary": "RHBZ#2445291",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2445291"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-29063",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-29063"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-29063",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-29063"
},
{
"category": "external",
"summary": "https://github.com/immutable-js/immutable-js/releases/tag/v3.8.3",
"url": "https://github.com/immutable-js/immutable-js/releases/tag/v3.8.3"
},
{
"category": "external",
"summary": "https://github.com/immutable-js/immutable-js/releases/tag/v4.3.8",
"url": "https://github.com/immutable-js/immutable-js/releases/tag/v4.3.8"
},
{
"category": "external",
"summary": "https://github.com/immutable-js/immutable-js/releases/tag/v5.1.5",
"url": "https://github.com/immutable-js/immutable-js/releases/tag/v5.1.5"
},
{
"category": "external",
"summary": "https://github.com/immutable-js/immutable-js/security/advisories/GHSA-wf6x-7x77-mvgw",
"url": "https://github.com/immutable-js/immutable-js/security/advisories/GHSA-wf6x-7x77-mvgw"
}
],
"release_date": "2026-03-06T18:25:22.438000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T10:08:44+00:00",
"details": "See the following documentation for details on how to enable Red Hat Edge Manager and more: https://docs.redhat.com/en/documentation/red_hat_edge_manager/1.0",
"product_ids": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36651"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "immutable-js: Immutable.js: Arbitrary code execution via Prototype Pollution"
},
{
"cve": "CVE-2026-32141",
"cwe": {
"id": "CWE-770",
"name": "Allocation of Resources Without Limits or Throttling"
},
"discovery_date": "2026-03-12T19:01:30.987208+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2447083"
}
],
"notes": [
{
"category": "description",
"text": "A denial of service flaw has been discovered in the flatted npm library. flatted\u0027s parse() function uses a recursive revive() phase to resolve circular references in deserialized JSON. When given a crafted payload with deeply nested or self-referential $ indices, the recursion depth is unbounded, causing a stack overflow that crashes the Node.js process.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "flatted: flatted: Unbounded recursion DoS in parse() revive phase",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64"
],
"known_not_affected": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-32141"
},
{
"category": "external",
"summary": "RHBZ#2447083",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2447083"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-32141",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-32141"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-32141",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-32141"
},
{
"category": "external",
"summary": "https://github.com/WebReflection/flatted/commit/7eb65d857e1a40de11c47461cdbc8541449f0606",
"url": "https://github.com/WebReflection/flatted/commit/7eb65d857e1a40de11c47461cdbc8541449f0606"
},
{
"category": "external",
"summary": "https://github.com/WebReflection/flatted/pull/88",
"url": "https://github.com/WebReflection/flatted/pull/88"
},
{
"category": "external",
"summary": "https://github.com/WebReflection/flatted/security/advisories/GHSA-25h7-pfq9-p65f",
"url": "https://github.com/WebReflection/flatted/security/advisories/GHSA-25h7-pfq9-p65f"
}
],
"release_date": "2026-03-12T18:08:09.634000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T10:08:44+00:00",
"details": "See the following documentation for details on how to enable Red Hat Edge Manager and more: https://docs.redhat.com/en/documentation/red_hat_edge_manager/1.0",
"product_ids": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36651"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "flatted: flatted: Unbounded recursion DoS in parse() revive phase"
},
{
"cve": "CVE-2026-32280",
"cwe": {
"id": "CWE-770",
"name": "Allocation of Resources Without Limits or Throttling"
},
"discovery_date": "2026-04-08T02:01:19.572351+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2456339"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the Go standard library packages `crypto/x509` and `crypto/tls`. During the process of building a certificate chain, an attacker can provide a large number of intermediate certificates. This excessive input is not properly limited, leading to an uncontrolled amount of work being performed. This can result in a denial of service (DoS) condition, making the affected system or application unavailable to legitimate users.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "crypto/x509: crypto/tls: golang: Go: Denial of Service vulnerability in certificate chain building",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This is an Important denial of service vulnerability in the Go standard library\u0027s certificate chain building process. Systems utilizing Go applications that process untrusted TLS certificates or X.509 certificate chains are susceptible to resource exhaustion when presented with an excessive number of intermediate certificates, potentially leading to service unavailability. This flaw impacts applications directly using `crypto/x509` or `crypto/tls`.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64"
],
"known_not_affected": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-32280"
},
{
"category": "external",
"summary": "RHBZ#2456339",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2456339"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-32280",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-32280"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-32280",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-32280"
},
{
"category": "external",
"summary": "https://go.dev/cl/758320",
"url": "https://go.dev/cl/758320"
},
{
"category": "external",
"summary": "https://go.dev/issue/78282",
"url": "https://go.dev/issue/78282"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/0uYbvbPZRWU",
"url": "https://groups.google.com/g/golang-announce/c/0uYbvbPZRWU"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-4947",
"url": "https://pkg.go.dev/vuln/GO-2026-4947"
}
],
"release_date": "2026-04-08T01:06:58.595000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T10:08:44+00:00",
"details": "See the following documentation for details on how to enable Red Hat Edge Manager and more: https://docs.redhat.com/en/documentation/red_hat_edge_manager/1.0",
"product_ids": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36651"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "crypto/x509: crypto/tls: golang: Go: Denial of Service vulnerability in certificate chain building"
},
{
"cve": "CVE-2026-33186",
"cwe": {
"id": "CWE-551",
"name": "Incorrect Behavior Order: Authorization Before Parsing and Canonicalization"
},
"discovery_date": "2026-03-20T23:02:27.802640+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2449833"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in gRPC-Go, the Go language implementation of gRPC. This vulnerability, an authorization bypass, is caused by improper input validation of the HTTP/2 `:path` pseudo-header. A remote attacker can exploit this by sending raw HTTP/2 frames with a malformed `:path` that omits the mandatory leading slash. This allows the attacker to bypass defined security policies, potentially leading to unauthorized access to services or information disclosure.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "google.golang.org/grpc/grpc-go: google.golang.org/grpc/authz: gRPC-Go: Authorization bypass due to improper HTTP/2 path validation",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
],
"known_not_affected": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-33186"
},
{
"category": "external",
"summary": "RHBZ#2449833",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2449833"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-33186",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-33186"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-33186",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-33186"
},
{
"category": "external",
"summary": "https://github.com/grpc/grpc-go/security/advisories/GHSA-p77j-4mvh-x3m3",
"url": "https://github.com/grpc/grpc-go/security/advisories/GHSA-p77j-4mvh-x3m3"
}
],
"release_date": "2026-03-20T22:23:32.147000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T10:08:44+00:00",
"details": "See the following documentation for details on how to enable Red Hat Edge Manager and more: https://docs.redhat.com/en/documentation/red_hat_edge_manager/1.0",
"product_ids": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36651"
},
{
"category": "workaround",
"details": "To mitigate this issue, implement infrastructure-level normalization to ensure all incoming HTTP/2 `:path` headers are properly formatted with a leading slash before reaching the gRPC-Go server. This can be achieved by configuring a reverse proxy or API gateway to validate and normalize the `:path` header. Ensure that any such intermediary is properly configured and restarted to apply the changes, which may temporarily impact service availability.",
"product_ids": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 9.1,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "google.golang.org/grpc/grpc-go: google.golang.org/grpc/authz: gRPC-Go: Authorization bypass due to improper HTTP/2 path validation"
},
{
"cve": "CVE-2026-33810",
"cwe": {
"id": "CWE-1289",
"name": "Improper Validation of Unsafe Equivalence in Input"
},
"discovery_date": "2026-04-08T02:01:09.100830+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2456335"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the `crypto/x509` package within Go (golang). When verifying a certificate chain, excluded DNS (Domain Name System) constraints are not correctly applied to wildcard DNS Subject Alternative Names (SANs) if the case of the SAN differs from the constraint. This oversight could allow an attacker to bypass certificate validation, potentially leading to the acceptance of a malicious certificate that should have been rejected. This issue specifically impacts the validation of trusted certificate chains.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "crypto/x509: golang: Go crypto/x509: Certificate validation bypass due to incorrect DNS constraint application",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This is an Important flaw in the Go `crypto/x509` package that could allow an attacker to bypass certificate validation. The vulnerability arises from an incorrect application of excluded DNS constraints to wildcard DNS Subject Alternative Names (SANs) when their case differs from the constraint. This could lead to Red Hat products accepting malicious certificates from otherwise trusted chains, compromising the trust model.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64"
],
"known_not_affected": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-33810"
},
{
"category": "external",
"summary": "RHBZ#2456335",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2456335"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-33810",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-33810"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-33810",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-33810"
},
{
"category": "external",
"summary": "https://go.dev/cl/763763",
"url": "https://go.dev/cl/763763"
},
{
"category": "external",
"summary": "https://go.dev/issue/78332",
"url": "https://go.dev/issue/78332"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/0uYbvbPZRWU",
"url": "https://groups.google.com/g/golang-announce/c/0uYbvbPZRWU"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-4866",
"url": "https://pkg.go.dev/vuln/GO-2026-4866"
}
],
"release_date": "2026-04-08T01:06:56.546000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T10:08:44+00:00",
"details": "See the following documentation for details on how to enable Red Hat Edge Manager and more: https://docs.redhat.com/en/documentation/red_hat_edge_manager/1.0",
"product_ids": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36651"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 8.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:L/A:L",
"version": "3.1"
},
"products": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "crypto/x509: golang: Go crypto/x509: Certificate validation bypass due to incorrect DNS constraint application"
},
{
"cve": "CVE-2026-33811",
"cwe": {
"id": "CWE-1341",
"name": "Multiple Releases of Same Resource or Handle"
},
"discovery_date": "2026-05-07T20:01:34.913869+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2467822"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the `net` package of Go (golang), specifically when using the `LookupCNAME` function with the `cgo` DNS resolver. A remote attacker could exploit this by providing a very long Canonical Name (CNAME) response. This can trigger a double-free of C memory, leading to a crash and a Denial of Service (DoS) for the affected application.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "net: golang: Go net package: Denial of Service via long CNAME response in LookupCNAME",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This is an Important denial of service vulnerability in the Go `net` package, affecting applications configured to use the `cgo` DNS resolver. A remote attacker could trigger a double-free memory error by providing a very long CNAME response, leading to a crash of the vulnerable application and impacting service availability.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64"
],
"known_not_affected": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-33811"
},
{
"category": "external",
"summary": "RHBZ#2467822",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2467822"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-33811",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-33811"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-33811",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-33811"
},
{
"category": "external",
"summary": "https://go.dev/cl/767860",
"url": "https://go.dev/cl/767860"
},
{
"category": "external",
"summary": "https://go.dev/issue/78803",
"url": "https://go.dev/issue/78803"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/qcCIEXso47M",
"url": "https://groups.google.com/g/golang-announce/c/qcCIEXso47M"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-4981",
"url": "https://pkg.go.dev/vuln/GO-2026-4981"
}
],
"release_date": "2026-05-07T19:41:19.285000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T10:08:44+00:00",
"details": "See the following documentation for details on how to enable Red Hat Edge Manager and more: https://docs.redhat.com/en/documentation/red_hat_edge_manager/1.0",
"product_ids": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36651"
},
{
"category": "workaround",
"details": "To mitigate this issue, applications can be configured to use the pure Go DNS resolver instead of the `cgo` DNS resolver. This can be achieved by setting the `GODEBUG` environment variable to `netdns=go`. For example, to run a Go application with this mitigation: `GODEBUG=netdns=go /path/to/your/go/application`. This change may require restarting affected applications or services to take effect. Users should verify that this change does not negatively impact DNS resolution for their specific application environment.",
"product_ids": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "net: golang: Go net package: Denial of Service via long CNAME response in LookupCNAME"
},
{
"cve": "CVE-2026-39821",
"cwe": {
"id": "CWE-1289",
"name": "Improper Validation of Unsafe Equivalence in Input"
},
"discovery_date": "2026-05-22T16:00:52.844126+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2480756"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in golang.org/x/net/idna. ToASCII and ToUnicode incorrectly accept Punycode-encoded labels that decode to an ASCII-only hostname (for example, xn--example-.com returns example.com instead of an error). Applications that validate the ASCII form then convert to Unicode may grant access to a restricted hostname the ASCII check would have rejected.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang.org/x/net/idna: golang: golang.org/x/net/idna: Privilege escalation via incorrect Punycode label processing",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "golang.org/x/net/idna is vulnerable to privilege escalation through incorrect Punycode label handling in ToASCII and ToUnicode. An attacker who can supply a Punycode hostname that passes an ASCII-only authorization check may have it normalized to a restricted ASCII name the application intended to block. Red Hat exposure is broad across products shipping the Go toolchain or bundling golang.org/x/net, including RHEL and RHEL-AI golang RPMs, hummingbird Go runtimes, OpenShift and ODF container builds, and Ceph/OpenShift components compiled against affected x/net versions.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64"
],
"known_not_affected": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-39821"
},
{
"category": "external",
"summary": "RHBZ#2480756",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2480756"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-39821",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-39821"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-39821",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-39821"
},
{
"category": "external",
"summary": "https://go.dev/cl/767220",
"url": "https://go.dev/cl/767220"
},
{
"category": "external",
"summary": "https://go.dev/issue/78760",
"url": "https://go.dev/issue/78760"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/iI-mYSI0lu8",
"url": "https://groups.google.com/g/golang-announce/c/iI-mYSI0lu8"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-5026",
"url": "https://pkg.go.dev/vuln/GO-2026-5026"
}
],
"release_date": "2026-05-22T15:01:21.462000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T10:08:44+00:00",
"details": "See the following documentation for details on how to enable Red Hat Edge Manager and more: https://docs.redhat.com/en/documentation/red_hat_edge_manager/1.0",
"product_ids": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36651"
},
{
"category": "workaround",
"details": "Upgrade to a fixed golang.org/x/net release that includes the idna correction, via updated golang or dependent package rebuilds.",
"product_ids": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 8.2,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang.org/x/net/idna: golang: golang.org/x/net/idna: Privilege escalation via incorrect Punycode label processing"
},
{
"cve": "CVE-2026-39828",
"cwe": {
"id": "CWE-281",
"name": "Improper Preservation of Permissions"
},
"discovery_date": "2026-05-22T04:01:46.775641+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2480687"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in golang.org/x/crypto/ssh. A remote attacker could exploit this vulnerability when an SSH server authentication callback returned a PartialSuccessError with non-nil permissions. This flaw caused these permissions to be silently discarded, potentially bypassing certificate restrictions, such as a force-command, after a second authentication factor succeeded. This could lead to unauthorized command execution or access.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang.org/x/crypto/ssh: golang.org/x/crypto/ssh: Unauthorized command execution via discarded SSH permissions",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This is an Important security flaw in the `golang.org/x/crypto/ssh` library. When an SSH server utilizing this library is configured with specific authentication callbacks that return a `PartialSuccessError` with non-nil permissions, an attacker could bypass intended certificate restrictions, such as `force-command`. This bypass could lead to unauthorized command execution or access on affected Red Hat systems configured with multi-factor authentication and certificate-based access controls.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
],
"known_not_affected": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-39828"
},
{
"category": "external",
"summary": "RHBZ#2480687",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2480687"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-39828",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-39828"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-39828",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-39828"
},
{
"category": "external",
"summary": "https://go.dev/cl/781621",
"url": "https://go.dev/cl/781621"
},
{
"category": "external",
"summary": "https://go.dev/issue/79562",
"url": "https://go.dev/issue/79562"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/a082jnz-LvI",
"url": "https://groups.google.com/g/golang-announce/c/a082jnz-LvI"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-5014",
"url": "https://pkg.go.dev/vuln/GO-2026-5014"
}
],
"release_date": "2026-05-22T02:31:26.883000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T10:08:44+00:00",
"details": "See the following documentation for details on how to enable Red Hat Edge Manager and more: https://docs.redhat.com/en/documentation/red_hat_edge_manager/1.0",
"product_ids": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36651"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability.",
"product_ids": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang.org/x/crypto/ssh: golang.org/x/crypto/ssh: Unauthorized command execution via discarded SSH permissions"
},
{
"cve": "CVE-2026-39829",
"cwe": {
"id": "CWE-1284",
"name": "Improper Validation of Specified Quantity in Input"
},
"discovery_date": "2026-05-22T04:01:30.092249+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2480681"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in golang.org/x/crypto/ssh. The RSA and DSA public key parsers in the affected component did not enforce size limits on key parameters. This vulnerability allows an unauthenticated client to provide a crafted public key with an excessively large modulus or DSA parameter during public key authentication. Successful exploitation could lead to a denial of service (DoS) due to prolonged CPU consumption during signature verification.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang.org/x/crypto/ssh: golang.org/x/crypto/ssh: Denial of Service via crafted public key with excessive parameters",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability in golang.org/x/crypto/ssh is rated as Important. An unauthenticated remote attacker could trigger a denial of service by providing a specially crafted public key with excessively large parameters during SSH public key authentication. This could lead to prolonged CPU consumption on the server, impacting service availability.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
],
"known_not_affected": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-39829"
},
{
"category": "external",
"summary": "RHBZ#2480681",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2480681"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-39829",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-39829"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-39829",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-39829"
},
{
"category": "external",
"summary": "https://go.dev/cl/781641",
"url": "https://go.dev/cl/781641"
},
{
"category": "external",
"summary": "https://go.dev/cl/781661",
"url": "https://go.dev/cl/781661"
},
{
"category": "external",
"summary": "https://go.dev/issue/79565",
"url": "https://go.dev/issue/79565"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/a082jnz-LvI",
"url": "https://groups.google.com/g/golang-announce/c/a082jnz-LvI"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-5018",
"url": "https://pkg.go.dev/vuln/GO-2026-5018"
}
],
"release_date": "2026-05-22T02:31:27.324000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T10:08:44+00:00",
"details": "See the following documentation for details on how to enable Red Hat Edge Manager and more: https://docs.redhat.com/en/documentation/red_hat_edge_manager/1.0",
"product_ids": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36651"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability.",
"product_ids": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang.org/x/crypto/ssh: golang.org/x/crypto/ssh: Denial of Service via crafted public key with excessive parameters"
},
{
"cve": "CVE-2026-39830",
"cwe": {
"id": "CWE-772",
"name": "Missing Release of Resource after Effective Lifetime"
},
"discovery_date": "2026-05-22T04:01:38.517202+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2480684"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in golang.org/x/crypto/ssh. A remote malicious SSH peer can exploit this by sending unsolicited global request responses, which fills an internal buffer and blocks the connection\u0027s read loop. This prevents the associated resources from being released, leading to a resource leak per connection. The consequence is a Denial of Service (DoS) for the affected system.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang.org/x/crypto/ssh: golang.org/x/crypto/ssh: Denial of Service via resource leak from unsolicited SSH responses",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This is an Important denial of service flaw in `golang.org/x/crypto/ssh`. A remote, unauthenticated attacker can exploit this vulnerability by sending unsolicited global request responses to an affected SSH server, leading to resource exhaustion and a denial of service. The impact is considered Important due to the potential for unauthenticated remote disruption of services utilizing the vulnerable SSH library.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
],
"known_not_affected": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-39830"
},
{
"category": "external",
"summary": "RHBZ#2480684",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2480684"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-39830",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-39830"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-39830",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-39830"
},
{
"category": "external",
"summary": "https://go.dev/cl/781640",
"url": "https://go.dev/cl/781640"
},
{
"category": "external",
"summary": "https://go.dev/cl/781664",
"url": "https://go.dev/cl/781664"
},
{
"category": "external",
"summary": "https://go.dev/issue/79564",
"url": "https://go.dev/issue/79564"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/a082jnz-LvI",
"url": "https://groups.google.com/g/golang-announce/c/a082jnz-LvI"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-5017",
"url": "https://pkg.go.dev/vuln/GO-2026-5017"
}
],
"release_date": "2026-05-22T02:31:27.208000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T10:08:44+00:00",
"details": "See the following documentation for details on how to enable Red Hat Edge Manager and more: https://docs.redhat.com/en/documentation/red_hat_edge_manager/1.0",
"product_ids": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36651"
},
{
"category": "workaround",
"details": "To mitigate this denial of service vulnerability, restrict network access to any service that utilizes the `golang.org/x/crypto/ssh` library and is exposed to untrusted networks. Implement firewall rules to allow connections only from trusted hosts or networks. This action limits the ability of malicious peers to send unsolicited global request responses. A restart of the affected service may be necessary for the new network rules to be applied effectively.",
"product_ids": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang.org/x/crypto/ssh: golang.org/x/crypto/ssh: Denial of Service via resource leak from unsolicited SSH responses"
},
{
"cve": "CVE-2026-39832",
"cwe": {
"id": "CWE-281",
"name": "Improper Preservation of Permissions"
},
"discovery_date": "2026-05-22T04:01:41.402561+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2480685"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in golang.org/x/crypto/ssh/agent. When a key was added to a remote agent, security restrictions, known as constraint extensions, were not properly processed during the request. This allowed these restrictions to be silently removed when keys were forwarded, leading to the unrestricted use of the key on the remote host. This vulnerability could enable an attacker to bypass intended security controls and perform unauthorized actions.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang.org/x/crypto/ssh/agent: golang.org/x/crypto/ssh/agent: Security bypass due to improper handling of key restrictions",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This Important vulnerability in `golang.org/x/crypto/ssh/agent` allows for a security bypass when SSH keys with destination restrictions are forwarded via an SSH agent. This flaw could lead to unintended exposure of SSH keys, enabling an attacker to use the forwarded key without the specified restrictions on remote hosts. Red Hat products utilizing `golang.org/x/crypto/ssh/agent` for key forwarding may be affected if users rely on constraint extensions for limiting key usage.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
],
"known_not_affected": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-39832"
},
{
"category": "external",
"summary": "RHBZ#2480685",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2480685"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-39832",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-39832"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-39832",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-39832"
},
{
"category": "external",
"summary": "https://go.dev/cl/778642",
"url": "https://go.dev/cl/778642"
},
{
"category": "external",
"summary": "https://go.dev/issue/79435",
"url": "https://go.dev/issue/79435"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/a082jnz-LvI",
"url": "https://groups.google.com/g/golang-announce/c/a082jnz-LvI"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-5006",
"url": "https://pkg.go.dev/vuln/GO-2026-5006"
}
],
"release_date": "2026-05-22T02:31:26.660000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T10:08:44+00:00",
"details": "See the following documentation for details on how to enable Red Hat Edge Manager and more: https://docs.redhat.com/en/documentation/red_hat_edge_manager/1.0",
"product_ids": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36651"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability.",
"product_ids": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 8.7,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "CHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang.org/x/crypto/ssh/agent: golang.org/x/crypto/ssh/agent: Security bypass due to improper handling of key restrictions"
},
{
"cve": "CVE-2026-39835",
"cwe": {
"id": "CWE-476",
"name": "NULL Pointer Dereference"
},
"discovery_date": "2026-05-22T04:01:27.279943+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2480680"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in golang.org/x/crypto/ssh. SSH servers configured to use CertChecker as a public key callback, without explicitly setting IsUserAuthority or IsHostAuthority, are vulnerable. A remote attacker can exploit this by presenting a specially crafted certificate, causing the server to panic and resulting in a Denial of Service (DoS).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang.org/x/crypto/ssh: golang: golang.org/x/crypto/ssh: Denial of Service via crafted SSH certificate",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This is an Important denial of service flaw in `golang.org/x/crypto/ssh` affecting SSH servers that utilize `CertChecker` as a public key callback without explicitly configuring `IsUserAuthority` or `IsHostAuthority`. A remote, unauthenticated attacker can trigger a server panic by presenting a specially crafted certificate, leading to service disruption. Exploitation requires a specific, non-default configuration of the `CertChecker`.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
],
"known_not_affected": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-39835"
},
{
"category": "external",
"summary": "RHBZ#2480680",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2480680"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-39835",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-39835"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-39835",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-39835"
},
{
"category": "external",
"summary": "https://go.dev/cl/781660",
"url": "https://go.dev/cl/781660"
},
{
"category": "external",
"summary": "https://go.dev/issue/79563",
"url": "https://go.dev/issue/79563"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/a082jnz-LvI",
"url": "https://groups.google.com/g/golang-announce/c/a082jnz-LvI"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-5015",
"url": "https://pkg.go.dev/vuln/GO-2026-5015"
}
],
"release_date": "2026-05-22T02:31:26.982000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T10:08:44+00:00",
"details": "See the following documentation for details on how to enable Red Hat Edge Manager and more: https://docs.redhat.com/en/documentation/red_hat_edge_manager/1.0",
"product_ids": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36651"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability.",
"product_ids": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang.org/x/crypto/ssh: golang: golang.org/x/crypto/ssh: Denial of Service via crafted SSH certificate"
},
{
"cve": "CVE-2026-42151",
"cwe": {
"id": "CWE-256",
"name": "Plaintext Storage of a Password"
},
"discovery_date": "2026-05-04T19:02:26.983660+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2466507"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Prometheus, an open-source monitoring system. The `client_secret` field within the Azure Active Directory (AD) remote write OAuth configuration was incorrectly handled as a plain string instead of a secure Secret type. This misconfiguration allowed any user or process with access to the `/-/config` HTTP API endpoint to view the Azure OAuth client secret in plaintext. This vulnerability leads to information disclosure, potentially compromising the security of integrated Azure AD services.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "github.com/prometheus/prometheus: Prometheus: Information disclosure of Azure OAuth client secret via config API",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This Important information disclosure flaw in Prometheus affects instances configured to use Azure AD remote write with OAuth authentication. The client secret, intended to be a secure credential, is exposed in plaintext through the `/-/config` HTTP API endpoint. This could allow an attacker with access to this endpoint to retrieve the secret, potentially compromising integrated Azure AD services.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
],
"known_not_affected": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-42151"
},
{
"category": "external",
"summary": "RHBZ#2466507",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2466507"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-42151",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-42151"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-42151",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-42151"
},
{
"category": "external",
"summary": "https://github.com/prometheus/prometheus/pull/18587",
"url": "https://github.com/prometheus/prometheus/pull/18587"
},
{
"category": "external",
"summary": "https://github.com/prometheus/prometheus/pull/18590",
"url": "https://github.com/prometheus/prometheus/pull/18590"
},
{
"category": "external",
"summary": "https://github.com/prometheus/prometheus/releases/tag/v3.11.3",
"url": "https://github.com/prometheus/prometheus/releases/tag/v3.11.3"
},
{
"category": "external",
"summary": "https://github.com/prometheus/prometheus/releases/tag/v3.5.3",
"url": "https://github.com/prometheus/prometheus/releases/tag/v3.5.3"
},
{
"category": "external",
"summary": "https://github.com/prometheus/prometheus/security/advisories/GHSA-wg65-39gg-5wfj",
"url": "https://github.com/prometheus/prometheus/security/advisories/GHSA-wg65-39gg-5wfj"
}
],
"release_date": "2026-05-04T18:12:16.917000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T10:08:44+00:00",
"details": "See the following documentation for details on how to enable Red Hat Edge Manager and more: https://docs.redhat.com/en/documentation/red_hat_edge_manager/1.0",
"product_ids": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36651"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "github.com/prometheus/prometheus: Prometheus: Information disclosure of Azure OAuth client secret via config API"
},
{
"cve": "CVE-2026-42154",
"cwe": {
"id": "CWE-770",
"name": "Allocation of Resources Without Limits or Throttling"
},
"discovery_date": "2026-05-04T19:02:19.626646+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2466505"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Prometheus. An unauthenticated attacker can exploit the remote read endpoint (`/api/v1/read`) by sending a specially crafted, small snappy-compressed payload. This payload causes a disproportionately large memory allocation, leading to memory exhaustion and a Denial of Service (DoS) by crashing the Prometheus process.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "github.com/prometheus/prometheus: Prometheus: Denial of Service via uncontrolled memory allocation in remote read endpoint",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This is an Important denial of service vulnerability in Prometheus, allowing an unauthenticated remote attacker to crash the Prometheus process. This could lead to service unavailability in Red Hat products that deploy Prometheus for monitoring, as the remote read endpoint does not properly validate snappy-compressed request lengths.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
],
"known_not_affected": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-42154"
},
{
"category": "external",
"summary": "RHBZ#2466505",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2466505"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-42154",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-42154"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-42154",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-42154"
},
{
"category": "external",
"summary": "https://github.com/prometheus/prometheus/pull/18584",
"url": "https://github.com/prometheus/prometheus/pull/18584"
},
{
"category": "external",
"summary": "https://github.com/prometheus/prometheus/pull/18585",
"url": "https://github.com/prometheus/prometheus/pull/18585"
},
{
"category": "external",
"summary": "https://github.com/prometheus/prometheus/releases/tag/v3.11.3",
"url": "https://github.com/prometheus/prometheus/releases/tag/v3.11.3"
},
{
"category": "external",
"summary": "https://github.com/prometheus/prometheus/releases/tag/v3.5.3",
"url": "https://github.com/prometheus/prometheus/releases/tag/v3.5.3"
},
{
"category": "external",
"summary": "https://github.com/prometheus/prometheus/security/advisories/GHSA-8rm2-7qqf-34qm",
"url": "https://github.com/prometheus/prometheus/security/advisories/GHSA-8rm2-7qqf-34qm"
}
],
"release_date": "2026-05-04T18:13:12.340000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T10:08:44+00:00",
"details": "See the following documentation for details on how to enable Red Hat Edge Manager and more: https://docs.redhat.com/en/documentation/red_hat_edge_manager/1.0",
"product_ids": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36651"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "github.com/prometheus/prometheus: Prometheus: Denial of Service via uncontrolled memory allocation in remote read endpoint"
},
{
"cve": "CVE-2026-42508",
"cwe": {
"id": "CWE-295",
"name": "Improper Certificate Validation"
},
"discovery_date": "2026-05-22T04:01:49.515058+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2480688"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in golang.org/x/crypto/ssh/knownhosts. This vulnerability occurs because the system did not correctly check for the revocation status of a SignatureKey belonging to a Certificate Authority (CA). A remote attacker could potentially exploit this by presenting a revoked key, leading to the system accepting it as valid. This could allow an attacker to bypass security checks and potentially gain unauthorized access or spoof legitimate entities.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang.org/x/crypto/ssh/knownhosts: golang: golang.org/x/crypto/ssh/knownhosts: Revocation bypass via unchecked SignatureKey",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Important: A flaw in `golang.org/x/crypto/ssh/knownhosts` allows a remote attacker to bypass security checks. This vulnerability arises because the system fails to properly verify the revocation status of a Certificate Authority (CA) `SignatureKey`. In Red Hat environments, this could enable an attacker to present a revoked key, leading to its acceptance as valid and potentially granting unauthorized access or facilitating the spoofing of legitimate entities.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64"
],
"known_not_affected": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-42508"
},
{
"category": "external",
"summary": "RHBZ#2480688",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2480688"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-42508",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-42508"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-42508",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-42508"
},
{
"category": "external",
"summary": "https://go.dev/cl/781220",
"url": "https://go.dev/cl/781220"
},
{
"category": "external",
"summary": "https://go.dev/issue/79568",
"url": "https://go.dev/issue/79568"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/a082jnz-LvI",
"url": "https://groups.google.com/g/golang-announce/c/a082jnz-LvI"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-5021",
"url": "https://pkg.go.dev/vuln/GO-2026-5021"
}
],
"release_date": "2026-05-22T02:31:27.644000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T10:08:44+00:00",
"details": "See the following documentation for details on how to enable Red Hat Edge Manager and more: https://docs.redhat.com/en/documentation/red_hat_edge_manager/1.0",
"product_ids": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36651"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.4,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang.org/x/crypto/ssh/knownhosts: golang: golang.org/x/crypto/ssh/knownhosts: Revocation bypass via unchecked SignatureKey"
},
{
"cve": "CVE-2026-46595",
"cwe": {
"id": "CWE-303",
"name": "Incorrect Implementation of Authentication Algorithm"
},
"discovery_date": "2026-05-22T04:01:52.215134+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2480689"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in golang.org/x/crypto/ssh. Source-address validation can be skipped when an SSH server configuration uses an authentication callback type other than public key, allowing authorization bypass in misconfigured servers. This is a follow-on to incomplete coverage from the CVE-2024-45337 fix.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang.org/x/crypto/ssh: golang.org/x/crypto/ssh: Authorization bypass due to skipped source-address validation",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "golang.org/x/crypto/ssh is vulnerable to authorization bypass when SSH server configurations rely on source-address validation alongside non-public-key authentication callbacks. An attacker with low privileges who can authenticate through such a callback path may bypass intended source-address restrictions and gain unauthorized SSH access. Red Hat impact sits in services built with affected x/crypto/ssh, including RHEL golang streams, hummingbird Go toolchains, RHACM/MCE agents, and OpenShift or Ceph components that embed Go SSH servers with mixed callback types.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64"
],
"known_not_affected": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-46595"
},
{
"category": "external",
"summary": "RHBZ#2480689",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2480689"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-46595",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-46595"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-46595",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-46595"
},
{
"category": "external",
"summary": "https://go.dev/cl/781642",
"url": "https://go.dev/cl/781642"
},
{
"category": "external",
"summary": "https://go.dev/issue/79570",
"url": "https://go.dev/issue/79570"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/a082jnz-LvI",
"url": "https://groups.google.com/g/golang-announce/c/a082jnz-LvI"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-5023",
"url": "https://pkg.go.dev/vuln/GO-2026-5023"
}
],
"release_date": "2026-05-22T02:31:27.894000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T10:08:44+00:00",
"details": "See the following documentation for details on how to enable Red Hat Edge Manager and more: https://docs.redhat.com/en/documentation/red_hat_edge_manager/1.0",
"product_ids": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36651"
},
{
"category": "workaround",
"details": "Upgrade to a fixed golang.org/x/crypto/ssh release via updated golang or package rebuilds. Ensure SSH servers use supported public-key callback configurations with source-address validation as intended.",
"product_ids": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 7.1,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:L",
"version": "3.1"
},
"products": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang.org/x/crypto/ssh: golang.org/x/crypto/ssh: Authorization bypass due to skipped source-address validation"
}
]
}
RHSA-2026:36796
Vulnerability from csaf_redhat - Published: 2026-07-08 15:52 - Updated: 2026-07-13 03:54A flaw was found in golang. A remote attacker could exploit this vulnerability by providing a specially crafted certificate during the error string construction process within the `HostnameError.Error()` function. This flaw, caused by unbounded string concatenation, leads to excessive resource consumption. Successful exploitation can result in a denial of service (DoS) for the affected system.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-0:1.0.3-1.el9em.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-selinux-0:1.0.3-1.el9em.noarch | — |
Vendor Fix
fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.aarch64 | — | ||
| Unresolved product id: 9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.ppc64le | — | ||
| Unresolved product id: 9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.s390x | — | ||
| Unresolved product id: 9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.x86_64 | — | ||
| Unresolved product id: 9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.aarch64 | — | ||
| Unresolved product id: 9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.ppc64le | — | ||
| Unresolved product id: 9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.s390x | — | ||
| Unresolved product id: 9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.x86_64 | — | ||
| Unresolved product id: 9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.aarch64 | — | ||
| Unresolved product id: 9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.ppc64le | — | ||
| Unresolved product id: 9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.s390x | — | ||
| Unresolved product id: 9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.x86_64 | — |
The Go standard library function net/url.Parse insufficiently validated the host/authority component and accepted some invalid URLs by effectively treating garbage before an IP-literal as ignorable. The function should have rejected this as invalid.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-0:1.0.3-1.el9em.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-selinux-0:1.0.3-1.el9em.noarch | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.aarch64 | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.ppc64le | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.s390x | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.x86_64 | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.aarch64 | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.ppc64le | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.s390x | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.x86_64 | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.aarch64 | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.ppc64le | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.s390x | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.x86_64 | — |
Workaround
|
A certificate validation flaw has been discovered in the golang crypto/x509 module. When verifying a certificate chain which contains a certificate containing multiple email address constraints which share common local portions but different domain portions, these constraints will not be properly applied, and only the last constraint will be considered.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-0:1.0.3-1.el9em.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-selinux-0:1.0.3-1.el9em.noarch | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.aarch64 | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.ppc64le | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.s390x | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.x86_64 | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.aarch64 | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.ppc64le | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.s390x | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.x86_64 | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.aarch64 | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.ppc64le | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.s390x | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.x86_64 | — |
Workaround
|
A flaw was found in the Go standard library packages `crypto/x509` and `crypto/tls`. During the process of building a certificate chain, an attacker can provide a large number of intermediate certificates. This excessive input is not properly limited, leading to an uncontrolled amount of work being performed. This can result in a denial of service (DoS) condition, making the affected system or application unavailable to legitimate users.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-0:1.0.3-1.el9em.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-selinux-0:1.0.3-1.el9em.noarch | — |
Vendor Fix
fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.aarch64 | — | ||
| Unresolved product id: 9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.ppc64le | — | ||
| Unresolved product id: 9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.s390x | — | ||
| Unresolved product id: 9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.x86_64 | — | ||
| Unresolved product id: 9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.aarch64 | — | ||
| Unresolved product id: 9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.ppc64le | — | ||
| Unresolved product id: 9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.s390x | — | ||
| Unresolved product id: 9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.x86_64 | — | ||
| Unresolved product id: 9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.aarch64 | — | ||
| Unresolved product id: 9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.ppc64le | — | ||
| Unresolved product id: 9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.s390x | — | ||
| Unresolved product id: 9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.x86_64 | — |
A flaw was found in Go's `crypto/x509` package. A remote attacker could exploit this by presenting a specially crafted certificate chain containing a large number of policy mappings. This inefficient validation process consumes excessive resources, which can lead to a denial of service (DoS) for applications or systems performing certificate validation.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-0:1.0.3-1.el9em.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-selinux-0:1.0.3-1.el9em.noarch | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.aarch64 | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.ppc64le | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.s390x | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.x86_64 | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.aarch64 | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.ppc64le | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.s390x | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.x86_64 | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.aarch64 | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.ppc64le | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.s390x | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.x86_64 | — |
Workaround
|
A flaw was found in the internal/syscall/unix package in the Go standard library. If the target of the `Root.Chmod` function is replaced with a symbolic link during execution, specifically after `Root.Chmod` checks the target but before acting, the `chmod` operation will be performed on the file the symbolic link points to. This issue can bypass directory restrictions and lead to unauthorized permission changes on the filesystem.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-0:1.0.3-1.el9em.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-selinux-0:1.0.3-1.el9em.noarch | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.aarch64 | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.ppc64le | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.s390x | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.x86_64 | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.aarch64 | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.ppc64le | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.s390x | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.x86_64 | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.aarch64 | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.ppc64le | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.s390x | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.x86_64 | — |
Workaround
|
A flaw was found in the `crypto/tls` package within the Go (golang) standard library, specifically affecting TLS 1.3 connections. A remote attacker can exploit this vulnerability by sending multiple key update messages in a single record after the handshake. This can cause the connection to deadlock, leading to uncontrolled consumption of resources and ultimately a denial of service (DoS).
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-0:1.0.3-1.el9em.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-selinux-0:1.0.3-1.el9em.noarch | — |
Vendor Fix
fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.aarch64 | — | ||
| Unresolved product id: 9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.ppc64le | — | ||
| Unresolved product id: 9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.s390x | — | ||
| Unresolved product id: 9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.x86_64 | — | ||
| Unresolved product id: 9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.aarch64 | — | ||
| Unresolved product id: 9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.ppc64le | — | ||
| Unresolved product id: 9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.s390x | — | ||
| Unresolved product id: 9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.x86_64 | — | ||
| Unresolved product id: 9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.aarch64 | — | ||
| Unresolved product id: 9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.ppc64le | — | ||
| Unresolved product id: 9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.s390x | — | ||
| Unresolved product id: 9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.x86_64 | — |
A flaw was found in gRPC-Go, the Go language implementation of gRPC. This vulnerability, an authorization bypass, is caused by improper input validation of the HTTP/2 `:path` pseudo-header. A remote attacker can exploit this by sending raw HTTP/2 frames with a malformed `:path` that omits the mandatory leading slash. This allows the attacker to bypass defined security policies, potentially leading to unauthorized access to services or information disclosure.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-0:1.0.3-1.el9em.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-selinux-0:1.0.3-1.el9em.noarch | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.aarch64 | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.ppc64le | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.s390x | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.x86_64 | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.aarch64 | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.ppc64le | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.s390x | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.x86_64 | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.aarch64 | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.ppc64le | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.s390x | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.x86_64 | — |
Workaround
|
A flaw was found in the `crypto/x509` package within Go (golang). When verifying a certificate chain, excluded DNS (Domain Name System) constraints are not correctly applied to wildcard DNS Subject Alternative Names (SANs) if the case of the SAN differs from the constraint. This oversight could allow an attacker to bypass certificate validation, potentially leading to the acceptance of a malicious certificate that should have been rejected. This issue specifically impacts the validation of trusted certificate chains.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-0:1.0.3-1.el9em.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-selinux-0:1.0.3-1.el9em.noarch | — |
Vendor Fix
fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.aarch64 | — | ||
| Unresolved product id: 9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.ppc64le | — | ||
| Unresolved product id: 9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.s390x | — | ||
| Unresolved product id: 9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.x86_64 | — | ||
| Unresolved product id: 9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.aarch64 | — | ||
| Unresolved product id: 9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.ppc64le | — | ||
| Unresolved product id: 9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.s390x | — | ||
| Unresolved product id: 9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.x86_64 | — | ||
| Unresolved product id: 9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.aarch64 | — | ||
| Unresolved product id: 9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.ppc64le | — | ||
| Unresolved product id: 9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.s390x | — | ||
| Unresolved product id: 9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.x86_64 | — |
A flaw was found in the `net` package of Go (golang), specifically when using the `LookupCNAME` function with the `cgo` DNS resolver. A remote attacker could exploit this by providing a very long Canonical Name (CNAME) response. This can trigger a double-free of C memory, leading to a crash and a Denial of Service (DoS) for the affected application.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-0:1.0.3-1.el9em.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-selinux-0:1.0.3-1.el9em.noarch | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.aarch64 | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.ppc64le | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.s390x | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.x86_64 | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.aarch64 | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.ppc64le | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.s390x | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.x86_64 | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.aarch64 | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.ppc64le | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.s390x | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.x86_64 | — |
Workaround
|
A flaw was found in github.com/jackc/pgx. This memory-safety vulnerability could potentially lead to unexpected behavior or system instability.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-0:1.0.3-1.el9em.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-selinux-0:1.0.3-1.el9em.noarch | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.aarch64 | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.ppc64le | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.s390x | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.x86_64 | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.aarch64 | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.ppc64le | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.s390x | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.x86_64 | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.aarch64 | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.ppc64le | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.s390x | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.x86_64 | — |
Workaround
|
A flaw was found in github.com/jackc/pgx, a PostgreSQL driver for Go. This memory-safety vulnerability could allow an attacker to cause various impacts, such as denial of service (DoS) or potentially arbitrary code execution, by exploiting memory corruption issues. The exact method of exploitation and specific consequences would depend on the nature of the memory corruption.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-0:1.0.3-1.el9em.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-selinux-0:1.0.3-1.el9em.noarch | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.aarch64 | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.ppc64le | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.s390x | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.x86_64 | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.aarch64 | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.ppc64le | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.s390x | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.x86_64 | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.aarch64 | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.ppc64le | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.s390x | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.x86_64 | — |
Workaround
|
A flaw was found in the SPDY streaming code used by Kubelet, CRI-O, and kube-apiserver. An attacker with specific cluster roles, such as those allowing access to pod port forwarding, execution, or attachment, or node proxying, could exploit this vulnerability. This could lead to a Denial of Service (DoS) by causing the affected components to become unresponsive.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-0:1.0.3-1.el9em.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-selinux-0:1.0.3-1.el9em.noarch | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.aarch64 | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.ppc64le | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.s390x | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.x86_64 | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.aarch64 | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.ppc64le | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.s390x | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.x86_64 | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.aarch64 | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.ppc64le | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.s390x | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.x86_64 | — |
Workaround
|
A flaw was found in golang.org/x/net/idna. ToASCII and ToUnicode incorrectly accept Punycode-encoded labels that decode to an ASCII-only hostname (for example, xn--example-.com returns example.com instead of an error). Applications that validate the ASCII form then convert to Unicode may grant access to a restricted hostname the ASCII check would have rejected.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-0:1.0.3-1.el9em.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-selinux-0:1.0.3-1.el9em.noarch | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.aarch64 | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.ppc64le | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.s390x | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.x86_64 | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.aarch64 | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.ppc64le | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.s390x | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.x86_64 | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.aarch64 | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.ppc64le | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.s390x | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.x86_64 | — |
Workaround
|
A flaw was found in golang.org/x/crypto/ssh. A remote attacker could exploit this vulnerability when an SSH server authentication callback returned a PartialSuccessError with non-nil permissions. This flaw caused these permissions to be silently discarded, potentially bypassing certificate restrictions, such as a force-command, after a second authentication factor succeeded. This could lead to unauthorized command execution or access.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-0:1.0.3-1.el9em.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-selinux-0:1.0.3-1.el9em.noarch | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.aarch64 | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.ppc64le | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.s390x | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.x86_64 | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.aarch64 | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.ppc64le | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.s390x | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.x86_64 | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.aarch64 | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.ppc64le | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.s390x | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.x86_64 | — |
Workaround
|
A flaw was found in golang.org/x/crypto/ssh. The RSA and DSA public key parsers in the affected component did not enforce size limits on key parameters. This vulnerability allows an unauthenticated client to provide a crafted public key with an excessively large modulus or DSA parameter during public key authentication. Successful exploitation could lead to a denial of service (DoS) due to prolonged CPU consumption during signature verification.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-0:1.0.3-1.el9em.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-selinux-0:1.0.3-1.el9em.noarch | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.aarch64 | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.ppc64le | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.s390x | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.x86_64 | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.aarch64 | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.ppc64le | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.s390x | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.x86_64 | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.aarch64 | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.ppc64le | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.s390x | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.x86_64 | — |
Workaround
|
A flaw was found in golang.org/x/crypto/ssh. A remote malicious SSH peer can exploit this by sending unsolicited global request responses, which fills an internal buffer and blocks the connection's read loop. This prevents the associated resources from being released, leading to a resource leak per connection. The consequence is a Denial of Service (DoS) for the affected system.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-0:1.0.3-1.el9em.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-selinux-0:1.0.3-1.el9em.noarch | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.aarch64 | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.ppc64le | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.s390x | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.x86_64 | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.aarch64 | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.ppc64le | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.s390x | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.x86_64 | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.aarch64 | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.ppc64le | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.s390x | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.x86_64 | — |
Workaround
|
A flaw was found in golang.org/x/crypto/ssh/agent. When a key was added to a remote agent, security restrictions, known as constraint extensions, were not properly processed during the request. This allowed these restrictions to be silently removed when keys were forwarded, leading to the unrestricted use of the key on the remote host. This vulnerability could enable an attacker to bypass intended security controls and perform unauthorized actions.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-0:1.0.3-1.el9em.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-selinux-0:1.0.3-1.el9em.noarch | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.aarch64 | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.ppc64le | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.s390x | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.x86_64 | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.aarch64 | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.ppc64le | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.s390x | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.x86_64 | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.aarch64 | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.ppc64le | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.s390x | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.x86_64 | — |
Workaround
|
A flaw was found in golang.org/x/crypto/ssh. SSH servers configured to use CertChecker as a public key callback, without explicitly setting IsUserAuthority or IsHostAuthority, are vulnerable. A remote attacker can exploit this by presenting a specially crafted certificate, causing the server to panic and resulting in a Denial of Service (DoS).
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-0:1.0.3-1.el9em.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-selinux-0:1.0.3-1.el9em.noarch | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.aarch64 | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.ppc64le | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.s390x | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.x86_64 | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.aarch64 | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.ppc64le | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.s390x | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.x86_64 | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.aarch64 | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.ppc64le | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.s390x | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.x86_64 | — |
Workaround
|
A flaw was found in Prometheus, an open-source monitoring system. The `client_secret` field within the Azure Active Directory (AD) remote write OAuth configuration was incorrectly handled as a plain string instead of a secure Secret type. This misconfiguration allowed any user or process with access to the `/-/config` HTTP API endpoint to view the Azure OAuth client secret in plaintext. This vulnerability leads to information disclosure, potentially compromising the security of integrated Azure AD services.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-0:1.0.3-1.el9em.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-selinux-0:1.0.3-1.el9em.noarch | — |
Vendor Fix
fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.aarch64 | — | ||
| Unresolved product id: 9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.ppc64le | — | ||
| Unresolved product id: 9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.s390x | — | ||
| Unresolved product id: 9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.x86_64 | — | ||
| Unresolved product id: 9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.aarch64 | — | ||
| Unresolved product id: 9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.ppc64le | — | ||
| Unresolved product id: 9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.s390x | — | ||
| Unresolved product id: 9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.x86_64 | — | ||
| Unresolved product id: 9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.aarch64 | — | ||
| Unresolved product id: 9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.ppc64le | — | ||
| Unresolved product id: 9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.s390x | — | ||
| Unresolved product id: 9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.x86_64 | — |
A flaw was found in Prometheus. An unauthenticated attacker can exploit the remote read endpoint (`/api/v1/read`) by sending a specially crafted, small snappy-compressed payload. This payload causes a disproportionately large memory allocation, leading to memory exhaustion and a Denial of Service (DoS) by crashing the Prometheus process.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-0:1.0.3-1.el9em.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-selinux-0:1.0.3-1.el9em.noarch | — |
Vendor Fix
fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.aarch64 | — | ||
| Unresolved product id: 9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.ppc64le | — | ||
| Unresolved product id: 9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.s390x | — | ||
| Unresolved product id: 9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.x86_64 | — | ||
| Unresolved product id: 9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.aarch64 | — | ||
| Unresolved product id: 9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.ppc64le | — | ||
| Unresolved product id: 9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.s390x | — | ||
| Unresolved product id: 9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.x86_64 | — | ||
| Unresolved product id: 9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.aarch64 | — | ||
| Unresolved product id: 9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.ppc64le | — | ||
| Unresolved product id: 9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.s390x | — | ||
| Unresolved product id: 9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.x86_64 | — |
A flaw was found in golang.org/x/crypto/ssh/knownhosts. This vulnerability occurs because the system did not correctly check for the revocation status of a SignatureKey belonging to a Certificate Authority (CA). A remote attacker could potentially exploit this by presenting a revoked key, leading to the system accepting it as valid. This could allow an attacker to bypass security checks and potentially gain unauthorized access or spoof legitimate entities.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-0:1.0.3-1.el9em.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-selinux-0:1.0.3-1.el9em.noarch | — |
Vendor Fix
fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.aarch64 | — | ||
| Unresolved product id: 9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.ppc64le | — | ||
| Unresolved product id: 9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.s390x | — | ||
| Unresolved product id: 9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.x86_64 | — | ||
| Unresolved product id: 9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.aarch64 | — | ||
| Unresolved product id: 9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.ppc64le | — | ||
| Unresolved product id: 9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.s390x | — | ||
| Unresolved product id: 9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.x86_64 | — | ||
| Unresolved product id: 9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.aarch64 | — | ||
| Unresolved product id: 9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.ppc64le | — | ||
| Unresolved product id: 9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.s390x | — | ||
| Unresolved product id: 9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.x86_64 | — |
A flaw was found in golang.org/x/crypto/ssh. Source-address validation can be skipped when an SSH server configuration uses an authentication callback type other than public key, allowing authorization bypass in misconfigured servers. This is a follow-on to incomplete coverage from the CVE-2024-45337 fix.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-0:1.0.3-1.el9em.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-selinux-0:1.0.3-1.el9em.noarch | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.aarch64 | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.ppc64le | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.s390x | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.x86_64 | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.aarch64 | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.ppc64le | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.s390x | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.x86_64 | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.aarch64 | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.ppc64le | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.s390x | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.x86_64 | — |
Workaround
|
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Red Hat Edge Manager Version 1.0.3 Security Update",
"title": "Topic"
},
{
"category": "general",
"text": "Red Hat Edge Manager (RHEM) provides simple, scalable, and security-focused\nmanagement of edge devices and applications. It supports image-mode RHEL and\ncontainer workloads that run on Podman/Docker or Kubernetes.\n\nRHEM is now available as a standalone feature, providing greater flexibility for\nedge deployments. In addition to the standalone version, RHEM continues to be\noffered as a plugin for the following platforms:\n\nRed Hat Advanced Cluster Management (RHACM): Extends fleet management to edge\ndevices.\nRed Hat Ansible Automation Platform (AAP): Integrates edge management with\nAnsible automation.\n\nThis integration enables organizations to optimize the management and\norchestration of their fleets of edge devices; whether its thousands of\ndispersed retail point-of-sale systems or industrial machinery on remote factory\nfloors.\n\nValue for customers and partners:\n\n* This solution not only helps customers manage thousands of devices but helps\nscale operations.\n* To manage large-scale deployments, customers need to be able to integrate with\ntheir existing management systems, support remote configuration and over-the-air\nupdates, and collect telemetry data for advanced analytics.\n* Red Hat Edge Manager offers a simple and security-focused lifecycle\nmanagement, from onboarding to decommissioning of edge devices.\n\nThis complete end-to-end solution empowers organizations to gain the most value\nfrom the fleets of devices that generate data, all from a centralized location.\n\nSecurity fixes:\n\n* golang.org/x/crypto/ssh: Denial of Service via crafted SSH certificate (CVE-2026-39835)\n* golang.org/x/crypto/ssh: Denial of Service via resource leak from unsolicited SSH responses (CVE-2026-39830)\n* golang.org/x/crypto/ssh: Denial of Service via crafted public key with excessive parameters (CVE-2026-39829)\n* golang.org/x/crypto/ssh: Unauthorized command execution via discarded SSH permissions (CVE-2026-39828)\n* golang.org/x/crypto/ssh: Authorization bypass due to skipped source-address validation (CVE-2026-46595)\n* golang.org/x/crypto/ssh/agent: Security bypass due to improper handling of key restrictions (CVE-2026-39832)\n* golang.org/x/crypto/ssh/knownhosts: Revocation bypass via unchecked SignatureKey (CVE-2026-42508)\n* golang.org/x/net/idna: Privilege escalation via incorrect Punycode label processing (CVE-2026-39821)\n* Go net package: Denial of Service via long CNAME response in LookupCNAME (CVE-2026-33811)\n* Go crypto/x509: Denial of Service via inefficient certificate chain validation (CVE-2026-32281)\n* Go crypto/x509: Certificate validation bypass due to incorrect DNS constraint application (CVE-2026-33810)\n* Go crypto/tls: Denial of Service via multiple TLS 1.3 key update messages (CVE-2026-32283)\n* Go: Denial of Service vulnerability in certificate chain building (CVE-2026-32280)\n* Go crypto/x509: Incorrect enforcement of email constraints (CVE-2026-27137)\n* Go net/url: Incorrect parsing of IPv6 host literals (CVE-2026-25679)\n* golang: Denial of Service due to excessive resource consumption via crafted certificate (CVE-2025-61729)\n* github.com/jackc/pgx: Memory-safety vulnerability (CVE-2026-33815)\n* github.com/jackc/pgx: Memory-safety vulnerability (CVE-2026-33816)\n* gRPC-Go: Authorization bypass due to improper HTTP/2 path validation (CVE-2026-33186)\n* Prometheus: Information disclosure of Azure OAuth client secret via config API (CVE-2026-42151)\n* Prometheus: Denial of Service via uncontrolled memory allocation in remote read endpoint (CVE-2026-42154)\n* Root.Chmod can follow symlinks out of the root (CVE-2026-32282)\n* Kubelet, CRI-O, kube-apiserver: Denial of Service via SPDY streaming code (CVE-2026-35469)",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2026:36796",
"url": "https://access.redhat.com/errata/RHSA-2026:36796"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "https://docs.redhat.com/en/documentation/red_hat_ansible_automation_platform/2.5/html/managing_device_fleets_with_the_red_hat_edge_manager/assembly-edge-manager-intro",
"url": "https://docs.redhat.com/en/documentation/red_hat_ansible_automation_platform/2.5/html/managing_device_fleets_with_the_red_hat_edge_manager/assembly-edge-manager-intro"
},
{
"category": "external",
"summary": "https://docs.redhat.com/en/documentation/red_hat_advanced_cluster_management_for_kubernetes/2.15/html-single/edge_manager/index#edge-mgr-intro",
"url": "https://docs.redhat.com/en/documentation/red_hat_advanced_cluster_management_for_kubernetes/2.15/html-single/edge_manager/index#edge-mgr-intro"
},
{
"category": "external",
"summary": "2418462",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2418462"
},
{
"category": "external",
"summary": "2445345",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2445345"
},
{
"category": "external",
"summary": "2445356",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2445356"
},
{
"category": "external",
"summary": "2449833",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2449833"
},
{
"category": "external",
"summary": "2455972",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2455972"
},
{
"category": "external",
"summary": "2455975",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2455975"
},
{
"category": "external",
"summary": "2456333",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2456333"
},
{
"category": "external",
"summary": "2456335",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2456335"
},
{
"category": "external",
"summary": "2456336",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2456336"
},
{
"category": "external",
"summary": "2456338",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2456338"
},
{
"category": "external",
"summary": "2456339",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2456339"
},
{
"category": "external",
"summary": "2457729",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2457729"
},
{
"category": "external",
"summary": "2466505",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2466505"
},
{
"category": "external",
"summary": "2466507",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2466507"
},
{
"category": "external",
"summary": "2467822",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2467822"
},
{
"category": "external",
"summary": "2480680",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2480680"
},
{
"category": "external",
"summary": "2480681",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2480681"
},
{
"category": "external",
"summary": "2480684",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2480684"
},
{
"category": "external",
"summary": "2480685",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2480685"
},
{
"category": "external",
"summary": "2480687",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2480687"
},
{
"category": "external",
"summary": "2480688",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2480688"
},
{
"category": "external",
"summary": "2480689",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2480689"
},
{
"category": "external",
"summary": "2480756",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2480756"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2026/rhsa-2026_36796.json"
}
],
"title": "Red Hat Security Advisory: Red Hat Edge Manager Version 1.0.3 Security Update",
"tracking": {
"current_release_date": "2026-07-13T03:54:06+00:00",
"generator": {
"date": "2026-07-13T03:54:06+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "5.3.2"
}
},
"id": "RHSA-2026:36796",
"initial_release_date": "2026-07-08T15:52:29+00:00",
"revision_history": [
{
"date": "2026-07-08T15:52:29+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2026-07-08T15:52:29+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2026-07-13T03:54:06+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "RHEM 1.0 for RHEL 9",
"product": {
"name": "RHEM 1.0 for RHEL 9",
"product_id": "9Base-RHEM-1.0",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:edge_manager:1.0::el9"
}
}
}
],
"category": "product_family",
"name": "Red Hat Edge Manager"
},
{
"branches": [
{
"category": "product_version",
"name": "flightctl-0:1.0.3-1.el9em.src",
"product": {
"name": "flightctl-0:1.0.3-1.el9em.src",
"product_id": "flightctl-0:1.0.3-1.el9em.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/flightctl@1.0.3-1.el9em?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "flightctl-agent-0:1.0.3-1.el9em.x86_64",
"product": {
"name": "flightctl-agent-0:1.0.3-1.el9em.x86_64",
"product_id": "flightctl-agent-0:1.0.3-1.el9em.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/flightctl-agent@1.0.3-1.el9em?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "flightctl-cli-0:1.0.3-1.el9em.x86_64",
"product": {
"name": "flightctl-cli-0:1.0.3-1.el9em.x86_64",
"product_id": "flightctl-cli-0:1.0.3-1.el9em.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/flightctl-cli@1.0.3-1.el9em?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "flightctl-observability-0:1.0.3-1.el9em.x86_64",
"product": {
"name": "flightctl-observability-0:1.0.3-1.el9em.x86_64",
"product_id": "flightctl-observability-0:1.0.3-1.el9em.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/flightctl-observability@1.0.3-1.el9em?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "flightctl-services-0:1.0.3-1.el9em.x86_64",
"product": {
"name": "flightctl-services-0:1.0.3-1.el9em.x86_64",
"product_id": "flightctl-services-0:1.0.3-1.el9em.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/flightctl-services@1.0.3-1.el9em?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "flightctl-telemetry-gateway-0:1.0.3-1.el9em.x86_64",
"product": {
"name": "flightctl-telemetry-gateway-0:1.0.3-1.el9em.x86_64",
"product_id": "flightctl-telemetry-gateway-0:1.0.3-1.el9em.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/flightctl-telemetry-gateway@1.0.3-1.el9em?arch=x86_64"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "flightctl-agent-0:1.0.3-1.el9em.s390x",
"product": {
"name": "flightctl-agent-0:1.0.3-1.el9em.s390x",
"product_id": "flightctl-agent-0:1.0.3-1.el9em.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/flightctl-agent@1.0.3-1.el9em?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "flightctl-cli-0:1.0.3-1.el9em.s390x",
"product": {
"name": "flightctl-cli-0:1.0.3-1.el9em.s390x",
"product_id": "flightctl-cli-0:1.0.3-1.el9em.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/flightctl-cli@1.0.3-1.el9em?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "flightctl-observability-0:1.0.3-1.el9em.s390x",
"product": {
"name": "flightctl-observability-0:1.0.3-1.el9em.s390x",
"product_id": "flightctl-observability-0:1.0.3-1.el9em.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/flightctl-observability@1.0.3-1.el9em?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "flightctl-services-0:1.0.3-1.el9em.s390x",
"product": {
"name": "flightctl-services-0:1.0.3-1.el9em.s390x",
"product_id": "flightctl-services-0:1.0.3-1.el9em.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/flightctl-services@1.0.3-1.el9em?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "flightctl-telemetry-gateway-0:1.0.3-1.el9em.s390x",
"product": {
"name": "flightctl-telemetry-gateway-0:1.0.3-1.el9em.s390x",
"product_id": "flightctl-telemetry-gateway-0:1.0.3-1.el9em.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/flightctl-telemetry-gateway@1.0.3-1.el9em?arch=s390x"
}
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "flightctl-agent-0:1.0.3-1.el9em.ppc64le",
"product": {
"name": "flightctl-agent-0:1.0.3-1.el9em.ppc64le",
"product_id": "flightctl-agent-0:1.0.3-1.el9em.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/flightctl-agent@1.0.3-1.el9em?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "flightctl-cli-0:1.0.3-1.el9em.ppc64le",
"product": {
"name": "flightctl-cli-0:1.0.3-1.el9em.ppc64le",
"product_id": "flightctl-cli-0:1.0.3-1.el9em.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/flightctl-cli@1.0.3-1.el9em?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "flightctl-observability-0:1.0.3-1.el9em.ppc64le",
"product": {
"name": "flightctl-observability-0:1.0.3-1.el9em.ppc64le",
"product_id": "flightctl-observability-0:1.0.3-1.el9em.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/flightctl-observability@1.0.3-1.el9em?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "flightctl-services-0:1.0.3-1.el9em.ppc64le",
"product": {
"name": "flightctl-services-0:1.0.3-1.el9em.ppc64le",
"product_id": "flightctl-services-0:1.0.3-1.el9em.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/flightctl-services@1.0.3-1.el9em?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "flightctl-telemetry-gateway-0:1.0.3-1.el9em.ppc64le",
"product": {
"name": "flightctl-telemetry-gateway-0:1.0.3-1.el9em.ppc64le",
"product_id": "flightctl-telemetry-gateway-0:1.0.3-1.el9em.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/flightctl-telemetry-gateway@1.0.3-1.el9em?arch=ppc64le"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "flightctl-agent-0:1.0.3-1.el9em.aarch64",
"product": {
"name": "flightctl-agent-0:1.0.3-1.el9em.aarch64",
"product_id": "flightctl-agent-0:1.0.3-1.el9em.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/flightctl-agent@1.0.3-1.el9em?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "flightctl-cli-0:1.0.3-1.el9em.aarch64",
"product": {
"name": "flightctl-cli-0:1.0.3-1.el9em.aarch64",
"product_id": "flightctl-cli-0:1.0.3-1.el9em.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/flightctl-cli@1.0.3-1.el9em?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "flightctl-observability-0:1.0.3-1.el9em.aarch64",
"product": {
"name": "flightctl-observability-0:1.0.3-1.el9em.aarch64",
"product_id": "flightctl-observability-0:1.0.3-1.el9em.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/flightctl-observability@1.0.3-1.el9em?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "flightctl-services-0:1.0.3-1.el9em.aarch64",
"product": {
"name": "flightctl-services-0:1.0.3-1.el9em.aarch64",
"product_id": "flightctl-services-0:1.0.3-1.el9em.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/flightctl-services@1.0.3-1.el9em?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "flightctl-telemetry-gateway-0:1.0.3-1.el9em.aarch64",
"product": {
"name": "flightctl-telemetry-gateway-0:1.0.3-1.el9em.aarch64",
"product_id": "flightctl-telemetry-gateway-0:1.0.3-1.el9em.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/flightctl-telemetry-gateway@1.0.3-1.el9em?arch=aarch64"
}
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "flightctl-selinux-0:1.0.3-1.el9em.noarch",
"product": {
"name": "flightctl-selinux-0:1.0.3-1.el9em.noarch",
"product_id": "flightctl-selinux-0:1.0.3-1.el9em.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/flightctl-selinux@1.0.3-1.el9em?arch=noarch"
}
}
}
],
"category": "architecture",
"name": "noarch"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "flightctl-0:1.0.3-1.el9em.src as a component of RHEM 1.0 for RHEL 9",
"product_id": "9Base-RHEM-1.0:flightctl-0:1.0.3-1.el9em.src"
},
"product_reference": "flightctl-0:1.0.3-1.el9em.src",
"relates_to_product_reference": "9Base-RHEM-1.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "flightctl-agent-0:1.0.3-1.el9em.aarch64 as a component of RHEM 1.0 for RHEL 9",
"product_id": "9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.aarch64"
},
"product_reference": "flightctl-agent-0:1.0.3-1.el9em.aarch64",
"relates_to_product_reference": "9Base-RHEM-1.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "flightctl-agent-0:1.0.3-1.el9em.ppc64le as a component of RHEM 1.0 for RHEL 9",
"product_id": "9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.ppc64le"
},
"product_reference": "flightctl-agent-0:1.0.3-1.el9em.ppc64le",
"relates_to_product_reference": "9Base-RHEM-1.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "flightctl-agent-0:1.0.3-1.el9em.s390x as a component of RHEM 1.0 for RHEL 9",
"product_id": "9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.s390x"
},
"product_reference": "flightctl-agent-0:1.0.3-1.el9em.s390x",
"relates_to_product_reference": "9Base-RHEM-1.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "flightctl-agent-0:1.0.3-1.el9em.x86_64 as a component of RHEM 1.0 for RHEL 9",
"product_id": "9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.x86_64"
},
"product_reference": "flightctl-agent-0:1.0.3-1.el9em.x86_64",
"relates_to_product_reference": "9Base-RHEM-1.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "flightctl-cli-0:1.0.3-1.el9em.aarch64 as a component of RHEM 1.0 for RHEL 9",
"product_id": "9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.aarch64"
},
"product_reference": "flightctl-cli-0:1.0.3-1.el9em.aarch64",
"relates_to_product_reference": "9Base-RHEM-1.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "flightctl-cli-0:1.0.3-1.el9em.ppc64le as a component of RHEM 1.0 for RHEL 9",
"product_id": "9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.ppc64le"
},
"product_reference": "flightctl-cli-0:1.0.3-1.el9em.ppc64le",
"relates_to_product_reference": "9Base-RHEM-1.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "flightctl-cli-0:1.0.3-1.el9em.s390x as a component of RHEM 1.0 for RHEL 9",
"product_id": "9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.s390x"
},
"product_reference": "flightctl-cli-0:1.0.3-1.el9em.s390x",
"relates_to_product_reference": "9Base-RHEM-1.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "flightctl-cli-0:1.0.3-1.el9em.x86_64 as a component of RHEM 1.0 for RHEL 9",
"product_id": "9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.x86_64"
},
"product_reference": "flightctl-cli-0:1.0.3-1.el9em.x86_64",
"relates_to_product_reference": "9Base-RHEM-1.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "flightctl-observability-0:1.0.3-1.el9em.aarch64 as a component of RHEM 1.0 for RHEL 9",
"product_id": "9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.aarch64"
},
"product_reference": "flightctl-observability-0:1.0.3-1.el9em.aarch64",
"relates_to_product_reference": "9Base-RHEM-1.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "flightctl-observability-0:1.0.3-1.el9em.ppc64le as a component of RHEM 1.0 for RHEL 9",
"product_id": "9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.ppc64le"
},
"product_reference": "flightctl-observability-0:1.0.3-1.el9em.ppc64le",
"relates_to_product_reference": "9Base-RHEM-1.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "flightctl-observability-0:1.0.3-1.el9em.s390x as a component of RHEM 1.0 for RHEL 9",
"product_id": "9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.s390x"
},
"product_reference": "flightctl-observability-0:1.0.3-1.el9em.s390x",
"relates_to_product_reference": "9Base-RHEM-1.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "flightctl-observability-0:1.0.3-1.el9em.x86_64 as a component of RHEM 1.0 for RHEL 9",
"product_id": "9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.x86_64"
},
"product_reference": "flightctl-observability-0:1.0.3-1.el9em.x86_64",
"relates_to_product_reference": "9Base-RHEM-1.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "flightctl-selinux-0:1.0.3-1.el9em.noarch as a component of RHEM 1.0 for RHEL 9",
"product_id": "9Base-RHEM-1.0:flightctl-selinux-0:1.0.3-1.el9em.noarch"
},
"product_reference": "flightctl-selinux-0:1.0.3-1.el9em.noarch",
"relates_to_product_reference": "9Base-RHEM-1.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "flightctl-services-0:1.0.3-1.el9em.aarch64 as a component of RHEM 1.0 for RHEL 9",
"product_id": "9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.aarch64"
},
"product_reference": "flightctl-services-0:1.0.3-1.el9em.aarch64",
"relates_to_product_reference": "9Base-RHEM-1.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "flightctl-services-0:1.0.3-1.el9em.ppc64le as a component of RHEM 1.0 for RHEL 9",
"product_id": "9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.ppc64le"
},
"product_reference": "flightctl-services-0:1.0.3-1.el9em.ppc64le",
"relates_to_product_reference": "9Base-RHEM-1.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "flightctl-services-0:1.0.3-1.el9em.s390x as a component of RHEM 1.0 for RHEL 9",
"product_id": "9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.s390x"
},
"product_reference": "flightctl-services-0:1.0.3-1.el9em.s390x",
"relates_to_product_reference": "9Base-RHEM-1.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "flightctl-services-0:1.0.3-1.el9em.x86_64 as a component of RHEM 1.0 for RHEL 9",
"product_id": "9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.x86_64"
},
"product_reference": "flightctl-services-0:1.0.3-1.el9em.x86_64",
"relates_to_product_reference": "9Base-RHEM-1.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "flightctl-telemetry-gateway-0:1.0.3-1.el9em.aarch64 as a component of RHEM 1.0 for RHEL 9",
"product_id": "9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.aarch64"
},
"product_reference": "flightctl-telemetry-gateway-0:1.0.3-1.el9em.aarch64",
"relates_to_product_reference": "9Base-RHEM-1.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "flightctl-telemetry-gateway-0:1.0.3-1.el9em.ppc64le as a component of RHEM 1.0 for RHEL 9",
"product_id": "9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.ppc64le"
},
"product_reference": "flightctl-telemetry-gateway-0:1.0.3-1.el9em.ppc64le",
"relates_to_product_reference": "9Base-RHEM-1.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "flightctl-telemetry-gateway-0:1.0.3-1.el9em.s390x as a component of RHEM 1.0 for RHEL 9",
"product_id": "9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.s390x"
},
"product_reference": "flightctl-telemetry-gateway-0:1.0.3-1.el9em.s390x",
"relates_to_product_reference": "9Base-RHEM-1.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "flightctl-telemetry-gateway-0:1.0.3-1.el9em.x86_64 as a component of RHEM 1.0 for RHEL 9",
"product_id": "9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.x86_64"
},
"product_reference": "flightctl-telemetry-gateway-0:1.0.3-1.el9em.x86_64",
"relates_to_product_reference": "9Base-RHEM-1.0"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2025-61729",
"cwe": {
"id": "CWE-1050",
"name": "Excessive Platform Resource Consumption within a Loop"
},
"discovery_date": "2025-12-02T20:01:45.330964+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.x86_64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2418462"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in golang. A remote attacker could exploit this vulnerability by providing a specially crafted certificate during the error string construction process within the `HostnameError.Error()` function. This flaw, caused by unbounded string concatenation, leads to excessive resource consumption. Successful exploitation can result in a denial of service (DoS) for the affected system.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "crypto/x509: golang: Denial of Service due to excessive resource consumption via crafted certificate",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHEM-1.0:flightctl-0:1.0.3-1.el9em.src",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-selinux-0:1.0.3-1.el9em.noarch"
],
"known_not_affected": [
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-61729"
},
{
"category": "external",
"summary": "RHBZ#2418462",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2418462"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-61729",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-61729"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-61729",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-61729"
},
{
"category": "external",
"summary": "https://go.dev/cl/725920",
"url": "https://go.dev/cl/725920"
},
{
"category": "external",
"summary": "https://go.dev/issue/76445",
"url": "https://go.dev/issue/76445"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/8FJoBkPddm4",
"url": "https://groups.google.com/g/golang-announce/c/8FJoBkPddm4"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2025-4155",
"url": "https://pkg.go.dev/vuln/GO-2025-4155"
}
],
"release_date": "2025-12-02T18:54:10.166000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T15:52:29+00:00",
"details": "See the following documentation for details on how to enable Red Hat Edge Manager and more: https://docs.redhat.com/en/documentation/red_hat_edge_manager/1.0",
"product_ids": [
"9Base-RHEM-1.0:flightctl-0:1.0.3-1.el9em.src",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-selinux-0:1.0.3-1.el9em.noarch"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36796"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"9Base-RHEM-1.0:flightctl-0:1.0.3-1.el9em.src",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-selinux-0:1.0.3-1.el9em.noarch",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "crypto/x509: golang: Denial of Service due to excessive resource consumption via crafted certificate"
},
{
"cve": "CVE-2026-25679",
"cwe": {
"id": "CWE-1286",
"name": "Improper Validation of Syntactic Correctness of Input"
},
"discovery_date": "2026-03-06T22:02:11.567841+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.x86_64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2445356"
}
],
"notes": [
{
"category": "description",
"text": "The Go standard library function net/url.Parse insufficiently validated the host/authority component and accepted some invalid URLs by effectively treating garbage before an IP-literal as ignorable. The function should have rejected this as invalid.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "net/url: Incorrect parsing of IPv6 host literals in net/url",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHEM-1.0:flightctl-0:1.0.3-1.el9em.src",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-selinux-0:1.0.3-1.el9em.noarch"
],
"known_not_affected": [
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-25679"
},
{
"category": "external",
"summary": "RHBZ#2445356",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2445356"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-25679",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-25679"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-25679",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-25679"
},
{
"category": "external",
"summary": "https://go.dev/cl/752180",
"url": "https://go.dev/cl/752180"
},
{
"category": "external",
"summary": "https://go.dev/issue/77578",
"url": "https://go.dev/issue/77578"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/EdhZqrQ98hk",
"url": "https://groups.google.com/g/golang-announce/c/EdhZqrQ98hk"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-4601",
"url": "https://pkg.go.dev/vuln/GO-2026-4601"
}
],
"release_date": "2026-03-06T21:28:14.211000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T15:52:29+00:00",
"details": "See the following documentation for details on how to enable Red Hat Edge Manager and more: https://docs.redhat.com/en/documentation/red_hat_edge_manager/1.0",
"product_ids": [
"9Base-RHEM-1.0:flightctl-0:1.0.3-1.el9em.src",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-selinux-0:1.0.3-1.el9em.noarch"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36796"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"9Base-RHEM-1.0:flightctl-0:1.0.3-1.el9em.src",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-selinux-0:1.0.3-1.el9em.noarch",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"9Base-RHEM-1.0:flightctl-0:1.0.3-1.el9em.src",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-selinux-0:1.0.3-1.el9em.noarch",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "net/url: Incorrect parsing of IPv6 host literals in net/url"
},
{
"cve": "CVE-2026-27137",
"cwe": {
"id": "CWE-295",
"name": "Improper Certificate Validation"
},
"discovery_date": "2026-03-06T22:01:38.859733+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.x86_64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2445345"
}
],
"notes": [
{
"category": "description",
"text": "A certificate validation flaw has been discovered in the golang crypto/x509 module. When verifying a certificate chain which contains a certificate containing multiple email address constraints which share common local portions but different domain portions, these constraints will not be properly applied, and only the last constraint will be considered.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "crypto/x509: Incorrect enforcement of email constraints in crypto/x509",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHEM-1.0:flightctl-0:1.0.3-1.el9em.src",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-selinux-0:1.0.3-1.el9em.noarch"
],
"known_not_affected": [
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-27137"
},
{
"category": "external",
"summary": "RHBZ#2445345",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2445345"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-27137",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-27137"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-27137",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-27137"
},
{
"category": "external",
"summary": "https://go.dev/cl/752182",
"url": "https://go.dev/cl/752182"
},
{
"category": "external",
"summary": "https://go.dev/issue/77952",
"url": "https://go.dev/issue/77952"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/EdhZqrQ98hk",
"url": "https://groups.google.com/g/golang-announce/c/EdhZqrQ98hk"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-4599",
"url": "https://pkg.go.dev/vuln/GO-2026-4599"
}
],
"release_date": "2026-03-06T21:28:13.748000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T15:52:29+00:00",
"details": "See the following documentation for details on how to enable Red Hat Edge Manager and more: https://docs.redhat.com/en/documentation/red_hat_edge_manager/1.0",
"product_ids": [
"9Base-RHEM-1.0:flightctl-0:1.0.3-1.el9em.src",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-selinux-0:1.0.3-1.el9em.noarch"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36796"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"9Base-RHEM-1.0:flightctl-0:1.0.3-1.el9em.src",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-selinux-0:1.0.3-1.el9em.noarch",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"9Base-RHEM-1.0:flightctl-0:1.0.3-1.el9em.src",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-selinux-0:1.0.3-1.el9em.noarch",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "crypto/x509: Incorrect enforcement of email constraints in crypto/x509"
},
{
"cve": "CVE-2026-32280",
"cwe": {
"id": "CWE-770",
"name": "Allocation of Resources Without Limits or Throttling"
},
"discovery_date": "2026-04-08T02:01:19.572351+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.x86_64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2456339"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the Go standard library packages `crypto/x509` and `crypto/tls`. During the process of building a certificate chain, an attacker can provide a large number of intermediate certificates. This excessive input is not properly limited, leading to an uncontrolled amount of work being performed. This can result in a denial of service (DoS) condition, making the affected system or application unavailable to legitimate users.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "crypto/x509: crypto/tls: golang: Go: Denial of Service vulnerability in certificate chain building",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This is an Important denial of service vulnerability in the Go standard library\u0027s certificate chain building process. Systems utilizing Go applications that process untrusted TLS certificates or X.509 certificate chains are susceptible to resource exhaustion when presented with an excessive number of intermediate certificates, potentially leading to service unavailability. This flaw impacts applications directly using `crypto/x509` or `crypto/tls`.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHEM-1.0:flightctl-0:1.0.3-1.el9em.src",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-selinux-0:1.0.3-1.el9em.noarch"
],
"known_not_affected": [
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-32280"
},
{
"category": "external",
"summary": "RHBZ#2456339",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2456339"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-32280",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-32280"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-32280",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-32280"
},
{
"category": "external",
"summary": "https://go.dev/cl/758320",
"url": "https://go.dev/cl/758320"
},
{
"category": "external",
"summary": "https://go.dev/issue/78282",
"url": "https://go.dev/issue/78282"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/0uYbvbPZRWU",
"url": "https://groups.google.com/g/golang-announce/c/0uYbvbPZRWU"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-4947",
"url": "https://pkg.go.dev/vuln/GO-2026-4947"
}
],
"release_date": "2026-04-08T01:06:58.595000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T15:52:29+00:00",
"details": "See the following documentation for details on how to enable Red Hat Edge Manager and more: https://docs.redhat.com/en/documentation/red_hat_edge_manager/1.0",
"product_ids": [
"9Base-RHEM-1.0:flightctl-0:1.0.3-1.el9em.src",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-selinux-0:1.0.3-1.el9em.noarch"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36796"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"9Base-RHEM-1.0:flightctl-0:1.0.3-1.el9em.src",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-selinux-0:1.0.3-1.el9em.noarch",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "crypto/x509: crypto/tls: golang: Go: Denial of Service vulnerability in certificate chain building"
},
{
"cve": "CVE-2026-32281",
"cwe": {
"id": "CWE-1050",
"name": "Excessive Platform Resource Consumption within a Loop"
},
"discovery_date": "2026-04-08T02:01:00.930989+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.x86_64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2456333"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Go\u0027s `crypto/x509` package. A remote attacker could exploit this by presenting a specially crafted certificate chain containing a large number of policy mappings. This inefficient validation process consumes excessive resources, which can lead to a denial of service (DoS) for applications or systems performing certificate validation.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "crypto/x509: golang: Go crypto/x509: Denial of Service via inefficient certificate chain validation",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This flaw occurs during the validation of otherwise trusted certificate chains that contain a large number of policy mappings, leading to excessive resource consumption. Exploitation requires an attacker to present a specially crafted, yet trusted, certificate chain which would require the attacker has already compromised a trusted certificate root. Red Hat continuously monitors certificate authorities and curates the set which is trusted by default for Red Hat products.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHEM-1.0:flightctl-0:1.0.3-1.el9em.src",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-selinux-0:1.0.3-1.el9em.noarch"
],
"known_not_affected": [
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-32281"
},
{
"category": "external",
"summary": "RHBZ#2456333",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2456333"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-32281",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-32281"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-32281",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-32281"
},
{
"category": "external",
"summary": "https://go.dev/cl/758061",
"url": "https://go.dev/cl/758061"
},
{
"category": "external",
"summary": "https://go.dev/issue/78281",
"url": "https://go.dev/issue/78281"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/0uYbvbPZRWU",
"url": "https://groups.google.com/g/golang-announce/c/0uYbvbPZRWU"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-4946",
"url": "https://pkg.go.dev/vuln/GO-2026-4946"
}
],
"release_date": "2026-04-08T01:06:58.354000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T15:52:29+00:00",
"details": "See the following documentation for details on how to enable Red Hat Edge Manager and more: https://docs.redhat.com/en/documentation/red_hat_edge_manager/1.0",
"product_ids": [
"9Base-RHEM-1.0:flightctl-0:1.0.3-1.el9em.src",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-selinux-0:1.0.3-1.el9em.noarch"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36796"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"9Base-RHEM-1.0:flightctl-0:1.0.3-1.el9em.src",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-selinux-0:1.0.3-1.el9em.noarch",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"9Base-RHEM-1.0:flightctl-0:1.0.3-1.el9em.src",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-selinux-0:1.0.3-1.el9em.noarch",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "crypto/x509: golang: Go crypto/x509: Denial of Service via inefficient certificate chain validation"
},
{
"cve": "CVE-2026-32282",
"cwe": {
"id": "CWE-367",
"name": "Time-of-check Time-of-use (TOCTOU) Race Condition"
},
"discovery_date": "2026-04-08T02:01:12.683211+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.x86_64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2456336"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the internal/syscall/unix package in the Go standard library. If the target of the `Root.Chmod` function is replaced with a symbolic link during execution, specifically after `Root.Chmod` checks the target but before acting, the `chmod` operation will be performed on the file the symbolic link points to. This issue can bypass directory restrictions and lead to unauthorized permission changes on the filesystem.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang: internal/syscall/unix: Root.Chmod can follow symlinks out of the root",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "To exploit this issue, an attacker needs access to the system and the required permissions to create a symbolic link. Additionally, the attacker must swap the target file with a symbolic link in the exact window after the `Root.Chmod` function checks its target but before acting. Due to these conditions, this flaw has been rated with a moderate severity.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHEM-1.0:flightctl-0:1.0.3-1.el9em.src",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-selinux-0:1.0.3-1.el9em.noarch"
],
"known_not_affected": [
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-32282"
},
{
"category": "external",
"summary": "RHBZ#2456336",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2456336"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-32282",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-32282"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-32282",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-32282"
},
{
"category": "external",
"summary": "https://go.dev/cl/763761",
"url": "https://go.dev/cl/763761"
},
{
"category": "external",
"summary": "https://go.dev/issue/78293",
"url": "https://go.dev/issue/78293"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/0uYbvbPZRWU",
"url": "https://groups.google.com/g/golang-announce/c/0uYbvbPZRWU"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-4864",
"url": "https://pkg.go.dev/vuln/GO-2026-4864"
}
],
"release_date": "2026-04-08T01:06:55.953000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T15:52:29+00:00",
"details": "See the following documentation for details on how to enable Red Hat Edge Manager and more: https://docs.redhat.com/en/documentation/red_hat_edge_manager/1.0",
"product_ids": [
"9Base-RHEM-1.0:flightctl-0:1.0.3-1.el9em.src",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-selinux-0:1.0.3-1.el9em.noarch"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36796"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"9Base-RHEM-1.0:flightctl-0:1.0.3-1.el9em.src",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-selinux-0:1.0.3-1.el9em.noarch",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"9Base-RHEM-1.0:flightctl-0:1.0.3-1.el9em.src",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-selinux-0:1.0.3-1.el9em.noarch",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "golang: internal/syscall/unix: Root.Chmod can follow symlinks out of the root"
},
{
"cve": "CVE-2026-32283",
"cwe": {
"id": "CWE-764",
"name": "Multiple Locks of a Critical Resource"
},
"discovery_date": "2026-04-08T02:01:16.213799+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.x86_64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2456338"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the `crypto/tls` package within the Go (golang) standard library, specifically affecting TLS 1.3 connections. A remote attacker can exploit this vulnerability by sending multiple key update messages in a single record after the handshake. This can cause the connection to deadlock, leading to uncontrolled consumption of resources and ultimately a denial of service (DoS).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "crypto/tls: golang: Go crypto/tls: Denial of Service via multiple TLS 1.3 key update messages",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Important: A flaw in the Go `crypto/tls` package allows a remote attacker to cause a denial of service in applications using TLS 1.3. By sending multiple key update messages in a single record post-handshake, an attacker can trigger a connection deadlock, leading to uncontrolled resource consumption. This impacts Red Hat products utilizing the affected Go standard library for TLS 1.3 connections.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHEM-1.0:flightctl-0:1.0.3-1.el9em.src",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-selinux-0:1.0.3-1.el9em.noarch"
],
"known_not_affected": [
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-32283"
},
{
"category": "external",
"summary": "RHBZ#2456338",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2456338"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-32283",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-32283"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-32283",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-32283"
},
{
"category": "external",
"summary": "https://go.dev/cl/763767",
"url": "https://go.dev/cl/763767"
},
{
"category": "external",
"summary": "https://go.dev/issue/78334",
"url": "https://go.dev/issue/78334"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/0uYbvbPZRWU",
"url": "https://groups.google.com/g/golang-announce/c/0uYbvbPZRWU"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-4870",
"url": "https://pkg.go.dev/vuln/GO-2026-4870"
}
],
"release_date": "2026-04-08T01:06:57.670000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T15:52:29+00:00",
"details": "See the following documentation for details on how to enable Red Hat Edge Manager and more: https://docs.redhat.com/en/documentation/red_hat_edge_manager/1.0",
"product_ids": [
"9Base-RHEM-1.0:flightctl-0:1.0.3-1.el9em.src",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-selinux-0:1.0.3-1.el9em.noarch"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36796"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"9Base-RHEM-1.0:flightctl-0:1.0.3-1.el9em.src",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-selinux-0:1.0.3-1.el9em.noarch",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "crypto/tls: golang: Go crypto/tls: Denial of Service via multiple TLS 1.3 key update messages"
},
{
"cve": "CVE-2026-33186",
"cwe": {
"id": "CWE-551",
"name": "Incorrect Behavior Order: Authorization Before Parsing and Canonicalization"
},
"discovery_date": "2026-03-20T23:02:27.802640+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.x86_64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2449833"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in gRPC-Go, the Go language implementation of gRPC. This vulnerability, an authorization bypass, is caused by improper input validation of the HTTP/2 `:path` pseudo-header. A remote attacker can exploit this by sending raw HTTP/2 frames with a malformed `:path` that omits the mandatory leading slash. This allows the attacker to bypass defined security policies, potentially leading to unauthorized access to services or information disclosure.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "google.golang.org/grpc/grpc-go: google.golang.org/grpc/authz: gRPC-Go: Authorization bypass due to improper HTTP/2 path validation",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHEM-1.0:flightctl-0:1.0.3-1.el9em.src",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-selinux-0:1.0.3-1.el9em.noarch"
],
"known_not_affected": [
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-33186"
},
{
"category": "external",
"summary": "RHBZ#2449833",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2449833"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-33186",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-33186"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-33186",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-33186"
},
{
"category": "external",
"summary": "https://github.com/grpc/grpc-go/security/advisories/GHSA-p77j-4mvh-x3m3",
"url": "https://github.com/grpc/grpc-go/security/advisories/GHSA-p77j-4mvh-x3m3"
}
],
"release_date": "2026-03-20T22:23:32.147000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T15:52:29+00:00",
"details": "See the following documentation for details on how to enable Red Hat Edge Manager and more: https://docs.redhat.com/en/documentation/red_hat_edge_manager/1.0",
"product_ids": [
"9Base-RHEM-1.0:flightctl-0:1.0.3-1.el9em.src",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-selinux-0:1.0.3-1.el9em.noarch"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36796"
},
{
"category": "workaround",
"details": "To mitigate this issue, implement infrastructure-level normalization to ensure all incoming HTTP/2 `:path` headers are properly formatted with a leading slash before reaching the gRPC-Go server. This can be achieved by configuring a reverse proxy or API gateway to validate and normalize the `:path` header. Ensure that any such intermediary is properly configured and restarted to apply the changes, which may temporarily impact service availability.",
"product_ids": [
"9Base-RHEM-1.0:flightctl-0:1.0.3-1.el9em.src",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-selinux-0:1.0.3-1.el9em.noarch",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 9.1,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"9Base-RHEM-1.0:flightctl-0:1.0.3-1.el9em.src",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-selinux-0:1.0.3-1.el9em.noarch",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "google.golang.org/grpc/grpc-go: google.golang.org/grpc/authz: gRPC-Go: Authorization bypass due to improper HTTP/2 path validation"
},
{
"cve": "CVE-2026-33810",
"cwe": {
"id": "CWE-1289",
"name": "Improper Validation of Unsafe Equivalence in Input"
},
"discovery_date": "2026-04-08T02:01:09.100830+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.x86_64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2456335"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the `crypto/x509` package within Go (golang). When verifying a certificate chain, excluded DNS (Domain Name System) constraints are not correctly applied to wildcard DNS Subject Alternative Names (SANs) if the case of the SAN differs from the constraint. This oversight could allow an attacker to bypass certificate validation, potentially leading to the acceptance of a malicious certificate that should have been rejected. This issue specifically impacts the validation of trusted certificate chains.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "crypto/x509: golang: Go crypto/x509: Certificate validation bypass due to incorrect DNS constraint application",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This is an Important flaw in the Go `crypto/x509` package that could allow an attacker to bypass certificate validation. The vulnerability arises from an incorrect application of excluded DNS constraints to wildcard DNS Subject Alternative Names (SANs) when their case differs from the constraint. This could lead to Red Hat products accepting malicious certificates from otherwise trusted chains, compromising the trust model.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHEM-1.0:flightctl-0:1.0.3-1.el9em.src",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-selinux-0:1.0.3-1.el9em.noarch"
],
"known_not_affected": [
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-33810"
},
{
"category": "external",
"summary": "RHBZ#2456335",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2456335"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-33810",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-33810"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-33810",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-33810"
},
{
"category": "external",
"summary": "https://go.dev/cl/763763",
"url": "https://go.dev/cl/763763"
},
{
"category": "external",
"summary": "https://go.dev/issue/78332",
"url": "https://go.dev/issue/78332"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/0uYbvbPZRWU",
"url": "https://groups.google.com/g/golang-announce/c/0uYbvbPZRWU"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-4866",
"url": "https://pkg.go.dev/vuln/GO-2026-4866"
}
],
"release_date": "2026-04-08T01:06:56.546000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T15:52:29+00:00",
"details": "See the following documentation for details on how to enable Red Hat Edge Manager and more: https://docs.redhat.com/en/documentation/red_hat_edge_manager/1.0",
"product_ids": [
"9Base-RHEM-1.0:flightctl-0:1.0.3-1.el9em.src",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-selinux-0:1.0.3-1.el9em.noarch"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36796"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 8.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:L/A:L",
"version": "3.1"
},
"products": [
"9Base-RHEM-1.0:flightctl-0:1.0.3-1.el9em.src",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-selinux-0:1.0.3-1.el9em.noarch",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "crypto/x509: golang: Go crypto/x509: Certificate validation bypass due to incorrect DNS constraint application"
},
{
"cve": "CVE-2026-33811",
"cwe": {
"id": "CWE-1341",
"name": "Multiple Releases of Same Resource or Handle"
},
"discovery_date": "2026-05-07T20:01:34.913869+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.x86_64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2467822"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the `net` package of Go (golang), specifically when using the `LookupCNAME` function with the `cgo` DNS resolver. A remote attacker could exploit this by providing a very long Canonical Name (CNAME) response. This can trigger a double-free of C memory, leading to a crash and a Denial of Service (DoS) for the affected application.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "net: golang: Go net package: Denial of Service via long CNAME response in LookupCNAME",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This is an Important denial of service vulnerability in the Go `net` package, affecting applications configured to use the `cgo` DNS resolver. A remote attacker could trigger a double-free memory error by providing a very long CNAME response, leading to a crash of the vulnerable application and impacting service availability.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHEM-1.0:flightctl-0:1.0.3-1.el9em.src",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-selinux-0:1.0.3-1.el9em.noarch"
],
"known_not_affected": [
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-33811"
},
{
"category": "external",
"summary": "RHBZ#2467822",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2467822"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-33811",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-33811"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-33811",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-33811"
},
{
"category": "external",
"summary": "https://go.dev/cl/767860",
"url": "https://go.dev/cl/767860"
},
{
"category": "external",
"summary": "https://go.dev/issue/78803",
"url": "https://go.dev/issue/78803"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/qcCIEXso47M",
"url": "https://groups.google.com/g/golang-announce/c/qcCIEXso47M"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-4981",
"url": "https://pkg.go.dev/vuln/GO-2026-4981"
}
],
"release_date": "2026-05-07T19:41:19.285000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T15:52:29+00:00",
"details": "See the following documentation for details on how to enable Red Hat Edge Manager and more: https://docs.redhat.com/en/documentation/red_hat_edge_manager/1.0",
"product_ids": [
"9Base-RHEM-1.0:flightctl-0:1.0.3-1.el9em.src",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-selinux-0:1.0.3-1.el9em.noarch"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36796"
},
{
"category": "workaround",
"details": "To mitigate this issue, applications can be configured to use the pure Go DNS resolver instead of the `cgo` DNS resolver. This can be achieved by setting the `GODEBUG` environment variable to `netdns=go`. For example, to run a Go application with this mitigation: `GODEBUG=netdns=go /path/to/your/go/application`. This change may require restarting affected applications or services to take effect. Users should verify that this change does not negatively impact DNS resolution for their specific application environment.",
"product_ids": [
"9Base-RHEM-1.0:flightctl-0:1.0.3-1.el9em.src",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-selinux-0:1.0.3-1.el9em.noarch",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"9Base-RHEM-1.0:flightctl-0:1.0.3-1.el9em.src",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-selinux-0:1.0.3-1.el9em.noarch",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "net: golang: Go net package: Denial of Service via long CNAME response in LookupCNAME"
},
{
"cve": "CVE-2026-33815",
"cwe": {
"id": "CWE-787",
"name": "Out-of-bounds Write"
},
"discovery_date": "2026-04-07T16:01:25.130006+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.x86_64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2455975"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in github.com/jackc/pgx. This memory-safety vulnerability could potentially lead to unexpected behavior or system instability.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "github.com/jackc/pgx/v5: github.com/jackc/pgx: Memory-safety vulnerability",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHEM-1.0:flightctl-0:1.0.3-1.el9em.src",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-selinux-0:1.0.3-1.el9em.noarch"
],
"known_not_affected": [
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-33815"
},
{
"category": "external",
"summary": "RHBZ#2455975",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2455975"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-33815",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-33815"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-33815",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-33815"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-4771",
"url": "https://pkg.go.dev/vuln/GO-2026-4771"
}
],
"release_date": "2026-04-07T15:19:24.344000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T15:52:29+00:00",
"details": "See the following documentation for details on how to enable Red Hat Edge Manager and more: https://docs.redhat.com/en/documentation/red_hat_edge_manager/1.0",
"product_ids": [
"9Base-RHEM-1.0:flightctl-0:1.0.3-1.el9em.src",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-selinux-0:1.0.3-1.el9em.noarch"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36796"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"9Base-RHEM-1.0:flightctl-0:1.0.3-1.el9em.src",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-selinux-0:1.0.3-1.el9em.noarch",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 8.3,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:L",
"version": "3.1"
},
"products": [
"9Base-RHEM-1.0:flightctl-0:1.0.3-1.el9em.src",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-selinux-0:1.0.3-1.el9em.noarch",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "github.com/jackc/pgx/v5: github.com/jackc/pgx: Memory-safety vulnerability"
},
{
"cve": "CVE-2026-33816",
"cwe": {
"id": "CWE-787",
"name": "Out-of-bounds Write"
},
"discovery_date": "2026-04-07T16:01:14.142946+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.x86_64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2455972"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in github.com/jackc/pgx, a PostgreSQL driver for Go. This memory-safety vulnerability could allow an attacker to cause various impacts, such as denial of service (DoS) or potentially arbitrary code execution, by exploiting memory corruption issues. The exact method of exploitation and specific consequences would depend on the nature of the memory corruption.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "github.com/jackc/pgx/v5: github.com/jackc/pgx: Memory-safety vulnerability",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHEM-1.0:flightctl-0:1.0.3-1.el9em.src",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-selinux-0:1.0.3-1.el9em.noarch"
],
"known_not_affected": [
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-33816"
},
{
"category": "external",
"summary": "RHBZ#2455972",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2455972"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-33816",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-33816"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-33816",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-33816"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-4772",
"url": "https://pkg.go.dev/vuln/GO-2026-4772"
}
],
"release_date": "2026-04-07T15:19:24.529000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T15:52:29+00:00",
"details": "See the following documentation for details on how to enable Red Hat Edge Manager and more: https://docs.redhat.com/en/documentation/red_hat_edge_manager/1.0",
"product_ids": [
"9Base-RHEM-1.0:flightctl-0:1.0.3-1.el9em.src",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-selinux-0:1.0.3-1.el9em.noarch"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36796"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"9Base-RHEM-1.0:flightctl-0:1.0.3-1.el9em.src",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-selinux-0:1.0.3-1.el9em.noarch",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 8.3,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:L",
"version": "3.1"
},
"products": [
"9Base-RHEM-1.0:flightctl-0:1.0.3-1.el9em.src",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-selinux-0:1.0.3-1.el9em.noarch",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "github.com/jackc/pgx/v5: github.com/jackc/pgx: Memory-safety vulnerability"
},
{
"cve": "CVE-2026-35469",
"cwe": {
"id": "CWE-770",
"name": "Allocation of Resources Without Limits or Throttling"
},
"discovery_date": "2026-04-13T03:52:35+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.x86_64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2457729"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the SPDY streaming code used by Kubelet, CRI-O, and kube-apiserver. An attacker with specific cluster roles, such as those allowing access to pod port forwarding, execution, or attachment, or node proxying, could exploit this vulnerability. This could lead to a Denial of Service (DoS) by causing the affected components to become unresponsive.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "Kubelet: CRI-O: kube-apiserver: Kubelet, CRI-O, kube-apiserver: Denial of Service via SPDY streaming code",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This is an Important denial of service flaw affecting OpenShift Container Platform. An attacker with specific elevated cluster roles, such as those permitting pod port forwarding, execution, attachment, or node proxying, could exploit a vulnerability in the SPDY streaming code of Kubelet, CRI-O, and kube-apiserver, leading to unresponsiveness of these critical components.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHEM-1.0:flightctl-0:1.0.3-1.el9em.src",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-selinux-0:1.0.3-1.el9em.noarch"
],
"known_not_affected": [
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-35469"
},
{
"category": "external",
"summary": "RHBZ#2457729",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2457729"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-35469",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-35469"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-35469",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-35469"
}
],
"release_date": "2026-04-13T23:59:59+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T15:52:29+00:00",
"details": "See the following documentation for details on how to enable Red Hat Edge Manager and more: https://docs.redhat.com/en/documentation/red_hat_edge_manager/1.0",
"product_ids": [
"9Base-RHEM-1.0:flightctl-0:1.0.3-1.el9em.src",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-selinux-0:1.0.3-1.el9em.noarch"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36796"
},
{
"category": "workaround",
"details": "To mitigate this issue, review and restrict the assignment of Kubernetes cluster roles `pods/portforward (create)`, `pods/exec (create)`, `pods/attach (create)`, and `nodes/proxy (get/create)` to untrusted users or service accounts. Ensure that only authorized and necessary entities possess these permissions. Modifying RBAC policies can impact the functionality of applications and services that rely on these permissions; careful testing is recommended.",
"product_ids": [
"9Base-RHEM-1.0:flightctl-0:1.0.3-1.el9em.src",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-selinux-0:1.0.3-1.el9em.noarch",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"9Base-RHEM-1.0:flightctl-0:1.0.3-1.el9em.src",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-selinux-0:1.0.3-1.el9em.noarch",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "Kubelet: CRI-O: kube-apiserver: Kubelet, CRI-O, kube-apiserver: Denial of Service via SPDY streaming code"
},
{
"cve": "CVE-2026-39821",
"cwe": {
"id": "CWE-1289",
"name": "Improper Validation of Unsafe Equivalence in Input"
},
"discovery_date": "2026-05-22T16:00:52.844126+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.x86_64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2480756"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in golang.org/x/net/idna. ToASCII and ToUnicode incorrectly accept Punycode-encoded labels that decode to an ASCII-only hostname (for example, xn--example-.com returns example.com instead of an error). Applications that validate the ASCII form then convert to Unicode may grant access to a restricted hostname the ASCII check would have rejected.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang.org/x/net/idna: golang: golang.org/x/net/idna: Privilege escalation via incorrect Punycode label processing",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "golang.org/x/net/idna is vulnerable to privilege escalation through incorrect Punycode label handling in ToASCII and ToUnicode. An attacker who can supply a Punycode hostname that passes an ASCII-only authorization check may have it normalized to a restricted ASCII name the application intended to block. Red Hat exposure is broad across products shipping the Go toolchain or bundling golang.org/x/net, including RHEL and RHEL-AI golang RPMs, hummingbird Go runtimes, OpenShift and ODF container builds, and Ceph/OpenShift components compiled against affected x/net versions.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHEM-1.0:flightctl-0:1.0.3-1.el9em.src",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-selinux-0:1.0.3-1.el9em.noarch"
],
"known_not_affected": [
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-39821"
},
{
"category": "external",
"summary": "RHBZ#2480756",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2480756"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-39821",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-39821"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-39821",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-39821"
},
{
"category": "external",
"summary": "https://go.dev/cl/767220",
"url": "https://go.dev/cl/767220"
},
{
"category": "external",
"summary": "https://go.dev/issue/78760",
"url": "https://go.dev/issue/78760"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/iI-mYSI0lu8",
"url": "https://groups.google.com/g/golang-announce/c/iI-mYSI0lu8"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-5026",
"url": "https://pkg.go.dev/vuln/GO-2026-5026"
}
],
"release_date": "2026-05-22T15:01:21.462000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T15:52:29+00:00",
"details": "See the following documentation for details on how to enable Red Hat Edge Manager and more: https://docs.redhat.com/en/documentation/red_hat_edge_manager/1.0",
"product_ids": [
"9Base-RHEM-1.0:flightctl-0:1.0.3-1.el9em.src",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-selinux-0:1.0.3-1.el9em.noarch"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36796"
},
{
"category": "workaround",
"details": "Upgrade to a fixed golang.org/x/net release that includes the idna correction, via updated golang or dependent package rebuilds.",
"product_ids": [
"9Base-RHEM-1.0:flightctl-0:1.0.3-1.el9em.src",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-selinux-0:1.0.3-1.el9em.noarch",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 8.2,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"9Base-RHEM-1.0:flightctl-0:1.0.3-1.el9em.src",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-selinux-0:1.0.3-1.el9em.noarch",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang.org/x/net/idna: golang: golang.org/x/net/idna: Privilege escalation via incorrect Punycode label processing"
},
{
"cve": "CVE-2026-39828",
"cwe": {
"id": "CWE-281",
"name": "Improper Preservation of Permissions"
},
"discovery_date": "2026-05-22T04:01:46.775641+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.x86_64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2480687"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in golang.org/x/crypto/ssh. A remote attacker could exploit this vulnerability when an SSH server authentication callback returned a PartialSuccessError with non-nil permissions. This flaw caused these permissions to be silently discarded, potentially bypassing certificate restrictions, such as a force-command, after a second authentication factor succeeded. This could lead to unauthorized command execution or access.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang.org/x/crypto/ssh: golang.org/x/crypto/ssh: Unauthorized command execution via discarded SSH permissions",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This is an Important security flaw in the `golang.org/x/crypto/ssh` library. When an SSH server utilizing this library is configured with specific authentication callbacks that return a `PartialSuccessError` with non-nil permissions, an attacker could bypass intended certificate restrictions, such as `force-command`. This bypass could lead to unauthorized command execution or access on affected Red Hat systems configured with multi-factor authentication and certificate-based access controls.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHEM-1.0:flightctl-0:1.0.3-1.el9em.src",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-selinux-0:1.0.3-1.el9em.noarch"
],
"known_not_affected": [
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-39828"
},
{
"category": "external",
"summary": "RHBZ#2480687",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2480687"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-39828",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-39828"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-39828",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-39828"
},
{
"category": "external",
"summary": "https://go.dev/cl/781621",
"url": "https://go.dev/cl/781621"
},
{
"category": "external",
"summary": "https://go.dev/issue/79562",
"url": "https://go.dev/issue/79562"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/a082jnz-LvI",
"url": "https://groups.google.com/g/golang-announce/c/a082jnz-LvI"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-5014",
"url": "https://pkg.go.dev/vuln/GO-2026-5014"
}
],
"release_date": "2026-05-22T02:31:26.883000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T15:52:29+00:00",
"details": "See the following documentation for details on how to enable Red Hat Edge Manager and more: https://docs.redhat.com/en/documentation/red_hat_edge_manager/1.0",
"product_ids": [
"9Base-RHEM-1.0:flightctl-0:1.0.3-1.el9em.src",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-selinux-0:1.0.3-1.el9em.noarch"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36796"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability.",
"product_ids": [
"9Base-RHEM-1.0:flightctl-0:1.0.3-1.el9em.src",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-selinux-0:1.0.3-1.el9em.noarch",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"9Base-RHEM-1.0:flightctl-0:1.0.3-1.el9em.src",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-selinux-0:1.0.3-1.el9em.noarch",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang.org/x/crypto/ssh: golang.org/x/crypto/ssh: Unauthorized command execution via discarded SSH permissions"
},
{
"cve": "CVE-2026-39829",
"cwe": {
"id": "CWE-1284",
"name": "Improper Validation of Specified Quantity in Input"
},
"discovery_date": "2026-05-22T04:01:30.092249+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.x86_64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2480681"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in golang.org/x/crypto/ssh. The RSA and DSA public key parsers in the affected component did not enforce size limits on key parameters. This vulnerability allows an unauthenticated client to provide a crafted public key with an excessively large modulus or DSA parameter during public key authentication. Successful exploitation could lead to a denial of service (DoS) due to prolonged CPU consumption during signature verification.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang.org/x/crypto/ssh: golang.org/x/crypto/ssh: Denial of Service via crafted public key with excessive parameters",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability in golang.org/x/crypto/ssh is rated as Important. An unauthenticated remote attacker could trigger a denial of service by providing a specially crafted public key with excessively large parameters during SSH public key authentication. This could lead to prolonged CPU consumption on the server, impacting service availability.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHEM-1.0:flightctl-0:1.0.3-1.el9em.src",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-selinux-0:1.0.3-1.el9em.noarch"
],
"known_not_affected": [
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-39829"
},
{
"category": "external",
"summary": "RHBZ#2480681",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2480681"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-39829",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-39829"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-39829",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-39829"
},
{
"category": "external",
"summary": "https://go.dev/cl/781641",
"url": "https://go.dev/cl/781641"
},
{
"category": "external",
"summary": "https://go.dev/cl/781661",
"url": "https://go.dev/cl/781661"
},
{
"category": "external",
"summary": "https://go.dev/issue/79565",
"url": "https://go.dev/issue/79565"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/a082jnz-LvI",
"url": "https://groups.google.com/g/golang-announce/c/a082jnz-LvI"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-5018",
"url": "https://pkg.go.dev/vuln/GO-2026-5018"
}
],
"release_date": "2026-05-22T02:31:27.324000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T15:52:29+00:00",
"details": "See the following documentation for details on how to enable Red Hat Edge Manager and more: https://docs.redhat.com/en/documentation/red_hat_edge_manager/1.0",
"product_ids": [
"9Base-RHEM-1.0:flightctl-0:1.0.3-1.el9em.src",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-selinux-0:1.0.3-1.el9em.noarch"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36796"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability.",
"product_ids": [
"9Base-RHEM-1.0:flightctl-0:1.0.3-1.el9em.src",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-selinux-0:1.0.3-1.el9em.noarch",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"9Base-RHEM-1.0:flightctl-0:1.0.3-1.el9em.src",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-selinux-0:1.0.3-1.el9em.noarch",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang.org/x/crypto/ssh: golang.org/x/crypto/ssh: Denial of Service via crafted public key with excessive parameters"
},
{
"cve": "CVE-2026-39830",
"cwe": {
"id": "CWE-772",
"name": "Missing Release of Resource after Effective Lifetime"
},
"discovery_date": "2026-05-22T04:01:38.517202+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.x86_64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2480684"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in golang.org/x/crypto/ssh. A remote malicious SSH peer can exploit this by sending unsolicited global request responses, which fills an internal buffer and blocks the connection\u0027s read loop. This prevents the associated resources from being released, leading to a resource leak per connection. The consequence is a Denial of Service (DoS) for the affected system.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang.org/x/crypto/ssh: golang.org/x/crypto/ssh: Denial of Service via resource leak from unsolicited SSH responses",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This is an Important denial of service flaw in `golang.org/x/crypto/ssh`. A remote, unauthenticated attacker can exploit this vulnerability by sending unsolicited global request responses to an affected SSH server, leading to resource exhaustion and a denial of service. The impact is considered Important due to the potential for unauthenticated remote disruption of services utilizing the vulnerable SSH library.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHEM-1.0:flightctl-0:1.0.3-1.el9em.src",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-selinux-0:1.0.3-1.el9em.noarch"
],
"known_not_affected": [
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-39830"
},
{
"category": "external",
"summary": "RHBZ#2480684",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2480684"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-39830",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-39830"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-39830",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-39830"
},
{
"category": "external",
"summary": "https://go.dev/cl/781640",
"url": "https://go.dev/cl/781640"
},
{
"category": "external",
"summary": "https://go.dev/cl/781664",
"url": "https://go.dev/cl/781664"
},
{
"category": "external",
"summary": "https://go.dev/issue/79564",
"url": "https://go.dev/issue/79564"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/a082jnz-LvI",
"url": "https://groups.google.com/g/golang-announce/c/a082jnz-LvI"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-5017",
"url": "https://pkg.go.dev/vuln/GO-2026-5017"
}
],
"release_date": "2026-05-22T02:31:27.208000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T15:52:29+00:00",
"details": "See the following documentation for details on how to enable Red Hat Edge Manager and more: https://docs.redhat.com/en/documentation/red_hat_edge_manager/1.0",
"product_ids": [
"9Base-RHEM-1.0:flightctl-0:1.0.3-1.el9em.src",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-selinux-0:1.0.3-1.el9em.noarch"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36796"
},
{
"category": "workaround",
"details": "To mitigate this denial of service vulnerability, restrict network access to any service that utilizes the `golang.org/x/crypto/ssh` library and is exposed to untrusted networks. Implement firewall rules to allow connections only from trusted hosts or networks. This action limits the ability of malicious peers to send unsolicited global request responses. A restart of the affected service may be necessary for the new network rules to be applied effectively.",
"product_ids": [
"9Base-RHEM-1.0:flightctl-0:1.0.3-1.el9em.src",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-selinux-0:1.0.3-1.el9em.noarch",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"9Base-RHEM-1.0:flightctl-0:1.0.3-1.el9em.src",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-selinux-0:1.0.3-1.el9em.noarch",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang.org/x/crypto/ssh: golang.org/x/crypto/ssh: Denial of Service via resource leak from unsolicited SSH responses"
},
{
"cve": "CVE-2026-39832",
"cwe": {
"id": "CWE-281",
"name": "Improper Preservation of Permissions"
},
"discovery_date": "2026-05-22T04:01:41.402561+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.x86_64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2480685"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in golang.org/x/crypto/ssh/agent. When a key was added to a remote agent, security restrictions, known as constraint extensions, were not properly processed during the request. This allowed these restrictions to be silently removed when keys were forwarded, leading to the unrestricted use of the key on the remote host. This vulnerability could enable an attacker to bypass intended security controls and perform unauthorized actions.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang.org/x/crypto/ssh/agent: golang.org/x/crypto/ssh/agent: Security bypass due to improper handling of key restrictions",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This Important vulnerability in `golang.org/x/crypto/ssh/agent` allows for a security bypass when SSH keys with destination restrictions are forwarded via an SSH agent. This flaw could lead to unintended exposure of SSH keys, enabling an attacker to use the forwarded key without the specified restrictions on remote hosts. Red Hat products utilizing `golang.org/x/crypto/ssh/agent` for key forwarding may be affected if users rely on constraint extensions for limiting key usage.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHEM-1.0:flightctl-0:1.0.3-1.el9em.src",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-selinux-0:1.0.3-1.el9em.noarch"
],
"known_not_affected": [
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-39832"
},
{
"category": "external",
"summary": "RHBZ#2480685",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2480685"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-39832",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-39832"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-39832",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-39832"
},
{
"category": "external",
"summary": "https://go.dev/cl/778642",
"url": "https://go.dev/cl/778642"
},
{
"category": "external",
"summary": "https://go.dev/issue/79435",
"url": "https://go.dev/issue/79435"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/a082jnz-LvI",
"url": "https://groups.google.com/g/golang-announce/c/a082jnz-LvI"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-5006",
"url": "https://pkg.go.dev/vuln/GO-2026-5006"
}
],
"release_date": "2026-05-22T02:31:26.660000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T15:52:29+00:00",
"details": "See the following documentation for details on how to enable Red Hat Edge Manager and more: https://docs.redhat.com/en/documentation/red_hat_edge_manager/1.0",
"product_ids": [
"9Base-RHEM-1.0:flightctl-0:1.0.3-1.el9em.src",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-selinux-0:1.0.3-1.el9em.noarch"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36796"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability.",
"product_ids": [
"9Base-RHEM-1.0:flightctl-0:1.0.3-1.el9em.src",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-selinux-0:1.0.3-1.el9em.noarch",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 8.7,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "CHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"9Base-RHEM-1.0:flightctl-0:1.0.3-1.el9em.src",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-selinux-0:1.0.3-1.el9em.noarch",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang.org/x/crypto/ssh/agent: golang.org/x/crypto/ssh/agent: Security bypass due to improper handling of key restrictions"
},
{
"cve": "CVE-2026-39835",
"cwe": {
"id": "CWE-476",
"name": "NULL Pointer Dereference"
},
"discovery_date": "2026-05-22T04:01:27.279943+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.x86_64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2480680"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in golang.org/x/crypto/ssh. SSH servers configured to use CertChecker as a public key callback, without explicitly setting IsUserAuthority or IsHostAuthority, are vulnerable. A remote attacker can exploit this by presenting a specially crafted certificate, causing the server to panic and resulting in a Denial of Service (DoS).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang.org/x/crypto/ssh: golang: golang.org/x/crypto/ssh: Denial of Service via crafted SSH certificate",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This is an Important denial of service flaw in `golang.org/x/crypto/ssh` affecting SSH servers that utilize `CertChecker` as a public key callback without explicitly configuring `IsUserAuthority` or `IsHostAuthority`. A remote, unauthenticated attacker can trigger a server panic by presenting a specially crafted certificate, leading to service disruption. Exploitation requires a specific, non-default configuration of the `CertChecker`.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHEM-1.0:flightctl-0:1.0.3-1.el9em.src",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-selinux-0:1.0.3-1.el9em.noarch"
],
"known_not_affected": [
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-39835"
},
{
"category": "external",
"summary": "RHBZ#2480680",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2480680"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-39835",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-39835"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-39835",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-39835"
},
{
"category": "external",
"summary": "https://go.dev/cl/781660",
"url": "https://go.dev/cl/781660"
},
{
"category": "external",
"summary": "https://go.dev/issue/79563",
"url": "https://go.dev/issue/79563"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/a082jnz-LvI",
"url": "https://groups.google.com/g/golang-announce/c/a082jnz-LvI"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-5015",
"url": "https://pkg.go.dev/vuln/GO-2026-5015"
}
],
"release_date": "2026-05-22T02:31:26.982000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T15:52:29+00:00",
"details": "See the following documentation for details on how to enable Red Hat Edge Manager and more: https://docs.redhat.com/en/documentation/red_hat_edge_manager/1.0",
"product_ids": [
"9Base-RHEM-1.0:flightctl-0:1.0.3-1.el9em.src",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-selinux-0:1.0.3-1.el9em.noarch"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36796"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability.",
"product_ids": [
"9Base-RHEM-1.0:flightctl-0:1.0.3-1.el9em.src",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-selinux-0:1.0.3-1.el9em.noarch",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"9Base-RHEM-1.0:flightctl-0:1.0.3-1.el9em.src",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-selinux-0:1.0.3-1.el9em.noarch",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang.org/x/crypto/ssh: golang: golang.org/x/crypto/ssh: Denial of Service via crafted SSH certificate"
},
{
"cve": "CVE-2026-42151",
"cwe": {
"id": "CWE-256",
"name": "Plaintext Storage of a Password"
},
"discovery_date": "2026-05-04T19:02:26.983660+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.x86_64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2466507"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Prometheus, an open-source monitoring system. The `client_secret` field within the Azure Active Directory (AD) remote write OAuth configuration was incorrectly handled as a plain string instead of a secure Secret type. This misconfiguration allowed any user or process with access to the `/-/config` HTTP API endpoint to view the Azure OAuth client secret in plaintext. This vulnerability leads to information disclosure, potentially compromising the security of integrated Azure AD services.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "github.com/prometheus/prometheus: Prometheus: Information disclosure of Azure OAuth client secret via config API",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This Important information disclosure flaw in Prometheus affects instances configured to use Azure AD remote write with OAuth authentication. The client secret, intended to be a secure credential, is exposed in plaintext through the `/-/config` HTTP API endpoint. This could allow an attacker with access to this endpoint to retrieve the secret, potentially compromising integrated Azure AD services.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHEM-1.0:flightctl-0:1.0.3-1.el9em.src",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-selinux-0:1.0.3-1.el9em.noarch"
],
"known_not_affected": [
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-42151"
},
{
"category": "external",
"summary": "RHBZ#2466507",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2466507"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-42151",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-42151"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-42151",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-42151"
},
{
"category": "external",
"summary": "https://github.com/prometheus/prometheus/pull/18587",
"url": "https://github.com/prometheus/prometheus/pull/18587"
},
{
"category": "external",
"summary": "https://github.com/prometheus/prometheus/pull/18590",
"url": "https://github.com/prometheus/prometheus/pull/18590"
},
{
"category": "external",
"summary": "https://github.com/prometheus/prometheus/releases/tag/v3.11.3",
"url": "https://github.com/prometheus/prometheus/releases/tag/v3.11.3"
},
{
"category": "external",
"summary": "https://github.com/prometheus/prometheus/releases/tag/v3.5.3",
"url": "https://github.com/prometheus/prometheus/releases/tag/v3.5.3"
},
{
"category": "external",
"summary": "https://github.com/prometheus/prometheus/security/advisories/GHSA-wg65-39gg-5wfj",
"url": "https://github.com/prometheus/prometheus/security/advisories/GHSA-wg65-39gg-5wfj"
}
],
"release_date": "2026-05-04T18:12:16.917000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T15:52:29+00:00",
"details": "See the following documentation for details on how to enable Red Hat Edge Manager and more: https://docs.redhat.com/en/documentation/red_hat_edge_manager/1.0",
"product_ids": [
"9Base-RHEM-1.0:flightctl-0:1.0.3-1.el9em.src",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-selinux-0:1.0.3-1.el9em.noarch"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36796"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"9Base-RHEM-1.0:flightctl-0:1.0.3-1.el9em.src",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-selinux-0:1.0.3-1.el9em.noarch",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "github.com/prometheus/prometheus: Prometheus: Information disclosure of Azure OAuth client secret via config API"
},
{
"cve": "CVE-2026-42154",
"cwe": {
"id": "CWE-770",
"name": "Allocation of Resources Without Limits or Throttling"
},
"discovery_date": "2026-05-04T19:02:19.626646+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.x86_64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2466505"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Prometheus. An unauthenticated attacker can exploit the remote read endpoint (`/api/v1/read`) by sending a specially crafted, small snappy-compressed payload. This payload causes a disproportionately large memory allocation, leading to memory exhaustion and a Denial of Service (DoS) by crashing the Prometheus process.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "github.com/prometheus/prometheus: Prometheus: Denial of Service via uncontrolled memory allocation in remote read endpoint",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This is an Important denial of service vulnerability in Prometheus, allowing an unauthenticated remote attacker to crash the Prometheus process. This could lead to service unavailability in Red Hat products that deploy Prometheus for monitoring, as the remote read endpoint does not properly validate snappy-compressed request lengths.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHEM-1.0:flightctl-0:1.0.3-1.el9em.src",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-selinux-0:1.0.3-1.el9em.noarch"
],
"known_not_affected": [
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-42154"
},
{
"category": "external",
"summary": "RHBZ#2466505",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2466505"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-42154",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-42154"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-42154",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-42154"
},
{
"category": "external",
"summary": "https://github.com/prometheus/prometheus/pull/18584",
"url": "https://github.com/prometheus/prometheus/pull/18584"
},
{
"category": "external",
"summary": "https://github.com/prometheus/prometheus/pull/18585",
"url": "https://github.com/prometheus/prometheus/pull/18585"
},
{
"category": "external",
"summary": "https://github.com/prometheus/prometheus/releases/tag/v3.11.3",
"url": "https://github.com/prometheus/prometheus/releases/tag/v3.11.3"
},
{
"category": "external",
"summary": "https://github.com/prometheus/prometheus/releases/tag/v3.5.3",
"url": "https://github.com/prometheus/prometheus/releases/tag/v3.5.3"
},
{
"category": "external",
"summary": "https://github.com/prometheus/prometheus/security/advisories/GHSA-8rm2-7qqf-34qm",
"url": "https://github.com/prometheus/prometheus/security/advisories/GHSA-8rm2-7qqf-34qm"
}
],
"release_date": "2026-05-04T18:13:12.340000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T15:52:29+00:00",
"details": "See the following documentation for details on how to enable Red Hat Edge Manager and more: https://docs.redhat.com/en/documentation/red_hat_edge_manager/1.0",
"product_ids": [
"9Base-RHEM-1.0:flightctl-0:1.0.3-1.el9em.src",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-selinux-0:1.0.3-1.el9em.noarch"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36796"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"9Base-RHEM-1.0:flightctl-0:1.0.3-1.el9em.src",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-selinux-0:1.0.3-1.el9em.noarch",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "github.com/prometheus/prometheus: Prometheus: Denial of Service via uncontrolled memory allocation in remote read endpoint"
},
{
"cve": "CVE-2026-42508",
"cwe": {
"id": "CWE-295",
"name": "Improper Certificate Validation"
},
"discovery_date": "2026-05-22T04:01:49.515058+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.x86_64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2480688"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in golang.org/x/crypto/ssh/knownhosts. This vulnerability occurs because the system did not correctly check for the revocation status of a SignatureKey belonging to a Certificate Authority (CA). A remote attacker could potentially exploit this by presenting a revoked key, leading to the system accepting it as valid. This could allow an attacker to bypass security checks and potentially gain unauthorized access or spoof legitimate entities.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang.org/x/crypto/ssh/knownhosts: golang: golang.org/x/crypto/ssh/knownhosts: Revocation bypass via unchecked SignatureKey",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Important: A flaw in `golang.org/x/crypto/ssh/knownhosts` allows a remote attacker to bypass security checks. This vulnerability arises because the system fails to properly verify the revocation status of a Certificate Authority (CA) `SignatureKey`. In Red Hat environments, this could enable an attacker to present a revoked key, leading to its acceptance as valid and potentially granting unauthorized access or facilitating the spoofing of legitimate entities.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHEM-1.0:flightctl-0:1.0.3-1.el9em.src",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-selinux-0:1.0.3-1.el9em.noarch"
],
"known_not_affected": [
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-42508"
},
{
"category": "external",
"summary": "RHBZ#2480688",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2480688"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-42508",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-42508"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-42508",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-42508"
},
{
"category": "external",
"summary": "https://go.dev/cl/781220",
"url": "https://go.dev/cl/781220"
},
{
"category": "external",
"summary": "https://go.dev/issue/79568",
"url": "https://go.dev/issue/79568"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/a082jnz-LvI",
"url": "https://groups.google.com/g/golang-announce/c/a082jnz-LvI"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-5021",
"url": "https://pkg.go.dev/vuln/GO-2026-5021"
}
],
"release_date": "2026-05-22T02:31:27.644000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T15:52:29+00:00",
"details": "See the following documentation for details on how to enable Red Hat Edge Manager and more: https://docs.redhat.com/en/documentation/red_hat_edge_manager/1.0",
"product_ids": [
"9Base-RHEM-1.0:flightctl-0:1.0.3-1.el9em.src",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-selinux-0:1.0.3-1.el9em.noarch"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36796"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.4,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"9Base-RHEM-1.0:flightctl-0:1.0.3-1.el9em.src",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-selinux-0:1.0.3-1.el9em.noarch",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang.org/x/crypto/ssh/knownhosts: golang: golang.org/x/crypto/ssh/knownhosts: Revocation bypass via unchecked SignatureKey"
},
{
"cve": "CVE-2026-46595",
"cwe": {
"id": "CWE-303",
"name": "Incorrect Implementation of Authentication Algorithm"
},
"discovery_date": "2026-05-22T04:01:52.215134+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.x86_64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2480689"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in golang.org/x/crypto/ssh. Source-address validation can be skipped when an SSH server configuration uses an authentication callback type other than public key, allowing authorization bypass in misconfigured servers. This is a follow-on to incomplete coverage from the CVE-2024-45337 fix.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang.org/x/crypto/ssh: golang.org/x/crypto/ssh: Authorization bypass due to skipped source-address validation",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "golang.org/x/crypto/ssh is vulnerable to authorization bypass when SSH server configurations rely on source-address validation alongside non-public-key authentication callbacks. An attacker with low privileges who can authenticate through such a callback path may bypass intended source-address restrictions and gain unauthorized SSH access. Red Hat impact sits in services built with affected x/crypto/ssh, including RHEL golang streams, hummingbird Go toolchains, RHACM/MCE agents, and OpenShift or Ceph components that embed Go SSH servers with mixed callback types.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHEM-1.0:flightctl-0:1.0.3-1.el9em.src",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-selinux-0:1.0.3-1.el9em.noarch"
],
"known_not_affected": [
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-46595"
},
{
"category": "external",
"summary": "RHBZ#2480689",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2480689"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-46595",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-46595"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-46595",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-46595"
},
{
"category": "external",
"summary": "https://go.dev/cl/781642",
"url": "https://go.dev/cl/781642"
},
{
"category": "external",
"summary": "https://go.dev/issue/79570",
"url": "https://go.dev/issue/79570"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/a082jnz-LvI",
"url": "https://groups.google.com/g/golang-announce/c/a082jnz-LvI"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-5023",
"url": "https://pkg.go.dev/vuln/GO-2026-5023"
}
],
"release_date": "2026-05-22T02:31:27.894000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T15:52:29+00:00",
"details": "See the following documentation for details on how to enable Red Hat Edge Manager and more: https://docs.redhat.com/en/documentation/red_hat_edge_manager/1.0",
"product_ids": [
"9Base-RHEM-1.0:flightctl-0:1.0.3-1.el9em.src",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-selinux-0:1.0.3-1.el9em.noarch"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36796"
},
{
"category": "workaround",
"details": "Upgrade to a fixed golang.org/x/crypto/ssh release via updated golang or package rebuilds. Ensure SSH servers use supported public-key callback configurations with source-address validation as intended.",
"product_ids": [
"9Base-RHEM-1.0:flightctl-0:1.0.3-1.el9em.src",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-selinux-0:1.0.3-1.el9em.noarch",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 7.1,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:L",
"version": "3.1"
},
"products": [
"9Base-RHEM-1.0:flightctl-0:1.0.3-1.el9em.src",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-selinux-0:1.0.3-1.el9em.noarch",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang.org/x/crypto/ssh: golang.org/x/crypto/ssh: Authorization bypass due to skipped source-address validation"
}
]
}
RHSA-2026:36797
Vulnerability from csaf_redhat - Published: 2026-07-08 15:46 - Updated: 2026-07-10 19:40A flaw was found in the `crypto/x509` package of `golang`. This vulnerability allows a remote attacker to cause a Denial of Service (DoS) by presenting a specially crafted X.509 certificate with a large number of DNS Subject Alternative Name (SAN) entries. The certificate verification process, specifically the `VerifyHostname` function, incurs excessive computational overhead due to repeated string operations when processing these entries. This can lead to a significant performance degradation or unresponsiveness of systems validating such certificates.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_darwin | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_windows | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64_darwin | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@s390x | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_windows | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_windows | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_windows | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_windows | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_windows | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_windows | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:tuftool-cli-stack-v1-4@amd64 | — |
Workaround
|
A flaw was found in the `net` package of Go (golang), specifically when using the `LookupCNAME` function with the `cgo` DNS resolver. A remote attacker could exploit this by providing a very long Canonical Name (CNAME) response. This can trigger a double-free of C memory, leading to a crash and a Denial of Service (DoS) for the affected application.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_darwin | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_windows | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64_darwin | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@s390x | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_windows | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_windows | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_windows | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_windows | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_windows | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_windows | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:tuftool-cli-stack-v1-4@amd64 | — |
Workaround
|
A flaw was found in the `net/mail` package of the Go programming language. An attacker could provide specially crafted inputs to the `ParseAddress`, `ParseAddressList`, or `ParseDate` functions. This could lead to excessive consumption of CPU and memory resources, resulting in a Denial of Service (DoS) for applications processing these inputs.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_darwin | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_windows | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64_darwin | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@s390x | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_windows | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_windows | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_windows | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_windows | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_windows | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_windows | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:tuftool-cli-stack-v1-4@amd64 | — |
Workaround
|
A flaw was found in golang.org/x/net/idna. ToASCII and ToUnicode incorrectly accept Punycode-encoded labels that decode to an ASCII-only hostname (for example, xn--example-.com returns example.com instead of an error). Applications that validate the ASCII form then convert to Unicode may grant access to a restricted hostname the ASCII check would have rejected.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_darwin | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_windows | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64_darwin | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@s390x | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_windows | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_windows | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_windows | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_windows | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_windows | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_windows | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:tuftool-cli-stack-v1-4@amd64 | — |
Workaround
|
A flaw was found in golang.org/x/crypto/ssh. A remote attacker could exploit this vulnerability when an SSH server authentication callback returned a PartialSuccessError with non-nil permissions. This flaw caused these permissions to be silently discarded, potentially bypassing certificate restrictions, such as a force-command, after a second authentication factor succeeded. This could lead to unauthorized command execution or access.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_darwin | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_windows | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64_darwin | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@s390x | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_windows | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_windows | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_windows | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_windows | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_windows | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_windows | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:tuftool-cli-stack-v1-4@amd64 | — |
Workaround
|
A flaw was found in golang.org/x/crypto/ssh. The RSA and DSA public key parsers in the affected component did not enforce size limits on key parameters. This vulnerability allows an unauthenticated client to provide a crafted public key with an excessively large modulus or DSA parameter during public key authentication. Successful exploitation could lead to a denial of service (DoS) due to prolonged CPU consumption during signature verification.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_darwin | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_windows | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64_darwin | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@s390x | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_windows | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_windows | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_windows | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_windows | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_windows | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_windows | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:tuftool-cli-stack-v1-4@amd64 | — |
Workaround
|
A flaw was found in golang.org/x/crypto/ssh. A remote malicious SSH peer can exploit this by sending unsolicited global request responses, which fills an internal buffer and blocks the connection's read loop. This prevents the associated resources from being released, leading to a resource leak per connection. The consequence is a Denial of Service (DoS) for the affected system.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_darwin | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_windows | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64_darwin | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@s390x | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_windows | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_windows | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_windows | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_windows | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_windows | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_windows | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:tuftool-cli-stack-v1-4@amd64 | — |
Workaround
|
A flaw was found in golang.org/x/crypto/ssh/agent. When a key was added to a remote agent, security restrictions, known as constraint extensions, were not properly processed during the request. This allowed these restrictions to be silently removed when keys were forwarded, leading to the unrestricted use of the key on the remote host. This vulnerability could enable an attacker to bypass intended security controls and perform unauthorized actions.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_darwin | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_windows | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64_darwin | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@s390x | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_windows | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_windows | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_windows | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_windows | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_windows | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_windows | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:tuftool-cli-stack-v1-4@amd64 | — |
Workaround
|
A flaw was found in golang.org/x/crypto/ssh/agent. The NewKeyring() function, which creates an in-memory keyring, failed to enforce the ConfirmBeforeUse constraint on keys. This allowed keys configured to require user confirmation before use to perform signing operations without any prompt or indication to the user. Consequently, an attacker could potentially bypass intended security controls, leading to unauthorized cryptographic signing actions.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_darwin | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_windows | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64_darwin | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@s390x | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_windows | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_windows | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_windows | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_windows | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_windows | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_windows | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:tuftool-cli-stack-v1-4@amd64 | — |
Workaround
|
A flaw was found in golang.org/x/crypto/ssh. SSH servers configured to use CertChecker as a public key callback, without explicitly setting IsUserAuthority or IsHostAuthority, are vulnerable. A remote attacker can exploit this by presenting a specially crafted certificate, causing the server to panic and resulting in a Denial of Service (DoS).
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_darwin | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_windows | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64_darwin | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@s390x | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_windows | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_windows | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_windows | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_windows | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_windows | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_windows | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:tuftool-cli-stack-v1-4@amd64 | — |
Workaround
|
A flaw was found in Prometheus, an open-source monitoring system. The `client_secret` field within the Azure Active Directory (AD) remote write OAuth configuration was incorrectly handled as a plain string instead of a secure Secret type. This misconfiguration allowed any user or process with access to the `/-/config` HTTP API endpoint to view the Azure OAuth client secret in plaintext. This vulnerability leads to information disclosure, potentially compromising the security of integrated Azure AD services.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_darwin | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_windows | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64_darwin | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@s390x | — |
Vendor Fix
fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64 | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_darwin | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_windows | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64 | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64_darwin | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@ppc64le | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@s390x | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64 | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_darwin | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_windows | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64 | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64_darwin | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@ppc64le | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@s390x | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64 | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_darwin | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_windows | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64 | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64_darwin | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@ppc64le | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@s390x | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64 | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_darwin | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_windows | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64 | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64_darwin | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@ppc64le | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@s390x | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64 | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_darwin | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_windows | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64 | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64_darwin | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@ppc64le | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@s390x | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64 | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_darwin | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_windows | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64 | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64_darwin | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@ppc64le | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@s390x | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:tuftool-cli-stack-v1-4@amd64 | — |
A flaw was found in the `net/mail` package within the Go standard library. A remote attacker could provide specially crafted, pathological email addresses. When these malformed email addresses are parsed by the `consumePhrase` function, it can lead to excessive resource consumption due to quadratic string concatenation, resulting in a Denial of Service (DoS) condition.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_darwin | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_windows | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64_darwin | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@s390x | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_windows | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_windows | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_windows | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_windows | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_windows | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_windows | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:tuftool-cli-stack-v1-4@amd64 | — |
Workaround
|
A flaw was found in golang.org/x/crypto/ssh/knownhosts. This vulnerability occurs because the system did not correctly check for the revocation status of a SignatureKey belonging to a Certificate Authority (CA). A remote attacker could potentially exploit this by presenting a revoked key, leading to the system accepting it as valid. This could allow an attacker to bypass security checks and potentially gain unauthorized access or spoof legitimate entities.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_darwin | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_windows | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64_darwin | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@s390x | — |
Vendor Fix
fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64 | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_darwin | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_windows | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64 | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64_darwin | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@ppc64le | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@s390x | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64 | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_darwin | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_windows | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64 | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64_darwin | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@ppc64le | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@s390x | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64 | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_darwin | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_windows | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64 | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64_darwin | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@ppc64le | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@s390x | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64 | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_darwin | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_windows | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64 | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64_darwin | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@ppc64le | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@s390x | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64 | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_darwin | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_windows | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64 | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64_darwin | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@ppc64le | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@s390x | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64 | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_darwin | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_windows | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64 | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64_darwin | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@ppc64le | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@s390x | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:tuftool-cli-stack-v1-4@amd64 | — |
A flaw was found in golang.org/x/crypto/ssh. Source-address validation can be skipped when an SSH server configuration uses an authentication callback type other than public key, allowing authorization bypass in misconfigured servers. This is a follow-on to incomplete coverage from the CVE-2024-45337 fix.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_darwin | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_windows | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64_darwin | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@s390x | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_windows | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_windows | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_windows | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_windows | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_windows | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_windows | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:tuftool-cli-stack-v1-4@amd64 | — |
Workaround
|
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "The 1.4.2 release of the RHTAS CLIs.\nFor more details please visit the product documentation at https://access.redhat.com/documentation/en-us/red_hat_trusted_artifact_signer/1.4",
"title": "Topic"
},
{
"category": "general",
"text": "The RHTAS CLI Stack images for RHTAS 1.4.2",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2026:36797",
"url": "https://access.redhat.com/errata/RHSA-2026:36797"
},
{
"category": "external",
"summary": "https://access.redhat.com/documentation/en-us/red_hat_trusted_artifact_signer/1.4",
"url": "https://access.redhat.com/documentation/en-us/red_hat_trusted_artifact_signer/1.4"
},
{
"category": "external",
"summary": "https://access.redhat.com/documentation/en-us/red_hat_trusted_artifact_signer/1.4/html-single/release_notes/index",
"url": "https://access.redhat.com/documentation/en-us/red_hat_trusted_artifact_signer/1.4/html-single/release_notes/index"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-27145",
"url": "https://access.redhat.com/security/cve/CVE-2026-27145"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-33811",
"url": "https://access.redhat.com/security/cve/CVE-2026-33811"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-39820",
"url": "https://access.redhat.com/security/cve/CVE-2026-39820"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-39821",
"url": "https://access.redhat.com/security/cve/CVE-2026-39821"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-39828",
"url": "https://access.redhat.com/security/cve/CVE-2026-39828"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-39829",
"url": "https://access.redhat.com/security/cve/CVE-2026-39829"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-39830",
"url": "https://access.redhat.com/security/cve/CVE-2026-39830"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-39832",
"url": "https://access.redhat.com/security/cve/CVE-2026-39832"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-39833",
"url": "https://access.redhat.com/security/cve/CVE-2026-39833"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-39835",
"url": "https://access.redhat.com/security/cve/CVE-2026-39835"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-42151",
"url": "https://access.redhat.com/security/cve/CVE-2026-42151"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-42499",
"url": "https://access.redhat.com/security/cve/CVE-2026-42499"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-42508",
"url": "https://access.redhat.com/security/cve/CVE-2026-42508"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-46595",
"url": "https://access.redhat.com/security/cve/CVE-2026-46595"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/",
"url": "https://access.redhat.com/security/updates/classification/"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2026/rhsa-2026_36797.json"
}
],
"title": "Red Hat Security Advisory: RHTAS 1.4.2 - CLI Stack Release",
"tracking": {
"current_release_date": "2026-07-10T19:40:47+00:00",
"generator": {
"date": "2026-07-10T19:40:47+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "5.3.2"
}
},
"id": "RHSA-2026:36797",
"initial_release_date": "2026-07-08T15:46:32+00:00",
"revision_history": [
{
"date": "2026-07-08T15:46:32+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2026-07-08T15:46:42+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2026-07-10T19:40:47+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Trusted Artifact Signer 1.4",
"product": {
"name": "Red Hat Trusted Artifact Signer 1.4",
"product_id": "Red Hat Trusted Artifact Signer 1.4",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:trusted_artifact_signer:1.4::el9"
}
}
}
],
"category": "product_family",
"name": "Red Hat Trusted Artifact Signer"
},
{
"branches": [
{
"category": "product_version",
"name": "conforma-cli-stack-v1-4@amd64_darwin",
"product": {
"name": "conforma-cli-stack-v1-4@amd64_darwin",
"product_id": "conforma-cli-stack-v1-4@amd64_darwin",
"product_identification_helper": {
"purl": "pkg:generic/conforma-cli-stack-v1-4@1.4.2?filename=ec_darwin_amd64.tar.gz\u0026checksum=sha256:0344b4e6a24947a5d5bb150114c457c99c7c1f4b987b7325c599103b2620f0b1\u0026download_url=https://developers.qa.redhat.com/products"
}
}
},
{
"category": "product_version",
"name": "cosign-cli-stack-v1-4@amd64_darwin",
"product": {
"name": "cosign-cli-stack-v1-4@amd64_darwin",
"product_id": "cosign-cli-stack-v1-4@amd64_darwin",
"product_identification_helper": {
"purl": "pkg:generic/cosign-cli-stack-v1-4@1.4.2?filename=cosign_darwin_amd64.tar.gz\u0026checksum=sha256:8eea0dd7273667cb6a00783550f90598569988533d1df3e9ead97062f52c3ad0\u0026download_url=https://developers.qa.redhat.com/products"
}
}
},
{
"category": "product_version",
"name": "fetch-tsa-certs-cli-stack-v1-4@amd64_darwin",
"product": {
"name": "fetch-tsa-certs-cli-stack-v1-4@amd64_darwin",
"product_id": "fetch-tsa-certs-cli-stack-v1-4@amd64_darwin",
"product_identification_helper": {
"purl": "pkg:generic/fetch-tsa-certs-cli-stack-v1-4@1.4.2?filename=fetch_tsa_certs_darwin_amd64.tar.gz\u0026checksum=sha256:cc3daa1b5f8a0154f2ede5fec3c9d9755f6f8bafd44aac6801f61d3788b0a852\u0026download_url=https://developers.qa.redhat.com/products"
}
}
},
{
"category": "product_version",
"name": "gitsign-cli-stack-v1-4@amd64_darwin",
"product": {
"name": "gitsign-cli-stack-v1-4@amd64_darwin",
"product_id": "gitsign-cli-stack-v1-4@amd64_darwin",
"product_identification_helper": {
"purl": "pkg:generic/gitsign-cli-stack-v1-4@1.4.2?filename=gitsign_cli_darwin_amd64.tar.gz\u0026checksum=sha256:40a44daf09563a272b303a57306fce013945da9e9267da5c0095ba30fe1ac954\u0026download_url=https://developers.qa.redhat.com/products"
}
}
},
{
"category": "product_version",
"name": "model-transparency-cli-stack-v1-4@amd64_darwin",
"product": {
"name": "model-transparency-cli-stack-v1-4@amd64_darwin",
"product_id": "model-transparency-cli-stack-v1-4@amd64_darwin",
"product_identification_helper": {
"purl": "pkg:generic/model-transparency-cli-stack-v1-4@1.4.2?filename=model_transparency_cli_darwin_amd64.tar.gz\u0026checksum=sha256:9d8083d8956c3a5b6af761879ae66699f09be16b5a2d46d0829f0369e722bbc3\u0026download_url=https://developers.qa.redhat.com/products"
}
}
},
{
"category": "product_version",
"name": "rekor-cli-stack-v1-4@amd64_darwin",
"product": {
"name": "rekor-cli-stack-v1-4@amd64_darwin",
"product_id": "rekor-cli-stack-v1-4@amd64_darwin",
"product_identification_helper": {
"purl": "pkg:generic/rekor-cli-stack-v1-4@1.4.2?filename=rekor_cli_darwin_amd64.tar.gz\u0026checksum=sha256:d026b169014317d85fc71bef3ca52fdf421b57248479413097853e47118de188\u0026download_url=https://developers.qa.redhat.com/products"
}
}
},
{
"category": "product_version",
"name": "trillian-cli-stack-v1-4@amd64_darwin",
"product": {
"name": "trillian-cli-stack-v1-4@amd64_darwin",
"product_id": "trillian-cli-stack-v1-4@amd64_darwin",
"product_identification_helper": {
"purl": "pkg:generic/trillian-cli-stack-v1-4@1.4.2?filename=updatetree_darwin_amd64.tar.gz\u0026checksum=sha256:d11811c053131069d6a7937f2ee81aacf29aa5e0dc0e4fc2c21fcf219b4c1384\u0026download_url=https://developers.qa.redhat.com/products"
}
}
}
],
"category": "architecture",
"name": "amd64_darwin"
},
{
"branches": [
{
"category": "product_version",
"name": "conforma-cli-stack-v1-4@arm64_darwin",
"product": {
"name": "conforma-cli-stack-v1-4@arm64_darwin",
"product_id": "conforma-cli-stack-v1-4@arm64_darwin",
"product_identification_helper": {
"purl": "pkg:generic/conforma-cli-stack-v1-4@1.4.2?filename=ec_darwin_arm64.tar.gz\u0026checksum=sha256:f15eb4c22d7a540a06aa2042fe689924606fa28c9c20a8d645619f4e3de5a449\u0026download_url=https://developers.qa.redhat.com/products"
}
}
},
{
"category": "product_version",
"name": "cosign-cli-stack-v1-4@arm64_darwin",
"product": {
"name": "cosign-cli-stack-v1-4@arm64_darwin",
"product_id": "cosign-cli-stack-v1-4@arm64_darwin",
"product_identification_helper": {
"purl": "pkg:generic/cosign-cli-stack-v1-4@1.4.2?filename=cosign_darwin_arm64.tar.gz\u0026checksum=sha256:32a80cab00f2e3b94dd7614e19ba09d5a94f22c10939ca4ca06fc461e6c4b4ec\u0026download_url=https://developers.qa.redhat.com/products"
}
}
},
{
"category": "product_version",
"name": "fetch-tsa-certs-cli-stack-v1-4@arm64_darwin",
"product": {
"name": "fetch-tsa-certs-cli-stack-v1-4@arm64_darwin",
"product_id": "fetch-tsa-certs-cli-stack-v1-4@arm64_darwin",
"product_identification_helper": {
"purl": "pkg:generic/fetch-tsa-certs-cli-stack-v1-4@1.4.2?filename=fetch_tsa_certs_darwin_arm64.tar.gz\u0026checksum=sha256:1e3c1789230f060f1225182f7f6caec445f7c04f6d9d29078151338654352f5b\u0026download_url=https://developers.qa.redhat.com/products"
}
}
},
{
"category": "product_version",
"name": "gitsign-cli-stack-v1-4@arm64_darwin",
"product": {
"name": "gitsign-cli-stack-v1-4@arm64_darwin",
"product_id": "gitsign-cli-stack-v1-4@arm64_darwin",
"product_identification_helper": {
"purl": "pkg:generic/gitsign-cli-stack-v1-4@1.4.2?filename=gitsign_cli_darwin_arm64.tar.gz\u0026checksum=sha256:024e50fa4e9349e0468680ac94e281daefbcda7acc4a14db61052a242ace37a7\u0026download_url=https://developers.qa.redhat.com/products"
}
}
},
{
"category": "product_version",
"name": "model-transparency-cli-stack-v1-4@arm64_darwin",
"product": {
"name": "model-transparency-cli-stack-v1-4@arm64_darwin",
"product_id": "model-transparency-cli-stack-v1-4@arm64_darwin",
"product_identification_helper": {
"purl": "pkg:generic/model-transparency-cli-stack-v1-4@1.4.2?filename=model_transparency_cli_darwin_arm64.tar.gz\u0026checksum=sha256:7b86c47c8564a533fb2a5194306857aa9c2b8fca16f8de9a8e242fa58ce3b700\u0026download_url=https://developers.qa.redhat.com/products"
}
}
},
{
"category": "product_version",
"name": "rekor-cli-stack-v1-4@arm64_darwin",
"product": {
"name": "rekor-cli-stack-v1-4@arm64_darwin",
"product_id": "rekor-cli-stack-v1-4@arm64_darwin",
"product_identification_helper": {
"purl": "pkg:generic/rekor-cli-stack-v1-4@1.4.2?filename=rekor_cli_darwin_arm64.tar.gz\u0026checksum=sha256:7fd467b7fe65bb4294db426efc9bf264bee8e7773341abac7a8503905464e029\u0026download_url=https://developers.qa.redhat.com/products"
}
}
},
{
"category": "product_version",
"name": "trillian-cli-stack-v1-4@arm64_darwin",
"product": {
"name": "trillian-cli-stack-v1-4@arm64_darwin",
"product_id": "trillian-cli-stack-v1-4@arm64_darwin",
"product_identification_helper": {
"purl": "pkg:generic/trillian-cli-stack-v1-4@1.4.2?filename=updatetree_darwin_arm64.tar.gz\u0026checksum=sha256:9a6e31af8de1aecbc209eb371c70cb8a40fa13ac076200c717ef32c52fdf1c32\u0026download_url=https://developers.qa.redhat.com/products"
}
}
}
],
"category": "architecture",
"name": "arm64_darwin"
},
{
"branches": [
{
"category": "product_version",
"name": "conforma-cli-stack-v1-4@amd64",
"product": {
"name": "conforma-cli-stack-v1-4@amd64",
"product_id": "conforma-cli-stack-v1-4@amd64",
"product_identification_helper": {
"purl": "pkg:generic/conforma-cli-stack-v1-4@1.4.2?filename=ec_linux_amd64.tar.gz\u0026checksum=sha256:1ff31ed89331b18828e430c5b8ab74f6af01ce6767796d630b5f3a9b17b28dc6\u0026download_url=https://developers.qa.redhat.com/products"
}
}
},
{
"category": "product_version",
"name": "cosign-cli-stack-v1-4@amd64",
"product": {
"name": "cosign-cli-stack-v1-4@amd64",
"product_id": "cosign-cli-stack-v1-4@amd64",
"product_identification_helper": {
"purl": "pkg:generic/cosign-cli-stack-v1-4@1.4.2?filename=cosign_linux_amd64.tar.gz\u0026checksum=sha256:6b31c7f26dc20a7903ee0ff5fddf9b28f445d25caa4d6cf789ceaa5ca70ce112\u0026download_url=https://developers.qa.redhat.com/products"
}
}
},
{
"category": "product_version",
"name": "fetch-tsa-certs-cli-stack-v1-4@amd64",
"product": {
"name": "fetch-tsa-certs-cli-stack-v1-4@amd64",
"product_id": "fetch-tsa-certs-cli-stack-v1-4@amd64",
"product_identification_helper": {
"purl": "pkg:generic/fetch-tsa-certs-cli-stack-v1-4@1.4.2?filename=fetch_tsa_certs_linux_amd64.tar.gz\u0026checksum=sha256:93720b9c3c48d7f94e885f9250bde724b9ea9f99e9b5c6263746c9d5b94be04e\u0026download_url=https://developers.qa.redhat.com/products"
}
}
},
{
"category": "product_version",
"name": "gitsign-cli-stack-v1-4@amd64",
"product": {
"name": "gitsign-cli-stack-v1-4@amd64",
"product_id": "gitsign-cli-stack-v1-4@amd64",
"product_identification_helper": {
"purl": "pkg:generic/gitsign-cli-stack-v1-4@1.4.2?filename=gitsign_cli_linux_amd64.tar.gz\u0026checksum=sha256:e51c54d5cf34895b8f7c3b391ba7070aac61a557f84f50fb223597412da03414\u0026download_url=https://developers.qa.redhat.com/products"
}
}
},
{
"category": "product_version",
"name": "model-transparency-cli-stack-v1-4@amd64",
"product": {
"name": "model-transparency-cli-stack-v1-4@amd64",
"product_id": "model-transparency-cli-stack-v1-4@amd64",
"product_identification_helper": {
"purl": "pkg:generic/model-transparency-cli-stack-v1-4@1.4.2?filename=model_transparency_cli_pkcs11_linux_amd64.tar.gz\u0026checksum=sha256:cd613b774b604748640e3b70519fbef26f47740e9e615f1806ff168c6be5d423\u0026download_url=https://developers.qa.redhat.com/products"
}
}
},
{
"category": "product_version",
"name": "rekor-cli-stack-v1-4@amd64",
"product": {
"name": "rekor-cli-stack-v1-4@amd64",
"product_id": "rekor-cli-stack-v1-4@amd64",
"product_identification_helper": {
"purl": "pkg:generic/rekor-cli-stack-v1-4@1.4.2?filename=rekor_cli_linux_amd64.tar.gz\u0026checksum=sha256:2b1bebaca059a78c9c6c15941f1a03960cd515bf76fe61dc325b5487c0bf5839\u0026download_url=https://developers.qa.redhat.com/products"
}
}
},
{
"category": "product_version",
"name": "trillian-cli-stack-v1-4@amd64",
"product": {
"name": "trillian-cli-stack-v1-4@amd64",
"product_id": "trillian-cli-stack-v1-4@amd64",
"product_identification_helper": {
"purl": "pkg:generic/trillian-cli-stack-v1-4@1.4.2?filename=updatetree_linux_amd64.tar.gz\u0026checksum=sha256:a9e25e8e3287e4c49d2d5c8d594fd8997c14e9d5f12c19ebe7d2a4be3a367186\u0026download_url=https://developers.qa.redhat.com/products"
}
}
},
{
"category": "product_version",
"name": "tuftool-cli-stack-v1-4@amd64",
"product": {
"name": "tuftool-cli-stack-v1-4@amd64",
"product_id": "tuftool-cli-stack-v1-4@amd64",
"product_identification_helper": {
"purl": "pkg:generic/tuftool-cli-stack-v1-4@1.4.2?filename=tuftool_linux_amd64.tar.gz\u0026checksum=sha256:3a83ac0e1ba4cf6827ff5b38f5f44c94427ef85beb860325e6ccd116a0b60dce\u0026download_url=https://developers.qa.redhat.com/products"
}
}
}
],
"category": "architecture",
"name": "amd64"
},
{
"branches": [
{
"category": "product_version",
"name": "conforma-cli-stack-v1-4@arm64",
"product": {
"name": "conforma-cli-stack-v1-4@arm64",
"product_id": "conforma-cli-stack-v1-4@arm64",
"product_identification_helper": {
"purl": "pkg:generic/conforma-cli-stack-v1-4@1.4.2?filename=ec_linux_arm64.tar.gz\u0026checksum=sha256:e37f9344035bed820ae772b9f94c1bbc9e3ae8c394f29ceea57e390fd286031d\u0026download_url=https://developers.qa.redhat.com/products"
}
}
},
{
"category": "product_version",
"name": "cosign-cli-stack-v1-4@arm64",
"product": {
"name": "cosign-cli-stack-v1-4@arm64",
"product_id": "cosign-cli-stack-v1-4@arm64",
"product_identification_helper": {
"purl": "pkg:generic/cosign-cli-stack-v1-4@1.4.2?filename=cosign_linux_arm64.tar.gz\u0026checksum=sha256:5038ef7ea154bd08e7625ec77014acbd7cdd1139bcd174242d39064a8b97320c\u0026download_url=https://developers.qa.redhat.com/products"
}
}
},
{
"category": "product_version",
"name": "fetch-tsa-certs-cli-stack-v1-4@arm64",
"product": {
"name": "fetch-tsa-certs-cli-stack-v1-4@arm64",
"product_id": "fetch-tsa-certs-cli-stack-v1-4@arm64",
"product_identification_helper": {
"purl": "pkg:generic/fetch-tsa-certs-cli-stack-v1-4@1.4.2?filename=fetch_tsa_certs_linux_arm64.tar.gz\u0026checksum=sha256:88f469ea1387b26654726e60b9a34cd078cabbc50b45fdbdc3197b83faec324e\u0026download_url=https://developers.qa.redhat.com/products"
}
}
},
{
"category": "product_version",
"name": "gitsign-cli-stack-v1-4@arm64",
"product": {
"name": "gitsign-cli-stack-v1-4@arm64",
"product_id": "gitsign-cli-stack-v1-4@arm64",
"product_identification_helper": {
"purl": "pkg:generic/gitsign-cli-stack-v1-4@1.4.2?filename=gitsign_cli_linux_arm64.tar.gz\u0026checksum=sha256:5bfe15a942a73fec6864df3a2acf02b34947b25aeb022094f9dbc6f32a173af2\u0026download_url=https://developers.qa.redhat.com/products"
}
}
},
{
"category": "product_version",
"name": "model-transparency-cli-stack-v1-4@arm64",
"product": {
"name": "model-transparency-cli-stack-v1-4@arm64",
"product_id": "model-transparency-cli-stack-v1-4@arm64",
"product_identification_helper": {
"purl": "pkg:generic/model-transparency-cli-stack-v1-4@1.4.2?filename=model_transparency_cli_pkcs11_linux_arm64.tar.gz\u0026checksum=sha256:4067226e5e8708b1304349d996d5d004d9f827f8baa64e32759bbb25e5d9e883\u0026download_url=https://developers.qa.redhat.com/products"
}
}
},
{
"category": "product_version",
"name": "rekor-cli-stack-v1-4@arm64",
"product": {
"name": "rekor-cli-stack-v1-4@arm64",
"product_id": "rekor-cli-stack-v1-4@arm64",
"product_identification_helper": {
"purl": "pkg:generic/rekor-cli-stack-v1-4@1.4.2?filename=rekor_cli_linux_arm64.tar.gz\u0026checksum=sha256:5129a9e3adeecb6e1d1ec0346e8bf38f5b19281009b92b45a157b211bc39b809\u0026download_url=https://developers.qa.redhat.com/products"
}
}
},
{
"category": "product_version",
"name": "trillian-cli-stack-v1-4@arm64",
"product": {
"name": "trillian-cli-stack-v1-4@arm64",
"product_id": "trillian-cli-stack-v1-4@arm64",
"product_identification_helper": {
"purl": "pkg:generic/trillian-cli-stack-v1-4@1.4.2?filename=updatetree_linux_arm64.tar.gz\u0026checksum=sha256:2b094f8dbb25de8d4484065c9f3ee819a97fb67fd4d72088256ca0478f8821a7\u0026download_url=https://developers.qa.redhat.com/products"
}
}
}
],
"category": "architecture",
"name": "arm64"
},
{
"branches": [
{
"category": "product_version",
"name": "conforma-cli-stack-v1-4@ppc64le",
"product": {
"name": "conforma-cli-stack-v1-4@ppc64le",
"product_id": "conforma-cli-stack-v1-4@ppc64le",
"product_identification_helper": {
"purl": "pkg:generic/conforma-cli-stack-v1-4@1.4.2?filename=ec_linux_ppc64le.tar.gz\u0026checksum=sha256:2f5cbaabac374a8b61295858bfe984191a881970ebe17be83c3ba35c329fe13a\u0026download_url=https://developers.qa.redhat.com/products"
}
}
},
{
"category": "product_version",
"name": "cosign-cli-stack-v1-4@ppc64le",
"product": {
"name": "cosign-cli-stack-v1-4@ppc64le",
"product_id": "cosign-cli-stack-v1-4@ppc64le",
"product_identification_helper": {
"purl": "pkg:generic/cosign-cli-stack-v1-4@1.4.2?filename=cosign_linux_ppc64le.tar.gz\u0026checksum=sha256:f3a5b8bd3928810ff4cd3469bd1b2c02c5310c0e9407477ac6ba38ce3b09fbb4\u0026download_url=https://developers.qa.redhat.com/products"
}
}
},
{
"category": "product_version",
"name": "fetch-tsa-certs-cli-stack-v1-4@ppc64le",
"product": {
"name": "fetch-tsa-certs-cli-stack-v1-4@ppc64le",
"product_id": "fetch-tsa-certs-cli-stack-v1-4@ppc64le",
"product_identification_helper": {
"purl": "pkg:generic/fetch-tsa-certs-cli-stack-v1-4@1.4.2?filename=fetch_tsa_certs_linux_ppc64le.tar.gz\u0026checksum=sha256:25f972648cb2323dba8f825580d6b2de1e88db333c6ed78ad9832a094ea5dcad\u0026download_url=https://developers.qa.redhat.com/products"
}
}
},
{
"category": "product_version",
"name": "gitsign-cli-stack-v1-4@ppc64le",
"product": {
"name": "gitsign-cli-stack-v1-4@ppc64le",
"product_id": "gitsign-cli-stack-v1-4@ppc64le",
"product_identification_helper": {
"purl": "pkg:generic/gitsign-cli-stack-v1-4@1.4.2?filename=gitsign_cli_linux_ppc64le.tar.gz\u0026checksum=sha256:99ed9ec270447d3b009e0ecf57e71620f39868e8b56d9c9be0bf239e5f07bf39\u0026download_url=https://developers.qa.redhat.com/products"
}
}
},
{
"category": "product_version",
"name": "model-transparency-cli-stack-v1-4@ppc64le",
"product": {
"name": "model-transparency-cli-stack-v1-4@ppc64le",
"product_id": "model-transparency-cli-stack-v1-4@ppc64le",
"product_identification_helper": {
"purl": "pkg:generic/model-transparency-cli-stack-v1-4@1.4.2?filename=model_transparency_cli_pkcs11_linux_ppc64le.tar.gz\u0026checksum=sha256:9157f1e0a3f483f544c5a8b5d72886f422d1e8111ec75131adf6ee5f6146f1f7\u0026download_url=https://developers.qa.redhat.com/products"
}
}
},
{
"category": "product_version",
"name": "rekor-cli-stack-v1-4@ppc64le",
"product": {
"name": "rekor-cli-stack-v1-4@ppc64le",
"product_id": "rekor-cli-stack-v1-4@ppc64le",
"product_identification_helper": {
"purl": "pkg:generic/rekor-cli-stack-v1-4@1.4.2?filename=rekor_cli_linux_ppc64le.tar.gz\u0026checksum=sha256:75d28c4e81f7496b0a927a44e0fce9a766e95a8e383126ac5feb432ec501cc54\u0026download_url=https://developers.qa.redhat.com/products"
}
}
},
{
"category": "product_version",
"name": "trillian-cli-stack-v1-4@ppc64le",
"product": {
"name": "trillian-cli-stack-v1-4@ppc64le",
"product_id": "trillian-cli-stack-v1-4@ppc64le",
"product_identification_helper": {
"purl": "pkg:generic/trillian-cli-stack-v1-4@1.4.2?filename=updatetree_linux_ppc64le.tar.gz\u0026checksum=sha256:d90e1c644c394300a3e8234a945ee1d70e09ae8c37eb7aee5a3683017c864cbc\u0026download_url=https://developers.qa.redhat.com/products"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "conforma-cli-stack-v1-4@s390x",
"product": {
"name": "conforma-cli-stack-v1-4@s390x",
"product_id": "conforma-cli-stack-v1-4@s390x",
"product_identification_helper": {
"purl": "pkg:generic/conforma-cli-stack-v1-4@1.4.2?filename=ec_linux_s390x.tar.gz\u0026checksum=sha256:ae497f4c2974c0022303a3e1815605ca5e3115d17707b9f75238e3b739fa301a\u0026download_url=https://developers.qa.redhat.com/products"
}
}
},
{
"category": "product_version",
"name": "cosign-cli-stack-v1-4@s390x",
"product": {
"name": "cosign-cli-stack-v1-4@s390x",
"product_id": "cosign-cli-stack-v1-4@s390x",
"product_identification_helper": {
"purl": "pkg:generic/cosign-cli-stack-v1-4@1.4.2?filename=cosign_linux_s390x.tar.gz\u0026checksum=sha256:ce8878b50b0c0d3a3828635e4b1045f0bb5f6deeafc1be8fb8ee9cfd2b65fc9d\u0026download_url=https://developers.qa.redhat.com/products"
}
}
},
{
"category": "product_version",
"name": "fetch-tsa-certs-cli-stack-v1-4@s390x",
"product": {
"name": "fetch-tsa-certs-cli-stack-v1-4@s390x",
"product_id": "fetch-tsa-certs-cli-stack-v1-4@s390x",
"product_identification_helper": {
"purl": "pkg:generic/fetch-tsa-certs-cli-stack-v1-4@1.4.2?filename=fetch_tsa_certs_linux_s390x.tar.gz\u0026checksum=sha256:f73ce30aa019d116998479b58b4cafc03b3fbca16cc47101ea3e78845146f917\u0026download_url=https://developers.qa.redhat.com/products"
}
}
},
{
"category": "product_version",
"name": "gitsign-cli-stack-v1-4@s390x",
"product": {
"name": "gitsign-cli-stack-v1-4@s390x",
"product_id": "gitsign-cli-stack-v1-4@s390x",
"product_identification_helper": {
"purl": "pkg:generic/gitsign-cli-stack-v1-4@1.4.2?filename=gitsign_cli_linux_s390x.tar.gz\u0026checksum=sha256:bac01104b8e4c112f0dd82af9d8a4f3ca78bbfefb4f88713eac5875bbff1b28a\u0026download_url=https://developers.qa.redhat.com/products"
}
}
},
{
"category": "product_version",
"name": "model-transparency-cli-stack-v1-4@s390x",
"product": {
"name": "model-transparency-cli-stack-v1-4@s390x",
"product_id": "model-transparency-cli-stack-v1-4@s390x",
"product_identification_helper": {
"purl": "pkg:generic/model-transparency-cli-stack-v1-4@1.4.2?filename=model_transparency_cli_pkcs11_linux_s390x.tar.gz\u0026checksum=sha256:1bd24d59d4cebf682f6780da1bbd21e53cebf5f1ac7acfcac360a37a3c06c10c\u0026download_url=https://developers.qa.redhat.com/products"
}
}
},
{
"category": "product_version",
"name": "rekor-cli-stack-v1-4@s390x",
"product": {
"name": "rekor-cli-stack-v1-4@s390x",
"product_id": "rekor-cli-stack-v1-4@s390x",
"product_identification_helper": {
"purl": "pkg:generic/rekor-cli-stack-v1-4@1.4.2?filename=rekor_cli_linux_s390x.tar.gz\u0026checksum=sha256:7e8de71d98a483e9fd07e1c79425bd7b3909bf1ebfa2ded9663c835819f280d2\u0026download_url=https://developers.qa.redhat.com/products"
}
}
},
{
"category": "product_version",
"name": "trillian-cli-stack-v1-4@s390x",
"product": {
"name": "trillian-cli-stack-v1-4@s390x",
"product_id": "trillian-cli-stack-v1-4@s390x",
"product_identification_helper": {
"purl": "pkg:generic/trillian-cli-stack-v1-4@1.4.2?filename=updatetree_linux_s390x.tar.gz\u0026checksum=sha256:994a0886ef2ce20919b9422a72a900e85e76817874076fb4981c00dacc73837f\u0026download_url=https://developers.qa.redhat.com/products"
}
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "conforma-cli-stack-v1-4@amd64_windows",
"product": {
"name": "conforma-cli-stack-v1-4@amd64_windows",
"product_id": "conforma-cli-stack-v1-4@amd64_windows",
"product_identification_helper": {
"purl": "pkg:generic/conforma-cli-stack-v1-4@1.4.2?filename=ec_windows_amd64.zip\u0026checksum=sha256:08c6c5625f35891f5d902aa8e96e8081f7b8f6c331298faf124d657fe389afe1\u0026download_url=https://developers.qa.redhat.com/products"
}
}
},
{
"category": "product_version",
"name": "cosign-cli-stack-v1-4@amd64_windows",
"product": {
"name": "cosign-cli-stack-v1-4@amd64_windows",
"product_id": "cosign-cli-stack-v1-4@amd64_windows",
"product_identification_helper": {
"purl": "pkg:generic/cosign-cli-stack-v1-4@1.4.2?filename=cosign_windows_amd64.zip\u0026checksum=sha256:6238651a35a50a6c45014f03d744c593a4d81a7b2bfc124204cd13616ff8388c\u0026download_url=https://developers.qa.redhat.com/products"
}
}
},
{
"category": "product_version",
"name": "fetch-tsa-certs-cli-stack-v1-4@amd64_windows",
"product": {
"name": "fetch-tsa-certs-cli-stack-v1-4@amd64_windows",
"product_id": "fetch-tsa-certs-cli-stack-v1-4@amd64_windows",
"product_identification_helper": {
"purl": "pkg:generic/fetch-tsa-certs-cli-stack-v1-4@1.4.2?filename=fetch_tsa_certs_windows_amd64.zip\u0026checksum=sha256:56491ee25bb1a67b612246bf5d4c57021d8545a3031ca010f9ccc9fc6136d2ed\u0026download_url=https://developers.qa.redhat.com/products"
}
}
},
{
"category": "product_version",
"name": "gitsign-cli-stack-v1-4@amd64_windows",
"product": {
"name": "gitsign-cli-stack-v1-4@amd64_windows",
"product_id": "gitsign-cli-stack-v1-4@amd64_windows",
"product_identification_helper": {
"purl": "pkg:generic/gitsign-cli-stack-v1-4@1.4.2?filename=gitsign_cli_windows_amd64.zip\u0026checksum=sha256:a5760ac48ebeed01a3d3391eaa6cd91e7e2cb2854f317c07446b4599772997ff\u0026download_url=https://developers.qa.redhat.com/products"
}
}
},
{
"category": "product_version",
"name": "model-transparency-cli-stack-v1-4@amd64_windows",
"product": {
"name": "model-transparency-cli-stack-v1-4@amd64_windows",
"product_id": "model-transparency-cli-stack-v1-4@amd64_windows",
"product_identification_helper": {
"purl": "pkg:generic/model-transparency-cli-stack-v1-4@1.4.2?filename=model_transparency_cli_windows_amd64.exe.gz\u0026checksum=sha256:ea9d1ce76fb5c7a8b2d1b6c91157a3b2c9cf021c80bcff773342e7bd7b2bdc90\u0026download_url=https://developers.qa.redhat.com/products"
}
}
},
{
"category": "product_version",
"name": "rekor-cli-stack-v1-4@amd64_windows",
"product": {
"name": "rekor-cli-stack-v1-4@amd64_windows",
"product_id": "rekor-cli-stack-v1-4@amd64_windows",
"product_identification_helper": {
"purl": "pkg:generic/rekor-cli-stack-v1-4@1.4.2?filename=rekor_cli_windows_amd64.zip\u0026checksum=sha256:31f0e4ddf6b49ab3c8c6513a1b947ea850b8250287e0a60ac6f6abbbf0c622d9\u0026download_url=https://developers.qa.redhat.com/products"
}
}
},
{
"category": "product_version",
"name": "trillian-cli-stack-v1-4@amd64_windows",
"product": {
"name": "trillian-cli-stack-v1-4@amd64_windows",
"product_id": "trillian-cli-stack-v1-4@amd64_windows",
"product_identification_helper": {
"purl": "pkg:generic/trillian-cli-stack-v1-4@1.4.2?filename=updatetree_windows_amd64.zip\u0026checksum=sha256:98bbdfa1f5625480ecd4b2bb2e8d90e1314449b03dfd2f67feaad316cdb7a82e\u0026download_url=https://developers.qa.redhat.com/products"
}
}
}
],
"category": "architecture",
"name": "amd64_windows"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "conforma-cli-stack-v1-4@amd64 as a component of Red Hat Trusted Artifact Signer 1.4",
"product_id": "Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64"
},
"product_reference": "conforma-cli-stack-v1-4@amd64",
"relates_to_product_reference": "Red Hat Trusted Artifact Signer 1.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "conforma-cli-stack-v1-4@amd64_darwin as a component of Red Hat Trusted Artifact Signer 1.4",
"product_id": "Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_darwin"
},
"product_reference": "conforma-cli-stack-v1-4@amd64_darwin",
"relates_to_product_reference": "Red Hat Trusted Artifact Signer 1.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "conforma-cli-stack-v1-4@amd64_windows as a component of Red Hat Trusted Artifact Signer 1.4",
"product_id": "Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_windows"
},
"product_reference": "conforma-cli-stack-v1-4@amd64_windows",
"relates_to_product_reference": "Red Hat Trusted Artifact Signer 1.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "conforma-cli-stack-v1-4@arm64 as a component of Red Hat Trusted Artifact Signer 1.4",
"product_id": "Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64"
},
"product_reference": "conforma-cli-stack-v1-4@arm64",
"relates_to_product_reference": "Red Hat Trusted Artifact Signer 1.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "conforma-cli-stack-v1-4@arm64_darwin as a component of Red Hat Trusted Artifact Signer 1.4",
"product_id": "Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64_darwin"
},
"product_reference": "conforma-cli-stack-v1-4@arm64_darwin",
"relates_to_product_reference": "Red Hat Trusted Artifact Signer 1.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "conforma-cli-stack-v1-4@ppc64le as a component of Red Hat Trusted Artifact Signer 1.4",
"product_id": "Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@ppc64le"
},
"product_reference": "conforma-cli-stack-v1-4@ppc64le",
"relates_to_product_reference": "Red Hat Trusted Artifact Signer 1.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "conforma-cli-stack-v1-4@s390x as a component of Red Hat Trusted Artifact Signer 1.4",
"product_id": "Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@s390x"
},
"product_reference": "conforma-cli-stack-v1-4@s390x",
"relates_to_product_reference": "Red Hat Trusted Artifact Signer 1.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cosign-cli-stack-v1-4@amd64 as a component of Red Hat Trusted Artifact Signer 1.4",
"product_id": "Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64"
},
"product_reference": "cosign-cli-stack-v1-4@amd64",
"relates_to_product_reference": "Red Hat Trusted Artifact Signer 1.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cosign-cli-stack-v1-4@amd64_darwin as a component of Red Hat Trusted Artifact Signer 1.4",
"product_id": "Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_darwin"
},
"product_reference": "cosign-cli-stack-v1-4@amd64_darwin",
"relates_to_product_reference": "Red Hat Trusted Artifact Signer 1.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cosign-cli-stack-v1-4@amd64_windows as a component of Red Hat Trusted Artifact Signer 1.4",
"product_id": "Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_windows"
},
"product_reference": "cosign-cli-stack-v1-4@amd64_windows",
"relates_to_product_reference": "Red Hat Trusted Artifact Signer 1.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cosign-cli-stack-v1-4@arm64 as a component of Red Hat Trusted Artifact Signer 1.4",
"product_id": "Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64"
},
"product_reference": "cosign-cli-stack-v1-4@arm64",
"relates_to_product_reference": "Red Hat Trusted Artifact Signer 1.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cosign-cli-stack-v1-4@arm64_darwin as a component of Red Hat Trusted Artifact Signer 1.4",
"product_id": "Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64_darwin"
},
"product_reference": "cosign-cli-stack-v1-4@arm64_darwin",
"relates_to_product_reference": "Red Hat Trusted Artifact Signer 1.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cosign-cli-stack-v1-4@ppc64le as a component of Red Hat Trusted Artifact Signer 1.4",
"product_id": "Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@ppc64le"
},
"product_reference": "cosign-cli-stack-v1-4@ppc64le",
"relates_to_product_reference": "Red Hat Trusted Artifact Signer 1.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cosign-cli-stack-v1-4@s390x as a component of Red Hat Trusted Artifact Signer 1.4",
"product_id": "Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@s390x"
},
"product_reference": "cosign-cli-stack-v1-4@s390x",
"relates_to_product_reference": "Red Hat Trusted Artifact Signer 1.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "fetch-tsa-certs-cli-stack-v1-4@amd64 as a component of Red Hat Trusted Artifact Signer 1.4",
"product_id": "Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64"
},
"product_reference": "fetch-tsa-certs-cli-stack-v1-4@amd64",
"relates_to_product_reference": "Red Hat Trusted Artifact Signer 1.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "fetch-tsa-certs-cli-stack-v1-4@amd64_darwin as a component of Red Hat Trusted Artifact Signer 1.4",
"product_id": "Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_darwin"
},
"product_reference": "fetch-tsa-certs-cli-stack-v1-4@amd64_darwin",
"relates_to_product_reference": "Red Hat Trusted Artifact Signer 1.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "fetch-tsa-certs-cli-stack-v1-4@amd64_windows as a component of Red Hat Trusted Artifact Signer 1.4",
"product_id": "Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_windows"
},
"product_reference": "fetch-tsa-certs-cli-stack-v1-4@amd64_windows",
"relates_to_product_reference": "Red Hat Trusted Artifact Signer 1.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "fetch-tsa-certs-cli-stack-v1-4@arm64 as a component of Red Hat Trusted Artifact Signer 1.4",
"product_id": "Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64"
},
"product_reference": "fetch-tsa-certs-cli-stack-v1-4@arm64",
"relates_to_product_reference": "Red Hat Trusted Artifact Signer 1.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "fetch-tsa-certs-cli-stack-v1-4@arm64_darwin as a component of Red Hat Trusted Artifact Signer 1.4",
"product_id": "Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64_darwin"
},
"product_reference": "fetch-tsa-certs-cli-stack-v1-4@arm64_darwin",
"relates_to_product_reference": "Red Hat Trusted Artifact Signer 1.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "fetch-tsa-certs-cli-stack-v1-4@ppc64le as a component of Red Hat Trusted Artifact Signer 1.4",
"product_id": "Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@ppc64le"
},
"product_reference": "fetch-tsa-certs-cli-stack-v1-4@ppc64le",
"relates_to_product_reference": "Red Hat Trusted Artifact Signer 1.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "fetch-tsa-certs-cli-stack-v1-4@s390x as a component of Red Hat Trusted Artifact Signer 1.4",
"product_id": "Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@s390x"
},
"product_reference": "fetch-tsa-certs-cli-stack-v1-4@s390x",
"relates_to_product_reference": "Red Hat Trusted Artifact Signer 1.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gitsign-cli-stack-v1-4@amd64 as a component of Red Hat Trusted Artifact Signer 1.4",
"product_id": "Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64"
},
"product_reference": "gitsign-cli-stack-v1-4@amd64",
"relates_to_product_reference": "Red Hat Trusted Artifact Signer 1.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gitsign-cli-stack-v1-4@amd64_darwin as a component of Red Hat Trusted Artifact Signer 1.4",
"product_id": "Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_darwin"
},
"product_reference": "gitsign-cli-stack-v1-4@amd64_darwin",
"relates_to_product_reference": "Red Hat Trusted Artifact Signer 1.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gitsign-cli-stack-v1-4@amd64_windows as a component of Red Hat Trusted Artifact Signer 1.4",
"product_id": "Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_windows"
},
"product_reference": "gitsign-cli-stack-v1-4@amd64_windows",
"relates_to_product_reference": "Red Hat Trusted Artifact Signer 1.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gitsign-cli-stack-v1-4@arm64 as a component of Red Hat Trusted Artifact Signer 1.4",
"product_id": "Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64"
},
"product_reference": "gitsign-cli-stack-v1-4@arm64",
"relates_to_product_reference": "Red Hat Trusted Artifact Signer 1.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gitsign-cli-stack-v1-4@arm64_darwin as a component of Red Hat Trusted Artifact Signer 1.4",
"product_id": "Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64_darwin"
},
"product_reference": "gitsign-cli-stack-v1-4@arm64_darwin",
"relates_to_product_reference": "Red Hat Trusted Artifact Signer 1.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gitsign-cli-stack-v1-4@ppc64le as a component of Red Hat Trusted Artifact Signer 1.4",
"product_id": "Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@ppc64le"
},
"product_reference": "gitsign-cli-stack-v1-4@ppc64le",
"relates_to_product_reference": "Red Hat Trusted Artifact Signer 1.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gitsign-cli-stack-v1-4@s390x as a component of Red Hat Trusted Artifact Signer 1.4",
"product_id": "Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@s390x"
},
"product_reference": "gitsign-cli-stack-v1-4@s390x",
"relates_to_product_reference": "Red Hat Trusted Artifact Signer 1.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "model-transparency-cli-stack-v1-4@amd64 as a component of Red Hat Trusted Artifact Signer 1.4",
"product_id": "Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64"
},
"product_reference": "model-transparency-cli-stack-v1-4@amd64",
"relates_to_product_reference": "Red Hat Trusted Artifact Signer 1.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "model-transparency-cli-stack-v1-4@amd64_darwin as a component of Red Hat Trusted Artifact Signer 1.4",
"product_id": "Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_darwin"
},
"product_reference": "model-transparency-cli-stack-v1-4@amd64_darwin",
"relates_to_product_reference": "Red Hat Trusted Artifact Signer 1.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "model-transparency-cli-stack-v1-4@amd64_windows as a component of Red Hat Trusted Artifact Signer 1.4",
"product_id": "Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_windows"
},
"product_reference": "model-transparency-cli-stack-v1-4@amd64_windows",
"relates_to_product_reference": "Red Hat Trusted Artifact Signer 1.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "model-transparency-cli-stack-v1-4@arm64 as a component of Red Hat Trusted Artifact Signer 1.4",
"product_id": "Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64"
},
"product_reference": "model-transparency-cli-stack-v1-4@arm64",
"relates_to_product_reference": "Red Hat Trusted Artifact Signer 1.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "model-transparency-cli-stack-v1-4@arm64_darwin as a component of Red Hat Trusted Artifact Signer 1.4",
"product_id": "Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64_darwin"
},
"product_reference": "model-transparency-cli-stack-v1-4@arm64_darwin",
"relates_to_product_reference": "Red Hat Trusted Artifact Signer 1.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "model-transparency-cli-stack-v1-4@ppc64le as a component of Red Hat Trusted Artifact Signer 1.4",
"product_id": "Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@ppc64le"
},
"product_reference": "model-transparency-cli-stack-v1-4@ppc64le",
"relates_to_product_reference": "Red Hat Trusted Artifact Signer 1.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "model-transparency-cli-stack-v1-4@s390x as a component of Red Hat Trusted Artifact Signer 1.4",
"product_id": "Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@s390x"
},
"product_reference": "model-transparency-cli-stack-v1-4@s390x",
"relates_to_product_reference": "Red Hat Trusted Artifact Signer 1.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rekor-cli-stack-v1-4@amd64 as a component of Red Hat Trusted Artifact Signer 1.4",
"product_id": "Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64"
},
"product_reference": "rekor-cli-stack-v1-4@amd64",
"relates_to_product_reference": "Red Hat Trusted Artifact Signer 1.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rekor-cli-stack-v1-4@amd64_darwin as a component of Red Hat Trusted Artifact Signer 1.4",
"product_id": "Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_darwin"
},
"product_reference": "rekor-cli-stack-v1-4@amd64_darwin",
"relates_to_product_reference": "Red Hat Trusted Artifact Signer 1.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rekor-cli-stack-v1-4@amd64_windows as a component of Red Hat Trusted Artifact Signer 1.4",
"product_id": "Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_windows"
},
"product_reference": "rekor-cli-stack-v1-4@amd64_windows",
"relates_to_product_reference": "Red Hat Trusted Artifact Signer 1.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rekor-cli-stack-v1-4@arm64 as a component of Red Hat Trusted Artifact Signer 1.4",
"product_id": "Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64"
},
"product_reference": "rekor-cli-stack-v1-4@arm64",
"relates_to_product_reference": "Red Hat Trusted Artifact Signer 1.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rekor-cli-stack-v1-4@arm64_darwin as a component of Red Hat Trusted Artifact Signer 1.4",
"product_id": "Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64_darwin"
},
"product_reference": "rekor-cli-stack-v1-4@arm64_darwin",
"relates_to_product_reference": "Red Hat Trusted Artifact Signer 1.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rekor-cli-stack-v1-4@ppc64le as a component of Red Hat Trusted Artifact Signer 1.4",
"product_id": "Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@ppc64le"
},
"product_reference": "rekor-cli-stack-v1-4@ppc64le",
"relates_to_product_reference": "Red Hat Trusted Artifact Signer 1.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rekor-cli-stack-v1-4@s390x as a component of Red Hat Trusted Artifact Signer 1.4",
"product_id": "Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@s390x"
},
"product_reference": "rekor-cli-stack-v1-4@s390x",
"relates_to_product_reference": "Red Hat Trusted Artifact Signer 1.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "trillian-cli-stack-v1-4@amd64 as a component of Red Hat Trusted Artifact Signer 1.4",
"product_id": "Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64"
},
"product_reference": "trillian-cli-stack-v1-4@amd64",
"relates_to_product_reference": "Red Hat Trusted Artifact Signer 1.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "trillian-cli-stack-v1-4@amd64_darwin as a component of Red Hat Trusted Artifact Signer 1.4",
"product_id": "Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_darwin"
},
"product_reference": "trillian-cli-stack-v1-4@amd64_darwin",
"relates_to_product_reference": "Red Hat Trusted Artifact Signer 1.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "trillian-cli-stack-v1-4@amd64_windows as a component of Red Hat Trusted Artifact Signer 1.4",
"product_id": "Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_windows"
},
"product_reference": "trillian-cli-stack-v1-4@amd64_windows",
"relates_to_product_reference": "Red Hat Trusted Artifact Signer 1.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "trillian-cli-stack-v1-4@arm64 as a component of Red Hat Trusted Artifact Signer 1.4",
"product_id": "Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64"
},
"product_reference": "trillian-cli-stack-v1-4@arm64",
"relates_to_product_reference": "Red Hat Trusted Artifact Signer 1.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "trillian-cli-stack-v1-4@arm64_darwin as a component of Red Hat Trusted Artifact Signer 1.4",
"product_id": "Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64_darwin"
},
"product_reference": "trillian-cli-stack-v1-4@arm64_darwin",
"relates_to_product_reference": "Red Hat Trusted Artifact Signer 1.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "trillian-cli-stack-v1-4@ppc64le as a component of Red Hat Trusted Artifact Signer 1.4",
"product_id": "Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@ppc64le"
},
"product_reference": "trillian-cli-stack-v1-4@ppc64le",
"relates_to_product_reference": "Red Hat Trusted Artifact Signer 1.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "trillian-cli-stack-v1-4@s390x as a component of Red Hat Trusted Artifact Signer 1.4",
"product_id": "Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@s390x"
},
"product_reference": "trillian-cli-stack-v1-4@s390x",
"relates_to_product_reference": "Red Hat Trusted Artifact Signer 1.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuftool-cli-stack-v1-4@amd64 as a component of Red Hat Trusted Artifact Signer 1.4",
"product_id": "Red Hat Trusted Artifact Signer 1.4:tuftool-cli-stack-v1-4@amd64"
},
"product_reference": "tuftool-cli-stack-v1-4@amd64",
"relates_to_product_reference": "Red Hat Trusted Artifact Signer 1.4"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2026-27145",
"cwe": {
"id": "CWE-606",
"name": "Unchecked Input for Loop Condition"
},
"discovery_date": "2026-06-02T23:01:08.992540+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:tuftool-cli-stack-v1-4@amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2484207"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the `crypto/x509` package of `golang`. This vulnerability allows a remote attacker to cause a Denial of Service (DoS) by presenting a specially crafted X.509 certificate with a large number of DNS Subject Alternative Name (SAN) entries. The certificate verification process, specifically the `VerifyHostname` function, incurs excessive computational overhead due to repeated string operations when processing these entries. This can lead to a significant performance degradation or unresponsiveness of systems validating such certificates.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "crypto/x509: golang: golang crypto/x509: Denial of Service via excessive processing of DNS SAN entries",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "A flaw was found in the Go standard library crypto/x509 package. When verifying a TLS certificate hostname, VerifyHostname processed each DNS Subject Alternative Name (SAN) entry in a loop and repeatedly split the candidate hostname on \".\" characters. For certificates with a very large DNS SAN list, CPU use could grow quadratically with the number of SAN entries and hostname labels. Because hostname verification runs before the certificate chain is built, this overhead can occur even when the certificate is not trusted.\n\nRed Hat rates this issue as Important. It affects Red Hat products that include the Go standard library crypto/x509 code from an affected Go toolchain version (before Go 1.25.11, or from Go 1.26.0 through Go 1.26.3). Applications and container images built with a fixed Go release (1.25.11 or later, or 1.26.4 or later) are not affected. Community distributions such as Fedora are also affected.\n\nUpstream fix: Go 1.25.11 and Go 1.26.4 (GO-2026-5037).",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@s390x"
],
"known_not_affected": [
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:tuftool-cli-stack-v1-4@amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-27145"
},
{
"category": "external",
"summary": "RHBZ#2484207",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2484207"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-27145",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-27145"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-27145",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-27145"
},
{
"category": "external",
"summary": "https://go.dev/cl/783621",
"url": "https://go.dev/cl/783621"
},
{
"category": "external",
"summary": "https://go.dev/issue/79694",
"url": "https://go.dev/issue/79694"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/tKs3rmcBcKw",
"url": "https://groups.google.com/g/golang-announce/c/tKs3rmcBcKw"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-5037",
"url": "https://pkg.go.dev/vuln/GO-2026-5037"
}
],
"release_date": "2026-06-02T22:01:36.954000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T15:46:32+00:00",
"details": "The RHTAS CLI Stack images contain Red Hat Trusted Artifact Signer CLI binaries.\n\nFor details on using the CLI images, refer to the product documentation at https://access.redhat.com/documentation/en-us/red_hat_trusted_artifact_signer/1.4\n\nYou can find the release notes for this version of Red Hat Trusted Artifact Signer at https://access.redhat.com/documentation/en-us/red_hat_trusted_artifact_signer/1.4/html-single/release_notes/index",
"product_ids": [
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36797"
},
{
"category": "workaround",
"details": "A flaw was found in the Go standard library crypto/x509 package. When verifying a TLS certificate hostname, VerifyHostname processed each DNS Subject Alternative Name (SAN) entry in a loop and repeatedly split the candidate hostname on \".\" characters. For certificates with a very large DNS SAN list, CPU use could grow quadratically with the number of SAN entries and hostname labels. Because hostname verification runs before the certificate chain is built, this overhead can occur even when the certificate is not trusted.\n\nRed Hat rates this issue as Important. It affects Red Hat products that include the Go standard library crypto/x509 code from an affected Go toolchain version (before Go 1.25.11, or from Go 1.26.0 through Go 1.26.3). Applications and container images built with a fixed Go release (1.25.11 or later, or 1.26.4 or later) are not affected. Community distributions such as Fedora are also affected.\n\nUpstream fix: Go 1.25.11 and Go 1.26.4 (GO-2026-5037).",
"product_ids": [
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:tuftool-cli-stack-v1-4@amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:tuftool-cli-stack-v1-4@amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "crypto/x509: golang: golang crypto/x509: Denial of Service via excessive processing of DNS SAN entries"
},
{
"cve": "CVE-2026-33811",
"cwe": {
"id": "CWE-1341",
"name": "Multiple Releases of Same Resource or Handle"
},
"discovery_date": "2026-05-07T20:01:34.913869+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:tuftool-cli-stack-v1-4@amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2467822"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the `net` package of Go (golang), specifically when using the `LookupCNAME` function with the `cgo` DNS resolver. A remote attacker could exploit this by providing a very long Canonical Name (CNAME) response. This can trigger a double-free of C memory, leading to a crash and a Denial of Service (DoS) for the affected application.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "net: golang: Go net package: Denial of Service via long CNAME response in LookupCNAME",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This is an Important denial of service vulnerability in the Go `net` package, affecting applications configured to use the `cgo` DNS resolver. A remote attacker could trigger a double-free memory error by providing a very long CNAME response, leading to a crash of the vulnerable application and impacting service availability.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@s390x"
],
"known_not_affected": [
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:tuftool-cli-stack-v1-4@amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-33811"
},
{
"category": "external",
"summary": "RHBZ#2467822",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2467822"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-33811",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-33811"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-33811",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-33811"
},
{
"category": "external",
"summary": "https://go.dev/cl/767860",
"url": "https://go.dev/cl/767860"
},
{
"category": "external",
"summary": "https://go.dev/issue/78803",
"url": "https://go.dev/issue/78803"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/qcCIEXso47M",
"url": "https://groups.google.com/g/golang-announce/c/qcCIEXso47M"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-4981",
"url": "https://pkg.go.dev/vuln/GO-2026-4981"
}
],
"release_date": "2026-05-07T19:41:19.285000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T15:46:32+00:00",
"details": "The RHTAS CLI Stack images contain Red Hat Trusted Artifact Signer CLI binaries.\n\nFor details on using the CLI images, refer to the product documentation at https://access.redhat.com/documentation/en-us/red_hat_trusted_artifact_signer/1.4\n\nYou can find the release notes for this version of Red Hat Trusted Artifact Signer at https://access.redhat.com/documentation/en-us/red_hat_trusted_artifact_signer/1.4/html-single/release_notes/index",
"product_ids": [
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36797"
},
{
"category": "workaround",
"details": "To mitigate this issue, applications can be configured to use the pure Go DNS resolver instead of the `cgo` DNS resolver. This can be achieved by setting the `GODEBUG` environment variable to `netdns=go`. For example, to run a Go application with this mitigation: `GODEBUG=netdns=go /path/to/your/go/application`. This change may require restarting affected applications or services to take effect. Users should verify that this change does not negatively impact DNS resolution for their specific application environment.",
"product_ids": [
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:tuftool-cli-stack-v1-4@amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:tuftool-cli-stack-v1-4@amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "net: golang: Go net package: Denial of Service via long CNAME response in LookupCNAME"
},
{
"cve": "CVE-2026-39820",
"cwe": {
"id": "CWE-606",
"name": "Unchecked Input for Loop Condition"
},
"discovery_date": "2026-05-07T20:01:27.800929+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:tuftool-cli-stack-v1-4@amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2467820"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the `net/mail` package of the Go programming language. An attacker could provide specially crafted inputs to the `ParseAddress`, `ParseAddressList`, or `ParseDate` functions. This could lead to excessive consumption of CPU and memory resources, resulting in a Denial of Service (DoS) for applications processing these inputs.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "net/mail: golang: Go net/mail: Denial of Service via crafted email inputs",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This is an Important denial of service vulnerability in the Go `net/mail` package. Applications processing untrusted email inputs via `ParseAddress`, `ParseAddressList`, or `ParseDate` functions are susceptible to excessive resource consumption, which can lead to service unavailability.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@s390x"
],
"known_not_affected": [
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:tuftool-cli-stack-v1-4@amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-39820"
},
{
"category": "external",
"summary": "RHBZ#2467820",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2467820"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-39820",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-39820"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-39820",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-39820"
},
{
"category": "external",
"summary": "https://go.dev/cl/759940",
"url": "https://go.dev/cl/759940"
},
{
"category": "external",
"summary": "https://go.dev/issue/78566",
"url": "https://go.dev/issue/78566"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/qcCIEXso47M",
"url": "https://groups.google.com/g/golang-announce/c/qcCIEXso47M"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-4986",
"url": "https://pkg.go.dev/vuln/GO-2026-4986"
}
],
"release_date": "2026-05-07T19:41:19.854000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T15:46:32+00:00",
"details": "The RHTAS CLI Stack images contain Red Hat Trusted Artifact Signer CLI binaries.\n\nFor details on using the CLI images, refer to the product documentation at https://access.redhat.com/documentation/en-us/red_hat_trusted_artifact_signer/1.4\n\nYou can find the release notes for this version of Red Hat Trusted Artifact Signer at https://access.redhat.com/documentation/en-us/red_hat_trusted_artifact_signer/1.4/html-single/release_notes/index",
"product_ids": [
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36797"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability.",
"product_ids": [
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:tuftool-cli-stack-v1-4@amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:tuftool-cli-stack-v1-4@amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "net/mail: golang: Go net/mail: Denial of Service via crafted email inputs"
},
{
"cve": "CVE-2026-39821",
"cwe": {
"id": "CWE-1289",
"name": "Improper Validation of Unsafe Equivalence in Input"
},
"discovery_date": "2026-05-22T16:00:52.844126+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:tuftool-cli-stack-v1-4@amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2480756"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in golang.org/x/net/idna. ToASCII and ToUnicode incorrectly accept Punycode-encoded labels that decode to an ASCII-only hostname (for example, xn--example-.com returns example.com instead of an error). Applications that validate the ASCII form then convert to Unicode may grant access to a restricted hostname the ASCII check would have rejected.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang.org/x/net/idna: golang: golang.org/x/net/idna: Privilege escalation via incorrect Punycode label processing",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "golang.org/x/net/idna is vulnerable to privilege escalation through incorrect Punycode label handling in ToASCII and ToUnicode. An attacker who can supply a Punycode hostname that passes an ASCII-only authorization check may have it normalized to a restricted ASCII name the application intended to block. Red Hat exposure is broad across products shipping the Go toolchain or bundling golang.org/x/net, including RHEL and RHEL-AI golang RPMs, hummingbird Go runtimes, OpenShift and ODF container builds, and Ceph/OpenShift components compiled against affected x/net versions.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@s390x"
],
"known_not_affected": [
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:tuftool-cli-stack-v1-4@amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-39821"
},
{
"category": "external",
"summary": "RHBZ#2480756",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2480756"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-39821",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-39821"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-39821",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-39821"
},
{
"category": "external",
"summary": "https://go.dev/cl/767220",
"url": "https://go.dev/cl/767220"
},
{
"category": "external",
"summary": "https://go.dev/issue/78760",
"url": "https://go.dev/issue/78760"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/iI-mYSI0lu8",
"url": "https://groups.google.com/g/golang-announce/c/iI-mYSI0lu8"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-5026",
"url": "https://pkg.go.dev/vuln/GO-2026-5026"
}
],
"release_date": "2026-05-22T15:01:21.462000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T15:46:32+00:00",
"details": "The RHTAS CLI Stack images contain Red Hat Trusted Artifact Signer CLI binaries.\n\nFor details on using the CLI images, refer to the product documentation at https://access.redhat.com/documentation/en-us/red_hat_trusted_artifact_signer/1.4\n\nYou can find the release notes for this version of Red Hat Trusted Artifact Signer at https://access.redhat.com/documentation/en-us/red_hat_trusted_artifact_signer/1.4/html-single/release_notes/index",
"product_ids": [
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36797"
},
{
"category": "workaround",
"details": "Upgrade to a fixed golang.org/x/net release that includes the idna correction, via updated golang or dependent package rebuilds.",
"product_ids": [
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:tuftool-cli-stack-v1-4@amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 8.2,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:tuftool-cli-stack-v1-4@amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang.org/x/net/idna: golang: golang.org/x/net/idna: Privilege escalation via incorrect Punycode label processing"
},
{
"cve": "CVE-2026-39828",
"cwe": {
"id": "CWE-281",
"name": "Improper Preservation of Permissions"
},
"discovery_date": "2026-05-22T04:01:46.775641+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:tuftool-cli-stack-v1-4@amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2480687"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in golang.org/x/crypto/ssh. A remote attacker could exploit this vulnerability when an SSH server authentication callback returned a PartialSuccessError with non-nil permissions. This flaw caused these permissions to be silently discarded, potentially bypassing certificate restrictions, such as a force-command, after a second authentication factor succeeded. This could lead to unauthorized command execution or access.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang.org/x/crypto/ssh: golang.org/x/crypto/ssh: Unauthorized command execution via discarded SSH permissions",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This is an Important security flaw in the `golang.org/x/crypto/ssh` library. When an SSH server utilizing this library is configured with specific authentication callbacks that return a `PartialSuccessError` with non-nil permissions, an attacker could bypass intended certificate restrictions, such as `force-command`. This bypass could lead to unauthorized command execution or access on affected Red Hat systems configured with multi-factor authentication and certificate-based access controls.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@s390x"
],
"known_not_affected": [
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:tuftool-cli-stack-v1-4@amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-39828"
},
{
"category": "external",
"summary": "RHBZ#2480687",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2480687"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-39828",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-39828"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-39828",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-39828"
},
{
"category": "external",
"summary": "https://go.dev/cl/781621",
"url": "https://go.dev/cl/781621"
},
{
"category": "external",
"summary": "https://go.dev/issue/79562",
"url": "https://go.dev/issue/79562"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/a082jnz-LvI",
"url": "https://groups.google.com/g/golang-announce/c/a082jnz-LvI"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-5014",
"url": "https://pkg.go.dev/vuln/GO-2026-5014"
}
],
"release_date": "2026-05-22T02:31:26.883000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T15:46:32+00:00",
"details": "The RHTAS CLI Stack images contain Red Hat Trusted Artifact Signer CLI binaries.\n\nFor details on using the CLI images, refer to the product documentation at https://access.redhat.com/documentation/en-us/red_hat_trusted_artifact_signer/1.4\n\nYou can find the release notes for this version of Red Hat Trusted Artifact Signer at https://access.redhat.com/documentation/en-us/red_hat_trusted_artifact_signer/1.4/html-single/release_notes/index",
"product_ids": [
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36797"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability.",
"product_ids": [
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:tuftool-cli-stack-v1-4@amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:tuftool-cli-stack-v1-4@amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang.org/x/crypto/ssh: golang.org/x/crypto/ssh: Unauthorized command execution via discarded SSH permissions"
},
{
"cve": "CVE-2026-39829",
"cwe": {
"id": "CWE-1284",
"name": "Improper Validation of Specified Quantity in Input"
},
"discovery_date": "2026-05-22T04:01:30.092249+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:tuftool-cli-stack-v1-4@amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2480681"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in golang.org/x/crypto/ssh. The RSA and DSA public key parsers in the affected component did not enforce size limits on key parameters. This vulnerability allows an unauthenticated client to provide a crafted public key with an excessively large modulus or DSA parameter during public key authentication. Successful exploitation could lead to a denial of service (DoS) due to prolonged CPU consumption during signature verification.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang.org/x/crypto/ssh: golang.org/x/crypto/ssh: Denial of Service via crafted public key with excessive parameters",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability in golang.org/x/crypto/ssh is rated as Important. An unauthenticated remote attacker could trigger a denial of service by providing a specially crafted public key with excessively large parameters during SSH public key authentication. This could lead to prolonged CPU consumption on the server, impacting service availability.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@s390x"
],
"known_not_affected": [
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:tuftool-cli-stack-v1-4@amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-39829"
},
{
"category": "external",
"summary": "RHBZ#2480681",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2480681"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-39829",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-39829"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-39829",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-39829"
},
{
"category": "external",
"summary": "https://go.dev/cl/781641",
"url": "https://go.dev/cl/781641"
},
{
"category": "external",
"summary": "https://go.dev/cl/781661",
"url": "https://go.dev/cl/781661"
},
{
"category": "external",
"summary": "https://go.dev/issue/79565",
"url": "https://go.dev/issue/79565"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/a082jnz-LvI",
"url": "https://groups.google.com/g/golang-announce/c/a082jnz-LvI"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-5018",
"url": "https://pkg.go.dev/vuln/GO-2026-5018"
}
],
"release_date": "2026-05-22T02:31:27.324000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T15:46:32+00:00",
"details": "The RHTAS CLI Stack images contain Red Hat Trusted Artifact Signer CLI binaries.\n\nFor details on using the CLI images, refer to the product documentation at https://access.redhat.com/documentation/en-us/red_hat_trusted_artifact_signer/1.4\n\nYou can find the release notes for this version of Red Hat Trusted Artifact Signer at https://access.redhat.com/documentation/en-us/red_hat_trusted_artifact_signer/1.4/html-single/release_notes/index",
"product_ids": [
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36797"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability.",
"product_ids": [
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:tuftool-cli-stack-v1-4@amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:tuftool-cli-stack-v1-4@amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang.org/x/crypto/ssh: golang.org/x/crypto/ssh: Denial of Service via crafted public key with excessive parameters"
},
{
"cve": "CVE-2026-39830",
"cwe": {
"id": "CWE-772",
"name": "Missing Release of Resource after Effective Lifetime"
},
"discovery_date": "2026-05-22T04:01:38.517202+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:tuftool-cli-stack-v1-4@amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2480684"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in golang.org/x/crypto/ssh. A remote malicious SSH peer can exploit this by sending unsolicited global request responses, which fills an internal buffer and blocks the connection\u0027s read loop. This prevents the associated resources from being released, leading to a resource leak per connection. The consequence is a Denial of Service (DoS) for the affected system.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang.org/x/crypto/ssh: golang.org/x/crypto/ssh: Denial of Service via resource leak from unsolicited SSH responses",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This is an Important denial of service flaw in `golang.org/x/crypto/ssh`. A remote, unauthenticated attacker can exploit this vulnerability by sending unsolicited global request responses to an affected SSH server, leading to resource exhaustion and a denial of service. The impact is considered Important due to the potential for unauthenticated remote disruption of services utilizing the vulnerable SSH library.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@s390x"
],
"known_not_affected": [
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:tuftool-cli-stack-v1-4@amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-39830"
},
{
"category": "external",
"summary": "RHBZ#2480684",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2480684"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-39830",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-39830"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-39830",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-39830"
},
{
"category": "external",
"summary": "https://go.dev/cl/781640",
"url": "https://go.dev/cl/781640"
},
{
"category": "external",
"summary": "https://go.dev/cl/781664",
"url": "https://go.dev/cl/781664"
},
{
"category": "external",
"summary": "https://go.dev/issue/79564",
"url": "https://go.dev/issue/79564"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/a082jnz-LvI",
"url": "https://groups.google.com/g/golang-announce/c/a082jnz-LvI"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-5017",
"url": "https://pkg.go.dev/vuln/GO-2026-5017"
}
],
"release_date": "2026-05-22T02:31:27.208000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T15:46:32+00:00",
"details": "The RHTAS CLI Stack images contain Red Hat Trusted Artifact Signer CLI binaries.\n\nFor details on using the CLI images, refer to the product documentation at https://access.redhat.com/documentation/en-us/red_hat_trusted_artifact_signer/1.4\n\nYou can find the release notes for this version of Red Hat Trusted Artifact Signer at https://access.redhat.com/documentation/en-us/red_hat_trusted_artifact_signer/1.4/html-single/release_notes/index",
"product_ids": [
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36797"
},
{
"category": "workaround",
"details": "To mitigate this denial of service vulnerability, restrict network access to any service that utilizes the `golang.org/x/crypto/ssh` library and is exposed to untrusted networks. Implement firewall rules to allow connections only from trusted hosts or networks. This action limits the ability of malicious peers to send unsolicited global request responses. A restart of the affected service may be necessary for the new network rules to be applied effectively.",
"product_ids": [
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:tuftool-cli-stack-v1-4@amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:tuftool-cli-stack-v1-4@amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang.org/x/crypto/ssh: golang.org/x/crypto/ssh: Denial of Service via resource leak from unsolicited SSH responses"
},
{
"cve": "CVE-2026-39832",
"cwe": {
"id": "CWE-281",
"name": "Improper Preservation of Permissions"
},
"discovery_date": "2026-05-22T04:01:41.402561+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:tuftool-cli-stack-v1-4@amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2480685"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in golang.org/x/crypto/ssh/agent. When a key was added to a remote agent, security restrictions, known as constraint extensions, were not properly processed during the request. This allowed these restrictions to be silently removed when keys were forwarded, leading to the unrestricted use of the key on the remote host. This vulnerability could enable an attacker to bypass intended security controls and perform unauthorized actions.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang.org/x/crypto/ssh/agent: golang.org/x/crypto/ssh/agent: Security bypass due to improper handling of key restrictions",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This Important vulnerability in `golang.org/x/crypto/ssh/agent` allows for a security bypass when SSH keys with destination restrictions are forwarded via an SSH agent. This flaw could lead to unintended exposure of SSH keys, enabling an attacker to use the forwarded key without the specified restrictions on remote hosts. Red Hat products utilizing `golang.org/x/crypto/ssh/agent` for key forwarding may be affected if users rely on constraint extensions for limiting key usage.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@s390x"
],
"known_not_affected": [
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:tuftool-cli-stack-v1-4@amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-39832"
},
{
"category": "external",
"summary": "RHBZ#2480685",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2480685"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-39832",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-39832"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-39832",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-39832"
},
{
"category": "external",
"summary": "https://go.dev/cl/778642",
"url": "https://go.dev/cl/778642"
},
{
"category": "external",
"summary": "https://go.dev/issue/79435",
"url": "https://go.dev/issue/79435"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/a082jnz-LvI",
"url": "https://groups.google.com/g/golang-announce/c/a082jnz-LvI"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-5006",
"url": "https://pkg.go.dev/vuln/GO-2026-5006"
}
],
"release_date": "2026-05-22T02:31:26.660000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T15:46:32+00:00",
"details": "The RHTAS CLI Stack images contain Red Hat Trusted Artifact Signer CLI binaries.\n\nFor details on using the CLI images, refer to the product documentation at https://access.redhat.com/documentation/en-us/red_hat_trusted_artifact_signer/1.4\n\nYou can find the release notes for this version of Red Hat Trusted Artifact Signer at https://access.redhat.com/documentation/en-us/red_hat_trusted_artifact_signer/1.4/html-single/release_notes/index",
"product_ids": [
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36797"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability.",
"product_ids": [
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:tuftool-cli-stack-v1-4@amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 8.7,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "CHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:tuftool-cli-stack-v1-4@amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang.org/x/crypto/ssh/agent: golang.org/x/crypto/ssh/agent: Security bypass due to improper handling of key restrictions"
},
{
"cve": "CVE-2026-39833",
"cwe": {
"id": "CWE-358",
"name": "Improperly Implemented Security Check for Standard"
},
"discovery_date": "2026-05-22T04:01:35.714593+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:tuftool-cli-stack-v1-4@amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2480683"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in golang.org/x/crypto/ssh/agent. The NewKeyring() function, which creates an in-memory keyring, failed to enforce the ConfirmBeforeUse constraint on keys. This allowed keys configured to require user confirmation before use to perform signing operations without any prompt or indication to the user. Consequently, an attacker could potentially bypass intended security controls, leading to unauthorized cryptographic signing actions.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang.org/x/crypto/ssh/agent: golang.org/x/crypto/ssh/agent: Security bypass due to unenforced key confirmation",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Red Hat rates this issue as Moderate with RH CVSS 5.5 (CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N). A flaw was found in golang.org/x/crypto/ssh/agent where the in-memory keyring returned by NewKeyring() silently accepted SSH agent keys with the ConfirmBeforeUse constraint but did not enforce interactive confirmation before signing. Exploitation requires local access and low privileges on a system where an affected application uses NewKeyring() with ConfirmBeforeUse. Most Red Hat products that bundle golang.org/x/crypto do not use the ssh/agent ConfirmBeforeUse feature in their supported execution paths. The upstream CISA CVSS 9.1 assumes a broader network attack context that does not reflect Red Hat product deployment.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@s390x"
],
"known_not_affected": [
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:tuftool-cli-stack-v1-4@amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-39833"
},
{
"category": "external",
"summary": "RHBZ#2480683",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2480683"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-39833",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-39833"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-39833",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-39833"
},
{
"category": "external",
"summary": "https://go.dev/cl/778640",
"url": "https://go.dev/cl/778640"
},
{
"category": "external",
"summary": "https://go.dev/cl/778641",
"url": "https://go.dev/cl/778641"
},
{
"category": "external",
"summary": "https://go.dev/issue/79436",
"url": "https://go.dev/issue/79436"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/a082jnz-LvI",
"url": "https://groups.google.com/g/golang-announce/c/a082jnz-LvI"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-5005",
"url": "https://pkg.go.dev/vuln/GO-2026-5005"
}
],
"release_date": "2026-05-22T02:31:26.294000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T15:46:32+00:00",
"details": "The RHTAS CLI Stack images contain Red Hat Trusted Artifact Signer CLI binaries.\n\nFor details on using the CLI images, refer to the product documentation at https://access.redhat.com/documentation/en-us/red_hat_trusted_artifact_signer/1.4\n\nYou can find the release notes for this version of Red Hat Trusted Artifact Signer at https://access.redhat.com/documentation/en-us/red_hat_trusted_artifact_signer/1.4/html-single/release_notes/index",
"product_ids": [
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36797"
},
{
"category": "workaround",
"details": "Update affected Go applications to use golang.org/x/crypto version 0.52.0 or later, which rejects unsupported ConfirmBeforeUse keys instead of silently ignoring the constraint. As a workaround, do not add keys with ConfirmBeforeUse to the in-memory keyring from golang.org/x/crypto/ssh/agent, or use an SSH agent implementation that correctly enforces confirm-before-use.",
"product_ids": [
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:tuftool-cli-stack-v1-4@amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "NONE",
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:tuftool-cli-stack-v1-4@amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "golang.org/x/crypto/ssh/agent: golang.org/x/crypto/ssh/agent: Security bypass due to unenforced key confirmation"
},
{
"cve": "CVE-2026-39835",
"cwe": {
"id": "CWE-476",
"name": "NULL Pointer Dereference"
},
"discovery_date": "2026-05-22T04:01:27.279943+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:tuftool-cli-stack-v1-4@amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2480680"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in golang.org/x/crypto/ssh. SSH servers configured to use CertChecker as a public key callback, without explicitly setting IsUserAuthority or IsHostAuthority, are vulnerable. A remote attacker can exploit this by presenting a specially crafted certificate, causing the server to panic and resulting in a Denial of Service (DoS).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang.org/x/crypto/ssh: golang: golang.org/x/crypto/ssh: Denial of Service via crafted SSH certificate",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This is an Important denial of service flaw in `golang.org/x/crypto/ssh` affecting SSH servers that utilize `CertChecker` as a public key callback without explicitly configuring `IsUserAuthority` or `IsHostAuthority`. A remote, unauthenticated attacker can trigger a server panic by presenting a specially crafted certificate, leading to service disruption. Exploitation requires a specific, non-default configuration of the `CertChecker`.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@s390x"
],
"known_not_affected": [
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:tuftool-cli-stack-v1-4@amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-39835"
},
{
"category": "external",
"summary": "RHBZ#2480680",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2480680"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-39835",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-39835"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-39835",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-39835"
},
{
"category": "external",
"summary": "https://go.dev/cl/781660",
"url": "https://go.dev/cl/781660"
},
{
"category": "external",
"summary": "https://go.dev/issue/79563",
"url": "https://go.dev/issue/79563"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/a082jnz-LvI",
"url": "https://groups.google.com/g/golang-announce/c/a082jnz-LvI"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-5015",
"url": "https://pkg.go.dev/vuln/GO-2026-5015"
}
],
"release_date": "2026-05-22T02:31:26.982000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T15:46:32+00:00",
"details": "The RHTAS CLI Stack images contain Red Hat Trusted Artifact Signer CLI binaries.\n\nFor details on using the CLI images, refer to the product documentation at https://access.redhat.com/documentation/en-us/red_hat_trusted_artifact_signer/1.4\n\nYou can find the release notes for this version of Red Hat Trusted Artifact Signer at https://access.redhat.com/documentation/en-us/red_hat_trusted_artifact_signer/1.4/html-single/release_notes/index",
"product_ids": [
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36797"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability.",
"product_ids": [
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:tuftool-cli-stack-v1-4@amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:tuftool-cli-stack-v1-4@amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang.org/x/crypto/ssh: golang: golang.org/x/crypto/ssh: Denial of Service via crafted SSH certificate"
},
{
"cve": "CVE-2026-42151",
"cwe": {
"id": "CWE-256",
"name": "Plaintext Storage of a Password"
},
"discovery_date": "2026-05-04T19:02:26.983660+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:tuftool-cli-stack-v1-4@amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2466507"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Prometheus, an open-source monitoring system. The `client_secret` field within the Azure Active Directory (AD) remote write OAuth configuration was incorrectly handled as a plain string instead of a secure Secret type. This misconfiguration allowed any user or process with access to the `/-/config` HTTP API endpoint to view the Azure OAuth client secret in plaintext. This vulnerability leads to information disclosure, potentially compromising the security of integrated Azure AD services.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "github.com/prometheus/prometheus: Prometheus: Information disclosure of Azure OAuth client secret via config API",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This Important information disclosure flaw in Prometheus affects instances configured to use Azure AD remote write with OAuth authentication. The client secret, intended to be a secure credential, is exposed in plaintext through the `/-/config` HTTP API endpoint. This could allow an attacker with access to this endpoint to retrieve the secret, potentially compromising integrated Azure AD services.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@s390x"
],
"known_not_affected": [
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:tuftool-cli-stack-v1-4@amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-42151"
},
{
"category": "external",
"summary": "RHBZ#2466507",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2466507"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-42151",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-42151"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-42151",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-42151"
},
{
"category": "external",
"summary": "https://github.com/prometheus/prometheus/pull/18587",
"url": "https://github.com/prometheus/prometheus/pull/18587"
},
{
"category": "external",
"summary": "https://github.com/prometheus/prometheus/pull/18590",
"url": "https://github.com/prometheus/prometheus/pull/18590"
},
{
"category": "external",
"summary": "https://github.com/prometheus/prometheus/releases/tag/v3.11.3",
"url": "https://github.com/prometheus/prometheus/releases/tag/v3.11.3"
},
{
"category": "external",
"summary": "https://github.com/prometheus/prometheus/releases/tag/v3.5.3",
"url": "https://github.com/prometheus/prometheus/releases/tag/v3.5.3"
},
{
"category": "external",
"summary": "https://github.com/prometheus/prometheus/security/advisories/GHSA-wg65-39gg-5wfj",
"url": "https://github.com/prometheus/prometheus/security/advisories/GHSA-wg65-39gg-5wfj"
}
],
"release_date": "2026-05-04T18:12:16.917000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T15:46:32+00:00",
"details": "The RHTAS CLI Stack images contain Red Hat Trusted Artifact Signer CLI binaries.\n\nFor details on using the CLI images, refer to the product documentation at https://access.redhat.com/documentation/en-us/red_hat_trusted_artifact_signer/1.4\n\nYou can find the release notes for this version of Red Hat Trusted Artifact Signer at https://access.redhat.com/documentation/en-us/red_hat_trusted_artifact_signer/1.4/html-single/release_notes/index",
"product_ids": [
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36797"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:tuftool-cli-stack-v1-4@amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "github.com/prometheus/prometheus: Prometheus: Information disclosure of Azure OAuth client secret via config API"
},
{
"cve": "CVE-2026-42499",
"cwe": {
"id": "CWE-1046",
"name": "Creation of Immutable Text Using String Concatenation"
},
"discovery_date": "2026-05-07T20:00:51.685602+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:tuftool-cli-stack-v1-4@amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2467809"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the `net/mail` package within the Go standard library. A remote attacker could provide specially crafted, pathological email addresses. When these malformed email addresses are parsed by the `consumePhrase` function, it can lead to excessive resource consumption due to quadratic string concatenation, resulting in a Denial of Service (DoS) condition.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "net/mail: golang: net/mail: Denial of Service via pathological email address parsing",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This is an Important denial of service vulnerability in the `net/mail` package of the Go standard library. A remote attacker can exploit this flaw by sending specially crafted email addresses, leading to excessive resource consumption and a denial of service in Go applications that parse email addresses using the affected library.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@s390x"
],
"known_not_affected": [
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:tuftool-cli-stack-v1-4@amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-42499"
},
{
"category": "external",
"summary": "RHBZ#2467809",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2467809"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-42499",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-42499"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-42499",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-42499"
},
{
"category": "external",
"summary": "https://go.dev/cl/771520",
"url": "https://go.dev/cl/771520"
},
{
"category": "external",
"summary": "https://go.dev/issue/78987",
"url": "https://go.dev/issue/78987"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/qcCIEXso47M",
"url": "https://groups.google.com/g/golang-announce/c/qcCIEXso47M"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-4977",
"url": "https://pkg.go.dev/vuln/GO-2026-4977"
}
],
"release_date": "2026-05-07T19:41:18.615000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T15:46:32+00:00",
"details": "The RHTAS CLI Stack images contain Red Hat Trusted Artifact Signer CLI binaries.\n\nFor details on using the CLI images, refer to the product documentation at https://access.redhat.com/documentation/en-us/red_hat_trusted_artifact_signer/1.4\n\nYou can find the release notes for this version of Red Hat Trusted Artifact Signer at https://access.redhat.com/documentation/en-us/red_hat_trusted_artifact_signer/1.4/html-single/release_notes/index",
"product_ids": [
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36797"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability.",
"product_ids": [
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:tuftool-cli-stack-v1-4@amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:tuftool-cli-stack-v1-4@amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "net/mail: golang: net/mail: Denial of Service via pathological email address parsing"
},
{
"cve": "CVE-2026-42508",
"cwe": {
"id": "CWE-295",
"name": "Improper Certificate Validation"
},
"discovery_date": "2026-05-22T04:01:49.515058+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:tuftool-cli-stack-v1-4@amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2480688"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in golang.org/x/crypto/ssh/knownhosts. This vulnerability occurs because the system did not correctly check for the revocation status of a SignatureKey belonging to a Certificate Authority (CA). A remote attacker could potentially exploit this by presenting a revoked key, leading to the system accepting it as valid. This could allow an attacker to bypass security checks and potentially gain unauthorized access or spoof legitimate entities.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang.org/x/crypto/ssh/knownhosts: golang: golang.org/x/crypto/ssh/knownhosts: Revocation bypass via unchecked SignatureKey",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Important: A flaw in `golang.org/x/crypto/ssh/knownhosts` allows a remote attacker to bypass security checks. This vulnerability arises because the system fails to properly verify the revocation status of a Certificate Authority (CA) `SignatureKey`. In Red Hat environments, this could enable an attacker to present a revoked key, leading to its acceptance as valid and potentially granting unauthorized access or facilitating the spoofing of legitimate entities.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@s390x"
],
"known_not_affected": [
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:tuftool-cli-stack-v1-4@amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-42508"
},
{
"category": "external",
"summary": "RHBZ#2480688",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2480688"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-42508",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-42508"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-42508",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-42508"
},
{
"category": "external",
"summary": "https://go.dev/cl/781220",
"url": "https://go.dev/cl/781220"
},
{
"category": "external",
"summary": "https://go.dev/issue/79568",
"url": "https://go.dev/issue/79568"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/a082jnz-LvI",
"url": "https://groups.google.com/g/golang-announce/c/a082jnz-LvI"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-5021",
"url": "https://pkg.go.dev/vuln/GO-2026-5021"
}
],
"release_date": "2026-05-22T02:31:27.644000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T15:46:32+00:00",
"details": "The RHTAS CLI Stack images contain Red Hat Trusted Artifact Signer CLI binaries.\n\nFor details on using the CLI images, refer to the product documentation at https://access.redhat.com/documentation/en-us/red_hat_trusted_artifact_signer/1.4\n\nYou can find the release notes for this version of Red Hat Trusted Artifact Signer at https://access.redhat.com/documentation/en-us/red_hat_trusted_artifact_signer/1.4/html-single/release_notes/index",
"product_ids": [
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36797"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.4,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:tuftool-cli-stack-v1-4@amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang.org/x/crypto/ssh/knownhosts: golang: golang.org/x/crypto/ssh/knownhosts: Revocation bypass via unchecked SignatureKey"
},
{
"cve": "CVE-2026-46595",
"cwe": {
"id": "CWE-303",
"name": "Incorrect Implementation of Authentication Algorithm"
},
"discovery_date": "2026-05-22T04:01:52.215134+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:tuftool-cli-stack-v1-4@amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2480689"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in golang.org/x/crypto/ssh. Source-address validation can be skipped when an SSH server configuration uses an authentication callback type other than public key, allowing authorization bypass in misconfigured servers. This is a follow-on to incomplete coverage from the CVE-2024-45337 fix.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang.org/x/crypto/ssh: golang.org/x/crypto/ssh: Authorization bypass due to skipped source-address validation",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "golang.org/x/crypto/ssh is vulnerable to authorization bypass when SSH server configurations rely on source-address validation alongside non-public-key authentication callbacks. An attacker with low privileges who can authenticate through such a callback path may bypass intended source-address restrictions and gain unauthorized SSH access. Red Hat impact sits in services built with affected x/crypto/ssh, including RHEL golang streams, hummingbird Go toolchains, RHACM/MCE agents, and OpenShift or Ceph components that embed Go SSH servers with mixed callback types.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@s390x"
],
"known_not_affected": [
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:tuftool-cli-stack-v1-4@amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-46595"
},
{
"category": "external",
"summary": "RHBZ#2480689",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2480689"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-46595",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-46595"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-46595",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-46595"
},
{
"category": "external",
"summary": "https://go.dev/cl/781642",
"url": "https://go.dev/cl/781642"
},
{
"category": "external",
"summary": "https://go.dev/issue/79570",
"url": "https://go.dev/issue/79570"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/a082jnz-LvI",
"url": "https://groups.google.com/g/golang-announce/c/a082jnz-LvI"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-5023",
"url": "https://pkg.go.dev/vuln/GO-2026-5023"
}
],
"release_date": "2026-05-22T02:31:27.894000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T15:46:32+00:00",
"details": "The RHTAS CLI Stack images contain Red Hat Trusted Artifact Signer CLI binaries.\n\nFor details on using the CLI images, refer to the product documentation at https://access.redhat.com/documentation/en-us/red_hat_trusted_artifact_signer/1.4\n\nYou can find the release notes for this version of Red Hat Trusted Artifact Signer at https://access.redhat.com/documentation/en-us/red_hat_trusted_artifact_signer/1.4/html-single/release_notes/index",
"product_ids": [
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36797"
},
{
"category": "workaround",
"details": "Upgrade to a fixed golang.org/x/crypto/ssh release via updated golang or package rebuilds. Ensure SSH servers use supported public-key callback configurations with source-address validation as intended.",
"product_ids": [
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:tuftool-cli-stack-v1-4@amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 7.1,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:L",
"version": "3.1"
},
"products": [
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:tuftool-cli-stack-v1-4@amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang.org/x/crypto/ssh: golang.org/x/crypto/ssh: Authorization bypass due to skipped source-address validation"
}
]
}
RHSA-2026:36808
Vulnerability from csaf_redhat - Published: 2026-07-08 16:06 - Updated: 2026-07-10 19:40A flaw was found in Go's `crypto/x509` package. A remote attacker could exploit this by presenting a specially crafted certificate chain containing a large number of policy mappings. This inefficient validation process consumes excessive resources, which can lead to a denial of service (DoS) for applications or systems performing certificate validation.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-rhel9-operator@sha256:273e029b1618235c7c4ea103d09da99dac8d2803c9be4b5754f1f251563fce27_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-rhel9-operator@sha256:2f577d0458bb4af7eb00dc937cac08023c2de0fca74e31fc2c2725cc4cc26a44_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-rhel9-operator@sha256:71f0ecbb31045e41063e781e2cf03737e8878c49b27366103ff15b7a95e8e946_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-rhel9-operator@sha256:b74935a50eddbd0bfa65b9cd7546c73fadc9267f867adcdaa0cbf8c32b6b4e40_ppc64le | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-operator-bundle@sha256:2a263321d0db82af2c030c7035349d3b42378fb3b03c3e58c0553ce68217581b_amd64 | — |
Workaround
|
|
| Unresolved product id: DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-backup-rhel9@sha256:2a99aac71cd2c5ac53e26817eb8e1df65e417ebbc0fce30b05905f022df9dda3_arm64 | — |
Workaround
|
|
| Unresolved product id: DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-backup-rhel9@sha256:509841df7c98e3d55c85e44dce9d1b235ab9ad80fa0ec82fdfc9a3562e4effbf_s390x | — |
Workaround
|
|
| Unresolved product id: DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-backup-rhel9@sha256:77e0a72e35af25a60b202082ada3e61d80d0be7e24ea3b0c374541c93d25da44_ppc64le | — |
Workaround
|
|
| Unresolved product id: DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-backup-rhel9@sha256:f1d6822065c055040bf9017047ea4afd874c33ccbfa3c4e5854655419f58dd8e_amd64 | — |
Workaround
|
|
| Unresolved product id: DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-clone-rhel9@sha256:00c7568ee3e388839b7777dab379ac6ecf3c5bc7bdeec2562417f88f862b80b5_s390x | — |
Workaround
|
|
| Unresolved product id: DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-clone-rhel9@sha256:0ba88226a4c28d5caab277cbddac90e8782bd9b77a87c2253b5933730fda57f2_amd64 | — |
Workaround
|
|
| Unresolved product id: DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-clone-rhel9@sha256:3d0cf855d29d897af3f55066f0882b844402d43c29ede0401336e00d8e09806e_ppc64le | — |
Workaround
|
|
| Unresolved product id: DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-clone-rhel9@sha256:70d9351eb4156abab69dd5001020cf9a90731d25a2677069c85788c6f41d2130_arm64 | — |
Workaround
|
A flaw was found in golang.org/x/net/idna. ToASCII and ToUnicode incorrectly accept Punycode-encoded labels that decode to an ASCII-only hostname (for example, xn--example-.com returns example.com instead of an error). Applications that validate the ASCII form then convert to Unicode may grant access to a restricted hostname the ASCII check would have rejected.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-rhel9-operator@sha256:273e029b1618235c7c4ea103d09da99dac8d2803c9be4b5754f1f251563fce27_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-rhel9-operator@sha256:2f577d0458bb4af7eb00dc937cac08023c2de0fca74e31fc2c2725cc4cc26a44_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-rhel9-operator@sha256:71f0ecbb31045e41063e781e2cf03737e8878c49b27366103ff15b7a95e8e946_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-rhel9-operator@sha256:b74935a50eddbd0bfa65b9cd7546c73fadc9267f867adcdaa0cbf8c32b6b4e40_ppc64le | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-operator-bundle@sha256:2a263321d0db82af2c030c7035349d3b42378fb3b03c3e58c0553ce68217581b_amd64 | — |
Workaround
|
|
| Unresolved product id: DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-backup-rhel9@sha256:2a99aac71cd2c5ac53e26817eb8e1df65e417ebbc0fce30b05905f022df9dda3_arm64 | — |
Workaround
|
|
| Unresolved product id: DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-backup-rhel9@sha256:509841df7c98e3d55c85e44dce9d1b235ab9ad80fa0ec82fdfc9a3562e4effbf_s390x | — |
Workaround
|
|
| Unresolved product id: DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-backup-rhel9@sha256:77e0a72e35af25a60b202082ada3e61d80d0be7e24ea3b0c374541c93d25da44_ppc64le | — |
Workaround
|
|
| Unresolved product id: DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-backup-rhel9@sha256:f1d6822065c055040bf9017047ea4afd874c33ccbfa3c4e5854655419f58dd8e_amd64 | — |
Workaround
|
|
| Unresolved product id: DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-clone-rhel9@sha256:00c7568ee3e388839b7777dab379ac6ecf3c5bc7bdeec2562417f88f862b80b5_s390x | — |
Workaround
|
|
| Unresolved product id: DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-clone-rhel9@sha256:0ba88226a4c28d5caab277cbddac90e8782bd9b77a87c2253b5933730fda57f2_amd64 | — |
Workaround
|
|
| Unresolved product id: DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-clone-rhel9@sha256:3d0cf855d29d897af3f55066f0882b844402d43c29ede0401336e00d8e09806e_ppc64le | — |
Workaround
|
|
| Unresolved product id: DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-clone-rhel9@sha256:70d9351eb4156abab69dd5001020cf9a90731d25a2677069c85788c6f41d2130_arm64 | — |
Workaround
|
A flaw was found in golang.org/x/crypto/ssh. A remote attacker could exploit this vulnerability when an SSH server authentication callback returned a PartialSuccessError with non-nil permissions. This flaw caused these permissions to be silently discarded, potentially bypassing certificate restrictions, such as a force-command, after a second authentication factor succeeded. This could lead to unauthorized command execution or access.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-clone-rhel9@sha256:00c7568ee3e388839b7777dab379ac6ecf3c5bc7bdeec2562417f88f862b80b5_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-clone-rhel9@sha256:0ba88226a4c28d5caab277cbddac90e8782bd9b77a87c2253b5933730fda57f2_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-clone-rhel9@sha256:3d0cf855d29d897af3f55066f0882b844402d43c29ede0401336e00d8e09806e_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-clone-rhel9@sha256:70d9351eb4156abab69dd5001020cf9a90731d25a2677069c85788c6f41d2130_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-rhel9-operator@sha256:273e029b1618235c7c4ea103d09da99dac8d2803c9be4b5754f1f251563fce27_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-rhel9-operator@sha256:2f577d0458bb4af7eb00dc937cac08023c2de0fca74e31fc2c2725cc4cc26a44_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-rhel9-operator@sha256:71f0ecbb31045e41063e781e2cf03737e8878c49b27366103ff15b7a95e8e946_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-rhel9-operator@sha256:b74935a50eddbd0bfa65b9cd7546c73fadc9267f867adcdaa0cbf8c32b6b4e40_ppc64le | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-operator-bundle@sha256:2a263321d0db82af2c030c7035349d3b42378fb3b03c3e58c0553ce68217581b_amd64 | — |
Workaround
|
|
| Unresolved product id: DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-backup-rhel9@sha256:2a99aac71cd2c5ac53e26817eb8e1df65e417ebbc0fce30b05905f022df9dda3_arm64 | — |
Workaround
|
|
| Unresolved product id: DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-backup-rhel9@sha256:509841df7c98e3d55c85e44dce9d1b235ab9ad80fa0ec82fdfc9a3562e4effbf_s390x | — |
Workaround
|
|
| Unresolved product id: DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-backup-rhel9@sha256:77e0a72e35af25a60b202082ada3e61d80d0be7e24ea3b0c374541c93d25da44_ppc64le | — |
Workaround
|
|
| Unresolved product id: DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-backup-rhel9@sha256:f1d6822065c055040bf9017047ea4afd874c33ccbfa3c4e5854655419f58dd8e_amd64 | — |
Workaround
|
A flaw was found in golang.org/x/crypto/ssh. The RSA and DSA public key parsers in the affected component did not enforce size limits on key parameters. This vulnerability allows an unauthenticated client to provide a crafted public key with an excessively large modulus or DSA parameter during public key authentication. Successful exploitation could lead to a denial of service (DoS) due to prolonged CPU consumption during signature verification.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-clone-rhel9@sha256:00c7568ee3e388839b7777dab379ac6ecf3c5bc7bdeec2562417f88f862b80b5_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-clone-rhel9@sha256:0ba88226a4c28d5caab277cbddac90e8782bd9b77a87c2253b5933730fda57f2_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-clone-rhel9@sha256:3d0cf855d29d897af3f55066f0882b844402d43c29ede0401336e00d8e09806e_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-clone-rhel9@sha256:70d9351eb4156abab69dd5001020cf9a90731d25a2677069c85788c6f41d2130_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-rhel9-operator@sha256:273e029b1618235c7c4ea103d09da99dac8d2803c9be4b5754f1f251563fce27_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-rhel9-operator@sha256:2f577d0458bb4af7eb00dc937cac08023c2de0fca74e31fc2c2725cc4cc26a44_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-rhel9-operator@sha256:71f0ecbb31045e41063e781e2cf03737e8878c49b27366103ff15b7a95e8e946_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-rhel9-operator@sha256:b74935a50eddbd0bfa65b9cd7546c73fadc9267f867adcdaa0cbf8c32b6b4e40_ppc64le | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-operator-bundle@sha256:2a263321d0db82af2c030c7035349d3b42378fb3b03c3e58c0553ce68217581b_amd64 | — |
Workaround
|
|
| Unresolved product id: DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-backup-rhel9@sha256:2a99aac71cd2c5ac53e26817eb8e1df65e417ebbc0fce30b05905f022df9dda3_arm64 | — |
Workaround
|
|
| Unresolved product id: DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-backup-rhel9@sha256:509841df7c98e3d55c85e44dce9d1b235ab9ad80fa0ec82fdfc9a3562e4effbf_s390x | — |
Workaround
|
|
| Unresolved product id: DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-backup-rhel9@sha256:77e0a72e35af25a60b202082ada3e61d80d0be7e24ea3b0c374541c93d25da44_ppc64le | — |
Workaround
|
|
| Unresolved product id: DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-backup-rhel9@sha256:f1d6822065c055040bf9017047ea4afd874c33ccbfa3c4e5854655419f58dd8e_amd64 | — |
Workaround
|
A flaw was found in golang.org/x/crypto/ssh. A remote malicious SSH peer can exploit this by sending unsolicited global request responses, which fills an internal buffer and blocks the connection's read loop. This prevents the associated resources from being released, leading to a resource leak per connection. The consequence is a Denial of Service (DoS) for the affected system.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-clone-rhel9@sha256:00c7568ee3e388839b7777dab379ac6ecf3c5bc7bdeec2562417f88f862b80b5_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-clone-rhel9@sha256:0ba88226a4c28d5caab277cbddac90e8782bd9b77a87c2253b5933730fda57f2_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-clone-rhel9@sha256:3d0cf855d29d897af3f55066f0882b844402d43c29ede0401336e00d8e09806e_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-clone-rhel9@sha256:70d9351eb4156abab69dd5001020cf9a90731d25a2677069c85788c6f41d2130_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-rhel9-operator@sha256:273e029b1618235c7c4ea103d09da99dac8d2803c9be4b5754f1f251563fce27_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-rhel9-operator@sha256:2f577d0458bb4af7eb00dc937cac08023c2de0fca74e31fc2c2725cc4cc26a44_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-rhel9-operator@sha256:71f0ecbb31045e41063e781e2cf03737e8878c49b27366103ff15b7a95e8e946_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-rhel9-operator@sha256:b74935a50eddbd0bfa65b9cd7546c73fadc9267f867adcdaa0cbf8c32b6b4e40_ppc64le | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-operator-bundle@sha256:2a263321d0db82af2c030c7035349d3b42378fb3b03c3e58c0553ce68217581b_amd64 | — |
Workaround
|
|
| Unresolved product id: DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-backup-rhel9@sha256:2a99aac71cd2c5ac53e26817eb8e1df65e417ebbc0fce30b05905f022df9dda3_arm64 | — |
Workaround
|
|
| Unresolved product id: DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-backup-rhel9@sha256:509841df7c98e3d55c85e44dce9d1b235ab9ad80fa0ec82fdfc9a3562e4effbf_s390x | — |
Workaround
|
|
| Unresolved product id: DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-backup-rhel9@sha256:77e0a72e35af25a60b202082ada3e61d80d0be7e24ea3b0c374541c93d25da44_ppc64le | — |
Workaround
|
|
| Unresolved product id: DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-backup-rhel9@sha256:f1d6822065c055040bf9017047ea4afd874c33ccbfa3c4e5854655419f58dd8e_amd64 | — |
Workaround
|
A flaw was found in golang.org/x/crypto/ssh/knownhosts. This vulnerability occurs because the system did not correctly check for the revocation status of a SignatureKey belonging to a Certificate Authority (CA). A remote attacker could potentially exploit this by presenting a revoked key, leading to the system accepting it as valid. This could allow an attacker to bypass security checks and potentially gain unauthorized access or spoof legitimate entities.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-rhel9-operator@sha256:273e029b1618235c7c4ea103d09da99dac8d2803c9be4b5754f1f251563fce27_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-rhel9-operator@sha256:2f577d0458bb4af7eb00dc937cac08023c2de0fca74e31fc2c2725cc4cc26a44_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-rhel9-operator@sha256:71f0ecbb31045e41063e781e2cf03737e8878c49b27366103ff15b7a95e8e946_arm64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-rhel9-operator@sha256:b74935a50eddbd0bfa65b9cd7546c73fadc9267f867adcdaa0cbf8c32b6b4e40_ppc64le | — |
Vendor Fix
fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-operator-bundle@sha256:2a263321d0db82af2c030c7035349d3b42378fb3b03c3e58c0553ce68217581b_amd64 | — | ||
| Unresolved product id: DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-backup-rhel9@sha256:2a99aac71cd2c5ac53e26817eb8e1df65e417ebbc0fce30b05905f022df9dda3_arm64 | — | ||
| Unresolved product id: DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-backup-rhel9@sha256:509841df7c98e3d55c85e44dce9d1b235ab9ad80fa0ec82fdfc9a3562e4effbf_s390x | — | ||
| Unresolved product id: DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-backup-rhel9@sha256:77e0a72e35af25a60b202082ada3e61d80d0be7e24ea3b0c374541c93d25da44_ppc64le | — | ||
| Unresolved product id: DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-backup-rhel9@sha256:f1d6822065c055040bf9017047ea4afd874c33ccbfa3c4e5854655419f58dd8e_amd64 | — | ||
| Unresolved product id: DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-clone-rhel9@sha256:00c7568ee3e388839b7777dab379ac6ecf3c5bc7bdeec2562417f88f862b80b5_s390x | — | ||
| Unresolved product id: DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-clone-rhel9@sha256:0ba88226a4c28d5caab277cbddac90e8782bd9b77a87c2253b5933730fda57f2_amd64 | — | ||
| Unresolved product id: DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-clone-rhel9@sha256:3d0cf855d29d897af3f55066f0882b844402d43c29ede0401336e00d8e09806e_ppc64le | — | ||
| Unresolved product id: DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-clone-rhel9@sha256:70d9351eb4156abab69dd5001020cf9a90731d25a2677069c85788c6f41d2130_arm64 | — |
A flaw was found in golang.org/x/crypto/ssh. Source-address validation can be skipped when an SSH server configuration uses an authentication callback type other than public key, allowing authorization bypass in misconfigured servers. This is a follow-on to incomplete coverage from the CVE-2024-45337 fix.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-rhel9-operator@sha256:273e029b1618235c7c4ea103d09da99dac8d2803c9be4b5754f1f251563fce27_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-rhel9-operator@sha256:2f577d0458bb4af7eb00dc937cac08023c2de0fca74e31fc2c2725cc4cc26a44_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-rhel9-operator@sha256:71f0ecbb31045e41063e781e2cf03737e8878c49b27366103ff15b7a95e8e946_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-rhel9-operator@sha256:b74935a50eddbd0bfa65b9cd7546c73fadc9267f867adcdaa0cbf8c32b6b4e40_ppc64le | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-operator-bundle@sha256:2a263321d0db82af2c030c7035349d3b42378fb3b03c3e58c0553ce68217581b_amd64 | — |
Workaround
|
|
| Unresolved product id: DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-backup-rhel9@sha256:2a99aac71cd2c5ac53e26817eb8e1df65e417ebbc0fce30b05905f022df9dda3_arm64 | — |
Workaround
|
|
| Unresolved product id: DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-backup-rhel9@sha256:509841df7c98e3d55c85e44dce9d1b235ab9ad80fa0ec82fdfc9a3562e4effbf_s390x | — |
Workaround
|
|
| Unresolved product id: DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-backup-rhel9@sha256:77e0a72e35af25a60b202082ada3e61d80d0be7e24ea3b0c374541c93d25da44_ppc64le | — |
Workaround
|
|
| Unresolved product id: DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-backup-rhel9@sha256:f1d6822065c055040bf9017047ea4afd874c33ccbfa3c4e5854655419f58dd8e_amd64 | — |
Workaround
|
|
| Unresolved product id: DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-clone-rhel9@sha256:00c7568ee3e388839b7777dab379ac6ecf3c5bc7bdeec2562417f88f862b80b5_s390x | — |
Workaround
|
|
| Unresolved product id: DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-clone-rhel9@sha256:0ba88226a4c28d5caab277cbddac90e8782bd9b77a87c2253b5933730fda57f2_amd64 | — |
Workaround
|
|
| Unresolved product id: DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-clone-rhel9@sha256:3d0cf855d29d897af3f55066f0882b844402d43c29ede0401336e00d8e09806e_ppc64le | — |
Workaround
|
|
| Unresolved product id: DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-clone-rhel9@sha256:70d9351eb4156abab69dd5001020cf9a90731d25a2677069c85788c6f41d2130_arm64 | — |
Workaround
|
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "DevWorkspace Operator 0.42.0 has been released.",
"title": "Topic"
},
{
"category": "general",
"text": "The DevWorkspace Operator extends OpenShift to provide DevWorkspace support.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2026:36808",
"url": "https://access.redhat.com/errata/RHSA-2026:36808"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-32281",
"url": "https://access.redhat.com/security/cve/CVE-2026-32281"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-39821",
"url": "https://access.redhat.com/security/cve/CVE-2026-39821"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-39828",
"url": "https://access.redhat.com/security/cve/CVE-2026-39828"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-39829",
"url": "https://access.redhat.com/security/cve/CVE-2026-39829"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-39830",
"url": "https://access.redhat.com/security/cve/CVE-2026-39830"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-42508",
"url": "https://access.redhat.com/security/cve/CVE-2026-42508"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-46595",
"url": "https://access.redhat.com/security/cve/CVE-2026-46595"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/",
"url": "https://access.redhat.com/security/updates/classification/"
},
{
"category": "external",
"summary": "https://redhat.atlassian.net/browse/CRW-11515",
"url": "https://redhat.atlassian.net/browse/CRW-11515"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2026/rhsa-2026_36808.json"
}
],
"title": "Red Hat Security Advisory: DevWorkspace Operator 0.42.0 release.",
"tracking": {
"current_release_date": "2026-07-10T19:40:48+00:00",
"generator": {
"date": "2026-07-10T19:40:48+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "5.3.2"
}
},
"id": "RHSA-2026:36808",
"initial_release_date": "2026-07-08T16:06:37+00:00",
"revision_history": [
{
"date": "2026-07-08T16:06:37+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2026-07-08T16:06:46+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2026-07-10T19:40:48+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "DevWorkspace Operator 0.42",
"product": {
"name": "DevWorkspace Operator 0.42",
"product_id": "DevWorkspace Operator 0.42",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:devworkspace:0.42::el9"
}
}
}
],
"category": "product_family",
"name": "DevWorkspace Operator"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/devworkspace/devworkspace-rhel9-operator@sha256:273e029b1618235c7c4ea103d09da99dac8d2803c9be4b5754f1f251563fce27_amd64",
"product": {
"name": "registry.redhat.io/devworkspace/devworkspace-rhel9-operator@sha256:273e029b1618235c7c4ea103d09da99dac8d2803c9be4b5754f1f251563fce27_amd64",
"product_id": "registry.redhat.io/devworkspace/devworkspace-rhel9-operator@sha256:273e029b1618235c7c4ea103d09da99dac8d2803c9be4b5754f1f251563fce27_amd64",
"product_identification_helper": {
"purl": "pkg:oci/devworkspace-rhel9-operator@sha256%3A273e029b1618235c7c4ea103d09da99dac8d2803c9be4b5754f1f251563fce27?arch=amd64\u0026repository_url=registry.redhat.io/devworkspace/devworkspace-rhel9-operator\u0026tag=1782401674"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/devworkspace/devworkspace-operator-bundle@sha256:2a263321d0db82af2c030c7035349d3b42378fb3b03c3e58c0553ce68217581b_amd64",
"product": {
"name": "registry.redhat.io/devworkspace/devworkspace-operator-bundle@sha256:2a263321d0db82af2c030c7035349d3b42378fb3b03c3e58c0553ce68217581b_amd64",
"product_id": "registry.redhat.io/devworkspace/devworkspace-operator-bundle@sha256:2a263321d0db82af2c030c7035349d3b42378fb3b03c3e58c0553ce68217581b_amd64",
"product_identification_helper": {
"purl": "pkg:oci/devworkspace-operator-bundle@sha256%3A2a263321d0db82af2c030c7035349d3b42378fb3b03c3e58c0553ce68217581b?arch=amd64\u0026repository_url=registry.redhat.io/devworkspace/devworkspace-operator-bundle\u0026tag=1782405692"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/devworkspace/devworkspace-project-backup-rhel9@sha256:f1d6822065c055040bf9017047ea4afd874c33ccbfa3c4e5854655419f58dd8e_amd64",
"product": {
"name": "registry.redhat.io/devworkspace/devworkspace-project-backup-rhel9@sha256:f1d6822065c055040bf9017047ea4afd874c33ccbfa3c4e5854655419f58dd8e_amd64",
"product_id": "registry.redhat.io/devworkspace/devworkspace-project-backup-rhel9@sha256:f1d6822065c055040bf9017047ea4afd874c33ccbfa3c4e5854655419f58dd8e_amd64",
"product_identification_helper": {
"purl": "pkg:oci/devworkspace-project-backup-rhel9@sha256%3Af1d6822065c055040bf9017047ea4afd874c33ccbfa3c4e5854655419f58dd8e?arch=amd64\u0026repository_url=registry.redhat.io/devworkspace/devworkspace-project-backup-rhel9\u0026tag=1782401412"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/devworkspace/devworkspace-project-clone-rhel9@sha256:0ba88226a4c28d5caab277cbddac90e8782bd9b77a87c2253b5933730fda57f2_amd64",
"product": {
"name": "registry.redhat.io/devworkspace/devworkspace-project-clone-rhel9@sha256:0ba88226a4c28d5caab277cbddac90e8782bd9b77a87c2253b5933730fda57f2_amd64",
"product_id": "registry.redhat.io/devworkspace/devworkspace-project-clone-rhel9@sha256:0ba88226a4c28d5caab277cbddac90e8782bd9b77a87c2253b5933730fda57f2_amd64",
"product_identification_helper": {
"purl": "pkg:oci/devworkspace-project-clone-rhel9@sha256%3A0ba88226a4c28d5caab277cbddac90e8782bd9b77a87c2253b5933730fda57f2?arch=amd64\u0026repository_url=registry.redhat.io/devworkspace/devworkspace-project-clone-rhel9\u0026tag=1782400868"
}
}
}
],
"category": "architecture",
"name": "amd64"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/devworkspace/devworkspace-rhel9-operator@sha256:2f577d0458bb4af7eb00dc937cac08023c2de0fca74e31fc2c2725cc4cc26a44_s390x",
"product": {
"name": "registry.redhat.io/devworkspace/devworkspace-rhel9-operator@sha256:2f577d0458bb4af7eb00dc937cac08023c2de0fca74e31fc2c2725cc4cc26a44_s390x",
"product_id": "registry.redhat.io/devworkspace/devworkspace-rhel9-operator@sha256:2f577d0458bb4af7eb00dc937cac08023c2de0fca74e31fc2c2725cc4cc26a44_s390x",
"product_identification_helper": {
"purl": "pkg:oci/devworkspace-rhel9-operator@sha256%3A2f577d0458bb4af7eb00dc937cac08023c2de0fca74e31fc2c2725cc4cc26a44?arch=s390x\u0026repository_url=registry.redhat.io/devworkspace/devworkspace-rhel9-operator\u0026tag=1782401674"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/devworkspace/devworkspace-project-backup-rhel9@sha256:509841df7c98e3d55c85e44dce9d1b235ab9ad80fa0ec82fdfc9a3562e4effbf_s390x",
"product": {
"name": "registry.redhat.io/devworkspace/devworkspace-project-backup-rhel9@sha256:509841df7c98e3d55c85e44dce9d1b235ab9ad80fa0ec82fdfc9a3562e4effbf_s390x",
"product_id": "registry.redhat.io/devworkspace/devworkspace-project-backup-rhel9@sha256:509841df7c98e3d55c85e44dce9d1b235ab9ad80fa0ec82fdfc9a3562e4effbf_s390x",
"product_identification_helper": {
"purl": "pkg:oci/devworkspace-project-backup-rhel9@sha256%3A509841df7c98e3d55c85e44dce9d1b235ab9ad80fa0ec82fdfc9a3562e4effbf?arch=s390x\u0026repository_url=registry.redhat.io/devworkspace/devworkspace-project-backup-rhel9\u0026tag=1782401412"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/devworkspace/devworkspace-project-clone-rhel9@sha256:00c7568ee3e388839b7777dab379ac6ecf3c5bc7bdeec2562417f88f862b80b5_s390x",
"product": {
"name": "registry.redhat.io/devworkspace/devworkspace-project-clone-rhel9@sha256:00c7568ee3e388839b7777dab379ac6ecf3c5bc7bdeec2562417f88f862b80b5_s390x",
"product_id": "registry.redhat.io/devworkspace/devworkspace-project-clone-rhel9@sha256:00c7568ee3e388839b7777dab379ac6ecf3c5bc7bdeec2562417f88f862b80b5_s390x",
"product_identification_helper": {
"purl": "pkg:oci/devworkspace-project-clone-rhel9@sha256%3A00c7568ee3e388839b7777dab379ac6ecf3c5bc7bdeec2562417f88f862b80b5?arch=s390x\u0026repository_url=registry.redhat.io/devworkspace/devworkspace-project-clone-rhel9\u0026tag=1782400868"
}
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/devworkspace/devworkspace-rhel9-operator@sha256:b74935a50eddbd0bfa65b9cd7546c73fadc9267f867adcdaa0cbf8c32b6b4e40_ppc64le",
"product": {
"name": "registry.redhat.io/devworkspace/devworkspace-rhel9-operator@sha256:b74935a50eddbd0bfa65b9cd7546c73fadc9267f867adcdaa0cbf8c32b6b4e40_ppc64le",
"product_id": "registry.redhat.io/devworkspace/devworkspace-rhel9-operator@sha256:b74935a50eddbd0bfa65b9cd7546c73fadc9267f867adcdaa0cbf8c32b6b4e40_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/devworkspace-rhel9-operator@sha256%3Ab74935a50eddbd0bfa65b9cd7546c73fadc9267f867adcdaa0cbf8c32b6b4e40?arch=ppc64le\u0026repository_url=registry.redhat.io/devworkspace/devworkspace-rhel9-operator\u0026tag=1782401674"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/devworkspace/devworkspace-project-backup-rhel9@sha256:77e0a72e35af25a60b202082ada3e61d80d0be7e24ea3b0c374541c93d25da44_ppc64le",
"product": {
"name": "registry.redhat.io/devworkspace/devworkspace-project-backup-rhel9@sha256:77e0a72e35af25a60b202082ada3e61d80d0be7e24ea3b0c374541c93d25da44_ppc64le",
"product_id": "registry.redhat.io/devworkspace/devworkspace-project-backup-rhel9@sha256:77e0a72e35af25a60b202082ada3e61d80d0be7e24ea3b0c374541c93d25da44_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/devworkspace-project-backup-rhel9@sha256%3A77e0a72e35af25a60b202082ada3e61d80d0be7e24ea3b0c374541c93d25da44?arch=ppc64le\u0026repository_url=registry.redhat.io/devworkspace/devworkspace-project-backup-rhel9\u0026tag=1782401412"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/devworkspace/devworkspace-project-clone-rhel9@sha256:3d0cf855d29d897af3f55066f0882b844402d43c29ede0401336e00d8e09806e_ppc64le",
"product": {
"name": "registry.redhat.io/devworkspace/devworkspace-project-clone-rhel9@sha256:3d0cf855d29d897af3f55066f0882b844402d43c29ede0401336e00d8e09806e_ppc64le",
"product_id": "registry.redhat.io/devworkspace/devworkspace-project-clone-rhel9@sha256:3d0cf855d29d897af3f55066f0882b844402d43c29ede0401336e00d8e09806e_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/devworkspace-project-clone-rhel9@sha256%3A3d0cf855d29d897af3f55066f0882b844402d43c29ede0401336e00d8e09806e?arch=ppc64le\u0026repository_url=registry.redhat.io/devworkspace/devworkspace-project-clone-rhel9\u0026tag=1782400868"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/devworkspace/devworkspace-rhel9-operator@sha256:71f0ecbb31045e41063e781e2cf03737e8878c49b27366103ff15b7a95e8e946_arm64",
"product": {
"name": "registry.redhat.io/devworkspace/devworkspace-rhel9-operator@sha256:71f0ecbb31045e41063e781e2cf03737e8878c49b27366103ff15b7a95e8e946_arm64",
"product_id": "registry.redhat.io/devworkspace/devworkspace-rhel9-operator@sha256:71f0ecbb31045e41063e781e2cf03737e8878c49b27366103ff15b7a95e8e946_arm64",
"product_identification_helper": {
"purl": "pkg:oci/devworkspace-rhel9-operator@sha256%3A71f0ecbb31045e41063e781e2cf03737e8878c49b27366103ff15b7a95e8e946?arch=arm64\u0026repository_url=registry.redhat.io/devworkspace/devworkspace-rhel9-operator\u0026tag=1782401674"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/devworkspace/devworkspace-project-backup-rhel9@sha256:2a99aac71cd2c5ac53e26817eb8e1df65e417ebbc0fce30b05905f022df9dda3_arm64",
"product": {
"name": "registry.redhat.io/devworkspace/devworkspace-project-backup-rhel9@sha256:2a99aac71cd2c5ac53e26817eb8e1df65e417ebbc0fce30b05905f022df9dda3_arm64",
"product_id": "registry.redhat.io/devworkspace/devworkspace-project-backup-rhel9@sha256:2a99aac71cd2c5ac53e26817eb8e1df65e417ebbc0fce30b05905f022df9dda3_arm64",
"product_identification_helper": {
"purl": "pkg:oci/devworkspace-project-backup-rhel9@sha256%3A2a99aac71cd2c5ac53e26817eb8e1df65e417ebbc0fce30b05905f022df9dda3?arch=arm64\u0026repository_url=registry.redhat.io/devworkspace/devworkspace-project-backup-rhel9\u0026tag=1782401412"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/devworkspace/devworkspace-project-clone-rhel9@sha256:70d9351eb4156abab69dd5001020cf9a90731d25a2677069c85788c6f41d2130_arm64",
"product": {
"name": "registry.redhat.io/devworkspace/devworkspace-project-clone-rhel9@sha256:70d9351eb4156abab69dd5001020cf9a90731d25a2677069c85788c6f41d2130_arm64",
"product_id": "registry.redhat.io/devworkspace/devworkspace-project-clone-rhel9@sha256:70d9351eb4156abab69dd5001020cf9a90731d25a2677069c85788c6f41d2130_arm64",
"product_identification_helper": {
"purl": "pkg:oci/devworkspace-project-clone-rhel9@sha256%3A70d9351eb4156abab69dd5001020cf9a90731d25a2677069c85788c6f41d2130?arch=arm64\u0026repository_url=registry.redhat.io/devworkspace/devworkspace-project-clone-rhel9\u0026tag=1782400868"
}
}
}
],
"category": "architecture",
"name": "arm64"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/devworkspace/devworkspace-operator-bundle@sha256:2a263321d0db82af2c030c7035349d3b42378fb3b03c3e58c0553ce68217581b_amd64 as a component of DevWorkspace Operator 0.42",
"product_id": "DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-operator-bundle@sha256:2a263321d0db82af2c030c7035349d3b42378fb3b03c3e58c0553ce68217581b_amd64"
},
"product_reference": "registry.redhat.io/devworkspace/devworkspace-operator-bundle@sha256:2a263321d0db82af2c030c7035349d3b42378fb3b03c3e58c0553ce68217581b_amd64",
"relates_to_product_reference": "DevWorkspace Operator 0.42"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/devworkspace/devworkspace-project-backup-rhel9@sha256:2a99aac71cd2c5ac53e26817eb8e1df65e417ebbc0fce30b05905f022df9dda3_arm64 as a component of DevWorkspace Operator 0.42",
"product_id": "DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-backup-rhel9@sha256:2a99aac71cd2c5ac53e26817eb8e1df65e417ebbc0fce30b05905f022df9dda3_arm64"
},
"product_reference": "registry.redhat.io/devworkspace/devworkspace-project-backup-rhel9@sha256:2a99aac71cd2c5ac53e26817eb8e1df65e417ebbc0fce30b05905f022df9dda3_arm64",
"relates_to_product_reference": "DevWorkspace Operator 0.42"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/devworkspace/devworkspace-project-backup-rhel9@sha256:509841df7c98e3d55c85e44dce9d1b235ab9ad80fa0ec82fdfc9a3562e4effbf_s390x as a component of DevWorkspace Operator 0.42",
"product_id": "DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-backup-rhel9@sha256:509841df7c98e3d55c85e44dce9d1b235ab9ad80fa0ec82fdfc9a3562e4effbf_s390x"
},
"product_reference": "registry.redhat.io/devworkspace/devworkspace-project-backup-rhel9@sha256:509841df7c98e3d55c85e44dce9d1b235ab9ad80fa0ec82fdfc9a3562e4effbf_s390x",
"relates_to_product_reference": "DevWorkspace Operator 0.42"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/devworkspace/devworkspace-project-backup-rhel9@sha256:77e0a72e35af25a60b202082ada3e61d80d0be7e24ea3b0c374541c93d25da44_ppc64le as a component of DevWorkspace Operator 0.42",
"product_id": "DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-backup-rhel9@sha256:77e0a72e35af25a60b202082ada3e61d80d0be7e24ea3b0c374541c93d25da44_ppc64le"
},
"product_reference": "registry.redhat.io/devworkspace/devworkspace-project-backup-rhel9@sha256:77e0a72e35af25a60b202082ada3e61d80d0be7e24ea3b0c374541c93d25da44_ppc64le",
"relates_to_product_reference": "DevWorkspace Operator 0.42"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/devworkspace/devworkspace-project-backup-rhel9@sha256:f1d6822065c055040bf9017047ea4afd874c33ccbfa3c4e5854655419f58dd8e_amd64 as a component of DevWorkspace Operator 0.42",
"product_id": "DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-backup-rhel9@sha256:f1d6822065c055040bf9017047ea4afd874c33ccbfa3c4e5854655419f58dd8e_amd64"
},
"product_reference": "registry.redhat.io/devworkspace/devworkspace-project-backup-rhel9@sha256:f1d6822065c055040bf9017047ea4afd874c33ccbfa3c4e5854655419f58dd8e_amd64",
"relates_to_product_reference": "DevWorkspace Operator 0.42"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/devworkspace/devworkspace-project-clone-rhel9@sha256:00c7568ee3e388839b7777dab379ac6ecf3c5bc7bdeec2562417f88f862b80b5_s390x as a component of DevWorkspace Operator 0.42",
"product_id": "DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-clone-rhel9@sha256:00c7568ee3e388839b7777dab379ac6ecf3c5bc7bdeec2562417f88f862b80b5_s390x"
},
"product_reference": "registry.redhat.io/devworkspace/devworkspace-project-clone-rhel9@sha256:00c7568ee3e388839b7777dab379ac6ecf3c5bc7bdeec2562417f88f862b80b5_s390x",
"relates_to_product_reference": "DevWorkspace Operator 0.42"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/devworkspace/devworkspace-project-clone-rhel9@sha256:0ba88226a4c28d5caab277cbddac90e8782bd9b77a87c2253b5933730fda57f2_amd64 as a component of DevWorkspace Operator 0.42",
"product_id": "DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-clone-rhel9@sha256:0ba88226a4c28d5caab277cbddac90e8782bd9b77a87c2253b5933730fda57f2_amd64"
},
"product_reference": "registry.redhat.io/devworkspace/devworkspace-project-clone-rhel9@sha256:0ba88226a4c28d5caab277cbddac90e8782bd9b77a87c2253b5933730fda57f2_amd64",
"relates_to_product_reference": "DevWorkspace Operator 0.42"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/devworkspace/devworkspace-project-clone-rhel9@sha256:3d0cf855d29d897af3f55066f0882b844402d43c29ede0401336e00d8e09806e_ppc64le as a component of DevWorkspace Operator 0.42",
"product_id": "DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-clone-rhel9@sha256:3d0cf855d29d897af3f55066f0882b844402d43c29ede0401336e00d8e09806e_ppc64le"
},
"product_reference": "registry.redhat.io/devworkspace/devworkspace-project-clone-rhel9@sha256:3d0cf855d29d897af3f55066f0882b844402d43c29ede0401336e00d8e09806e_ppc64le",
"relates_to_product_reference": "DevWorkspace Operator 0.42"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/devworkspace/devworkspace-project-clone-rhel9@sha256:70d9351eb4156abab69dd5001020cf9a90731d25a2677069c85788c6f41d2130_arm64 as a component of DevWorkspace Operator 0.42",
"product_id": "DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-clone-rhel9@sha256:70d9351eb4156abab69dd5001020cf9a90731d25a2677069c85788c6f41d2130_arm64"
},
"product_reference": "registry.redhat.io/devworkspace/devworkspace-project-clone-rhel9@sha256:70d9351eb4156abab69dd5001020cf9a90731d25a2677069c85788c6f41d2130_arm64",
"relates_to_product_reference": "DevWorkspace Operator 0.42"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/devworkspace/devworkspace-rhel9-operator@sha256:273e029b1618235c7c4ea103d09da99dac8d2803c9be4b5754f1f251563fce27_amd64 as a component of DevWorkspace Operator 0.42",
"product_id": "DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-rhel9-operator@sha256:273e029b1618235c7c4ea103d09da99dac8d2803c9be4b5754f1f251563fce27_amd64"
},
"product_reference": "registry.redhat.io/devworkspace/devworkspace-rhel9-operator@sha256:273e029b1618235c7c4ea103d09da99dac8d2803c9be4b5754f1f251563fce27_amd64",
"relates_to_product_reference": "DevWorkspace Operator 0.42"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/devworkspace/devworkspace-rhel9-operator@sha256:2f577d0458bb4af7eb00dc937cac08023c2de0fca74e31fc2c2725cc4cc26a44_s390x as a component of DevWorkspace Operator 0.42",
"product_id": "DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-rhel9-operator@sha256:2f577d0458bb4af7eb00dc937cac08023c2de0fca74e31fc2c2725cc4cc26a44_s390x"
},
"product_reference": "registry.redhat.io/devworkspace/devworkspace-rhel9-operator@sha256:2f577d0458bb4af7eb00dc937cac08023c2de0fca74e31fc2c2725cc4cc26a44_s390x",
"relates_to_product_reference": "DevWorkspace Operator 0.42"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/devworkspace/devworkspace-rhel9-operator@sha256:71f0ecbb31045e41063e781e2cf03737e8878c49b27366103ff15b7a95e8e946_arm64 as a component of DevWorkspace Operator 0.42",
"product_id": "DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-rhel9-operator@sha256:71f0ecbb31045e41063e781e2cf03737e8878c49b27366103ff15b7a95e8e946_arm64"
},
"product_reference": "registry.redhat.io/devworkspace/devworkspace-rhel9-operator@sha256:71f0ecbb31045e41063e781e2cf03737e8878c49b27366103ff15b7a95e8e946_arm64",
"relates_to_product_reference": "DevWorkspace Operator 0.42"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/devworkspace/devworkspace-rhel9-operator@sha256:b74935a50eddbd0bfa65b9cd7546c73fadc9267f867adcdaa0cbf8c32b6b4e40_ppc64le as a component of DevWorkspace Operator 0.42",
"product_id": "DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-rhel9-operator@sha256:b74935a50eddbd0bfa65b9cd7546c73fadc9267f867adcdaa0cbf8c32b6b4e40_ppc64le"
},
"product_reference": "registry.redhat.io/devworkspace/devworkspace-rhel9-operator@sha256:b74935a50eddbd0bfa65b9cd7546c73fadc9267f867adcdaa0cbf8c32b6b4e40_ppc64le",
"relates_to_product_reference": "DevWorkspace Operator 0.42"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2026-32281",
"cwe": {
"id": "CWE-1050",
"name": "Excessive Platform Resource Consumption within a Loop"
},
"discovery_date": "2026-04-08T02:01:00.930989+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-operator-bundle@sha256:2a263321d0db82af2c030c7035349d3b42378fb3b03c3e58c0553ce68217581b_amd64",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-backup-rhel9@sha256:2a99aac71cd2c5ac53e26817eb8e1df65e417ebbc0fce30b05905f022df9dda3_arm64",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-backup-rhel9@sha256:509841df7c98e3d55c85e44dce9d1b235ab9ad80fa0ec82fdfc9a3562e4effbf_s390x",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-backup-rhel9@sha256:77e0a72e35af25a60b202082ada3e61d80d0be7e24ea3b0c374541c93d25da44_ppc64le",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-backup-rhel9@sha256:f1d6822065c055040bf9017047ea4afd874c33ccbfa3c4e5854655419f58dd8e_amd64",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-clone-rhel9@sha256:00c7568ee3e388839b7777dab379ac6ecf3c5bc7bdeec2562417f88f862b80b5_s390x",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-clone-rhel9@sha256:0ba88226a4c28d5caab277cbddac90e8782bd9b77a87c2253b5933730fda57f2_amd64",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-clone-rhel9@sha256:3d0cf855d29d897af3f55066f0882b844402d43c29ede0401336e00d8e09806e_ppc64le",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-clone-rhel9@sha256:70d9351eb4156abab69dd5001020cf9a90731d25a2677069c85788c6f41d2130_arm64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2456333"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Go\u0027s `crypto/x509` package. A remote attacker could exploit this by presenting a specially crafted certificate chain containing a large number of policy mappings. This inefficient validation process consumes excessive resources, which can lead to a denial of service (DoS) for applications or systems performing certificate validation.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "crypto/x509: golang: Go crypto/x509: Denial of Service via inefficient certificate chain validation",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This flaw occurs during the validation of otherwise trusted certificate chains that contain a large number of policy mappings, leading to excessive resource consumption. Exploitation requires an attacker to present a specially crafted, yet trusted, certificate chain which would require the attacker has already compromised a trusted certificate root. Red Hat continuously monitors certificate authorities and curates the set which is trusted by default for Red Hat products.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-rhel9-operator@sha256:273e029b1618235c7c4ea103d09da99dac8d2803c9be4b5754f1f251563fce27_amd64",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-rhel9-operator@sha256:2f577d0458bb4af7eb00dc937cac08023c2de0fca74e31fc2c2725cc4cc26a44_s390x",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-rhel9-operator@sha256:71f0ecbb31045e41063e781e2cf03737e8878c49b27366103ff15b7a95e8e946_arm64",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-rhel9-operator@sha256:b74935a50eddbd0bfa65b9cd7546c73fadc9267f867adcdaa0cbf8c32b6b4e40_ppc64le"
],
"known_not_affected": [
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-operator-bundle@sha256:2a263321d0db82af2c030c7035349d3b42378fb3b03c3e58c0553ce68217581b_amd64",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-backup-rhel9@sha256:2a99aac71cd2c5ac53e26817eb8e1df65e417ebbc0fce30b05905f022df9dda3_arm64",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-backup-rhel9@sha256:509841df7c98e3d55c85e44dce9d1b235ab9ad80fa0ec82fdfc9a3562e4effbf_s390x",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-backup-rhel9@sha256:77e0a72e35af25a60b202082ada3e61d80d0be7e24ea3b0c374541c93d25da44_ppc64le",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-backup-rhel9@sha256:f1d6822065c055040bf9017047ea4afd874c33ccbfa3c4e5854655419f58dd8e_amd64",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-clone-rhel9@sha256:00c7568ee3e388839b7777dab379ac6ecf3c5bc7bdeec2562417f88f862b80b5_s390x",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-clone-rhel9@sha256:0ba88226a4c28d5caab277cbddac90e8782bd9b77a87c2253b5933730fda57f2_amd64",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-clone-rhel9@sha256:3d0cf855d29d897af3f55066f0882b844402d43c29ede0401336e00d8e09806e_ppc64le",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-clone-rhel9@sha256:70d9351eb4156abab69dd5001020cf9a90731d25a2677069c85788c6f41d2130_arm64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-32281"
},
{
"category": "external",
"summary": "RHBZ#2456333",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2456333"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-32281",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-32281"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-32281",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-32281"
},
{
"category": "external",
"summary": "https://go.dev/cl/758061",
"url": "https://go.dev/cl/758061"
},
{
"category": "external",
"summary": "https://go.dev/issue/78281",
"url": "https://go.dev/issue/78281"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/0uYbvbPZRWU",
"url": "https://groups.google.com/g/golang-announce/c/0uYbvbPZRWU"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-4946",
"url": "https://pkg.go.dev/vuln/GO-2026-4946"
}
],
"release_date": "2026-04-08T01:06:58.354000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T16:06:37+00:00",
"details": "To start using the DevWorkspace Operator, install the DevWorkspace Operator from OpenShift OperatorHub on OpenShift Container Platform 4.16 or higher.",
"product_ids": [
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-rhel9-operator@sha256:273e029b1618235c7c4ea103d09da99dac8d2803c9be4b5754f1f251563fce27_amd64",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-rhel9-operator@sha256:2f577d0458bb4af7eb00dc937cac08023c2de0fca74e31fc2c2725cc4cc26a44_s390x",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-rhel9-operator@sha256:71f0ecbb31045e41063e781e2cf03737e8878c49b27366103ff15b7a95e8e946_arm64",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-rhel9-operator@sha256:b74935a50eddbd0bfa65b9cd7546c73fadc9267f867adcdaa0cbf8c32b6b4e40_ppc64le"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36808"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-operator-bundle@sha256:2a263321d0db82af2c030c7035349d3b42378fb3b03c3e58c0553ce68217581b_amd64",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-backup-rhel9@sha256:2a99aac71cd2c5ac53e26817eb8e1df65e417ebbc0fce30b05905f022df9dda3_arm64",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-backup-rhel9@sha256:509841df7c98e3d55c85e44dce9d1b235ab9ad80fa0ec82fdfc9a3562e4effbf_s390x",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-backup-rhel9@sha256:77e0a72e35af25a60b202082ada3e61d80d0be7e24ea3b0c374541c93d25da44_ppc64le",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-backup-rhel9@sha256:f1d6822065c055040bf9017047ea4afd874c33ccbfa3c4e5854655419f58dd8e_amd64",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-clone-rhel9@sha256:00c7568ee3e388839b7777dab379ac6ecf3c5bc7bdeec2562417f88f862b80b5_s390x",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-clone-rhel9@sha256:0ba88226a4c28d5caab277cbddac90e8782bd9b77a87c2253b5933730fda57f2_amd64",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-clone-rhel9@sha256:3d0cf855d29d897af3f55066f0882b844402d43c29ede0401336e00d8e09806e_ppc64le",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-clone-rhel9@sha256:70d9351eb4156abab69dd5001020cf9a90731d25a2677069c85788c6f41d2130_arm64",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-rhel9-operator@sha256:273e029b1618235c7c4ea103d09da99dac8d2803c9be4b5754f1f251563fce27_amd64",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-rhel9-operator@sha256:2f577d0458bb4af7eb00dc937cac08023c2de0fca74e31fc2c2725cc4cc26a44_s390x",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-rhel9-operator@sha256:71f0ecbb31045e41063e781e2cf03737e8878c49b27366103ff15b7a95e8e946_arm64",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-rhel9-operator@sha256:b74935a50eddbd0bfa65b9cd7546c73fadc9267f867adcdaa0cbf8c32b6b4e40_ppc64le"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-operator-bundle@sha256:2a263321d0db82af2c030c7035349d3b42378fb3b03c3e58c0553ce68217581b_amd64",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-backup-rhel9@sha256:2a99aac71cd2c5ac53e26817eb8e1df65e417ebbc0fce30b05905f022df9dda3_arm64",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-backup-rhel9@sha256:509841df7c98e3d55c85e44dce9d1b235ab9ad80fa0ec82fdfc9a3562e4effbf_s390x",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-backup-rhel9@sha256:77e0a72e35af25a60b202082ada3e61d80d0be7e24ea3b0c374541c93d25da44_ppc64le",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-backup-rhel9@sha256:f1d6822065c055040bf9017047ea4afd874c33ccbfa3c4e5854655419f58dd8e_amd64",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-clone-rhel9@sha256:00c7568ee3e388839b7777dab379ac6ecf3c5bc7bdeec2562417f88f862b80b5_s390x",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-clone-rhel9@sha256:0ba88226a4c28d5caab277cbddac90e8782bd9b77a87c2253b5933730fda57f2_amd64",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-clone-rhel9@sha256:3d0cf855d29d897af3f55066f0882b844402d43c29ede0401336e00d8e09806e_ppc64le",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-clone-rhel9@sha256:70d9351eb4156abab69dd5001020cf9a90731d25a2677069c85788c6f41d2130_arm64",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-rhel9-operator@sha256:273e029b1618235c7c4ea103d09da99dac8d2803c9be4b5754f1f251563fce27_amd64",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-rhel9-operator@sha256:2f577d0458bb4af7eb00dc937cac08023c2de0fca74e31fc2c2725cc4cc26a44_s390x",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-rhel9-operator@sha256:71f0ecbb31045e41063e781e2cf03737e8878c49b27366103ff15b7a95e8e946_arm64",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-rhel9-operator@sha256:b74935a50eddbd0bfa65b9cd7546c73fadc9267f867adcdaa0cbf8c32b6b4e40_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "crypto/x509: golang: Go crypto/x509: Denial of Service via inefficient certificate chain validation"
},
{
"cve": "CVE-2026-39821",
"cwe": {
"id": "CWE-1289",
"name": "Improper Validation of Unsafe Equivalence in Input"
},
"discovery_date": "2026-05-22T16:00:52.844126+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-operator-bundle@sha256:2a263321d0db82af2c030c7035349d3b42378fb3b03c3e58c0553ce68217581b_amd64",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-backup-rhel9@sha256:2a99aac71cd2c5ac53e26817eb8e1df65e417ebbc0fce30b05905f022df9dda3_arm64",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-backup-rhel9@sha256:509841df7c98e3d55c85e44dce9d1b235ab9ad80fa0ec82fdfc9a3562e4effbf_s390x",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-backup-rhel9@sha256:77e0a72e35af25a60b202082ada3e61d80d0be7e24ea3b0c374541c93d25da44_ppc64le",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-backup-rhel9@sha256:f1d6822065c055040bf9017047ea4afd874c33ccbfa3c4e5854655419f58dd8e_amd64",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-clone-rhel9@sha256:00c7568ee3e388839b7777dab379ac6ecf3c5bc7bdeec2562417f88f862b80b5_s390x",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-clone-rhel9@sha256:0ba88226a4c28d5caab277cbddac90e8782bd9b77a87c2253b5933730fda57f2_amd64",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-clone-rhel9@sha256:3d0cf855d29d897af3f55066f0882b844402d43c29ede0401336e00d8e09806e_ppc64le",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-clone-rhel9@sha256:70d9351eb4156abab69dd5001020cf9a90731d25a2677069c85788c6f41d2130_arm64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2480756"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in golang.org/x/net/idna. ToASCII and ToUnicode incorrectly accept Punycode-encoded labels that decode to an ASCII-only hostname (for example, xn--example-.com returns example.com instead of an error). Applications that validate the ASCII form then convert to Unicode may grant access to a restricted hostname the ASCII check would have rejected.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang.org/x/net/idna: golang: golang.org/x/net/idna: Privilege escalation via incorrect Punycode label processing",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "golang.org/x/net/idna is vulnerable to privilege escalation through incorrect Punycode label handling in ToASCII and ToUnicode. An attacker who can supply a Punycode hostname that passes an ASCII-only authorization check may have it normalized to a restricted ASCII name the application intended to block. Red Hat exposure is broad across products shipping the Go toolchain or bundling golang.org/x/net, including RHEL and RHEL-AI golang RPMs, hummingbird Go runtimes, OpenShift and ODF container builds, and Ceph/OpenShift components compiled against affected x/net versions.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-rhel9-operator@sha256:273e029b1618235c7c4ea103d09da99dac8d2803c9be4b5754f1f251563fce27_amd64",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-rhel9-operator@sha256:2f577d0458bb4af7eb00dc937cac08023c2de0fca74e31fc2c2725cc4cc26a44_s390x",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-rhel9-operator@sha256:71f0ecbb31045e41063e781e2cf03737e8878c49b27366103ff15b7a95e8e946_arm64",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-rhel9-operator@sha256:b74935a50eddbd0bfa65b9cd7546c73fadc9267f867adcdaa0cbf8c32b6b4e40_ppc64le"
],
"known_not_affected": [
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-operator-bundle@sha256:2a263321d0db82af2c030c7035349d3b42378fb3b03c3e58c0553ce68217581b_amd64",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-backup-rhel9@sha256:2a99aac71cd2c5ac53e26817eb8e1df65e417ebbc0fce30b05905f022df9dda3_arm64",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-backup-rhel9@sha256:509841df7c98e3d55c85e44dce9d1b235ab9ad80fa0ec82fdfc9a3562e4effbf_s390x",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-backup-rhel9@sha256:77e0a72e35af25a60b202082ada3e61d80d0be7e24ea3b0c374541c93d25da44_ppc64le",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-backup-rhel9@sha256:f1d6822065c055040bf9017047ea4afd874c33ccbfa3c4e5854655419f58dd8e_amd64",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-clone-rhel9@sha256:00c7568ee3e388839b7777dab379ac6ecf3c5bc7bdeec2562417f88f862b80b5_s390x",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-clone-rhel9@sha256:0ba88226a4c28d5caab277cbddac90e8782bd9b77a87c2253b5933730fda57f2_amd64",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-clone-rhel9@sha256:3d0cf855d29d897af3f55066f0882b844402d43c29ede0401336e00d8e09806e_ppc64le",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-clone-rhel9@sha256:70d9351eb4156abab69dd5001020cf9a90731d25a2677069c85788c6f41d2130_arm64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-39821"
},
{
"category": "external",
"summary": "RHBZ#2480756",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2480756"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-39821",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-39821"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-39821",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-39821"
},
{
"category": "external",
"summary": "https://go.dev/cl/767220",
"url": "https://go.dev/cl/767220"
},
{
"category": "external",
"summary": "https://go.dev/issue/78760",
"url": "https://go.dev/issue/78760"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/iI-mYSI0lu8",
"url": "https://groups.google.com/g/golang-announce/c/iI-mYSI0lu8"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-5026",
"url": "https://pkg.go.dev/vuln/GO-2026-5026"
}
],
"release_date": "2026-05-22T15:01:21.462000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T16:06:37+00:00",
"details": "To start using the DevWorkspace Operator, install the DevWorkspace Operator from OpenShift OperatorHub on OpenShift Container Platform 4.16 or higher.",
"product_ids": [
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-rhel9-operator@sha256:273e029b1618235c7c4ea103d09da99dac8d2803c9be4b5754f1f251563fce27_amd64",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-rhel9-operator@sha256:2f577d0458bb4af7eb00dc937cac08023c2de0fca74e31fc2c2725cc4cc26a44_s390x",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-rhel9-operator@sha256:71f0ecbb31045e41063e781e2cf03737e8878c49b27366103ff15b7a95e8e946_arm64",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-rhel9-operator@sha256:b74935a50eddbd0bfa65b9cd7546c73fadc9267f867adcdaa0cbf8c32b6b4e40_ppc64le"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36808"
},
{
"category": "workaround",
"details": "Upgrade to a fixed golang.org/x/net release that includes the idna correction, via updated golang or dependent package rebuilds.",
"product_ids": [
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-operator-bundle@sha256:2a263321d0db82af2c030c7035349d3b42378fb3b03c3e58c0553ce68217581b_amd64",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-backup-rhel9@sha256:2a99aac71cd2c5ac53e26817eb8e1df65e417ebbc0fce30b05905f022df9dda3_arm64",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-backup-rhel9@sha256:509841df7c98e3d55c85e44dce9d1b235ab9ad80fa0ec82fdfc9a3562e4effbf_s390x",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-backup-rhel9@sha256:77e0a72e35af25a60b202082ada3e61d80d0be7e24ea3b0c374541c93d25da44_ppc64le",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-backup-rhel9@sha256:f1d6822065c055040bf9017047ea4afd874c33ccbfa3c4e5854655419f58dd8e_amd64",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-clone-rhel9@sha256:00c7568ee3e388839b7777dab379ac6ecf3c5bc7bdeec2562417f88f862b80b5_s390x",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-clone-rhel9@sha256:0ba88226a4c28d5caab277cbddac90e8782bd9b77a87c2253b5933730fda57f2_amd64",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-clone-rhel9@sha256:3d0cf855d29d897af3f55066f0882b844402d43c29ede0401336e00d8e09806e_ppc64le",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-clone-rhel9@sha256:70d9351eb4156abab69dd5001020cf9a90731d25a2677069c85788c6f41d2130_arm64",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-rhel9-operator@sha256:273e029b1618235c7c4ea103d09da99dac8d2803c9be4b5754f1f251563fce27_amd64",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-rhel9-operator@sha256:2f577d0458bb4af7eb00dc937cac08023c2de0fca74e31fc2c2725cc4cc26a44_s390x",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-rhel9-operator@sha256:71f0ecbb31045e41063e781e2cf03737e8878c49b27366103ff15b7a95e8e946_arm64",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-rhel9-operator@sha256:b74935a50eddbd0bfa65b9cd7546c73fadc9267f867adcdaa0cbf8c32b6b4e40_ppc64le"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 8.2,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-operator-bundle@sha256:2a263321d0db82af2c030c7035349d3b42378fb3b03c3e58c0553ce68217581b_amd64",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-backup-rhel9@sha256:2a99aac71cd2c5ac53e26817eb8e1df65e417ebbc0fce30b05905f022df9dda3_arm64",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-backup-rhel9@sha256:509841df7c98e3d55c85e44dce9d1b235ab9ad80fa0ec82fdfc9a3562e4effbf_s390x",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-backup-rhel9@sha256:77e0a72e35af25a60b202082ada3e61d80d0be7e24ea3b0c374541c93d25da44_ppc64le",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-backup-rhel9@sha256:f1d6822065c055040bf9017047ea4afd874c33ccbfa3c4e5854655419f58dd8e_amd64",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-clone-rhel9@sha256:00c7568ee3e388839b7777dab379ac6ecf3c5bc7bdeec2562417f88f862b80b5_s390x",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-clone-rhel9@sha256:0ba88226a4c28d5caab277cbddac90e8782bd9b77a87c2253b5933730fda57f2_amd64",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-clone-rhel9@sha256:3d0cf855d29d897af3f55066f0882b844402d43c29ede0401336e00d8e09806e_ppc64le",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-clone-rhel9@sha256:70d9351eb4156abab69dd5001020cf9a90731d25a2677069c85788c6f41d2130_arm64",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-rhel9-operator@sha256:273e029b1618235c7c4ea103d09da99dac8d2803c9be4b5754f1f251563fce27_amd64",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-rhel9-operator@sha256:2f577d0458bb4af7eb00dc937cac08023c2de0fca74e31fc2c2725cc4cc26a44_s390x",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-rhel9-operator@sha256:71f0ecbb31045e41063e781e2cf03737e8878c49b27366103ff15b7a95e8e946_arm64",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-rhel9-operator@sha256:b74935a50eddbd0bfa65b9cd7546c73fadc9267f867adcdaa0cbf8c32b6b4e40_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang.org/x/net/idna: golang: golang.org/x/net/idna: Privilege escalation via incorrect Punycode label processing"
},
{
"cve": "CVE-2026-39828",
"cwe": {
"id": "CWE-281",
"name": "Improper Preservation of Permissions"
},
"discovery_date": "2026-05-22T04:01:46.775641+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-operator-bundle@sha256:2a263321d0db82af2c030c7035349d3b42378fb3b03c3e58c0553ce68217581b_amd64",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-backup-rhel9@sha256:2a99aac71cd2c5ac53e26817eb8e1df65e417ebbc0fce30b05905f022df9dda3_arm64",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-backup-rhel9@sha256:509841df7c98e3d55c85e44dce9d1b235ab9ad80fa0ec82fdfc9a3562e4effbf_s390x",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-backup-rhel9@sha256:77e0a72e35af25a60b202082ada3e61d80d0be7e24ea3b0c374541c93d25da44_ppc64le",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-backup-rhel9@sha256:f1d6822065c055040bf9017047ea4afd874c33ccbfa3c4e5854655419f58dd8e_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2480687"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in golang.org/x/crypto/ssh. A remote attacker could exploit this vulnerability when an SSH server authentication callback returned a PartialSuccessError with non-nil permissions. This flaw caused these permissions to be silently discarded, potentially bypassing certificate restrictions, such as a force-command, after a second authentication factor succeeded. This could lead to unauthorized command execution or access.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang.org/x/crypto/ssh: golang.org/x/crypto/ssh: Unauthorized command execution via discarded SSH permissions",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This is an Important security flaw in the `golang.org/x/crypto/ssh` library. When an SSH server utilizing this library is configured with specific authentication callbacks that return a `PartialSuccessError` with non-nil permissions, an attacker could bypass intended certificate restrictions, such as `force-command`. This bypass could lead to unauthorized command execution or access on affected Red Hat systems configured with multi-factor authentication and certificate-based access controls.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-clone-rhel9@sha256:00c7568ee3e388839b7777dab379ac6ecf3c5bc7bdeec2562417f88f862b80b5_s390x",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-clone-rhel9@sha256:0ba88226a4c28d5caab277cbddac90e8782bd9b77a87c2253b5933730fda57f2_amd64",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-clone-rhel9@sha256:3d0cf855d29d897af3f55066f0882b844402d43c29ede0401336e00d8e09806e_ppc64le",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-clone-rhel9@sha256:70d9351eb4156abab69dd5001020cf9a90731d25a2677069c85788c6f41d2130_arm64",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-rhel9-operator@sha256:273e029b1618235c7c4ea103d09da99dac8d2803c9be4b5754f1f251563fce27_amd64",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-rhel9-operator@sha256:2f577d0458bb4af7eb00dc937cac08023c2de0fca74e31fc2c2725cc4cc26a44_s390x",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-rhel9-operator@sha256:71f0ecbb31045e41063e781e2cf03737e8878c49b27366103ff15b7a95e8e946_arm64",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-rhel9-operator@sha256:b74935a50eddbd0bfa65b9cd7546c73fadc9267f867adcdaa0cbf8c32b6b4e40_ppc64le"
],
"known_not_affected": [
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-operator-bundle@sha256:2a263321d0db82af2c030c7035349d3b42378fb3b03c3e58c0553ce68217581b_amd64",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-backup-rhel9@sha256:2a99aac71cd2c5ac53e26817eb8e1df65e417ebbc0fce30b05905f022df9dda3_arm64",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-backup-rhel9@sha256:509841df7c98e3d55c85e44dce9d1b235ab9ad80fa0ec82fdfc9a3562e4effbf_s390x",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-backup-rhel9@sha256:77e0a72e35af25a60b202082ada3e61d80d0be7e24ea3b0c374541c93d25da44_ppc64le",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-backup-rhel9@sha256:f1d6822065c055040bf9017047ea4afd874c33ccbfa3c4e5854655419f58dd8e_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-39828"
},
{
"category": "external",
"summary": "RHBZ#2480687",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2480687"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-39828",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-39828"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-39828",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-39828"
},
{
"category": "external",
"summary": "https://go.dev/cl/781621",
"url": "https://go.dev/cl/781621"
},
{
"category": "external",
"summary": "https://go.dev/issue/79562",
"url": "https://go.dev/issue/79562"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/a082jnz-LvI",
"url": "https://groups.google.com/g/golang-announce/c/a082jnz-LvI"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-5014",
"url": "https://pkg.go.dev/vuln/GO-2026-5014"
}
],
"release_date": "2026-05-22T02:31:26.883000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T16:06:37+00:00",
"details": "To start using the DevWorkspace Operator, install the DevWorkspace Operator from OpenShift OperatorHub on OpenShift Container Platform 4.16 or higher.",
"product_ids": [
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-clone-rhel9@sha256:00c7568ee3e388839b7777dab379ac6ecf3c5bc7bdeec2562417f88f862b80b5_s390x",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-clone-rhel9@sha256:0ba88226a4c28d5caab277cbddac90e8782bd9b77a87c2253b5933730fda57f2_amd64",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-clone-rhel9@sha256:3d0cf855d29d897af3f55066f0882b844402d43c29ede0401336e00d8e09806e_ppc64le",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-clone-rhel9@sha256:70d9351eb4156abab69dd5001020cf9a90731d25a2677069c85788c6f41d2130_arm64",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-rhel9-operator@sha256:273e029b1618235c7c4ea103d09da99dac8d2803c9be4b5754f1f251563fce27_amd64",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-rhel9-operator@sha256:2f577d0458bb4af7eb00dc937cac08023c2de0fca74e31fc2c2725cc4cc26a44_s390x",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-rhel9-operator@sha256:71f0ecbb31045e41063e781e2cf03737e8878c49b27366103ff15b7a95e8e946_arm64",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-rhel9-operator@sha256:b74935a50eddbd0bfa65b9cd7546c73fadc9267f867adcdaa0cbf8c32b6b4e40_ppc64le"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36808"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability.",
"product_ids": [
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-operator-bundle@sha256:2a263321d0db82af2c030c7035349d3b42378fb3b03c3e58c0553ce68217581b_amd64",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-backup-rhel9@sha256:2a99aac71cd2c5ac53e26817eb8e1df65e417ebbc0fce30b05905f022df9dda3_arm64",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-backup-rhel9@sha256:509841df7c98e3d55c85e44dce9d1b235ab9ad80fa0ec82fdfc9a3562e4effbf_s390x",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-backup-rhel9@sha256:77e0a72e35af25a60b202082ada3e61d80d0be7e24ea3b0c374541c93d25da44_ppc64le",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-backup-rhel9@sha256:f1d6822065c055040bf9017047ea4afd874c33ccbfa3c4e5854655419f58dd8e_amd64",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-clone-rhel9@sha256:00c7568ee3e388839b7777dab379ac6ecf3c5bc7bdeec2562417f88f862b80b5_s390x",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-clone-rhel9@sha256:0ba88226a4c28d5caab277cbddac90e8782bd9b77a87c2253b5933730fda57f2_amd64",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-clone-rhel9@sha256:3d0cf855d29d897af3f55066f0882b844402d43c29ede0401336e00d8e09806e_ppc64le",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-clone-rhel9@sha256:70d9351eb4156abab69dd5001020cf9a90731d25a2677069c85788c6f41d2130_arm64",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-rhel9-operator@sha256:273e029b1618235c7c4ea103d09da99dac8d2803c9be4b5754f1f251563fce27_amd64",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-rhel9-operator@sha256:2f577d0458bb4af7eb00dc937cac08023c2de0fca74e31fc2c2725cc4cc26a44_s390x",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-rhel9-operator@sha256:71f0ecbb31045e41063e781e2cf03737e8878c49b27366103ff15b7a95e8e946_arm64",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-rhel9-operator@sha256:b74935a50eddbd0bfa65b9cd7546c73fadc9267f867adcdaa0cbf8c32b6b4e40_ppc64le"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-operator-bundle@sha256:2a263321d0db82af2c030c7035349d3b42378fb3b03c3e58c0553ce68217581b_amd64",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-backup-rhel9@sha256:2a99aac71cd2c5ac53e26817eb8e1df65e417ebbc0fce30b05905f022df9dda3_arm64",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-backup-rhel9@sha256:509841df7c98e3d55c85e44dce9d1b235ab9ad80fa0ec82fdfc9a3562e4effbf_s390x",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-backup-rhel9@sha256:77e0a72e35af25a60b202082ada3e61d80d0be7e24ea3b0c374541c93d25da44_ppc64le",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-backup-rhel9@sha256:f1d6822065c055040bf9017047ea4afd874c33ccbfa3c4e5854655419f58dd8e_amd64",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-clone-rhel9@sha256:00c7568ee3e388839b7777dab379ac6ecf3c5bc7bdeec2562417f88f862b80b5_s390x",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-clone-rhel9@sha256:0ba88226a4c28d5caab277cbddac90e8782bd9b77a87c2253b5933730fda57f2_amd64",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-clone-rhel9@sha256:3d0cf855d29d897af3f55066f0882b844402d43c29ede0401336e00d8e09806e_ppc64le",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-clone-rhel9@sha256:70d9351eb4156abab69dd5001020cf9a90731d25a2677069c85788c6f41d2130_arm64",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-rhel9-operator@sha256:273e029b1618235c7c4ea103d09da99dac8d2803c9be4b5754f1f251563fce27_amd64",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-rhel9-operator@sha256:2f577d0458bb4af7eb00dc937cac08023c2de0fca74e31fc2c2725cc4cc26a44_s390x",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-rhel9-operator@sha256:71f0ecbb31045e41063e781e2cf03737e8878c49b27366103ff15b7a95e8e946_arm64",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-rhel9-operator@sha256:b74935a50eddbd0bfa65b9cd7546c73fadc9267f867adcdaa0cbf8c32b6b4e40_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang.org/x/crypto/ssh: golang.org/x/crypto/ssh: Unauthorized command execution via discarded SSH permissions"
},
{
"cve": "CVE-2026-39829",
"cwe": {
"id": "CWE-1284",
"name": "Improper Validation of Specified Quantity in Input"
},
"discovery_date": "2026-05-22T04:01:30.092249+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-operator-bundle@sha256:2a263321d0db82af2c030c7035349d3b42378fb3b03c3e58c0553ce68217581b_amd64",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-backup-rhel9@sha256:2a99aac71cd2c5ac53e26817eb8e1df65e417ebbc0fce30b05905f022df9dda3_arm64",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-backup-rhel9@sha256:509841df7c98e3d55c85e44dce9d1b235ab9ad80fa0ec82fdfc9a3562e4effbf_s390x",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-backup-rhel9@sha256:77e0a72e35af25a60b202082ada3e61d80d0be7e24ea3b0c374541c93d25da44_ppc64le",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-backup-rhel9@sha256:f1d6822065c055040bf9017047ea4afd874c33ccbfa3c4e5854655419f58dd8e_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2480681"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in golang.org/x/crypto/ssh. The RSA and DSA public key parsers in the affected component did not enforce size limits on key parameters. This vulnerability allows an unauthenticated client to provide a crafted public key with an excessively large modulus or DSA parameter during public key authentication. Successful exploitation could lead to a denial of service (DoS) due to prolonged CPU consumption during signature verification.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang.org/x/crypto/ssh: golang.org/x/crypto/ssh: Denial of Service via crafted public key with excessive parameters",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability in golang.org/x/crypto/ssh is rated as Important. An unauthenticated remote attacker could trigger a denial of service by providing a specially crafted public key with excessively large parameters during SSH public key authentication. This could lead to prolonged CPU consumption on the server, impacting service availability.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-clone-rhel9@sha256:00c7568ee3e388839b7777dab379ac6ecf3c5bc7bdeec2562417f88f862b80b5_s390x",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-clone-rhel9@sha256:0ba88226a4c28d5caab277cbddac90e8782bd9b77a87c2253b5933730fda57f2_amd64",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-clone-rhel9@sha256:3d0cf855d29d897af3f55066f0882b844402d43c29ede0401336e00d8e09806e_ppc64le",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-clone-rhel9@sha256:70d9351eb4156abab69dd5001020cf9a90731d25a2677069c85788c6f41d2130_arm64",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-rhel9-operator@sha256:273e029b1618235c7c4ea103d09da99dac8d2803c9be4b5754f1f251563fce27_amd64",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-rhel9-operator@sha256:2f577d0458bb4af7eb00dc937cac08023c2de0fca74e31fc2c2725cc4cc26a44_s390x",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-rhel9-operator@sha256:71f0ecbb31045e41063e781e2cf03737e8878c49b27366103ff15b7a95e8e946_arm64",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-rhel9-operator@sha256:b74935a50eddbd0bfa65b9cd7546c73fadc9267f867adcdaa0cbf8c32b6b4e40_ppc64le"
],
"known_not_affected": [
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-operator-bundle@sha256:2a263321d0db82af2c030c7035349d3b42378fb3b03c3e58c0553ce68217581b_amd64",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-backup-rhel9@sha256:2a99aac71cd2c5ac53e26817eb8e1df65e417ebbc0fce30b05905f022df9dda3_arm64",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-backup-rhel9@sha256:509841df7c98e3d55c85e44dce9d1b235ab9ad80fa0ec82fdfc9a3562e4effbf_s390x",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-backup-rhel9@sha256:77e0a72e35af25a60b202082ada3e61d80d0be7e24ea3b0c374541c93d25da44_ppc64le",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-backup-rhel9@sha256:f1d6822065c055040bf9017047ea4afd874c33ccbfa3c4e5854655419f58dd8e_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-39829"
},
{
"category": "external",
"summary": "RHBZ#2480681",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2480681"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-39829",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-39829"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-39829",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-39829"
},
{
"category": "external",
"summary": "https://go.dev/cl/781641",
"url": "https://go.dev/cl/781641"
},
{
"category": "external",
"summary": "https://go.dev/cl/781661",
"url": "https://go.dev/cl/781661"
},
{
"category": "external",
"summary": "https://go.dev/issue/79565",
"url": "https://go.dev/issue/79565"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/a082jnz-LvI",
"url": "https://groups.google.com/g/golang-announce/c/a082jnz-LvI"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-5018",
"url": "https://pkg.go.dev/vuln/GO-2026-5018"
}
],
"release_date": "2026-05-22T02:31:27.324000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T16:06:37+00:00",
"details": "To start using the DevWorkspace Operator, install the DevWorkspace Operator from OpenShift OperatorHub on OpenShift Container Platform 4.16 or higher.",
"product_ids": [
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-clone-rhel9@sha256:00c7568ee3e388839b7777dab379ac6ecf3c5bc7bdeec2562417f88f862b80b5_s390x",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-clone-rhel9@sha256:0ba88226a4c28d5caab277cbddac90e8782bd9b77a87c2253b5933730fda57f2_amd64",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-clone-rhel9@sha256:3d0cf855d29d897af3f55066f0882b844402d43c29ede0401336e00d8e09806e_ppc64le",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-clone-rhel9@sha256:70d9351eb4156abab69dd5001020cf9a90731d25a2677069c85788c6f41d2130_arm64",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-rhel9-operator@sha256:273e029b1618235c7c4ea103d09da99dac8d2803c9be4b5754f1f251563fce27_amd64",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-rhel9-operator@sha256:2f577d0458bb4af7eb00dc937cac08023c2de0fca74e31fc2c2725cc4cc26a44_s390x",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-rhel9-operator@sha256:71f0ecbb31045e41063e781e2cf03737e8878c49b27366103ff15b7a95e8e946_arm64",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-rhel9-operator@sha256:b74935a50eddbd0bfa65b9cd7546c73fadc9267f867adcdaa0cbf8c32b6b4e40_ppc64le"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36808"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability.",
"product_ids": [
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-operator-bundle@sha256:2a263321d0db82af2c030c7035349d3b42378fb3b03c3e58c0553ce68217581b_amd64",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-backup-rhel9@sha256:2a99aac71cd2c5ac53e26817eb8e1df65e417ebbc0fce30b05905f022df9dda3_arm64",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-backup-rhel9@sha256:509841df7c98e3d55c85e44dce9d1b235ab9ad80fa0ec82fdfc9a3562e4effbf_s390x",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-backup-rhel9@sha256:77e0a72e35af25a60b202082ada3e61d80d0be7e24ea3b0c374541c93d25da44_ppc64le",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-backup-rhel9@sha256:f1d6822065c055040bf9017047ea4afd874c33ccbfa3c4e5854655419f58dd8e_amd64",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-clone-rhel9@sha256:00c7568ee3e388839b7777dab379ac6ecf3c5bc7bdeec2562417f88f862b80b5_s390x",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-clone-rhel9@sha256:0ba88226a4c28d5caab277cbddac90e8782bd9b77a87c2253b5933730fda57f2_amd64",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-clone-rhel9@sha256:3d0cf855d29d897af3f55066f0882b844402d43c29ede0401336e00d8e09806e_ppc64le",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-clone-rhel9@sha256:70d9351eb4156abab69dd5001020cf9a90731d25a2677069c85788c6f41d2130_arm64",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-rhel9-operator@sha256:273e029b1618235c7c4ea103d09da99dac8d2803c9be4b5754f1f251563fce27_amd64",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-rhel9-operator@sha256:2f577d0458bb4af7eb00dc937cac08023c2de0fca74e31fc2c2725cc4cc26a44_s390x",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-rhel9-operator@sha256:71f0ecbb31045e41063e781e2cf03737e8878c49b27366103ff15b7a95e8e946_arm64",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-rhel9-operator@sha256:b74935a50eddbd0bfa65b9cd7546c73fadc9267f867adcdaa0cbf8c32b6b4e40_ppc64le"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-operator-bundle@sha256:2a263321d0db82af2c030c7035349d3b42378fb3b03c3e58c0553ce68217581b_amd64",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-backup-rhel9@sha256:2a99aac71cd2c5ac53e26817eb8e1df65e417ebbc0fce30b05905f022df9dda3_arm64",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-backup-rhel9@sha256:509841df7c98e3d55c85e44dce9d1b235ab9ad80fa0ec82fdfc9a3562e4effbf_s390x",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-backup-rhel9@sha256:77e0a72e35af25a60b202082ada3e61d80d0be7e24ea3b0c374541c93d25da44_ppc64le",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-backup-rhel9@sha256:f1d6822065c055040bf9017047ea4afd874c33ccbfa3c4e5854655419f58dd8e_amd64",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-clone-rhel9@sha256:00c7568ee3e388839b7777dab379ac6ecf3c5bc7bdeec2562417f88f862b80b5_s390x",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-clone-rhel9@sha256:0ba88226a4c28d5caab277cbddac90e8782bd9b77a87c2253b5933730fda57f2_amd64",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-clone-rhel9@sha256:3d0cf855d29d897af3f55066f0882b844402d43c29ede0401336e00d8e09806e_ppc64le",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-clone-rhel9@sha256:70d9351eb4156abab69dd5001020cf9a90731d25a2677069c85788c6f41d2130_arm64",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-rhel9-operator@sha256:273e029b1618235c7c4ea103d09da99dac8d2803c9be4b5754f1f251563fce27_amd64",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-rhel9-operator@sha256:2f577d0458bb4af7eb00dc937cac08023c2de0fca74e31fc2c2725cc4cc26a44_s390x",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-rhel9-operator@sha256:71f0ecbb31045e41063e781e2cf03737e8878c49b27366103ff15b7a95e8e946_arm64",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-rhel9-operator@sha256:b74935a50eddbd0bfa65b9cd7546c73fadc9267f867adcdaa0cbf8c32b6b4e40_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang.org/x/crypto/ssh: golang.org/x/crypto/ssh: Denial of Service via crafted public key with excessive parameters"
},
{
"cve": "CVE-2026-39830",
"cwe": {
"id": "CWE-772",
"name": "Missing Release of Resource after Effective Lifetime"
},
"discovery_date": "2026-05-22T04:01:38.517202+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-operator-bundle@sha256:2a263321d0db82af2c030c7035349d3b42378fb3b03c3e58c0553ce68217581b_amd64",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-backup-rhel9@sha256:2a99aac71cd2c5ac53e26817eb8e1df65e417ebbc0fce30b05905f022df9dda3_arm64",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-backup-rhel9@sha256:509841df7c98e3d55c85e44dce9d1b235ab9ad80fa0ec82fdfc9a3562e4effbf_s390x",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-backup-rhel9@sha256:77e0a72e35af25a60b202082ada3e61d80d0be7e24ea3b0c374541c93d25da44_ppc64le",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-backup-rhel9@sha256:f1d6822065c055040bf9017047ea4afd874c33ccbfa3c4e5854655419f58dd8e_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2480684"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in golang.org/x/crypto/ssh. A remote malicious SSH peer can exploit this by sending unsolicited global request responses, which fills an internal buffer and blocks the connection\u0027s read loop. This prevents the associated resources from being released, leading to a resource leak per connection. The consequence is a Denial of Service (DoS) for the affected system.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang.org/x/crypto/ssh: golang.org/x/crypto/ssh: Denial of Service via resource leak from unsolicited SSH responses",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This is an Important denial of service flaw in `golang.org/x/crypto/ssh`. A remote, unauthenticated attacker can exploit this vulnerability by sending unsolicited global request responses to an affected SSH server, leading to resource exhaustion and a denial of service. The impact is considered Important due to the potential for unauthenticated remote disruption of services utilizing the vulnerable SSH library.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-clone-rhel9@sha256:00c7568ee3e388839b7777dab379ac6ecf3c5bc7bdeec2562417f88f862b80b5_s390x",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-clone-rhel9@sha256:0ba88226a4c28d5caab277cbddac90e8782bd9b77a87c2253b5933730fda57f2_amd64",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-clone-rhel9@sha256:3d0cf855d29d897af3f55066f0882b844402d43c29ede0401336e00d8e09806e_ppc64le",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-clone-rhel9@sha256:70d9351eb4156abab69dd5001020cf9a90731d25a2677069c85788c6f41d2130_arm64",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-rhel9-operator@sha256:273e029b1618235c7c4ea103d09da99dac8d2803c9be4b5754f1f251563fce27_amd64",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-rhel9-operator@sha256:2f577d0458bb4af7eb00dc937cac08023c2de0fca74e31fc2c2725cc4cc26a44_s390x",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-rhel9-operator@sha256:71f0ecbb31045e41063e781e2cf03737e8878c49b27366103ff15b7a95e8e946_arm64",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-rhel9-operator@sha256:b74935a50eddbd0bfa65b9cd7546c73fadc9267f867adcdaa0cbf8c32b6b4e40_ppc64le"
],
"known_not_affected": [
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-operator-bundle@sha256:2a263321d0db82af2c030c7035349d3b42378fb3b03c3e58c0553ce68217581b_amd64",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-backup-rhel9@sha256:2a99aac71cd2c5ac53e26817eb8e1df65e417ebbc0fce30b05905f022df9dda3_arm64",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-backup-rhel9@sha256:509841df7c98e3d55c85e44dce9d1b235ab9ad80fa0ec82fdfc9a3562e4effbf_s390x",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-backup-rhel9@sha256:77e0a72e35af25a60b202082ada3e61d80d0be7e24ea3b0c374541c93d25da44_ppc64le",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-backup-rhel9@sha256:f1d6822065c055040bf9017047ea4afd874c33ccbfa3c4e5854655419f58dd8e_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-39830"
},
{
"category": "external",
"summary": "RHBZ#2480684",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2480684"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-39830",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-39830"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-39830",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-39830"
},
{
"category": "external",
"summary": "https://go.dev/cl/781640",
"url": "https://go.dev/cl/781640"
},
{
"category": "external",
"summary": "https://go.dev/cl/781664",
"url": "https://go.dev/cl/781664"
},
{
"category": "external",
"summary": "https://go.dev/issue/79564",
"url": "https://go.dev/issue/79564"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/a082jnz-LvI",
"url": "https://groups.google.com/g/golang-announce/c/a082jnz-LvI"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-5017",
"url": "https://pkg.go.dev/vuln/GO-2026-5017"
}
],
"release_date": "2026-05-22T02:31:27.208000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T16:06:37+00:00",
"details": "To start using the DevWorkspace Operator, install the DevWorkspace Operator from OpenShift OperatorHub on OpenShift Container Platform 4.16 or higher.",
"product_ids": [
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-clone-rhel9@sha256:00c7568ee3e388839b7777dab379ac6ecf3c5bc7bdeec2562417f88f862b80b5_s390x",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-clone-rhel9@sha256:0ba88226a4c28d5caab277cbddac90e8782bd9b77a87c2253b5933730fda57f2_amd64",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-clone-rhel9@sha256:3d0cf855d29d897af3f55066f0882b844402d43c29ede0401336e00d8e09806e_ppc64le",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-clone-rhel9@sha256:70d9351eb4156abab69dd5001020cf9a90731d25a2677069c85788c6f41d2130_arm64",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-rhel9-operator@sha256:273e029b1618235c7c4ea103d09da99dac8d2803c9be4b5754f1f251563fce27_amd64",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-rhel9-operator@sha256:2f577d0458bb4af7eb00dc937cac08023c2de0fca74e31fc2c2725cc4cc26a44_s390x",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-rhel9-operator@sha256:71f0ecbb31045e41063e781e2cf03737e8878c49b27366103ff15b7a95e8e946_arm64",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-rhel9-operator@sha256:b74935a50eddbd0bfa65b9cd7546c73fadc9267f867adcdaa0cbf8c32b6b4e40_ppc64le"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36808"
},
{
"category": "workaround",
"details": "To mitigate this denial of service vulnerability, restrict network access to any service that utilizes the `golang.org/x/crypto/ssh` library and is exposed to untrusted networks. Implement firewall rules to allow connections only from trusted hosts or networks. This action limits the ability of malicious peers to send unsolicited global request responses. A restart of the affected service may be necessary for the new network rules to be applied effectively.",
"product_ids": [
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-operator-bundle@sha256:2a263321d0db82af2c030c7035349d3b42378fb3b03c3e58c0553ce68217581b_amd64",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-backup-rhel9@sha256:2a99aac71cd2c5ac53e26817eb8e1df65e417ebbc0fce30b05905f022df9dda3_arm64",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-backup-rhel9@sha256:509841df7c98e3d55c85e44dce9d1b235ab9ad80fa0ec82fdfc9a3562e4effbf_s390x",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-backup-rhel9@sha256:77e0a72e35af25a60b202082ada3e61d80d0be7e24ea3b0c374541c93d25da44_ppc64le",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-backup-rhel9@sha256:f1d6822065c055040bf9017047ea4afd874c33ccbfa3c4e5854655419f58dd8e_amd64",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-clone-rhel9@sha256:00c7568ee3e388839b7777dab379ac6ecf3c5bc7bdeec2562417f88f862b80b5_s390x",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-clone-rhel9@sha256:0ba88226a4c28d5caab277cbddac90e8782bd9b77a87c2253b5933730fda57f2_amd64",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-clone-rhel9@sha256:3d0cf855d29d897af3f55066f0882b844402d43c29ede0401336e00d8e09806e_ppc64le",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-clone-rhel9@sha256:70d9351eb4156abab69dd5001020cf9a90731d25a2677069c85788c6f41d2130_arm64",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-rhel9-operator@sha256:273e029b1618235c7c4ea103d09da99dac8d2803c9be4b5754f1f251563fce27_amd64",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-rhel9-operator@sha256:2f577d0458bb4af7eb00dc937cac08023c2de0fca74e31fc2c2725cc4cc26a44_s390x",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-rhel9-operator@sha256:71f0ecbb31045e41063e781e2cf03737e8878c49b27366103ff15b7a95e8e946_arm64",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-rhel9-operator@sha256:b74935a50eddbd0bfa65b9cd7546c73fadc9267f867adcdaa0cbf8c32b6b4e40_ppc64le"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-operator-bundle@sha256:2a263321d0db82af2c030c7035349d3b42378fb3b03c3e58c0553ce68217581b_amd64",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-backup-rhel9@sha256:2a99aac71cd2c5ac53e26817eb8e1df65e417ebbc0fce30b05905f022df9dda3_arm64",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-backup-rhel9@sha256:509841df7c98e3d55c85e44dce9d1b235ab9ad80fa0ec82fdfc9a3562e4effbf_s390x",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-backup-rhel9@sha256:77e0a72e35af25a60b202082ada3e61d80d0be7e24ea3b0c374541c93d25da44_ppc64le",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-backup-rhel9@sha256:f1d6822065c055040bf9017047ea4afd874c33ccbfa3c4e5854655419f58dd8e_amd64",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-clone-rhel9@sha256:00c7568ee3e388839b7777dab379ac6ecf3c5bc7bdeec2562417f88f862b80b5_s390x",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-clone-rhel9@sha256:0ba88226a4c28d5caab277cbddac90e8782bd9b77a87c2253b5933730fda57f2_amd64",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-clone-rhel9@sha256:3d0cf855d29d897af3f55066f0882b844402d43c29ede0401336e00d8e09806e_ppc64le",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-clone-rhel9@sha256:70d9351eb4156abab69dd5001020cf9a90731d25a2677069c85788c6f41d2130_arm64",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-rhel9-operator@sha256:273e029b1618235c7c4ea103d09da99dac8d2803c9be4b5754f1f251563fce27_amd64",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-rhel9-operator@sha256:2f577d0458bb4af7eb00dc937cac08023c2de0fca74e31fc2c2725cc4cc26a44_s390x",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-rhel9-operator@sha256:71f0ecbb31045e41063e781e2cf03737e8878c49b27366103ff15b7a95e8e946_arm64",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-rhel9-operator@sha256:b74935a50eddbd0bfa65b9cd7546c73fadc9267f867adcdaa0cbf8c32b6b4e40_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang.org/x/crypto/ssh: golang.org/x/crypto/ssh: Denial of Service via resource leak from unsolicited SSH responses"
},
{
"cve": "CVE-2026-42508",
"cwe": {
"id": "CWE-295",
"name": "Improper Certificate Validation"
},
"discovery_date": "2026-05-22T04:01:49.515058+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-operator-bundle@sha256:2a263321d0db82af2c030c7035349d3b42378fb3b03c3e58c0553ce68217581b_amd64",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-backup-rhel9@sha256:2a99aac71cd2c5ac53e26817eb8e1df65e417ebbc0fce30b05905f022df9dda3_arm64",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-backup-rhel9@sha256:509841df7c98e3d55c85e44dce9d1b235ab9ad80fa0ec82fdfc9a3562e4effbf_s390x",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-backup-rhel9@sha256:77e0a72e35af25a60b202082ada3e61d80d0be7e24ea3b0c374541c93d25da44_ppc64le",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-backup-rhel9@sha256:f1d6822065c055040bf9017047ea4afd874c33ccbfa3c4e5854655419f58dd8e_amd64",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-clone-rhel9@sha256:00c7568ee3e388839b7777dab379ac6ecf3c5bc7bdeec2562417f88f862b80b5_s390x",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-clone-rhel9@sha256:0ba88226a4c28d5caab277cbddac90e8782bd9b77a87c2253b5933730fda57f2_amd64",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-clone-rhel9@sha256:3d0cf855d29d897af3f55066f0882b844402d43c29ede0401336e00d8e09806e_ppc64le",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-clone-rhel9@sha256:70d9351eb4156abab69dd5001020cf9a90731d25a2677069c85788c6f41d2130_arm64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2480688"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in golang.org/x/crypto/ssh/knownhosts. This vulnerability occurs because the system did not correctly check for the revocation status of a SignatureKey belonging to a Certificate Authority (CA). A remote attacker could potentially exploit this by presenting a revoked key, leading to the system accepting it as valid. This could allow an attacker to bypass security checks and potentially gain unauthorized access or spoof legitimate entities.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang.org/x/crypto/ssh/knownhosts: golang: golang.org/x/crypto/ssh/knownhosts: Revocation bypass via unchecked SignatureKey",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Important: A flaw in `golang.org/x/crypto/ssh/knownhosts` allows a remote attacker to bypass security checks. This vulnerability arises because the system fails to properly verify the revocation status of a Certificate Authority (CA) `SignatureKey`. In Red Hat environments, this could enable an attacker to present a revoked key, leading to its acceptance as valid and potentially granting unauthorized access or facilitating the spoofing of legitimate entities.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-rhel9-operator@sha256:273e029b1618235c7c4ea103d09da99dac8d2803c9be4b5754f1f251563fce27_amd64",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-rhel9-operator@sha256:2f577d0458bb4af7eb00dc937cac08023c2de0fca74e31fc2c2725cc4cc26a44_s390x",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-rhel9-operator@sha256:71f0ecbb31045e41063e781e2cf03737e8878c49b27366103ff15b7a95e8e946_arm64",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-rhel9-operator@sha256:b74935a50eddbd0bfa65b9cd7546c73fadc9267f867adcdaa0cbf8c32b6b4e40_ppc64le"
],
"known_not_affected": [
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-operator-bundle@sha256:2a263321d0db82af2c030c7035349d3b42378fb3b03c3e58c0553ce68217581b_amd64",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-backup-rhel9@sha256:2a99aac71cd2c5ac53e26817eb8e1df65e417ebbc0fce30b05905f022df9dda3_arm64",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-backup-rhel9@sha256:509841df7c98e3d55c85e44dce9d1b235ab9ad80fa0ec82fdfc9a3562e4effbf_s390x",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-backup-rhel9@sha256:77e0a72e35af25a60b202082ada3e61d80d0be7e24ea3b0c374541c93d25da44_ppc64le",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-backup-rhel9@sha256:f1d6822065c055040bf9017047ea4afd874c33ccbfa3c4e5854655419f58dd8e_amd64",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-clone-rhel9@sha256:00c7568ee3e388839b7777dab379ac6ecf3c5bc7bdeec2562417f88f862b80b5_s390x",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-clone-rhel9@sha256:0ba88226a4c28d5caab277cbddac90e8782bd9b77a87c2253b5933730fda57f2_amd64",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-clone-rhel9@sha256:3d0cf855d29d897af3f55066f0882b844402d43c29ede0401336e00d8e09806e_ppc64le",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-clone-rhel9@sha256:70d9351eb4156abab69dd5001020cf9a90731d25a2677069c85788c6f41d2130_arm64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-42508"
},
{
"category": "external",
"summary": "RHBZ#2480688",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2480688"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-42508",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-42508"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-42508",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-42508"
},
{
"category": "external",
"summary": "https://go.dev/cl/781220",
"url": "https://go.dev/cl/781220"
},
{
"category": "external",
"summary": "https://go.dev/issue/79568",
"url": "https://go.dev/issue/79568"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/a082jnz-LvI",
"url": "https://groups.google.com/g/golang-announce/c/a082jnz-LvI"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-5021",
"url": "https://pkg.go.dev/vuln/GO-2026-5021"
}
],
"release_date": "2026-05-22T02:31:27.644000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T16:06:37+00:00",
"details": "To start using the DevWorkspace Operator, install the DevWorkspace Operator from OpenShift OperatorHub on OpenShift Container Platform 4.16 or higher.",
"product_ids": [
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-rhel9-operator@sha256:273e029b1618235c7c4ea103d09da99dac8d2803c9be4b5754f1f251563fce27_amd64",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-rhel9-operator@sha256:2f577d0458bb4af7eb00dc937cac08023c2de0fca74e31fc2c2725cc4cc26a44_s390x",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-rhel9-operator@sha256:71f0ecbb31045e41063e781e2cf03737e8878c49b27366103ff15b7a95e8e946_arm64",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-rhel9-operator@sha256:b74935a50eddbd0bfa65b9cd7546c73fadc9267f867adcdaa0cbf8c32b6b4e40_ppc64le"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36808"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.4,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-operator-bundle@sha256:2a263321d0db82af2c030c7035349d3b42378fb3b03c3e58c0553ce68217581b_amd64",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-backup-rhel9@sha256:2a99aac71cd2c5ac53e26817eb8e1df65e417ebbc0fce30b05905f022df9dda3_arm64",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-backup-rhel9@sha256:509841df7c98e3d55c85e44dce9d1b235ab9ad80fa0ec82fdfc9a3562e4effbf_s390x",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-backup-rhel9@sha256:77e0a72e35af25a60b202082ada3e61d80d0be7e24ea3b0c374541c93d25da44_ppc64le",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-backup-rhel9@sha256:f1d6822065c055040bf9017047ea4afd874c33ccbfa3c4e5854655419f58dd8e_amd64",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-clone-rhel9@sha256:00c7568ee3e388839b7777dab379ac6ecf3c5bc7bdeec2562417f88f862b80b5_s390x",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-clone-rhel9@sha256:0ba88226a4c28d5caab277cbddac90e8782bd9b77a87c2253b5933730fda57f2_amd64",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-clone-rhel9@sha256:3d0cf855d29d897af3f55066f0882b844402d43c29ede0401336e00d8e09806e_ppc64le",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-clone-rhel9@sha256:70d9351eb4156abab69dd5001020cf9a90731d25a2677069c85788c6f41d2130_arm64",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-rhel9-operator@sha256:273e029b1618235c7c4ea103d09da99dac8d2803c9be4b5754f1f251563fce27_amd64",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-rhel9-operator@sha256:2f577d0458bb4af7eb00dc937cac08023c2de0fca74e31fc2c2725cc4cc26a44_s390x",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-rhel9-operator@sha256:71f0ecbb31045e41063e781e2cf03737e8878c49b27366103ff15b7a95e8e946_arm64",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-rhel9-operator@sha256:b74935a50eddbd0bfa65b9cd7546c73fadc9267f867adcdaa0cbf8c32b6b4e40_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang.org/x/crypto/ssh/knownhosts: golang: golang.org/x/crypto/ssh/knownhosts: Revocation bypass via unchecked SignatureKey"
},
{
"cve": "CVE-2026-46595",
"cwe": {
"id": "CWE-303",
"name": "Incorrect Implementation of Authentication Algorithm"
},
"discovery_date": "2026-05-22T04:01:52.215134+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-operator-bundle@sha256:2a263321d0db82af2c030c7035349d3b42378fb3b03c3e58c0553ce68217581b_amd64",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-backup-rhel9@sha256:2a99aac71cd2c5ac53e26817eb8e1df65e417ebbc0fce30b05905f022df9dda3_arm64",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-backup-rhel9@sha256:509841df7c98e3d55c85e44dce9d1b235ab9ad80fa0ec82fdfc9a3562e4effbf_s390x",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-backup-rhel9@sha256:77e0a72e35af25a60b202082ada3e61d80d0be7e24ea3b0c374541c93d25da44_ppc64le",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-backup-rhel9@sha256:f1d6822065c055040bf9017047ea4afd874c33ccbfa3c4e5854655419f58dd8e_amd64",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-clone-rhel9@sha256:00c7568ee3e388839b7777dab379ac6ecf3c5bc7bdeec2562417f88f862b80b5_s390x",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-clone-rhel9@sha256:0ba88226a4c28d5caab277cbddac90e8782bd9b77a87c2253b5933730fda57f2_amd64",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-clone-rhel9@sha256:3d0cf855d29d897af3f55066f0882b844402d43c29ede0401336e00d8e09806e_ppc64le",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-clone-rhel9@sha256:70d9351eb4156abab69dd5001020cf9a90731d25a2677069c85788c6f41d2130_arm64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2480689"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in golang.org/x/crypto/ssh. Source-address validation can be skipped when an SSH server configuration uses an authentication callback type other than public key, allowing authorization bypass in misconfigured servers. This is a follow-on to incomplete coverage from the CVE-2024-45337 fix.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang.org/x/crypto/ssh: golang.org/x/crypto/ssh: Authorization bypass due to skipped source-address validation",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "golang.org/x/crypto/ssh is vulnerable to authorization bypass when SSH server configurations rely on source-address validation alongside non-public-key authentication callbacks. An attacker with low privileges who can authenticate through such a callback path may bypass intended source-address restrictions and gain unauthorized SSH access. Red Hat impact sits in services built with affected x/crypto/ssh, including RHEL golang streams, hummingbird Go toolchains, RHACM/MCE agents, and OpenShift or Ceph components that embed Go SSH servers with mixed callback types.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-rhel9-operator@sha256:273e029b1618235c7c4ea103d09da99dac8d2803c9be4b5754f1f251563fce27_amd64",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-rhel9-operator@sha256:2f577d0458bb4af7eb00dc937cac08023c2de0fca74e31fc2c2725cc4cc26a44_s390x",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-rhel9-operator@sha256:71f0ecbb31045e41063e781e2cf03737e8878c49b27366103ff15b7a95e8e946_arm64",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-rhel9-operator@sha256:b74935a50eddbd0bfa65b9cd7546c73fadc9267f867adcdaa0cbf8c32b6b4e40_ppc64le"
],
"known_not_affected": [
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-operator-bundle@sha256:2a263321d0db82af2c030c7035349d3b42378fb3b03c3e58c0553ce68217581b_amd64",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-backup-rhel9@sha256:2a99aac71cd2c5ac53e26817eb8e1df65e417ebbc0fce30b05905f022df9dda3_arm64",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-backup-rhel9@sha256:509841df7c98e3d55c85e44dce9d1b235ab9ad80fa0ec82fdfc9a3562e4effbf_s390x",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-backup-rhel9@sha256:77e0a72e35af25a60b202082ada3e61d80d0be7e24ea3b0c374541c93d25da44_ppc64le",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-backup-rhel9@sha256:f1d6822065c055040bf9017047ea4afd874c33ccbfa3c4e5854655419f58dd8e_amd64",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-clone-rhel9@sha256:00c7568ee3e388839b7777dab379ac6ecf3c5bc7bdeec2562417f88f862b80b5_s390x",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-clone-rhel9@sha256:0ba88226a4c28d5caab277cbddac90e8782bd9b77a87c2253b5933730fda57f2_amd64",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-clone-rhel9@sha256:3d0cf855d29d897af3f55066f0882b844402d43c29ede0401336e00d8e09806e_ppc64le",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-clone-rhel9@sha256:70d9351eb4156abab69dd5001020cf9a90731d25a2677069c85788c6f41d2130_arm64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-46595"
},
{
"category": "external",
"summary": "RHBZ#2480689",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2480689"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-46595",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-46595"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-46595",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-46595"
},
{
"category": "external",
"summary": "https://go.dev/cl/781642",
"url": "https://go.dev/cl/781642"
},
{
"category": "external",
"summary": "https://go.dev/issue/79570",
"url": "https://go.dev/issue/79570"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/a082jnz-LvI",
"url": "https://groups.google.com/g/golang-announce/c/a082jnz-LvI"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-5023",
"url": "https://pkg.go.dev/vuln/GO-2026-5023"
}
],
"release_date": "2026-05-22T02:31:27.894000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T16:06:37+00:00",
"details": "To start using the DevWorkspace Operator, install the DevWorkspace Operator from OpenShift OperatorHub on OpenShift Container Platform 4.16 or higher.",
"product_ids": [
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-rhel9-operator@sha256:273e029b1618235c7c4ea103d09da99dac8d2803c9be4b5754f1f251563fce27_amd64",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-rhel9-operator@sha256:2f577d0458bb4af7eb00dc937cac08023c2de0fca74e31fc2c2725cc4cc26a44_s390x",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-rhel9-operator@sha256:71f0ecbb31045e41063e781e2cf03737e8878c49b27366103ff15b7a95e8e946_arm64",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-rhel9-operator@sha256:b74935a50eddbd0bfa65b9cd7546c73fadc9267f867adcdaa0cbf8c32b6b4e40_ppc64le"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36808"
},
{
"category": "workaround",
"details": "Upgrade to a fixed golang.org/x/crypto/ssh release via updated golang or package rebuilds. Ensure SSH servers use supported public-key callback configurations with source-address validation as intended.",
"product_ids": [
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-operator-bundle@sha256:2a263321d0db82af2c030c7035349d3b42378fb3b03c3e58c0553ce68217581b_amd64",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-backup-rhel9@sha256:2a99aac71cd2c5ac53e26817eb8e1df65e417ebbc0fce30b05905f022df9dda3_arm64",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-backup-rhel9@sha256:509841df7c98e3d55c85e44dce9d1b235ab9ad80fa0ec82fdfc9a3562e4effbf_s390x",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-backup-rhel9@sha256:77e0a72e35af25a60b202082ada3e61d80d0be7e24ea3b0c374541c93d25da44_ppc64le",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-backup-rhel9@sha256:f1d6822065c055040bf9017047ea4afd874c33ccbfa3c4e5854655419f58dd8e_amd64",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-clone-rhel9@sha256:00c7568ee3e388839b7777dab379ac6ecf3c5bc7bdeec2562417f88f862b80b5_s390x",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-clone-rhel9@sha256:0ba88226a4c28d5caab277cbddac90e8782bd9b77a87c2253b5933730fda57f2_amd64",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-clone-rhel9@sha256:3d0cf855d29d897af3f55066f0882b844402d43c29ede0401336e00d8e09806e_ppc64le",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-clone-rhel9@sha256:70d9351eb4156abab69dd5001020cf9a90731d25a2677069c85788c6f41d2130_arm64",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-rhel9-operator@sha256:273e029b1618235c7c4ea103d09da99dac8d2803c9be4b5754f1f251563fce27_amd64",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-rhel9-operator@sha256:2f577d0458bb4af7eb00dc937cac08023c2de0fca74e31fc2c2725cc4cc26a44_s390x",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-rhel9-operator@sha256:71f0ecbb31045e41063e781e2cf03737e8878c49b27366103ff15b7a95e8e946_arm64",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-rhel9-operator@sha256:b74935a50eddbd0bfa65b9cd7546c73fadc9267f867adcdaa0cbf8c32b6b4e40_ppc64le"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 7.1,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:L",
"version": "3.1"
},
"products": [
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-operator-bundle@sha256:2a263321d0db82af2c030c7035349d3b42378fb3b03c3e58c0553ce68217581b_amd64",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-backup-rhel9@sha256:2a99aac71cd2c5ac53e26817eb8e1df65e417ebbc0fce30b05905f022df9dda3_arm64",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-backup-rhel9@sha256:509841df7c98e3d55c85e44dce9d1b235ab9ad80fa0ec82fdfc9a3562e4effbf_s390x",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-backup-rhel9@sha256:77e0a72e35af25a60b202082ada3e61d80d0be7e24ea3b0c374541c93d25da44_ppc64le",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-backup-rhel9@sha256:f1d6822065c055040bf9017047ea4afd874c33ccbfa3c4e5854655419f58dd8e_amd64",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-clone-rhel9@sha256:00c7568ee3e388839b7777dab379ac6ecf3c5bc7bdeec2562417f88f862b80b5_s390x",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-clone-rhel9@sha256:0ba88226a4c28d5caab277cbddac90e8782bd9b77a87c2253b5933730fda57f2_amd64",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-clone-rhel9@sha256:3d0cf855d29d897af3f55066f0882b844402d43c29ede0401336e00d8e09806e_ppc64le",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-project-clone-rhel9@sha256:70d9351eb4156abab69dd5001020cf9a90731d25a2677069c85788c6f41d2130_arm64",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-rhel9-operator@sha256:273e029b1618235c7c4ea103d09da99dac8d2803c9be4b5754f1f251563fce27_amd64",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-rhel9-operator@sha256:2f577d0458bb4af7eb00dc937cac08023c2de0fca74e31fc2c2725cc4cc26a44_s390x",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-rhel9-operator@sha256:71f0ecbb31045e41063e781e2cf03737e8878c49b27366103ff15b7a95e8e946_arm64",
"DevWorkspace Operator 0.42:registry.redhat.io/devworkspace/devworkspace-rhel9-operator@sha256:b74935a50eddbd0bfa65b9cd7546c73fadc9267f867adcdaa0cbf8c32b6b4e40_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang.org/x/crypto/ssh: golang.org/x/crypto/ssh: Authorization bypass due to skipped source-address validation"
}
]
}
RHSA-2026:36820
Vulnerability from csaf_redhat - Published: 2026-07-08 17:12 - Updated: 2026-07-13 04:01A flaw was found in undici. When using Socks5ProxyAgent, undici incorrectly reuses a single connection pool across different origins. This can lead to cross-origin request routing, where sensitive credentials and data intended for one destination are sent to another. Consequently, responses from unintended origins may be trusted, and secure HTTPS connections could be silently downgraded to unencrypted HTTP, resulting in information disclosure and data integrity issues.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:137ffbb95d463d95da6c350600d968f3cd0e9873bf2e7c6edf952ae3229e9e2b_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:1cccdfd7e90877c27c6d8caea4f1e8ad89bb97c83d97ddf570d4f4ee116f1986_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:71657b82894cfd9e350746f48965e148868a675b9a20dcb7f94a6bc7a5b16ea5_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:881e405e32821ef10cf992c7a633281c1dc45df721fe909048df1689472000ce_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:8f145d4e336bd77fcc94f0845f9ebf94563ffd96d56794d96a665c11241df152_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:981917806c7faf31156241cc85577cf375ee566f78adaeadc096d0ba8482b835_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:af3ed91687500d64e2348cca4877c43f73211b8fbd132e7767c3521763185348_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:c05020e5ee5bddc62e38493cd16b6e4ffde7c2248a00d710f32b90a6ee12ceeb_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2af86b409540513f6da1afa83110a5cafe8778d2ec16332faa31c964bd5f43f7_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2f3bec76a833a72c7dfa93ed55e55e80e2621c154e5a2f156deaf78d7c6b97b4_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:81a2385be30079500f13f97a18607aa685abd61265bf8fa78bc6ce126341be50_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:fdc8f64f3b82b200a5e31b01b8612069f1aa897014085c1de755394552a1a70a_amd64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:1384e5ba2b7d23119a49d8713826f4c65668bca310589ac7abd0c0d41c7e4c90_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:7f58528b1da9146aa55917324fdf2b375794742b34e5d10ff57f713af60746cd_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:844c3b1499b00aeadfc561642e53792ad80f535efd53b35793ba08b0f26c6d61_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:e1019c30e1d84e66d775d0d6fc7d051803dcbe44823fb2a1914807be39c79dae_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:8c9a7ebf430b9f4ca200c6c70b049e8456cf88fd8bf0871b42d65e8dc786d451_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:926d965e6fd12ec0d758270fb4c90bbdc1a05e60cc4c895cf9b671a296c9d867_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:e8e807451e3c5d8d0a8575e1280d7125a4ece51547a7b4a5cd247837662cedad_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:f2a24aa01cbe0d926d4aefe3b12eba21eb5ec7f87276e572a6814c727228624c_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:45cc0d783d1e7874ac73dfbdfe7e03c63b227ab3c4f1e15a0a2f5c97956a76d9_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:6f3eb26734e89375c3e1fb7ac366e12dc0d41bac8f07de9210c7e9845a01eec1_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:768c45fa9f35d98dfe5cfe1ea12f552402bf68ac6e1f828b14310ef59ce57c40_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:b5f1bf30495f6be97c696cf7f90768629cee96f8d106f745bf95fdefddc99592_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:6c85b42ede0f4745ed558bcb03d033c49f56cef17a70c12e5308066124cac6e3_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:091529a93e258a612fd4a98222e6a370ee10b4e97efa791b50f79a2670163d01_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0e8958a22f6771ddfe32b34027c69dbbef65d980c7e465a79d4202d2627994ad_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:5a8b0203ff083113e8b30a123ab30c4bad571f57fb59c1e7e01807b92552504e_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:89bf6a32a0935cacadbc6d23566dce6ca741e404d58c11050638c7b8e868028b_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:077cc953354ea2edd85569a622f97c15d44163d68234e7a9fdee899d25c19cdb_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:66285f866090e1bfbedacd592e9d5ea9f2a30b88aa03bc86bc790d6b98a929a4_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:8c80054171d5063457df4bd074674b1824783a101dacb6137da227080aff957c_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:b0f15904251c6665961eef9c944d00f17499f7219351fe213fe7935f62fbf7ac_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:62476ac2fb0096caa9b181f523cc3573ccffe70be1433f08d1d0255b6d3a0640_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:6f632bc9829880a44e2e94084284b52683b4a01dc3315043b0aa32eb344b16cb_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:aa3d1cf7853bfe8307efb01f714585f378d1d3d4ed5de7c8808a72e4aeecd4f3_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:bf1d4b2b1ef03e65be59699ce3233a75a34e1777abc182984c7a8efa698a936e_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:141f17d12c748c7ab9e94cfd9db7e2492d3063e7478249d6430ac0d8fcfb8875_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:5909184fe3d37eb45ba3bf55d7b708d818f2a5abfc2949c4a7081a5cd30cea4f_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:6217f0bb4937fa0e0fc0a5c86456fdc1992e169dfedc3d11d5165cef575d4d53_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:d55a55a36a23e7deb83718bd5dcc19b083b84d441add72ea7f4e28935e4717e3_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:0f8e1171f278395f3c72e4d9d3c0492bed15b678963fb2b6182bd65343b85a2e_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:823bb59b1c7d01557c29f9f1e4a4ee39814c38d826b06c3c9de4b8d179078419_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:93c7e9b321c7e9aa4a412a993a6b20412e24772832cc0dd23bbb17aa25f15487_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:9e50b45f81fedab27e896f04b80bacaa01d8370ff5679147f95ad79b61972d83_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:856b9088dbda4e7374daf232602f4bb90b05ad1be1df46d6e363a002f549f4de_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:a107ae2f7b140f2fb2243f33c378228c2f164cfd2d23f57e63f6c424fd400929_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:e21de356b7d879800a96f6c5aeee6bc59a3ed9c58d36503f7089625ce887bb25_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:fcaf6d60d682cf51866948ea3b4846c2993e2801adb69dc745ffa832318f515c_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:11f005939e15d63057bf2f0a988b6baebc275d3e752e9f7696d0f7f5266fd5d6_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:4b4c98be96a932d508fad769eff61bff2a44e13baa60b22b6c543f4a11eb71c2_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:6c87453ffe89e8be752ee40c8a9ccf6894c83be703f13901b1e8b64a4c0e549a_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:c18a1c50a4fc7081c6564d1c4ed4904212b7939a4f1f46afef0a36dc1d76f38e_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:33367b9fdb3addce3302ad35bc10423505fefe3dd27b8b9013b26d66caac2a6c_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:72cbdb061cbcd295be5e66a0eabb409af16ade7f0aa12b04c2d7327e9e1a24ba_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:d0379f9da8cbb5514394a4550ff0d79f90fa691fcced5806296479c7b63353da_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:e99d1d877bd7335736cbaeb4db5b9904369a1d07f6df332c38ad79ff1256b67b_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:06285611aef2528fc92c5cebb66ff4c74fe44d457f43cf9ec2f4a98c3c68d25e_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:25e0f4153eb5bc6fbc6b389d5adc81bfde103070ef58317c3c25ce4144a628d3_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:acd3c0369c18cbfa63a5972ed1721f93f1fcb456963ff855dea2c295baf1cdb8_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:d086075db52f4476aa64d7e2680baa01e99da246275fa9cae0ba4a74de63c7f3_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:07d89c1b524d1451051feb865bc716da2197add90fa0c58c4cf4a82975ec846c_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:6582e647d7dd604e25977ec1579969aa1fcb29ead1a0ea65833531d633bbdd2b_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:75e3aec03dffbd0f40f88a08ff5e0319f4515d73f0bcfae28b5fa526b494afc4_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:f0079e8ae53d84223aea2d3186e7bc6b525b7c03d307cde50cfb9f1bbc18712b_arm64 | — |
Workaround
|
A flaw was found in undici. When undici's ProxyAgent is configured with a SOCKS5 proxy Uniform Resource Identifier (URI), it silently ignores Transport Layer Security (TLS) options, such as custom Certificate Authorities (CAs). This allows a remote attacker to perform a Man-in-the-Middle (MITM) attack, intercepting and tampering with HTTPS communications. The connection falls back to Node.js's default trust store, bypassing intended security configurations and potentially leading to information disclosure or arbitrary code execution.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:137ffbb95d463d95da6c350600d968f3cd0e9873bf2e7c6edf952ae3229e9e2b_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:1cccdfd7e90877c27c6d8caea4f1e8ad89bb97c83d97ddf570d4f4ee116f1986_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:71657b82894cfd9e350746f48965e148868a675b9a20dcb7f94a6bc7a5b16ea5_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:881e405e32821ef10cf992c7a633281c1dc45df721fe909048df1689472000ce_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:8f145d4e336bd77fcc94f0845f9ebf94563ffd96d56794d96a665c11241df152_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:981917806c7faf31156241cc85577cf375ee566f78adaeadc096d0ba8482b835_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:af3ed91687500d64e2348cca4877c43f73211b8fbd132e7767c3521763185348_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:c05020e5ee5bddc62e38493cd16b6e4ffde7c2248a00d710f32b90a6ee12ceeb_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2af86b409540513f6da1afa83110a5cafe8778d2ec16332faa31c964bd5f43f7_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2f3bec76a833a72c7dfa93ed55e55e80e2621c154e5a2f156deaf78d7c6b97b4_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:81a2385be30079500f13f97a18607aa685abd61265bf8fa78bc6ce126341be50_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:fdc8f64f3b82b200a5e31b01b8612069f1aa897014085c1de755394552a1a70a_amd64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:1384e5ba2b7d23119a49d8713826f4c65668bca310589ac7abd0c0d41c7e4c90_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:7f58528b1da9146aa55917324fdf2b375794742b34e5d10ff57f713af60746cd_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:844c3b1499b00aeadfc561642e53792ad80f535efd53b35793ba08b0f26c6d61_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:e1019c30e1d84e66d775d0d6fc7d051803dcbe44823fb2a1914807be39c79dae_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:8c9a7ebf430b9f4ca200c6c70b049e8456cf88fd8bf0871b42d65e8dc786d451_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:926d965e6fd12ec0d758270fb4c90bbdc1a05e60cc4c895cf9b671a296c9d867_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:e8e807451e3c5d8d0a8575e1280d7125a4ece51547a7b4a5cd247837662cedad_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:f2a24aa01cbe0d926d4aefe3b12eba21eb5ec7f87276e572a6814c727228624c_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:45cc0d783d1e7874ac73dfbdfe7e03c63b227ab3c4f1e15a0a2f5c97956a76d9_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:6f3eb26734e89375c3e1fb7ac366e12dc0d41bac8f07de9210c7e9845a01eec1_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:768c45fa9f35d98dfe5cfe1ea12f552402bf68ac6e1f828b14310ef59ce57c40_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:b5f1bf30495f6be97c696cf7f90768629cee96f8d106f745bf95fdefddc99592_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:6c85b42ede0f4745ed558bcb03d033c49f56cef17a70c12e5308066124cac6e3_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:091529a93e258a612fd4a98222e6a370ee10b4e97efa791b50f79a2670163d01_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0e8958a22f6771ddfe32b34027c69dbbef65d980c7e465a79d4202d2627994ad_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:5a8b0203ff083113e8b30a123ab30c4bad571f57fb59c1e7e01807b92552504e_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:89bf6a32a0935cacadbc6d23566dce6ca741e404d58c11050638c7b8e868028b_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:077cc953354ea2edd85569a622f97c15d44163d68234e7a9fdee899d25c19cdb_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:66285f866090e1bfbedacd592e9d5ea9f2a30b88aa03bc86bc790d6b98a929a4_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:8c80054171d5063457df4bd074674b1824783a101dacb6137da227080aff957c_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:b0f15904251c6665961eef9c944d00f17499f7219351fe213fe7935f62fbf7ac_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:62476ac2fb0096caa9b181f523cc3573ccffe70be1433f08d1d0255b6d3a0640_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:6f632bc9829880a44e2e94084284b52683b4a01dc3315043b0aa32eb344b16cb_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:aa3d1cf7853bfe8307efb01f714585f378d1d3d4ed5de7c8808a72e4aeecd4f3_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:bf1d4b2b1ef03e65be59699ce3233a75a34e1777abc182984c7a8efa698a936e_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:141f17d12c748c7ab9e94cfd9db7e2492d3063e7478249d6430ac0d8fcfb8875_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:5909184fe3d37eb45ba3bf55d7b708d818f2a5abfc2949c4a7081a5cd30cea4f_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:6217f0bb4937fa0e0fc0a5c86456fdc1992e169dfedc3d11d5165cef575d4d53_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:d55a55a36a23e7deb83718bd5dcc19b083b84d441add72ea7f4e28935e4717e3_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:0f8e1171f278395f3c72e4d9d3c0492bed15b678963fb2b6182bd65343b85a2e_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:823bb59b1c7d01557c29f9f1e4a4ee39814c38d826b06c3c9de4b8d179078419_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:93c7e9b321c7e9aa4a412a993a6b20412e24772832cc0dd23bbb17aa25f15487_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:9e50b45f81fedab27e896f04b80bacaa01d8370ff5679147f95ad79b61972d83_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:856b9088dbda4e7374daf232602f4bb90b05ad1be1df46d6e363a002f549f4de_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:a107ae2f7b140f2fb2243f33c378228c2f164cfd2d23f57e63f6c424fd400929_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:e21de356b7d879800a96f6c5aeee6bc59a3ed9c58d36503f7089625ce887bb25_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:fcaf6d60d682cf51866948ea3b4846c2993e2801adb69dc745ffa832318f515c_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:11f005939e15d63057bf2f0a988b6baebc275d3e752e9f7696d0f7f5266fd5d6_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:4b4c98be96a932d508fad769eff61bff2a44e13baa60b22b6c543f4a11eb71c2_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:6c87453ffe89e8be752ee40c8a9ccf6894c83be703f13901b1e8b64a4c0e549a_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:c18a1c50a4fc7081c6564d1c4ed4904212b7939a4f1f46afef0a36dc1d76f38e_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:33367b9fdb3addce3302ad35bc10423505fefe3dd27b8b9013b26d66caac2a6c_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:72cbdb061cbcd295be5e66a0eabb409af16ade7f0aa12b04c2d7327e9e1a24ba_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:d0379f9da8cbb5514394a4550ff0d79f90fa691fcced5806296479c7b63353da_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:e99d1d877bd7335736cbaeb4db5b9904369a1d07f6df332c38ad79ff1256b67b_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:06285611aef2528fc92c5cebb66ff4c74fe44d457f43cf9ec2f4a98c3c68d25e_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:25e0f4153eb5bc6fbc6b389d5adc81bfde103070ef58317c3c25ce4144a628d3_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:acd3c0369c18cbfa63a5972ed1721f93f1fcb456963ff855dea2c295baf1cdb8_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:d086075db52f4476aa64d7e2680baa01e99da246275fa9cae0ba4a74de63c7f3_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:07d89c1b524d1451051feb865bc716da2197add90fa0c58c4cf4a82975ec846c_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:6582e647d7dd604e25977ec1579969aa1fcb29ead1a0ea65833531d633bbdd2b_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:75e3aec03dffbd0f40f88a08ff5e0319f4515d73f0bcfae28b5fa526b494afc4_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:f0079e8ae53d84223aea2d3186e7bc6b525b7c03d307cde50cfb9f1bbc18712b_arm64 | — |
Workaround
|
A flaw was found in undici. A malicious WebSocket server can exploit this by streaming numerous small or empty continuation frames. This can bypass per-frame and cumulative-size validation, leading to unbounded memory growth in the client process. The primary consequence is memory exhaustion, resulting in a denial of service (DoS) for affected applications using the undici WebSocket client or WebSocketStream API.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:137ffbb95d463d95da6c350600d968f3cd0e9873bf2e7c6edf952ae3229e9e2b_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:1cccdfd7e90877c27c6d8caea4f1e8ad89bb97c83d97ddf570d4f4ee116f1986_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:71657b82894cfd9e350746f48965e148868a675b9a20dcb7f94a6bc7a5b16ea5_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:881e405e32821ef10cf992c7a633281c1dc45df721fe909048df1689472000ce_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:8f145d4e336bd77fcc94f0845f9ebf94563ffd96d56794d96a665c11241df152_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:981917806c7faf31156241cc85577cf375ee566f78adaeadc096d0ba8482b835_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:af3ed91687500d64e2348cca4877c43f73211b8fbd132e7767c3521763185348_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:c05020e5ee5bddc62e38493cd16b6e4ffde7c2248a00d710f32b90a6ee12ceeb_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2af86b409540513f6da1afa83110a5cafe8778d2ec16332faa31c964bd5f43f7_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2f3bec76a833a72c7dfa93ed55e55e80e2621c154e5a2f156deaf78d7c6b97b4_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:81a2385be30079500f13f97a18607aa685abd61265bf8fa78bc6ce126341be50_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:fdc8f64f3b82b200a5e31b01b8612069f1aa897014085c1de755394552a1a70a_amd64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:1384e5ba2b7d23119a49d8713826f4c65668bca310589ac7abd0c0d41c7e4c90_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:7f58528b1da9146aa55917324fdf2b375794742b34e5d10ff57f713af60746cd_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:844c3b1499b00aeadfc561642e53792ad80f535efd53b35793ba08b0f26c6d61_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:e1019c30e1d84e66d775d0d6fc7d051803dcbe44823fb2a1914807be39c79dae_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:8c9a7ebf430b9f4ca200c6c70b049e8456cf88fd8bf0871b42d65e8dc786d451_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:926d965e6fd12ec0d758270fb4c90bbdc1a05e60cc4c895cf9b671a296c9d867_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:e8e807451e3c5d8d0a8575e1280d7125a4ece51547a7b4a5cd247837662cedad_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:f2a24aa01cbe0d926d4aefe3b12eba21eb5ec7f87276e572a6814c727228624c_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:45cc0d783d1e7874ac73dfbdfe7e03c63b227ab3c4f1e15a0a2f5c97956a76d9_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:6f3eb26734e89375c3e1fb7ac366e12dc0d41bac8f07de9210c7e9845a01eec1_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:768c45fa9f35d98dfe5cfe1ea12f552402bf68ac6e1f828b14310ef59ce57c40_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:b5f1bf30495f6be97c696cf7f90768629cee96f8d106f745bf95fdefddc99592_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:6c85b42ede0f4745ed558bcb03d033c49f56cef17a70c12e5308066124cac6e3_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:091529a93e258a612fd4a98222e6a370ee10b4e97efa791b50f79a2670163d01_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0e8958a22f6771ddfe32b34027c69dbbef65d980c7e465a79d4202d2627994ad_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:5a8b0203ff083113e8b30a123ab30c4bad571f57fb59c1e7e01807b92552504e_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:89bf6a32a0935cacadbc6d23566dce6ca741e404d58c11050638c7b8e868028b_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:077cc953354ea2edd85569a622f97c15d44163d68234e7a9fdee899d25c19cdb_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:66285f866090e1bfbedacd592e9d5ea9f2a30b88aa03bc86bc790d6b98a929a4_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:8c80054171d5063457df4bd074674b1824783a101dacb6137da227080aff957c_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:b0f15904251c6665961eef9c944d00f17499f7219351fe213fe7935f62fbf7ac_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:62476ac2fb0096caa9b181f523cc3573ccffe70be1433f08d1d0255b6d3a0640_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:6f632bc9829880a44e2e94084284b52683b4a01dc3315043b0aa32eb344b16cb_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:aa3d1cf7853bfe8307efb01f714585f378d1d3d4ed5de7c8808a72e4aeecd4f3_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:bf1d4b2b1ef03e65be59699ce3233a75a34e1777abc182984c7a8efa698a936e_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:141f17d12c748c7ab9e94cfd9db7e2492d3063e7478249d6430ac0d8fcfb8875_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:5909184fe3d37eb45ba3bf55d7b708d818f2a5abfc2949c4a7081a5cd30cea4f_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:6217f0bb4937fa0e0fc0a5c86456fdc1992e169dfedc3d11d5165cef575d4d53_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:d55a55a36a23e7deb83718bd5dcc19b083b84d441add72ea7f4e28935e4717e3_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:0f8e1171f278395f3c72e4d9d3c0492bed15b678963fb2b6182bd65343b85a2e_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:823bb59b1c7d01557c29f9f1e4a4ee39814c38d826b06c3c9de4b8d179078419_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:93c7e9b321c7e9aa4a412a993a6b20412e24772832cc0dd23bbb17aa25f15487_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:9e50b45f81fedab27e896f04b80bacaa01d8370ff5679147f95ad79b61972d83_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:856b9088dbda4e7374daf232602f4bb90b05ad1be1df46d6e363a002f549f4de_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:a107ae2f7b140f2fb2243f33c378228c2f164cfd2d23f57e63f6c424fd400929_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:e21de356b7d879800a96f6c5aeee6bc59a3ed9c58d36503f7089625ce887bb25_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:fcaf6d60d682cf51866948ea3b4846c2993e2801adb69dc745ffa832318f515c_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:11f005939e15d63057bf2f0a988b6baebc275d3e752e9f7696d0f7f5266fd5d6_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:4b4c98be96a932d508fad769eff61bff2a44e13baa60b22b6c543f4a11eb71c2_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:6c87453ffe89e8be752ee40c8a9ccf6894c83be703f13901b1e8b64a4c0e549a_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:c18a1c50a4fc7081c6564d1c4ed4904212b7939a4f1f46afef0a36dc1d76f38e_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:33367b9fdb3addce3302ad35bc10423505fefe3dd27b8b9013b26d66caac2a6c_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:72cbdb061cbcd295be5e66a0eabb409af16ade7f0aa12b04c2d7327e9e1a24ba_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:d0379f9da8cbb5514394a4550ff0d79f90fa691fcced5806296479c7b63353da_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:e99d1d877bd7335736cbaeb4db5b9904369a1d07f6df332c38ad79ff1256b67b_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:06285611aef2528fc92c5cebb66ff4c74fe44d457f43cf9ec2f4a98c3c68d25e_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:25e0f4153eb5bc6fbc6b389d5adc81bfde103070ef58317c3c25ce4144a628d3_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:acd3c0369c18cbfa63a5972ed1721f93f1fcb456963ff855dea2c295baf1cdb8_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:d086075db52f4476aa64d7e2680baa01e99da246275fa9cae0ba4a74de63c7f3_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:07d89c1b524d1451051feb865bc716da2197add90fa0c58c4cf4a82975ec846c_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:6582e647d7dd604e25977ec1579969aa1fcb29ead1a0ea65833531d633bbdd2b_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:75e3aec03dffbd0f40f88a08ff5e0319f4515d73f0bcfae28b5fa526b494afc4_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:f0079e8ae53d84223aea2d3186e7bc6b525b7c03d307cde50cfb9f1bbc18712b_arm64 | — |
Workaround
|
A flaw was found in the vscode-java extension, which provides Java language support for Visual Studio Code. The extension incorrectly trusts all Markdown content in JavaDoc hovers, allowing a malicious Java file to include hidden commands. If a user clicks a specially crafted link within a JavaDoc hover popup, an attacker can execute arbitrary VS Code commands, which can lead to full system compromise in trusted workspaces.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2af86b409540513f6da1afa83110a5cafe8778d2ec16332faa31c964bd5f43f7_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2f3bec76a833a72c7dfa93ed55e55e80e2621c154e5a2f156deaf78d7c6b97b4_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:81a2385be30079500f13f97a18607aa685abd61265bf8fa78bc6ce126341be50_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:fdc8f64f3b82b200a5e31b01b8612069f1aa897014085c1de755394552a1a70a_amd64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:1384e5ba2b7d23119a49d8713826f4c65668bca310589ac7abd0c0d41c7e4c90_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:7f58528b1da9146aa55917324fdf2b375794742b34e5d10ff57f713af60746cd_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:844c3b1499b00aeadfc561642e53792ad80f535efd53b35793ba08b0f26c6d61_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:e1019c30e1d84e66d775d0d6fc7d051803dcbe44823fb2a1914807be39c79dae_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:8c9a7ebf430b9f4ca200c6c70b049e8456cf88fd8bf0871b42d65e8dc786d451_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:926d965e6fd12ec0d758270fb4c90bbdc1a05e60cc4c895cf9b671a296c9d867_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:e8e807451e3c5d8d0a8575e1280d7125a4ece51547a7b4a5cd247837662cedad_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:f2a24aa01cbe0d926d4aefe3b12eba21eb5ec7f87276e572a6814c727228624c_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:45cc0d783d1e7874ac73dfbdfe7e03c63b227ab3c4f1e15a0a2f5c97956a76d9_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:6f3eb26734e89375c3e1fb7ac366e12dc0d41bac8f07de9210c7e9845a01eec1_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:768c45fa9f35d98dfe5cfe1ea12f552402bf68ac6e1f828b14310ef59ce57c40_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:b5f1bf30495f6be97c696cf7f90768629cee96f8d106f745bf95fdefddc99592_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:137ffbb95d463d95da6c350600d968f3cd0e9873bf2e7c6edf952ae3229e9e2b_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:1cccdfd7e90877c27c6d8caea4f1e8ad89bb97c83d97ddf570d4f4ee116f1986_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:71657b82894cfd9e350746f48965e148868a675b9a20dcb7f94a6bc7a5b16ea5_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:881e405e32821ef10cf992c7a633281c1dc45df721fe909048df1689472000ce_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:6c85b42ede0f4745ed558bcb03d033c49f56cef17a70c12e5308066124cac6e3_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:091529a93e258a612fd4a98222e6a370ee10b4e97efa791b50f79a2670163d01_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0e8958a22f6771ddfe32b34027c69dbbef65d980c7e465a79d4202d2627994ad_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:5a8b0203ff083113e8b30a123ab30c4bad571f57fb59c1e7e01807b92552504e_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:89bf6a32a0935cacadbc6d23566dce6ca741e404d58c11050638c7b8e868028b_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:077cc953354ea2edd85569a622f97c15d44163d68234e7a9fdee899d25c19cdb_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:66285f866090e1bfbedacd592e9d5ea9f2a30b88aa03bc86bc790d6b98a929a4_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:8c80054171d5063457df4bd074674b1824783a101dacb6137da227080aff957c_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:b0f15904251c6665961eef9c944d00f17499f7219351fe213fe7935f62fbf7ac_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:62476ac2fb0096caa9b181f523cc3573ccffe70be1433f08d1d0255b6d3a0640_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:6f632bc9829880a44e2e94084284b52683b4a01dc3315043b0aa32eb344b16cb_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:aa3d1cf7853bfe8307efb01f714585f378d1d3d4ed5de7c8808a72e4aeecd4f3_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:bf1d4b2b1ef03e65be59699ce3233a75a34e1777abc182984c7a8efa698a936e_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:141f17d12c748c7ab9e94cfd9db7e2492d3063e7478249d6430ac0d8fcfb8875_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:5909184fe3d37eb45ba3bf55d7b708d818f2a5abfc2949c4a7081a5cd30cea4f_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:6217f0bb4937fa0e0fc0a5c86456fdc1992e169dfedc3d11d5165cef575d4d53_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:d55a55a36a23e7deb83718bd5dcc19b083b84d441add72ea7f4e28935e4717e3_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:0f8e1171f278395f3c72e4d9d3c0492bed15b678963fb2b6182bd65343b85a2e_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:823bb59b1c7d01557c29f9f1e4a4ee39814c38d826b06c3c9de4b8d179078419_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:93c7e9b321c7e9aa4a412a993a6b20412e24772832cc0dd23bbb17aa25f15487_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:9e50b45f81fedab27e896f04b80bacaa01d8370ff5679147f95ad79b61972d83_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:8f145d4e336bd77fcc94f0845f9ebf94563ffd96d56794d96a665c11241df152_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:981917806c7faf31156241cc85577cf375ee566f78adaeadc096d0ba8482b835_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:af3ed91687500d64e2348cca4877c43f73211b8fbd132e7767c3521763185348_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:c05020e5ee5bddc62e38493cd16b6e4ffde7c2248a00d710f32b90a6ee12ceeb_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:856b9088dbda4e7374daf232602f4bb90b05ad1be1df46d6e363a002f549f4de_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:a107ae2f7b140f2fb2243f33c378228c2f164cfd2d23f57e63f6c424fd400929_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:e21de356b7d879800a96f6c5aeee6bc59a3ed9c58d36503f7089625ce887bb25_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:fcaf6d60d682cf51866948ea3b4846c2993e2801adb69dc745ffa832318f515c_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:11f005939e15d63057bf2f0a988b6baebc275d3e752e9f7696d0f7f5266fd5d6_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:4b4c98be96a932d508fad769eff61bff2a44e13baa60b22b6c543f4a11eb71c2_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:6c87453ffe89e8be752ee40c8a9ccf6894c83be703f13901b1e8b64a4c0e549a_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:c18a1c50a4fc7081c6564d1c4ed4904212b7939a4f1f46afef0a36dc1d76f38e_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:33367b9fdb3addce3302ad35bc10423505fefe3dd27b8b9013b26d66caac2a6c_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:72cbdb061cbcd295be5e66a0eabb409af16ade7f0aa12b04c2d7327e9e1a24ba_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:d0379f9da8cbb5514394a4550ff0d79f90fa691fcced5806296479c7b63353da_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:e99d1d877bd7335736cbaeb4db5b9904369a1d07f6df332c38ad79ff1256b67b_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:06285611aef2528fc92c5cebb66ff4c74fe44d457f43cf9ec2f4a98c3c68d25e_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:25e0f4153eb5bc6fbc6b389d5adc81bfde103070ef58317c3c25ce4144a628d3_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:acd3c0369c18cbfa63a5972ed1721f93f1fcb456963ff855dea2c295baf1cdb8_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:d086075db52f4476aa64d7e2680baa01e99da246275fa9cae0ba4a74de63c7f3_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:07d89c1b524d1451051feb865bc716da2197add90fa0c58c4cf4a82975ec846c_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:6582e647d7dd604e25977ec1579969aa1fcb29ead1a0ea65833531d633bbdd2b_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:75e3aec03dffbd0f40f88a08ff5e0319f4515d73f0bcfae28b5fa526b494afc4_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:f0079e8ae53d84223aea2d3186e7bc6b525b7c03d307cde50cfb9f1bbc18712b_arm64 | — |
Workaround
|
A flaw was found in Go JOSE, a library for handling JSON Web Encryption (JWE) objects. A remote attacker could exploit this vulnerability by providing a specially crafted JWE object. When decrypting such an object, if a key wrapping algorithm is specified but the encrypted key field is empty, the application can crash. This leads to a denial of service (DoS), making the affected service unavailable to legitimate users.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:33367b9fdb3addce3302ad35bc10423505fefe3dd27b8b9013b26d66caac2a6c_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:72cbdb061cbcd295be5e66a0eabb409af16ade7f0aa12b04c2d7327e9e1a24ba_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:d0379f9da8cbb5514394a4550ff0d79f90fa691fcced5806296479c7b63353da_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:e99d1d877bd7335736cbaeb4db5b9904369a1d07f6df332c38ad79ff1256b67b_s390x | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:1384e5ba2b7d23119a49d8713826f4c65668bca310589ac7abd0c0d41c7e4c90_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:7f58528b1da9146aa55917324fdf2b375794742b34e5d10ff57f713af60746cd_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:844c3b1499b00aeadfc561642e53792ad80f535efd53b35793ba08b0f26c6d61_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:e1019c30e1d84e66d775d0d6fc7d051803dcbe44823fb2a1914807be39c79dae_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:8c9a7ebf430b9f4ca200c6c70b049e8456cf88fd8bf0871b42d65e8dc786d451_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:926d965e6fd12ec0d758270fb4c90bbdc1a05e60cc4c895cf9b671a296c9d867_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:e8e807451e3c5d8d0a8575e1280d7125a4ece51547a7b4a5cd247837662cedad_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:f2a24aa01cbe0d926d4aefe3b12eba21eb5ec7f87276e572a6814c727228624c_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:45cc0d783d1e7874ac73dfbdfe7e03c63b227ab3c4f1e15a0a2f5c97956a76d9_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:6f3eb26734e89375c3e1fb7ac366e12dc0d41bac8f07de9210c7e9845a01eec1_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:768c45fa9f35d98dfe5cfe1ea12f552402bf68ac6e1f828b14310ef59ce57c40_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:b5f1bf30495f6be97c696cf7f90768629cee96f8d106f745bf95fdefddc99592_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:137ffbb95d463d95da6c350600d968f3cd0e9873bf2e7c6edf952ae3229e9e2b_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:1cccdfd7e90877c27c6d8caea4f1e8ad89bb97c83d97ddf570d4f4ee116f1986_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:71657b82894cfd9e350746f48965e148868a675b9a20dcb7f94a6bc7a5b16ea5_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:881e405e32821ef10cf992c7a633281c1dc45df721fe909048df1689472000ce_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:6c85b42ede0f4745ed558bcb03d033c49f56cef17a70c12e5308066124cac6e3_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:091529a93e258a612fd4a98222e6a370ee10b4e97efa791b50f79a2670163d01_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0e8958a22f6771ddfe32b34027c69dbbef65d980c7e465a79d4202d2627994ad_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:5a8b0203ff083113e8b30a123ab30c4bad571f57fb59c1e7e01807b92552504e_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:89bf6a32a0935cacadbc6d23566dce6ca741e404d58c11050638c7b8e868028b_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:077cc953354ea2edd85569a622f97c15d44163d68234e7a9fdee899d25c19cdb_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:66285f866090e1bfbedacd592e9d5ea9f2a30b88aa03bc86bc790d6b98a929a4_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:8c80054171d5063457df4bd074674b1824783a101dacb6137da227080aff957c_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:b0f15904251c6665961eef9c944d00f17499f7219351fe213fe7935f62fbf7ac_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:62476ac2fb0096caa9b181f523cc3573ccffe70be1433f08d1d0255b6d3a0640_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:6f632bc9829880a44e2e94084284b52683b4a01dc3315043b0aa32eb344b16cb_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:aa3d1cf7853bfe8307efb01f714585f378d1d3d4ed5de7c8808a72e4aeecd4f3_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:bf1d4b2b1ef03e65be59699ce3233a75a34e1777abc182984c7a8efa698a936e_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:141f17d12c748c7ab9e94cfd9db7e2492d3063e7478249d6430ac0d8fcfb8875_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:5909184fe3d37eb45ba3bf55d7b708d818f2a5abfc2949c4a7081a5cd30cea4f_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:6217f0bb4937fa0e0fc0a5c86456fdc1992e169dfedc3d11d5165cef575d4d53_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:d55a55a36a23e7deb83718bd5dcc19b083b84d441add72ea7f4e28935e4717e3_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:0f8e1171f278395f3c72e4d9d3c0492bed15b678963fb2b6182bd65343b85a2e_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:823bb59b1c7d01557c29f9f1e4a4ee39814c38d826b06c3c9de4b8d179078419_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:93c7e9b321c7e9aa4a412a993a6b20412e24772832cc0dd23bbb17aa25f15487_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:9e50b45f81fedab27e896f04b80bacaa01d8370ff5679147f95ad79b61972d83_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:8f145d4e336bd77fcc94f0845f9ebf94563ffd96d56794d96a665c11241df152_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:981917806c7faf31156241cc85577cf375ee566f78adaeadc096d0ba8482b835_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:af3ed91687500d64e2348cca4877c43f73211b8fbd132e7767c3521763185348_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:c05020e5ee5bddc62e38493cd16b6e4ffde7c2248a00d710f32b90a6ee12ceeb_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2af86b409540513f6da1afa83110a5cafe8778d2ec16332faa31c964bd5f43f7_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2f3bec76a833a72c7dfa93ed55e55e80e2621c154e5a2f156deaf78d7c6b97b4_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:81a2385be30079500f13f97a18607aa685abd61265bf8fa78bc6ce126341be50_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:fdc8f64f3b82b200a5e31b01b8612069f1aa897014085c1de755394552a1a70a_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:856b9088dbda4e7374daf232602f4bb90b05ad1be1df46d6e363a002f549f4de_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:a107ae2f7b140f2fb2243f33c378228c2f164cfd2d23f57e63f6c424fd400929_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:e21de356b7d879800a96f6c5aeee6bc59a3ed9c58d36503f7089625ce887bb25_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:fcaf6d60d682cf51866948ea3b4846c2993e2801adb69dc745ffa832318f515c_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:11f005939e15d63057bf2f0a988b6baebc275d3e752e9f7696d0f7f5266fd5d6_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:4b4c98be96a932d508fad769eff61bff2a44e13baa60b22b6c543f4a11eb71c2_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:6c87453ffe89e8be752ee40c8a9ccf6894c83be703f13901b1e8b64a4c0e549a_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:c18a1c50a4fc7081c6564d1c4ed4904212b7939a4f1f46afef0a36dc1d76f38e_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:06285611aef2528fc92c5cebb66ff4c74fe44d457f43cf9ec2f4a98c3c68d25e_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:25e0f4153eb5bc6fbc6b389d5adc81bfde103070ef58317c3c25ce4144a628d3_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:acd3c0369c18cbfa63a5972ed1721f93f1fcb456963ff855dea2c295baf1cdb8_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:d086075db52f4476aa64d7e2680baa01e99da246275fa9cae0ba4a74de63c7f3_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:07d89c1b524d1451051feb865bc716da2197add90fa0c58c4cf4a82975ec846c_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:6582e647d7dd604e25977ec1579969aa1fcb29ead1a0ea65833531d633bbdd2b_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:75e3aec03dffbd0f40f88a08ff5e0319f4515d73f0bcfae28b5fa526b494afc4_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:f0079e8ae53d84223aea2d3186e7bc6b525b7c03d307cde50cfb9f1bbc18712b_arm64 | — |
Workaround
|
A flaw was found in golang.org/x/net/idna. ToASCII and ToUnicode incorrectly accept Punycode-encoded labels that decode to an ASCII-only hostname (for example, xn--example-.com returns example.com instead of an error). Applications that validate the ASCII form then convert to Unicode may grant access to a restricted hostname the ASCII check would have rejected.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:07d89c1b524d1451051feb865bc716da2197add90fa0c58c4cf4a82975ec846c_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:6582e647d7dd604e25977ec1579969aa1fcb29ead1a0ea65833531d633bbdd2b_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:75e3aec03dffbd0f40f88a08ff5e0319f4515d73f0bcfae28b5fa526b494afc4_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:f0079e8ae53d84223aea2d3186e7bc6b525b7c03d307cde50cfb9f1bbc18712b_arm64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:1384e5ba2b7d23119a49d8713826f4c65668bca310589ac7abd0c0d41c7e4c90_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:7f58528b1da9146aa55917324fdf2b375794742b34e5d10ff57f713af60746cd_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:844c3b1499b00aeadfc561642e53792ad80f535efd53b35793ba08b0f26c6d61_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:e1019c30e1d84e66d775d0d6fc7d051803dcbe44823fb2a1914807be39c79dae_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:8c9a7ebf430b9f4ca200c6c70b049e8456cf88fd8bf0871b42d65e8dc786d451_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:926d965e6fd12ec0d758270fb4c90bbdc1a05e60cc4c895cf9b671a296c9d867_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:e8e807451e3c5d8d0a8575e1280d7125a4ece51547a7b4a5cd247837662cedad_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:f2a24aa01cbe0d926d4aefe3b12eba21eb5ec7f87276e572a6814c727228624c_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:45cc0d783d1e7874ac73dfbdfe7e03c63b227ab3c4f1e15a0a2f5c97956a76d9_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:6f3eb26734e89375c3e1fb7ac366e12dc0d41bac8f07de9210c7e9845a01eec1_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:768c45fa9f35d98dfe5cfe1ea12f552402bf68ac6e1f828b14310ef59ce57c40_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:b5f1bf30495f6be97c696cf7f90768629cee96f8d106f745bf95fdefddc99592_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:137ffbb95d463d95da6c350600d968f3cd0e9873bf2e7c6edf952ae3229e9e2b_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:1cccdfd7e90877c27c6d8caea4f1e8ad89bb97c83d97ddf570d4f4ee116f1986_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:71657b82894cfd9e350746f48965e148868a675b9a20dcb7f94a6bc7a5b16ea5_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:881e405e32821ef10cf992c7a633281c1dc45df721fe909048df1689472000ce_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:6c85b42ede0f4745ed558bcb03d033c49f56cef17a70c12e5308066124cac6e3_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:091529a93e258a612fd4a98222e6a370ee10b4e97efa791b50f79a2670163d01_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0e8958a22f6771ddfe32b34027c69dbbef65d980c7e465a79d4202d2627994ad_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:5a8b0203ff083113e8b30a123ab30c4bad571f57fb59c1e7e01807b92552504e_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:89bf6a32a0935cacadbc6d23566dce6ca741e404d58c11050638c7b8e868028b_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:077cc953354ea2edd85569a622f97c15d44163d68234e7a9fdee899d25c19cdb_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:66285f866090e1bfbedacd592e9d5ea9f2a30b88aa03bc86bc790d6b98a929a4_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:8c80054171d5063457df4bd074674b1824783a101dacb6137da227080aff957c_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:b0f15904251c6665961eef9c944d00f17499f7219351fe213fe7935f62fbf7ac_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:62476ac2fb0096caa9b181f523cc3573ccffe70be1433f08d1d0255b6d3a0640_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:6f632bc9829880a44e2e94084284b52683b4a01dc3315043b0aa32eb344b16cb_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:aa3d1cf7853bfe8307efb01f714585f378d1d3d4ed5de7c8808a72e4aeecd4f3_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:bf1d4b2b1ef03e65be59699ce3233a75a34e1777abc182984c7a8efa698a936e_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:141f17d12c748c7ab9e94cfd9db7e2492d3063e7478249d6430ac0d8fcfb8875_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:5909184fe3d37eb45ba3bf55d7b708d818f2a5abfc2949c4a7081a5cd30cea4f_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:6217f0bb4937fa0e0fc0a5c86456fdc1992e169dfedc3d11d5165cef575d4d53_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:d55a55a36a23e7deb83718bd5dcc19b083b84d441add72ea7f4e28935e4717e3_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:0f8e1171f278395f3c72e4d9d3c0492bed15b678963fb2b6182bd65343b85a2e_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:823bb59b1c7d01557c29f9f1e4a4ee39814c38d826b06c3c9de4b8d179078419_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:93c7e9b321c7e9aa4a412a993a6b20412e24772832cc0dd23bbb17aa25f15487_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:9e50b45f81fedab27e896f04b80bacaa01d8370ff5679147f95ad79b61972d83_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:8f145d4e336bd77fcc94f0845f9ebf94563ffd96d56794d96a665c11241df152_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:981917806c7faf31156241cc85577cf375ee566f78adaeadc096d0ba8482b835_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:af3ed91687500d64e2348cca4877c43f73211b8fbd132e7767c3521763185348_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:c05020e5ee5bddc62e38493cd16b6e4ffde7c2248a00d710f32b90a6ee12ceeb_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2af86b409540513f6da1afa83110a5cafe8778d2ec16332faa31c964bd5f43f7_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2f3bec76a833a72c7dfa93ed55e55e80e2621c154e5a2f156deaf78d7c6b97b4_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:81a2385be30079500f13f97a18607aa685abd61265bf8fa78bc6ce126341be50_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:fdc8f64f3b82b200a5e31b01b8612069f1aa897014085c1de755394552a1a70a_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:856b9088dbda4e7374daf232602f4bb90b05ad1be1df46d6e363a002f549f4de_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:a107ae2f7b140f2fb2243f33c378228c2f164cfd2d23f57e63f6c424fd400929_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:e21de356b7d879800a96f6c5aeee6bc59a3ed9c58d36503f7089625ce887bb25_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:fcaf6d60d682cf51866948ea3b4846c2993e2801adb69dc745ffa832318f515c_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:11f005939e15d63057bf2f0a988b6baebc275d3e752e9f7696d0f7f5266fd5d6_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:4b4c98be96a932d508fad769eff61bff2a44e13baa60b22b6c543f4a11eb71c2_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:6c87453ffe89e8be752ee40c8a9ccf6894c83be703f13901b1e8b64a4c0e549a_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:c18a1c50a4fc7081c6564d1c4ed4904212b7939a4f1f46afef0a36dc1d76f38e_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:33367b9fdb3addce3302ad35bc10423505fefe3dd27b8b9013b26d66caac2a6c_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:72cbdb061cbcd295be5e66a0eabb409af16ade7f0aa12b04c2d7327e9e1a24ba_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:d0379f9da8cbb5514394a4550ff0d79f90fa691fcced5806296479c7b63353da_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:e99d1d877bd7335736cbaeb4db5b9904369a1d07f6df332c38ad79ff1256b67b_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:06285611aef2528fc92c5cebb66ff4c74fe44d457f43cf9ec2f4a98c3c68d25e_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:25e0f4153eb5bc6fbc6b389d5adc81bfde103070ef58317c3c25ce4144a628d3_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:acd3c0369c18cbfa63a5972ed1721f93f1fcb456963ff855dea2c295baf1cdb8_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:d086075db52f4476aa64d7e2680baa01e99da246275fa9cae0ba4a74de63c7f3_s390x | — |
Workaround
|
A flaw was found in golang.org/x/crypto/ssh. The RSA and DSA public key parsers in the affected component did not enforce size limits on key parameters. This vulnerability allows an unauthenticated client to provide a crafted public key with an excessively large modulus or DSA parameter during public key authentication. Successful exploitation could lead to a denial of service (DoS) due to prolonged CPU consumption during signature verification.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:11f005939e15d63057bf2f0a988b6baebc275d3e752e9f7696d0f7f5266fd5d6_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:4b4c98be96a932d508fad769eff61bff2a44e13baa60b22b6c543f4a11eb71c2_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:6c87453ffe89e8be752ee40c8a9ccf6894c83be703f13901b1e8b64a4c0e549a_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:c18a1c50a4fc7081c6564d1c4ed4904212b7939a4f1f46afef0a36dc1d76f38e_arm64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:1384e5ba2b7d23119a49d8713826f4c65668bca310589ac7abd0c0d41c7e4c90_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:7f58528b1da9146aa55917324fdf2b375794742b34e5d10ff57f713af60746cd_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:844c3b1499b00aeadfc561642e53792ad80f535efd53b35793ba08b0f26c6d61_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:e1019c30e1d84e66d775d0d6fc7d051803dcbe44823fb2a1914807be39c79dae_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:8c9a7ebf430b9f4ca200c6c70b049e8456cf88fd8bf0871b42d65e8dc786d451_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:926d965e6fd12ec0d758270fb4c90bbdc1a05e60cc4c895cf9b671a296c9d867_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:e8e807451e3c5d8d0a8575e1280d7125a4ece51547a7b4a5cd247837662cedad_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:f2a24aa01cbe0d926d4aefe3b12eba21eb5ec7f87276e572a6814c727228624c_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:45cc0d783d1e7874ac73dfbdfe7e03c63b227ab3c4f1e15a0a2f5c97956a76d9_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:6f3eb26734e89375c3e1fb7ac366e12dc0d41bac8f07de9210c7e9845a01eec1_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:768c45fa9f35d98dfe5cfe1ea12f552402bf68ac6e1f828b14310ef59ce57c40_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:b5f1bf30495f6be97c696cf7f90768629cee96f8d106f745bf95fdefddc99592_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:137ffbb95d463d95da6c350600d968f3cd0e9873bf2e7c6edf952ae3229e9e2b_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:1cccdfd7e90877c27c6d8caea4f1e8ad89bb97c83d97ddf570d4f4ee116f1986_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:71657b82894cfd9e350746f48965e148868a675b9a20dcb7f94a6bc7a5b16ea5_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:881e405e32821ef10cf992c7a633281c1dc45df721fe909048df1689472000ce_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:6c85b42ede0f4745ed558bcb03d033c49f56cef17a70c12e5308066124cac6e3_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:091529a93e258a612fd4a98222e6a370ee10b4e97efa791b50f79a2670163d01_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0e8958a22f6771ddfe32b34027c69dbbef65d980c7e465a79d4202d2627994ad_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:5a8b0203ff083113e8b30a123ab30c4bad571f57fb59c1e7e01807b92552504e_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:89bf6a32a0935cacadbc6d23566dce6ca741e404d58c11050638c7b8e868028b_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:077cc953354ea2edd85569a622f97c15d44163d68234e7a9fdee899d25c19cdb_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:66285f866090e1bfbedacd592e9d5ea9f2a30b88aa03bc86bc790d6b98a929a4_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:8c80054171d5063457df4bd074674b1824783a101dacb6137da227080aff957c_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:b0f15904251c6665961eef9c944d00f17499f7219351fe213fe7935f62fbf7ac_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:62476ac2fb0096caa9b181f523cc3573ccffe70be1433f08d1d0255b6d3a0640_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:6f632bc9829880a44e2e94084284b52683b4a01dc3315043b0aa32eb344b16cb_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:aa3d1cf7853bfe8307efb01f714585f378d1d3d4ed5de7c8808a72e4aeecd4f3_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:bf1d4b2b1ef03e65be59699ce3233a75a34e1777abc182984c7a8efa698a936e_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:141f17d12c748c7ab9e94cfd9db7e2492d3063e7478249d6430ac0d8fcfb8875_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:5909184fe3d37eb45ba3bf55d7b708d818f2a5abfc2949c4a7081a5cd30cea4f_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:6217f0bb4937fa0e0fc0a5c86456fdc1992e169dfedc3d11d5165cef575d4d53_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:d55a55a36a23e7deb83718bd5dcc19b083b84d441add72ea7f4e28935e4717e3_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:0f8e1171f278395f3c72e4d9d3c0492bed15b678963fb2b6182bd65343b85a2e_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:823bb59b1c7d01557c29f9f1e4a4ee39814c38d826b06c3c9de4b8d179078419_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:93c7e9b321c7e9aa4a412a993a6b20412e24772832cc0dd23bbb17aa25f15487_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:9e50b45f81fedab27e896f04b80bacaa01d8370ff5679147f95ad79b61972d83_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:8f145d4e336bd77fcc94f0845f9ebf94563ffd96d56794d96a665c11241df152_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:981917806c7faf31156241cc85577cf375ee566f78adaeadc096d0ba8482b835_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:af3ed91687500d64e2348cca4877c43f73211b8fbd132e7767c3521763185348_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:c05020e5ee5bddc62e38493cd16b6e4ffde7c2248a00d710f32b90a6ee12ceeb_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2af86b409540513f6da1afa83110a5cafe8778d2ec16332faa31c964bd5f43f7_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2f3bec76a833a72c7dfa93ed55e55e80e2621c154e5a2f156deaf78d7c6b97b4_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:81a2385be30079500f13f97a18607aa685abd61265bf8fa78bc6ce126341be50_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:fdc8f64f3b82b200a5e31b01b8612069f1aa897014085c1de755394552a1a70a_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:856b9088dbda4e7374daf232602f4bb90b05ad1be1df46d6e363a002f549f4de_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:a107ae2f7b140f2fb2243f33c378228c2f164cfd2d23f57e63f6c424fd400929_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:e21de356b7d879800a96f6c5aeee6bc59a3ed9c58d36503f7089625ce887bb25_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:fcaf6d60d682cf51866948ea3b4846c2993e2801adb69dc745ffa832318f515c_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:33367b9fdb3addce3302ad35bc10423505fefe3dd27b8b9013b26d66caac2a6c_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:72cbdb061cbcd295be5e66a0eabb409af16ade7f0aa12b04c2d7327e9e1a24ba_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:d0379f9da8cbb5514394a4550ff0d79f90fa691fcced5806296479c7b63353da_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:e99d1d877bd7335736cbaeb4db5b9904369a1d07f6df332c38ad79ff1256b67b_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:06285611aef2528fc92c5cebb66ff4c74fe44d457f43cf9ec2f4a98c3c68d25e_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:25e0f4153eb5bc6fbc6b389d5adc81bfde103070ef58317c3c25ce4144a628d3_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:acd3c0369c18cbfa63a5972ed1721f93f1fcb456963ff855dea2c295baf1cdb8_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:d086075db52f4476aa64d7e2680baa01e99da246275fa9cae0ba4a74de63c7f3_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:07d89c1b524d1451051feb865bc716da2197add90fa0c58c4cf4a82975ec846c_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:6582e647d7dd604e25977ec1579969aa1fcb29ead1a0ea65833531d633bbdd2b_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:75e3aec03dffbd0f40f88a08ff5e0319f4515d73f0bcfae28b5fa526b494afc4_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:f0079e8ae53d84223aea2d3186e7bc6b525b7c03d307cde50cfb9f1bbc18712b_arm64 | — |
Workaround
|
A flaw was found in ip-address, a JavaScript library for parsing and manipulating IPv4 and IPv6 addresses. This vulnerability allows a remote attacker to perform cross-site scripting (XSS) by providing untrusted input to the Address6 constructor. When an application renders the output of Address6.group(), Address6.link(), or the AddressError.parseMessage as HTML without proper escaping, the attacker-controlled content can be executed in the user's browser.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:1384e5ba2b7d23119a49d8713826f4c65668bca310589ac7abd0c0d41c7e4c90_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:7f58528b1da9146aa55917324fdf2b375794742b34e5d10ff57f713af60746cd_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:844c3b1499b00aeadfc561642e53792ad80f535efd53b35793ba08b0f26c6d61_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:e1019c30e1d84e66d775d0d6fc7d051803dcbe44823fb2a1914807be39c79dae_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:137ffbb95d463d95da6c350600d968f3cd0e9873bf2e7c6edf952ae3229e9e2b_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:1cccdfd7e90877c27c6d8caea4f1e8ad89bb97c83d97ddf570d4f4ee116f1986_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:71657b82894cfd9e350746f48965e148868a675b9a20dcb7f94a6bc7a5b16ea5_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:881e405e32821ef10cf992c7a633281c1dc45df721fe909048df1689472000ce_ppc64le | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:8c9a7ebf430b9f4ca200c6c70b049e8456cf88fd8bf0871b42d65e8dc786d451_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:926d965e6fd12ec0d758270fb4c90bbdc1a05e60cc4c895cf9b671a296c9d867_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:e8e807451e3c5d8d0a8575e1280d7125a4ece51547a7b4a5cd247837662cedad_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:f2a24aa01cbe0d926d4aefe3b12eba21eb5ec7f87276e572a6814c727228624c_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:45cc0d783d1e7874ac73dfbdfe7e03c63b227ab3c4f1e15a0a2f5c97956a76d9_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:6f3eb26734e89375c3e1fb7ac366e12dc0d41bac8f07de9210c7e9845a01eec1_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:768c45fa9f35d98dfe5cfe1ea12f552402bf68ac6e1f828b14310ef59ce57c40_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:b5f1bf30495f6be97c696cf7f90768629cee96f8d106f745bf95fdefddc99592_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:6c85b42ede0f4745ed558bcb03d033c49f56cef17a70c12e5308066124cac6e3_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:091529a93e258a612fd4a98222e6a370ee10b4e97efa791b50f79a2670163d01_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0e8958a22f6771ddfe32b34027c69dbbef65d980c7e465a79d4202d2627994ad_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:5a8b0203ff083113e8b30a123ab30c4bad571f57fb59c1e7e01807b92552504e_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:89bf6a32a0935cacadbc6d23566dce6ca741e404d58c11050638c7b8e868028b_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:077cc953354ea2edd85569a622f97c15d44163d68234e7a9fdee899d25c19cdb_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:66285f866090e1bfbedacd592e9d5ea9f2a30b88aa03bc86bc790d6b98a929a4_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:8c80054171d5063457df4bd074674b1824783a101dacb6137da227080aff957c_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:b0f15904251c6665961eef9c944d00f17499f7219351fe213fe7935f62fbf7ac_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:62476ac2fb0096caa9b181f523cc3573ccffe70be1433f08d1d0255b6d3a0640_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:6f632bc9829880a44e2e94084284b52683b4a01dc3315043b0aa32eb344b16cb_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:aa3d1cf7853bfe8307efb01f714585f378d1d3d4ed5de7c8808a72e4aeecd4f3_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:bf1d4b2b1ef03e65be59699ce3233a75a34e1777abc182984c7a8efa698a936e_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:141f17d12c748c7ab9e94cfd9db7e2492d3063e7478249d6430ac0d8fcfb8875_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:5909184fe3d37eb45ba3bf55d7b708d818f2a5abfc2949c4a7081a5cd30cea4f_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:6217f0bb4937fa0e0fc0a5c86456fdc1992e169dfedc3d11d5165cef575d4d53_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:d55a55a36a23e7deb83718bd5dcc19b083b84d441add72ea7f4e28935e4717e3_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:0f8e1171f278395f3c72e4d9d3c0492bed15b678963fb2b6182bd65343b85a2e_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:823bb59b1c7d01557c29f9f1e4a4ee39814c38d826b06c3c9de4b8d179078419_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:93c7e9b321c7e9aa4a412a993a6b20412e24772832cc0dd23bbb17aa25f15487_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:9e50b45f81fedab27e896f04b80bacaa01d8370ff5679147f95ad79b61972d83_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:8f145d4e336bd77fcc94f0845f9ebf94563ffd96d56794d96a665c11241df152_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:981917806c7faf31156241cc85577cf375ee566f78adaeadc096d0ba8482b835_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:af3ed91687500d64e2348cca4877c43f73211b8fbd132e7767c3521763185348_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:c05020e5ee5bddc62e38493cd16b6e4ffde7c2248a00d710f32b90a6ee12ceeb_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2af86b409540513f6da1afa83110a5cafe8778d2ec16332faa31c964bd5f43f7_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2f3bec76a833a72c7dfa93ed55e55e80e2621c154e5a2f156deaf78d7c6b97b4_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:81a2385be30079500f13f97a18607aa685abd61265bf8fa78bc6ce126341be50_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:fdc8f64f3b82b200a5e31b01b8612069f1aa897014085c1de755394552a1a70a_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:856b9088dbda4e7374daf232602f4bb90b05ad1be1df46d6e363a002f549f4de_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:a107ae2f7b140f2fb2243f33c378228c2f164cfd2d23f57e63f6c424fd400929_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:e21de356b7d879800a96f6c5aeee6bc59a3ed9c58d36503f7089625ce887bb25_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:fcaf6d60d682cf51866948ea3b4846c2993e2801adb69dc745ffa832318f515c_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:11f005939e15d63057bf2f0a988b6baebc275d3e752e9f7696d0f7f5266fd5d6_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:4b4c98be96a932d508fad769eff61bff2a44e13baa60b22b6c543f4a11eb71c2_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:6c87453ffe89e8be752ee40c8a9ccf6894c83be703f13901b1e8b64a4c0e549a_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:c18a1c50a4fc7081c6564d1c4ed4904212b7939a4f1f46afef0a36dc1d76f38e_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:33367b9fdb3addce3302ad35bc10423505fefe3dd27b8b9013b26d66caac2a6c_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:72cbdb061cbcd295be5e66a0eabb409af16ade7f0aa12b04c2d7327e9e1a24ba_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:d0379f9da8cbb5514394a4550ff0d79f90fa691fcced5806296479c7b63353da_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:e99d1d877bd7335736cbaeb4db5b9904369a1d07f6df332c38ad79ff1256b67b_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:06285611aef2528fc92c5cebb66ff4c74fe44d457f43cf9ec2f4a98c3c68d25e_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:25e0f4153eb5bc6fbc6b389d5adc81bfde103070ef58317c3c25ce4144a628d3_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:acd3c0369c18cbfa63a5972ed1721f93f1fcb456963ff855dea2c295baf1cdb8_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:d086075db52f4476aa64d7e2680baa01e99da246275fa9cae0ba4a74de63c7f3_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:07d89c1b524d1451051feb865bc716da2197add90fa0c58c4cf4a82975ec846c_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:6582e647d7dd604e25977ec1579969aa1fcb29ead1a0ea65833531d633bbdd2b_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:75e3aec03dffbd0f40f88a08ff5e0319f4515d73f0bcfae28b5fa526b494afc4_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:f0079e8ae53d84223aea2d3186e7bc6b525b7c03d307cde50cfb9f1bbc18712b_arm64 | — |
Workaround
|
A flaw was found in Netty. The HttpProxyHandler component, which handles HTTP CONNECT requests, does not properly validate user-provided outbound headers. This allows an attacker to inject arbitrary HTTP headers into the CONNECT request sent to the proxy server. This could lead to unexpected behavior or potential bypass of security controls on the proxy server.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:141f17d12c748c7ab9e94cfd9db7e2492d3063e7478249d6430ac0d8fcfb8875_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:5909184fe3d37eb45ba3bf55d7b708d818f2a5abfc2949c4a7081a5cd30cea4f_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:6217f0bb4937fa0e0fc0a5c86456fdc1992e169dfedc3d11d5165cef575d4d53_arm64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:d55a55a36a23e7deb83718bd5dcc19b083b84d441add72ea7f4e28935e4717e3_ppc64le | — |
Vendor Fix
fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:1384e5ba2b7d23119a49d8713826f4c65668bca310589ac7abd0c0d41c7e4c90_arm64 | — | ||
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:7f58528b1da9146aa55917324fdf2b375794742b34e5d10ff57f713af60746cd_amd64 | — | ||
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:844c3b1499b00aeadfc561642e53792ad80f535efd53b35793ba08b0f26c6d61_s390x | — | ||
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:e1019c30e1d84e66d775d0d6fc7d051803dcbe44823fb2a1914807be39c79dae_ppc64le | — | ||
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:8c9a7ebf430b9f4ca200c6c70b049e8456cf88fd8bf0871b42d65e8dc786d451_amd64 | — | ||
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:926d965e6fd12ec0d758270fb4c90bbdc1a05e60cc4c895cf9b671a296c9d867_ppc64le | — | ||
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:e8e807451e3c5d8d0a8575e1280d7125a4ece51547a7b4a5cd247837662cedad_s390x | — | ||
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:f2a24aa01cbe0d926d4aefe3b12eba21eb5ec7f87276e572a6814c727228624c_arm64 | — | ||
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:45cc0d783d1e7874ac73dfbdfe7e03c63b227ab3c4f1e15a0a2f5c97956a76d9_s390x | — | ||
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:6f3eb26734e89375c3e1fb7ac366e12dc0d41bac8f07de9210c7e9845a01eec1_arm64 | — | ||
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:768c45fa9f35d98dfe5cfe1ea12f552402bf68ac6e1f828b14310ef59ce57c40_ppc64le | — | ||
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:b5f1bf30495f6be97c696cf7f90768629cee96f8d106f745bf95fdefddc99592_amd64 | — | ||
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:137ffbb95d463d95da6c350600d968f3cd0e9873bf2e7c6edf952ae3229e9e2b_amd64 | — | ||
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:1cccdfd7e90877c27c6d8caea4f1e8ad89bb97c83d97ddf570d4f4ee116f1986_arm64 | — | ||
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:71657b82894cfd9e350746f48965e148868a675b9a20dcb7f94a6bc7a5b16ea5_s390x | — | ||
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:881e405e32821ef10cf992c7a633281c1dc45df721fe909048df1689472000ce_ppc64le | — | ||
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:6c85b42ede0f4745ed558bcb03d033c49f56cef17a70c12e5308066124cac6e3_amd64 | — | ||
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:091529a93e258a612fd4a98222e6a370ee10b4e97efa791b50f79a2670163d01_amd64 | — | ||
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0e8958a22f6771ddfe32b34027c69dbbef65d980c7e465a79d4202d2627994ad_arm64 | — | ||
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:5a8b0203ff083113e8b30a123ab30c4bad571f57fb59c1e7e01807b92552504e_s390x | — | ||
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:89bf6a32a0935cacadbc6d23566dce6ca741e404d58c11050638c7b8e868028b_ppc64le | — | ||
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:077cc953354ea2edd85569a622f97c15d44163d68234e7a9fdee899d25c19cdb_amd64 | — | ||
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:66285f866090e1bfbedacd592e9d5ea9f2a30b88aa03bc86bc790d6b98a929a4_ppc64le | — | ||
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:8c80054171d5063457df4bd074674b1824783a101dacb6137da227080aff957c_s390x | — | ||
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:b0f15904251c6665961eef9c944d00f17499f7219351fe213fe7935f62fbf7ac_arm64 | — | ||
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:62476ac2fb0096caa9b181f523cc3573ccffe70be1433f08d1d0255b6d3a0640_arm64 | — | ||
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:6f632bc9829880a44e2e94084284b52683b4a01dc3315043b0aa32eb344b16cb_amd64 | — | ||
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:aa3d1cf7853bfe8307efb01f714585f378d1d3d4ed5de7c8808a72e4aeecd4f3_s390x | — | ||
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:bf1d4b2b1ef03e65be59699ce3233a75a34e1777abc182984c7a8efa698a936e_ppc64le | — | ||
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:0f8e1171f278395f3c72e4d9d3c0492bed15b678963fb2b6182bd65343b85a2e_ppc64le | — | ||
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:823bb59b1c7d01557c29f9f1e4a4ee39814c38d826b06c3c9de4b8d179078419_s390x | — | ||
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:93c7e9b321c7e9aa4a412a993a6b20412e24772832cc0dd23bbb17aa25f15487_arm64 | — | ||
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:9e50b45f81fedab27e896f04b80bacaa01d8370ff5679147f95ad79b61972d83_amd64 | — | ||
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:8f145d4e336bd77fcc94f0845f9ebf94563ffd96d56794d96a665c11241df152_s390x | — | ||
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:981917806c7faf31156241cc85577cf375ee566f78adaeadc096d0ba8482b835_ppc64le | — | ||
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:af3ed91687500d64e2348cca4877c43f73211b8fbd132e7767c3521763185348_arm64 | — | ||
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:c05020e5ee5bddc62e38493cd16b6e4ffde7c2248a00d710f32b90a6ee12ceeb_amd64 | — | ||
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2af86b409540513f6da1afa83110a5cafe8778d2ec16332faa31c964bd5f43f7_s390x | — | ||
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2f3bec76a833a72c7dfa93ed55e55e80e2621c154e5a2f156deaf78d7c6b97b4_arm64 | — | ||
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:81a2385be30079500f13f97a18607aa685abd61265bf8fa78bc6ce126341be50_ppc64le | — | ||
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:fdc8f64f3b82b200a5e31b01b8612069f1aa897014085c1de755394552a1a70a_amd64 | — | ||
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:856b9088dbda4e7374daf232602f4bb90b05ad1be1df46d6e363a002f549f4de_arm64 | — | ||
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:a107ae2f7b140f2fb2243f33c378228c2f164cfd2d23f57e63f6c424fd400929_s390x | — | ||
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:e21de356b7d879800a96f6c5aeee6bc59a3ed9c58d36503f7089625ce887bb25_ppc64le | — | ||
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:fcaf6d60d682cf51866948ea3b4846c2993e2801adb69dc745ffa832318f515c_amd64 | — | ||
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:11f005939e15d63057bf2f0a988b6baebc275d3e752e9f7696d0f7f5266fd5d6_amd64 | — | ||
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:4b4c98be96a932d508fad769eff61bff2a44e13baa60b22b6c543f4a11eb71c2_s390x | — | ||
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:6c87453ffe89e8be752ee40c8a9ccf6894c83be703f13901b1e8b64a4c0e549a_ppc64le | — | ||
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:c18a1c50a4fc7081c6564d1c4ed4904212b7939a4f1f46afef0a36dc1d76f38e_arm64 | — | ||
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:33367b9fdb3addce3302ad35bc10423505fefe3dd27b8b9013b26d66caac2a6c_arm64 | — | ||
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:72cbdb061cbcd295be5e66a0eabb409af16ade7f0aa12b04c2d7327e9e1a24ba_ppc64le | — | ||
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:d0379f9da8cbb5514394a4550ff0d79f90fa691fcced5806296479c7b63353da_amd64 | — | ||
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:e99d1d877bd7335736cbaeb4db5b9904369a1d07f6df332c38ad79ff1256b67b_s390x | — | ||
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:06285611aef2528fc92c5cebb66ff4c74fe44d457f43cf9ec2f4a98c3c68d25e_amd64 | — | ||
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:25e0f4153eb5bc6fbc6b389d5adc81bfde103070ef58317c3c25ce4144a628d3_arm64 | — | ||
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:acd3c0369c18cbfa63a5972ed1721f93f1fcb456963ff855dea2c295baf1cdb8_ppc64le | — | ||
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:d086075db52f4476aa64d7e2680baa01e99da246275fa9cae0ba4a74de63c7f3_s390x | — | ||
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:07d89c1b524d1451051feb865bc716da2197add90fa0c58c4cf4a82975ec846c_s390x | — | ||
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:6582e647d7dd604e25977ec1579969aa1fcb29ead1a0ea65833531d633bbdd2b_amd64 | — | ||
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:75e3aec03dffbd0f40f88a08ff5e0319f4515d73f0bcfae28b5fa526b494afc4_ppc64le | — | ||
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:f0079e8ae53d84223aea2d3186e7bc6b525b7c03d307cde50cfb9f1bbc18712b_arm64 | — |
A flaw was found in Netty. Netty's DNS (Domain Name System) codec does not properly enforce domain name constraints as defined in RFC 1035 during both encoding and decoding processes. This vulnerability allows a remote attacker to exploit the decoder using malicious DNS responses or exploit the encoder through user-influenced hostnames, leading to a high integrity impact on the affected system.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:141f17d12c748c7ab9e94cfd9db7e2492d3063e7478249d6430ac0d8fcfb8875_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:5909184fe3d37eb45ba3bf55d7b708d818f2a5abfc2949c4a7081a5cd30cea4f_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:6217f0bb4937fa0e0fc0a5c86456fdc1992e169dfedc3d11d5165cef575d4d53_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:d55a55a36a23e7deb83718bd5dcc19b083b84d441add72ea7f4e28935e4717e3_ppc64le | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:1384e5ba2b7d23119a49d8713826f4c65668bca310589ac7abd0c0d41c7e4c90_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:7f58528b1da9146aa55917324fdf2b375794742b34e5d10ff57f713af60746cd_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:844c3b1499b00aeadfc561642e53792ad80f535efd53b35793ba08b0f26c6d61_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:e1019c30e1d84e66d775d0d6fc7d051803dcbe44823fb2a1914807be39c79dae_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:8c9a7ebf430b9f4ca200c6c70b049e8456cf88fd8bf0871b42d65e8dc786d451_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:926d965e6fd12ec0d758270fb4c90bbdc1a05e60cc4c895cf9b671a296c9d867_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:e8e807451e3c5d8d0a8575e1280d7125a4ece51547a7b4a5cd247837662cedad_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:f2a24aa01cbe0d926d4aefe3b12eba21eb5ec7f87276e572a6814c727228624c_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:45cc0d783d1e7874ac73dfbdfe7e03c63b227ab3c4f1e15a0a2f5c97956a76d9_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:6f3eb26734e89375c3e1fb7ac366e12dc0d41bac8f07de9210c7e9845a01eec1_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:768c45fa9f35d98dfe5cfe1ea12f552402bf68ac6e1f828b14310ef59ce57c40_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:b5f1bf30495f6be97c696cf7f90768629cee96f8d106f745bf95fdefddc99592_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:137ffbb95d463d95da6c350600d968f3cd0e9873bf2e7c6edf952ae3229e9e2b_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:1cccdfd7e90877c27c6d8caea4f1e8ad89bb97c83d97ddf570d4f4ee116f1986_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:71657b82894cfd9e350746f48965e148868a675b9a20dcb7f94a6bc7a5b16ea5_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:881e405e32821ef10cf992c7a633281c1dc45df721fe909048df1689472000ce_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:6c85b42ede0f4745ed558bcb03d033c49f56cef17a70c12e5308066124cac6e3_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:091529a93e258a612fd4a98222e6a370ee10b4e97efa791b50f79a2670163d01_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0e8958a22f6771ddfe32b34027c69dbbef65d980c7e465a79d4202d2627994ad_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:5a8b0203ff083113e8b30a123ab30c4bad571f57fb59c1e7e01807b92552504e_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:89bf6a32a0935cacadbc6d23566dce6ca741e404d58c11050638c7b8e868028b_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:077cc953354ea2edd85569a622f97c15d44163d68234e7a9fdee899d25c19cdb_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:66285f866090e1bfbedacd592e9d5ea9f2a30b88aa03bc86bc790d6b98a929a4_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:8c80054171d5063457df4bd074674b1824783a101dacb6137da227080aff957c_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:b0f15904251c6665961eef9c944d00f17499f7219351fe213fe7935f62fbf7ac_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:62476ac2fb0096caa9b181f523cc3573ccffe70be1433f08d1d0255b6d3a0640_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:6f632bc9829880a44e2e94084284b52683b4a01dc3315043b0aa32eb344b16cb_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:aa3d1cf7853bfe8307efb01f714585f378d1d3d4ed5de7c8808a72e4aeecd4f3_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:bf1d4b2b1ef03e65be59699ce3233a75a34e1777abc182984c7a8efa698a936e_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:0f8e1171f278395f3c72e4d9d3c0492bed15b678963fb2b6182bd65343b85a2e_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:823bb59b1c7d01557c29f9f1e4a4ee39814c38d826b06c3c9de4b8d179078419_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:93c7e9b321c7e9aa4a412a993a6b20412e24772832cc0dd23bbb17aa25f15487_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:9e50b45f81fedab27e896f04b80bacaa01d8370ff5679147f95ad79b61972d83_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:8f145d4e336bd77fcc94f0845f9ebf94563ffd96d56794d96a665c11241df152_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:981917806c7faf31156241cc85577cf375ee566f78adaeadc096d0ba8482b835_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:af3ed91687500d64e2348cca4877c43f73211b8fbd132e7767c3521763185348_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:c05020e5ee5bddc62e38493cd16b6e4ffde7c2248a00d710f32b90a6ee12ceeb_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2af86b409540513f6da1afa83110a5cafe8778d2ec16332faa31c964bd5f43f7_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2f3bec76a833a72c7dfa93ed55e55e80e2621c154e5a2f156deaf78d7c6b97b4_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:81a2385be30079500f13f97a18607aa685abd61265bf8fa78bc6ce126341be50_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:fdc8f64f3b82b200a5e31b01b8612069f1aa897014085c1de755394552a1a70a_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:856b9088dbda4e7374daf232602f4bb90b05ad1be1df46d6e363a002f549f4de_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:a107ae2f7b140f2fb2243f33c378228c2f164cfd2d23f57e63f6c424fd400929_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:e21de356b7d879800a96f6c5aeee6bc59a3ed9c58d36503f7089625ce887bb25_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:fcaf6d60d682cf51866948ea3b4846c2993e2801adb69dc745ffa832318f515c_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:11f005939e15d63057bf2f0a988b6baebc275d3e752e9f7696d0f7f5266fd5d6_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:4b4c98be96a932d508fad769eff61bff2a44e13baa60b22b6c543f4a11eb71c2_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:6c87453ffe89e8be752ee40c8a9ccf6894c83be703f13901b1e8b64a4c0e549a_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:c18a1c50a4fc7081c6564d1c4ed4904212b7939a4f1f46afef0a36dc1d76f38e_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:33367b9fdb3addce3302ad35bc10423505fefe3dd27b8b9013b26d66caac2a6c_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:72cbdb061cbcd295be5e66a0eabb409af16ade7f0aa12b04c2d7327e9e1a24ba_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:d0379f9da8cbb5514394a4550ff0d79f90fa691fcced5806296479c7b63353da_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:e99d1d877bd7335736cbaeb4db5b9904369a1d07f6df332c38ad79ff1256b67b_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:06285611aef2528fc92c5cebb66ff4c74fe44d457f43cf9ec2f4a98c3c68d25e_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:25e0f4153eb5bc6fbc6b389d5adc81bfde103070ef58317c3c25ce4144a628d3_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:acd3c0369c18cbfa63a5972ed1721f93f1fcb456963ff855dea2c295baf1cdb8_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:d086075db52f4476aa64d7e2680baa01e99da246275fa9cae0ba4a74de63c7f3_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:07d89c1b524d1451051feb865bc716da2197add90fa0c58c4cf4a82975ec846c_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:6582e647d7dd604e25977ec1579969aa1fcb29ead1a0ea65833531d633bbdd2b_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:75e3aec03dffbd0f40f88a08ff5e0319f4515d73f0bcfae28b5fa526b494afc4_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:f0079e8ae53d84223aea2d3186e7bc6b525b7c03d307cde50cfb9f1bbc18712b_arm64 | — |
Workaround
|
A flaw was found in Netty's HttpObjectDecoder. A remote attacker can exploit this by sending a specially crafted HTTP/1.0 request that includes both `Transfer-Encoding: chunked` and `Content-Length` headers. While Netty correctly strips the conflicting `Content-Length` header for HTTP/1.1 messages, this guard is absent for HTTP/1.0. This can lead to HTTP request smuggling, where downstream proxies or handlers may misinterpret message boundaries, potentially allowing an attacker to bypass security controls or access unauthorized information.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:141f17d12c748c7ab9e94cfd9db7e2492d3063e7478249d6430ac0d8fcfb8875_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:5909184fe3d37eb45ba3bf55d7b708d818f2a5abfc2949c4a7081a5cd30cea4f_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:6217f0bb4937fa0e0fc0a5c86456fdc1992e169dfedc3d11d5165cef575d4d53_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:d55a55a36a23e7deb83718bd5dcc19b083b84d441add72ea7f4e28935e4717e3_ppc64le | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:1384e5ba2b7d23119a49d8713826f4c65668bca310589ac7abd0c0d41c7e4c90_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:7f58528b1da9146aa55917324fdf2b375794742b34e5d10ff57f713af60746cd_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:844c3b1499b00aeadfc561642e53792ad80f535efd53b35793ba08b0f26c6d61_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:e1019c30e1d84e66d775d0d6fc7d051803dcbe44823fb2a1914807be39c79dae_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:8c9a7ebf430b9f4ca200c6c70b049e8456cf88fd8bf0871b42d65e8dc786d451_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:926d965e6fd12ec0d758270fb4c90bbdc1a05e60cc4c895cf9b671a296c9d867_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:e8e807451e3c5d8d0a8575e1280d7125a4ece51547a7b4a5cd247837662cedad_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:f2a24aa01cbe0d926d4aefe3b12eba21eb5ec7f87276e572a6814c727228624c_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:45cc0d783d1e7874ac73dfbdfe7e03c63b227ab3c4f1e15a0a2f5c97956a76d9_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:6f3eb26734e89375c3e1fb7ac366e12dc0d41bac8f07de9210c7e9845a01eec1_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:768c45fa9f35d98dfe5cfe1ea12f552402bf68ac6e1f828b14310ef59ce57c40_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:b5f1bf30495f6be97c696cf7f90768629cee96f8d106f745bf95fdefddc99592_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:137ffbb95d463d95da6c350600d968f3cd0e9873bf2e7c6edf952ae3229e9e2b_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:1cccdfd7e90877c27c6d8caea4f1e8ad89bb97c83d97ddf570d4f4ee116f1986_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:71657b82894cfd9e350746f48965e148868a675b9a20dcb7f94a6bc7a5b16ea5_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:881e405e32821ef10cf992c7a633281c1dc45df721fe909048df1689472000ce_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:6c85b42ede0f4745ed558bcb03d033c49f56cef17a70c12e5308066124cac6e3_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:091529a93e258a612fd4a98222e6a370ee10b4e97efa791b50f79a2670163d01_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0e8958a22f6771ddfe32b34027c69dbbef65d980c7e465a79d4202d2627994ad_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:5a8b0203ff083113e8b30a123ab30c4bad571f57fb59c1e7e01807b92552504e_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:89bf6a32a0935cacadbc6d23566dce6ca741e404d58c11050638c7b8e868028b_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:077cc953354ea2edd85569a622f97c15d44163d68234e7a9fdee899d25c19cdb_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:66285f866090e1bfbedacd592e9d5ea9f2a30b88aa03bc86bc790d6b98a929a4_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:8c80054171d5063457df4bd074674b1824783a101dacb6137da227080aff957c_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:b0f15904251c6665961eef9c944d00f17499f7219351fe213fe7935f62fbf7ac_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:62476ac2fb0096caa9b181f523cc3573ccffe70be1433f08d1d0255b6d3a0640_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:6f632bc9829880a44e2e94084284b52683b4a01dc3315043b0aa32eb344b16cb_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:aa3d1cf7853bfe8307efb01f714585f378d1d3d4ed5de7c8808a72e4aeecd4f3_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:bf1d4b2b1ef03e65be59699ce3233a75a34e1777abc182984c7a8efa698a936e_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:0f8e1171f278395f3c72e4d9d3c0492bed15b678963fb2b6182bd65343b85a2e_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:823bb59b1c7d01557c29f9f1e4a4ee39814c38d826b06c3c9de4b8d179078419_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:93c7e9b321c7e9aa4a412a993a6b20412e24772832cc0dd23bbb17aa25f15487_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:9e50b45f81fedab27e896f04b80bacaa01d8370ff5679147f95ad79b61972d83_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:8f145d4e336bd77fcc94f0845f9ebf94563ffd96d56794d96a665c11241df152_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:981917806c7faf31156241cc85577cf375ee566f78adaeadc096d0ba8482b835_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:af3ed91687500d64e2348cca4877c43f73211b8fbd132e7767c3521763185348_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:c05020e5ee5bddc62e38493cd16b6e4ffde7c2248a00d710f32b90a6ee12ceeb_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2af86b409540513f6da1afa83110a5cafe8778d2ec16332faa31c964bd5f43f7_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2f3bec76a833a72c7dfa93ed55e55e80e2621c154e5a2f156deaf78d7c6b97b4_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:81a2385be30079500f13f97a18607aa685abd61265bf8fa78bc6ce126341be50_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:fdc8f64f3b82b200a5e31b01b8612069f1aa897014085c1de755394552a1a70a_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:856b9088dbda4e7374daf232602f4bb90b05ad1be1df46d6e363a002f549f4de_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:a107ae2f7b140f2fb2243f33c378228c2f164cfd2d23f57e63f6c424fd400929_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:e21de356b7d879800a96f6c5aeee6bc59a3ed9c58d36503f7089625ce887bb25_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:fcaf6d60d682cf51866948ea3b4846c2993e2801adb69dc745ffa832318f515c_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:11f005939e15d63057bf2f0a988b6baebc275d3e752e9f7696d0f7f5266fd5d6_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:4b4c98be96a932d508fad769eff61bff2a44e13baa60b22b6c543f4a11eb71c2_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:6c87453ffe89e8be752ee40c8a9ccf6894c83be703f13901b1e8b64a4c0e549a_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:c18a1c50a4fc7081c6564d1c4ed4904212b7939a4f1f46afef0a36dc1d76f38e_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:33367b9fdb3addce3302ad35bc10423505fefe3dd27b8b9013b26d66caac2a6c_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:72cbdb061cbcd295be5e66a0eabb409af16ade7f0aa12b04c2d7327e9e1a24ba_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:d0379f9da8cbb5514394a4550ff0d79f90fa691fcced5806296479c7b63353da_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:e99d1d877bd7335736cbaeb4db5b9904369a1d07f6df332c38ad79ff1256b67b_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:06285611aef2528fc92c5cebb66ff4c74fe44d457f43cf9ec2f4a98c3c68d25e_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:25e0f4153eb5bc6fbc6b389d5adc81bfde103070ef58317c3c25ce4144a628d3_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:acd3c0369c18cbfa63a5972ed1721f93f1fcb456963ff855dea2c295baf1cdb8_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:d086075db52f4476aa64d7e2680baa01e99da246275fa9cae0ba4a74de63c7f3_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:07d89c1b524d1451051feb865bc716da2197add90fa0c58c4cf4a82975ec846c_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:6582e647d7dd604e25977ec1579969aa1fcb29ead1a0ea65833531d633bbdd2b_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:75e3aec03dffbd0f40f88a08ff5e0319f4515d73f0bcfae28b5fa526b494afc4_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:f0079e8ae53d84223aea2d3186e7bc6b525b7c03d307cde50cfb9f1bbc18712b_arm64 | — |
Workaround
|
A flaw was found in Netty, an asynchronous, event-driven network application framework. A remote attacker can exploit this vulnerability by sending a specially crafted LZ4 compressed data stream. This can cause the Lz4FrameDecoder to allocate a large amount of memory (up to 32 MB per block) before the LZ4 decompression runs, leading to excessive memory consumption and a denial of service (DoS) for the affected application.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:141f17d12c748c7ab9e94cfd9db7e2492d3063e7478249d6430ac0d8fcfb8875_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:5909184fe3d37eb45ba3bf55d7b708d818f2a5abfc2949c4a7081a5cd30cea4f_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:6217f0bb4937fa0e0fc0a5c86456fdc1992e169dfedc3d11d5165cef575d4d53_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:d55a55a36a23e7deb83718bd5dcc19b083b84d441add72ea7f4e28935e4717e3_ppc64le | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:1384e5ba2b7d23119a49d8713826f4c65668bca310589ac7abd0c0d41c7e4c90_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:7f58528b1da9146aa55917324fdf2b375794742b34e5d10ff57f713af60746cd_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:844c3b1499b00aeadfc561642e53792ad80f535efd53b35793ba08b0f26c6d61_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:e1019c30e1d84e66d775d0d6fc7d051803dcbe44823fb2a1914807be39c79dae_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:8c9a7ebf430b9f4ca200c6c70b049e8456cf88fd8bf0871b42d65e8dc786d451_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:926d965e6fd12ec0d758270fb4c90bbdc1a05e60cc4c895cf9b671a296c9d867_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:e8e807451e3c5d8d0a8575e1280d7125a4ece51547a7b4a5cd247837662cedad_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:f2a24aa01cbe0d926d4aefe3b12eba21eb5ec7f87276e572a6814c727228624c_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:45cc0d783d1e7874ac73dfbdfe7e03c63b227ab3c4f1e15a0a2f5c97956a76d9_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:6f3eb26734e89375c3e1fb7ac366e12dc0d41bac8f07de9210c7e9845a01eec1_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:768c45fa9f35d98dfe5cfe1ea12f552402bf68ac6e1f828b14310ef59ce57c40_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:b5f1bf30495f6be97c696cf7f90768629cee96f8d106f745bf95fdefddc99592_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:137ffbb95d463d95da6c350600d968f3cd0e9873bf2e7c6edf952ae3229e9e2b_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:1cccdfd7e90877c27c6d8caea4f1e8ad89bb97c83d97ddf570d4f4ee116f1986_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:71657b82894cfd9e350746f48965e148868a675b9a20dcb7f94a6bc7a5b16ea5_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:881e405e32821ef10cf992c7a633281c1dc45df721fe909048df1689472000ce_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:6c85b42ede0f4745ed558bcb03d033c49f56cef17a70c12e5308066124cac6e3_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:091529a93e258a612fd4a98222e6a370ee10b4e97efa791b50f79a2670163d01_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0e8958a22f6771ddfe32b34027c69dbbef65d980c7e465a79d4202d2627994ad_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:5a8b0203ff083113e8b30a123ab30c4bad571f57fb59c1e7e01807b92552504e_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:89bf6a32a0935cacadbc6d23566dce6ca741e404d58c11050638c7b8e868028b_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:077cc953354ea2edd85569a622f97c15d44163d68234e7a9fdee899d25c19cdb_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:66285f866090e1bfbedacd592e9d5ea9f2a30b88aa03bc86bc790d6b98a929a4_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:8c80054171d5063457df4bd074674b1824783a101dacb6137da227080aff957c_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:b0f15904251c6665961eef9c944d00f17499f7219351fe213fe7935f62fbf7ac_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:62476ac2fb0096caa9b181f523cc3573ccffe70be1433f08d1d0255b6d3a0640_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:6f632bc9829880a44e2e94084284b52683b4a01dc3315043b0aa32eb344b16cb_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:aa3d1cf7853bfe8307efb01f714585f378d1d3d4ed5de7c8808a72e4aeecd4f3_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:bf1d4b2b1ef03e65be59699ce3233a75a34e1777abc182984c7a8efa698a936e_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:0f8e1171f278395f3c72e4d9d3c0492bed15b678963fb2b6182bd65343b85a2e_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:823bb59b1c7d01557c29f9f1e4a4ee39814c38d826b06c3c9de4b8d179078419_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:93c7e9b321c7e9aa4a412a993a6b20412e24772832cc0dd23bbb17aa25f15487_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:9e50b45f81fedab27e896f04b80bacaa01d8370ff5679147f95ad79b61972d83_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:8f145d4e336bd77fcc94f0845f9ebf94563ffd96d56794d96a665c11241df152_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:981917806c7faf31156241cc85577cf375ee566f78adaeadc096d0ba8482b835_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:af3ed91687500d64e2348cca4877c43f73211b8fbd132e7767c3521763185348_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:c05020e5ee5bddc62e38493cd16b6e4ffde7c2248a00d710f32b90a6ee12ceeb_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2af86b409540513f6da1afa83110a5cafe8778d2ec16332faa31c964bd5f43f7_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2f3bec76a833a72c7dfa93ed55e55e80e2621c154e5a2f156deaf78d7c6b97b4_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:81a2385be30079500f13f97a18607aa685abd61265bf8fa78bc6ce126341be50_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:fdc8f64f3b82b200a5e31b01b8612069f1aa897014085c1de755394552a1a70a_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:856b9088dbda4e7374daf232602f4bb90b05ad1be1df46d6e363a002f549f4de_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:a107ae2f7b140f2fb2243f33c378228c2f164cfd2d23f57e63f6c424fd400929_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:e21de356b7d879800a96f6c5aeee6bc59a3ed9c58d36503f7089625ce887bb25_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:fcaf6d60d682cf51866948ea3b4846c2993e2801adb69dc745ffa832318f515c_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:11f005939e15d63057bf2f0a988b6baebc275d3e752e9f7696d0f7f5266fd5d6_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:4b4c98be96a932d508fad769eff61bff2a44e13baa60b22b6c543f4a11eb71c2_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:6c87453ffe89e8be752ee40c8a9ccf6894c83be703f13901b1e8b64a4c0e549a_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:c18a1c50a4fc7081c6564d1c4ed4904212b7939a4f1f46afef0a36dc1d76f38e_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:33367b9fdb3addce3302ad35bc10423505fefe3dd27b8b9013b26d66caac2a6c_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:72cbdb061cbcd295be5e66a0eabb409af16ade7f0aa12b04c2d7327e9e1a24ba_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:d0379f9da8cbb5514394a4550ff0d79f90fa691fcced5806296479c7b63353da_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:e99d1d877bd7335736cbaeb4db5b9904369a1d07f6df332c38ad79ff1256b67b_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:06285611aef2528fc92c5cebb66ff4c74fe44d457f43cf9ec2f4a98c3c68d25e_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:25e0f4153eb5bc6fbc6b389d5adc81bfde103070ef58317c3c25ce4144a628d3_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:acd3c0369c18cbfa63a5972ed1721f93f1fcb456963ff855dea2c295baf1cdb8_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:d086075db52f4476aa64d7e2680baa01e99da246275fa9cae0ba4a74de63c7f3_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:07d89c1b524d1451051feb865bc716da2197add90fa0c58c4cf4a82975ec846c_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:6582e647d7dd604e25977ec1579969aa1fcb29ead1a0ea65833531d633bbdd2b_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:75e3aec03dffbd0f40f88a08ff5e0319f4515d73f0bcfae28b5fa526b494afc4_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:f0079e8ae53d84223aea2d3186e7bc6b525b7c03d307cde50cfb9f1bbc18712b_arm64 | — |
Workaround
|
A flaw was found in Netty, an asynchronous, event-driven network application framework. A remote attacker could exploit this vulnerability by sending a specific sequence of HTTP responses (103, followed by a 200 with a GET body, then another 200 for a HEAD request) when the client pipelines GET then HEAD requests. This can cause the HttpClientCodec to incorrectly pair responses, leading to subsequent HTTP responses being parsed from the wrong offset. This issue may result in information disclosure or other data integrity problems due to misinterpretation of network traffic.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:141f17d12c748c7ab9e94cfd9db7e2492d3063e7478249d6430ac0d8fcfb8875_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:5909184fe3d37eb45ba3bf55d7b708d818f2a5abfc2949c4a7081a5cd30cea4f_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:6217f0bb4937fa0e0fc0a5c86456fdc1992e169dfedc3d11d5165cef575d4d53_arm64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:d55a55a36a23e7deb83718bd5dcc19b083b84d441add72ea7f4e28935e4717e3_ppc64le | — |
Vendor Fix
fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:1384e5ba2b7d23119a49d8713826f4c65668bca310589ac7abd0c0d41c7e4c90_arm64 | — | ||
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:7f58528b1da9146aa55917324fdf2b375794742b34e5d10ff57f713af60746cd_amd64 | — | ||
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:844c3b1499b00aeadfc561642e53792ad80f535efd53b35793ba08b0f26c6d61_s390x | — | ||
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:e1019c30e1d84e66d775d0d6fc7d051803dcbe44823fb2a1914807be39c79dae_ppc64le | — | ||
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:8c9a7ebf430b9f4ca200c6c70b049e8456cf88fd8bf0871b42d65e8dc786d451_amd64 | — | ||
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:926d965e6fd12ec0d758270fb4c90bbdc1a05e60cc4c895cf9b671a296c9d867_ppc64le | — | ||
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:e8e807451e3c5d8d0a8575e1280d7125a4ece51547a7b4a5cd247837662cedad_s390x | — | ||
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:f2a24aa01cbe0d926d4aefe3b12eba21eb5ec7f87276e572a6814c727228624c_arm64 | — | ||
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:45cc0d783d1e7874ac73dfbdfe7e03c63b227ab3c4f1e15a0a2f5c97956a76d9_s390x | — | ||
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:6f3eb26734e89375c3e1fb7ac366e12dc0d41bac8f07de9210c7e9845a01eec1_arm64 | — | ||
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:768c45fa9f35d98dfe5cfe1ea12f552402bf68ac6e1f828b14310ef59ce57c40_ppc64le | — | ||
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:b5f1bf30495f6be97c696cf7f90768629cee96f8d106f745bf95fdefddc99592_amd64 | — | ||
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:137ffbb95d463d95da6c350600d968f3cd0e9873bf2e7c6edf952ae3229e9e2b_amd64 | — | ||
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:1cccdfd7e90877c27c6d8caea4f1e8ad89bb97c83d97ddf570d4f4ee116f1986_arm64 | — | ||
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:71657b82894cfd9e350746f48965e148868a675b9a20dcb7f94a6bc7a5b16ea5_s390x | — | ||
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:881e405e32821ef10cf992c7a633281c1dc45df721fe909048df1689472000ce_ppc64le | — | ||
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:6c85b42ede0f4745ed558bcb03d033c49f56cef17a70c12e5308066124cac6e3_amd64 | — | ||
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:091529a93e258a612fd4a98222e6a370ee10b4e97efa791b50f79a2670163d01_amd64 | — | ||
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0e8958a22f6771ddfe32b34027c69dbbef65d980c7e465a79d4202d2627994ad_arm64 | — | ||
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:5a8b0203ff083113e8b30a123ab30c4bad571f57fb59c1e7e01807b92552504e_s390x | — | ||
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:89bf6a32a0935cacadbc6d23566dce6ca741e404d58c11050638c7b8e868028b_ppc64le | — | ||
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:077cc953354ea2edd85569a622f97c15d44163d68234e7a9fdee899d25c19cdb_amd64 | — | ||
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:66285f866090e1bfbedacd592e9d5ea9f2a30b88aa03bc86bc790d6b98a929a4_ppc64le | — | ||
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:8c80054171d5063457df4bd074674b1824783a101dacb6137da227080aff957c_s390x | — | ||
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:b0f15904251c6665961eef9c944d00f17499f7219351fe213fe7935f62fbf7ac_arm64 | — | ||
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:62476ac2fb0096caa9b181f523cc3573ccffe70be1433f08d1d0255b6d3a0640_arm64 | — | ||
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:6f632bc9829880a44e2e94084284b52683b4a01dc3315043b0aa32eb344b16cb_amd64 | — | ||
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:aa3d1cf7853bfe8307efb01f714585f378d1d3d4ed5de7c8808a72e4aeecd4f3_s390x | — | ||
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:bf1d4b2b1ef03e65be59699ce3233a75a34e1777abc182984c7a8efa698a936e_ppc64le | — | ||
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:0f8e1171f278395f3c72e4d9d3c0492bed15b678963fb2b6182bd65343b85a2e_ppc64le | — | ||
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:823bb59b1c7d01557c29f9f1e4a4ee39814c38d826b06c3c9de4b8d179078419_s390x | — | ||
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:93c7e9b321c7e9aa4a412a993a6b20412e24772832cc0dd23bbb17aa25f15487_arm64 | — | ||
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:9e50b45f81fedab27e896f04b80bacaa01d8370ff5679147f95ad79b61972d83_amd64 | — | ||
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:8f145d4e336bd77fcc94f0845f9ebf94563ffd96d56794d96a665c11241df152_s390x | — | ||
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:981917806c7faf31156241cc85577cf375ee566f78adaeadc096d0ba8482b835_ppc64le | — | ||
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:af3ed91687500d64e2348cca4877c43f73211b8fbd132e7767c3521763185348_arm64 | — | ||
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:c05020e5ee5bddc62e38493cd16b6e4ffde7c2248a00d710f32b90a6ee12ceeb_amd64 | — | ||
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2af86b409540513f6da1afa83110a5cafe8778d2ec16332faa31c964bd5f43f7_s390x | — | ||
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2f3bec76a833a72c7dfa93ed55e55e80e2621c154e5a2f156deaf78d7c6b97b4_arm64 | — | ||
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:81a2385be30079500f13f97a18607aa685abd61265bf8fa78bc6ce126341be50_ppc64le | — | ||
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:fdc8f64f3b82b200a5e31b01b8612069f1aa897014085c1de755394552a1a70a_amd64 | — | ||
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:856b9088dbda4e7374daf232602f4bb90b05ad1be1df46d6e363a002f549f4de_arm64 | — | ||
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:a107ae2f7b140f2fb2243f33c378228c2f164cfd2d23f57e63f6c424fd400929_s390x | — | ||
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:e21de356b7d879800a96f6c5aeee6bc59a3ed9c58d36503f7089625ce887bb25_ppc64le | — | ||
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:fcaf6d60d682cf51866948ea3b4846c2993e2801adb69dc745ffa832318f515c_amd64 | — | ||
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:11f005939e15d63057bf2f0a988b6baebc275d3e752e9f7696d0f7f5266fd5d6_amd64 | — | ||
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:4b4c98be96a932d508fad769eff61bff2a44e13baa60b22b6c543f4a11eb71c2_s390x | — | ||
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:6c87453ffe89e8be752ee40c8a9ccf6894c83be703f13901b1e8b64a4c0e549a_ppc64le | — | ||
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:c18a1c50a4fc7081c6564d1c4ed4904212b7939a4f1f46afef0a36dc1d76f38e_arm64 | — | ||
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:33367b9fdb3addce3302ad35bc10423505fefe3dd27b8b9013b26d66caac2a6c_arm64 | — | ||
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:72cbdb061cbcd295be5e66a0eabb409af16ade7f0aa12b04c2d7327e9e1a24ba_ppc64le | — | ||
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:d0379f9da8cbb5514394a4550ff0d79f90fa691fcced5806296479c7b63353da_amd64 | — | ||
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:e99d1d877bd7335736cbaeb4db5b9904369a1d07f6df332c38ad79ff1256b67b_s390x | — | ||
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:06285611aef2528fc92c5cebb66ff4c74fe44d457f43cf9ec2f4a98c3c68d25e_amd64 | — | ||
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:25e0f4153eb5bc6fbc6b389d5adc81bfde103070ef58317c3c25ce4144a628d3_arm64 | — | ||
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:acd3c0369c18cbfa63a5972ed1721f93f1fcb456963ff855dea2c295baf1cdb8_ppc64le | — | ||
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:d086075db52f4476aa64d7e2680baa01e99da246275fa9cae0ba4a74de63c7f3_s390x | — | ||
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:07d89c1b524d1451051feb865bc716da2197add90fa0c58c4cf4a82975ec846c_s390x | — | ||
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:6582e647d7dd604e25977ec1579969aa1fcb29ead1a0ea65833531d633bbdd2b_amd64 | — | ||
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:75e3aec03dffbd0f40f88a08ff5e0319f4515d73f0bcfae28b5fa526b494afc4_ppc64le | — | ||
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:f0079e8ae53d84223aea2d3186e7bc6b525b7c03d307cde50cfb9f1bbc18712b_arm64 | — |
A flaw was found in Netty. A remote attacker can bypass the configured decompression limit in the HttpContentDecompressor by sending a specially crafted compressed payload using Brotli (br), Zstandard (zstd), or Snappy content encodings. This can lead to unbounded memory allocation, resulting in an out-of-memory Denial of Service (DoS) for the affected system.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:141f17d12c748c7ab9e94cfd9db7e2492d3063e7478249d6430ac0d8fcfb8875_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:5909184fe3d37eb45ba3bf55d7b708d818f2a5abfc2949c4a7081a5cd30cea4f_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:6217f0bb4937fa0e0fc0a5c86456fdc1992e169dfedc3d11d5165cef575d4d53_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:d55a55a36a23e7deb83718bd5dcc19b083b84d441add72ea7f4e28935e4717e3_ppc64le | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:1384e5ba2b7d23119a49d8713826f4c65668bca310589ac7abd0c0d41c7e4c90_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:7f58528b1da9146aa55917324fdf2b375794742b34e5d10ff57f713af60746cd_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:844c3b1499b00aeadfc561642e53792ad80f535efd53b35793ba08b0f26c6d61_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:e1019c30e1d84e66d775d0d6fc7d051803dcbe44823fb2a1914807be39c79dae_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:8c9a7ebf430b9f4ca200c6c70b049e8456cf88fd8bf0871b42d65e8dc786d451_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:926d965e6fd12ec0d758270fb4c90bbdc1a05e60cc4c895cf9b671a296c9d867_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:e8e807451e3c5d8d0a8575e1280d7125a4ece51547a7b4a5cd247837662cedad_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:f2a24aa01cbe0d926d4aefe3b12eba21eb5ec7f87276e572a6814c727228624c_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:45cc0d783d1e7874ac73dfbdfe7e03c63b227ab3c4f1e15a0a2f5c97956a76d9_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:6f3eb26734e89375c3e1fb7ac366e12dc0d41bac8f07de9210c7e9845a01eec1_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:768c45fa9f35d98dfe5cfe1ea12f552402bf68ac6e1f828b14310ef59ce57c40_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:b5f1bf30495f6be97c696cf7f90768629cee96f8d106f745bf95fdefddc99592_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:137ffbb95d463d95da6c350600d968f3cd0e9873bf2e7c6edf952ae3229e9e2b_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:1cccdfd7e90877c27c6d8caea4f1e8ad89bb97c83d97ddf570d4f4ee116f1986_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:71657b82894cfd9e350746f48965e148868a675b9a20dcb7f94a6bc7a5b16ea5_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:881e405e32821ef10cf992c7a633281c1dc45df721fe909048df1689472000ce_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:6c85b42ede0f4745ed558bcb03d033c49f56cef17a70c12e5308066124cac6e3_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:091529a93e258a612fd4a98222e6a370ee10b4e97efa791b50f79a2670163d01_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0e8958a22f6771ddfe32b34027c69dbbef65d980c7e465a79d4202d2627994ad_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:5a8b0203ff083113e8b30a123ab30c4bad571f57fb59c1e7e01807b92552504e_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:89bf6a32a0935cacadbc6d23566dce6ca741e404d58c11050638c7b8e868028b_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:077cc953354ea2edd85569a622f97c15d44163d68234e7a9fdee899d25c19cdb_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:66285f866090e1bfbedacd592e9d5ea9f2a30b88aa03bc86bc790d6b98a929a4_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:8c80054171d5063457df4bd074674b1824783a101dacb6137da227080aff957c_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:b0f15904251c6665961eef9c944d00f17499f7219351fe213fe7935f62fbf7ac_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:62476ac2fb0096caa9b181f523cc3573ccffe70be1433f08d1d0255b6d3a0640_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:6f632bc9829880a44e2e94084284b52683b4a01dc3315043b0aa32eb344b16cb_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:aa3d1cf7853bfe8307efb01f714585f378d1d3d4ed5de7c8808a72e4aeecd4f3_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:bf1d4b2b1ef03e65be59699ce3233a75a34e1777abc182984c7a8efa698a936e_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:0f8e1171f278395f3c72e4d9d3c0492bed15b678963fb2b6182bd65343b85a2e_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:823bb59b1c7d01557c29f9f1e4a4ee39814c38d826b06c3c9de4b8d179078419_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:93c7e9b321c7e9aa4a412a993a6b20412e24772832cc0dd23bbb17aa25f15487_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:9e50b45f81fedab27e896f04b80bacaa01d8370ff5679147f95ad79b61972d83_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:8f145d4e336bd77fcc94f0845f9ebf94563ffd96d56794d96a665c11241df152_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:981917806c7faf31156241cc85577cf375ee566f78adaeadc096d0ba8482b835_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:af3ed91687500d64e2348cca4877c43f73211b8fbd132e7767c3521763185348_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:c05020e5ee5bddc62e38493cd16b6e4ffde7c2248a00d710f32b90a6ee12ceeb_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2af86b409540513f6da1afa83110a5cafe8778d2ec16332faa31c964bd5f43f7_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2f3bec76a833a72c7dfa93ed55e55e80e2621c154e5a2f156deaf78d7c6b97b4_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:81a2385be30079500f13f97a18607aa685abd61265bf8fa78bc6ce126341be50_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:fdc8f64f3b82b200a5e31b01b8612069f1aa897014085c1de755394552a1a70a_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:856b9088dbda4e7374daf232602f4bb90b05ad1be1df46d6e363a002f549f4de_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:a107ae2f7b140f2fb2243f33c378228c2f164cfd2d23f57e63f6c424fd400929_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:e21de356b7d879800a96f6c5aeee6bc59a3ed9c58d36503f7089625ce887bb25_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:fcaf6d60d682cf51866948ea3b4846c2993e2801adb69dc745ffa832318f515c_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:11f005939e15d63057bf2f0a988b6baebc275d3e752e9f7696d0f7f5266fd5d6_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:4b4c98be96a932d508fad769eff61bff2a44e13baa60b22b6c543f4a11eb71c2_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:6c87453ffe89e8be752ee40c8a9ccf6894c83be703f13901b1e8b64a4c0e549a_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:c18a1c50a4fc7081c6564d1c4ed4904212b7939a4f1f46afef0a36dc1d76f38e_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:33367b9fdb3addce3302ad35bc10423505fefe3dd27b8b9013b26d66caac2a6c_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:72cbdb061cbcd295be5e66a0eabb409af16ade7f0aa12b04c2d7327e9e1a24ba_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:d0379f9da8cbb5514394a4550ff0d79f90fa691fcced5806296479c7b63353da_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:e99d1d877bd7335736cbaeb4db5b9904369a1d07f6df332c38ad79ff1256b67b_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:06285611aef2528fc92c5cebb66ff4c74fe44d457f43cf9ec2f4a98c3c68d25e_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:25e0f4153eb5bc6fbc6b389d5adc81bfde103070ef58317c3c25ce4144a628d3_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:acd3c0369c18cbfa63a5972ed1721f93f1fcb456963ff855dea2c295baf1cdb8_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:d086075db52f4476aa64d7e2680baa01e99da246275fa9cae0ba4a74de63c7f3_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:07d89c1b524d1451051feb865bc716da2197add90fa0c58c4cf4a82975ec846c_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:6582e647d7dd604e25977ec1579969aa1fcb29ead1a0ea65833531d633bbdd2b_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:75e3aec03dffbd0f40f88a08ff5e0319f4515d73f0bcfae28b5fa526b494afc4_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:f0079e8ae53d84223aea2d3186e7bc6b525b7c03d307cde50cfb9f1bbc18712b_arm64 | — |
Workaround
|
A flaw was found in netty-handler, a component of the Netty network application framework. A remote attacker can exploit an incorrect masking operation in the IpSubnetFilterRule.compareTo() function to bypass configured IPv6 subnet rules. This allows valid public IP addresses to circumvent intended network restrictions, potentially leading to unauthorized access or exposure of services.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:141f17d12c748c7ab9e94cfd9db7e2492d3063e7478249d6430ac0d8fcfb8875_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:5909184fe3d37eb45ba3bf55d7b708d818f2a5abfc2949c4a7081a5cd30cea4f_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:6217f0bb4937fa0e0fc0a5c86456fdc1992e169dfedc3d11d5165cef575d4d53_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:d55a55a36a23e7deb83718bd5dcc19b083b84d441add72ea7f4e28935e4717e3_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:8f145d4e336bd77fcc94f0845f9ebf94563ffd96d56794d96a665c11241df152_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:981917806c7faf31156241cc85577cf375ee566f78adaeadc096d0ba8482b835_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:af3ed91687500d64e2348cca4877c43f73211b8fbd132e7767c3521763185348_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:c05020e5ee5bddc62e38493cd16b6e4ffde7c2248a00d710f32b90a6ee12ceeb_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2af86b409540513f6da1afa83110a5cafe8778d2ec16332faa31c964bd5f43f7_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2f3bec76a833a72c7dfa93ed55e55e80e2621c154e5a2f156deaf78d7c6b97b4_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:81a2385be30079500f13f97a18607aa685abd61265bf8fa78bc6ce126341be50_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:fdc8f64f3b82b200a5e31b01b8612069f1aa897014085c1de755394552a1a70a_amd64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:1384e5ba2b7d23119a49d8713826f4c65668bca310589ac7abd0c0d41c7e4c90_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:7f58528b1da9146aa55917324fdf2b375794742b34e5d10ff57f713af60746cd_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:844c3b1499b00aeadfc561642e53792ad80f535efd53b35793ba08b0f26c6d61_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:e1019c30e1d84e66d775d0d6fc7d051803dcbe44823fb2a1914807be39c79dae_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:8c9a7ebf430b9f4ca200c6c70b049e8456cf88fd8bf0871b42d65e8dc786d451_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:926d965e6fd12ec0d758270fb4c90bbdc1a05e60cc4c895cf9b671a296c9d867_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:e8e807451e3c5d8d0a8575e1280d7125a4ece51547a7b4a5cd247837662cedad_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:f2a24aa01cbe0d926d4aefe3b12eba21eb5ec7f87276e572a6814c727228624c_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:45cc0d783d1e7874ac73dfbdfe7e03c63b227ab3c4f1e15a0a2f5c97956a76d9_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:6f3eb26734e89375c3e1fb7ac366e12dc0d41bac8f07de9210c7e9845a01eec1_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:768c45fa9f35d98dfe5cfe1ea12f552402bf68ac6e1f828b14310ef59ce57c40_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:b5f1bf30495f6be97c696cf7f90768629cee96f8d106f745bf95fdefddc99592_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:137ffbb95d463d95da6c350600d968f3cd0e9873bf2e7c6edf952ae3229e9e2b_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:1cccdfd7e90877c27c6d8caea4f1e8ad89bb97c83d97ddf570d4f4ee116f1986_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:71657b82894cfd9e350746f48965e148868a675b9a20dcb7f94a6bc7a5b16ea5_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:881e405e32821ef10cf992c7a633281c1dc45df721fe909048df1689472000ce_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:6c85b42ede0f4745ed558bcb03d033c49f56cef17a70c12e5308066124cac6e3_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:091529a93e258a612fd4a98222e6a370ee10b4e97efa791b50f79a2670163d01_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0e8958a22f6771ddfe32b34027c69dbbef65d980c7e465a79d4202d2627994ad_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:5a8b0203ff083113e8b30a123ab30c4bad571f57fb59c1e7e01807b92552504e_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:89bf6a32a0935cacadbc6d23566dce6ca741e404d58c11050638c7b8e868028b_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:077cc953354ea2edd85569a622f97c15d44163d68234e7a9fdee899d25c19cdb_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:66285f866090e1bfbedacd592e9d5ea9f2a30b88aa03bc86bc790d6b98a929a4_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:8c80054171d5063457df4bd074674b1824783a101dacb6137da227080aff957c_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:b0f15904251c6665961eef9c944d00f17499f7219351fe213fe7935f62fbf7ac_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:62476ac2fb0096caa9b181f523cc3573ccffe70be1433f08d1d0255b6d3a0640_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:6f632bc9829880a44e2e94084284b52683b4a01dc3315043b0aa32eb344b16cb_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:aa3d1cf7853bfe8307efb01f714585f378d1d3d4ed5de7c8808a72e4aeecd4f3_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:bf1d4b2b1ef03e65be59699ce3233a75a34e1777abc182984c7a8efa698a936e_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:0f8e1171f278395f3c72e4d9d3c0492bed15b678963fb2b6182bd65343b85a2e_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:823bb59b1c7d01557c29f9f1e4a4ee39814c38d826b06c3c9de4b8d179078419_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:93c7e9b321c7e9aa4a412a993a6b20412e24772832cc0dd23bbb17aa25f15487_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:9e50b45f81fedab27e896f04b80bacaa01d8370ff5679147f95ad79b61972d83_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:856b9088dbda4e7374daf232602f4bb90b05ad1be1df46d6e363a002f549f4de_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:a107ae2f7b140f2fb2243f33c378228c2f164cfd2d23f57e63f6c424fd400929_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:e21de356b7d879800a96f6c5aeee6bc59a3ed9c58d36503f7089625ce887bb25_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:fcaf6d60d682cf51866948ea3b4846c2993e2801adb69dc745ffa832318f515c_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:11f005939e15d63057bf2f0a988b6baebc275d3e752e9f7696d0f7f5266fd5d6_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:4b4c98be96a932d508fad769eff61bff2a44e13baa60b22b6c543f4a11eb71c2_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:6c87453ffe89e8be752ee40c8a9ccf6894c83be703f13901b1e8b64a4c0e549a_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:c18a1c50a4fc7081c6564d1c4ed4904212b7939a4f1f46afef0a36dc1d76f38e_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:33367b9fdb3addce3302ad35bc10423505fefe3dd27b8b9013b26d66caac2a6c_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:72cbdb061cbcd295be5e66a0eabb409af16ade7f0aa12b04c2d7327e9e1a24ba_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:d0379f9da8cbb5514394a4550ff0d79f90fa691fcced5806296479c7b63353da_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:e99d1d877bd7335736cbaeb4db5b9904369a1d07f6df332c38ad79ff1256b67b_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:06285611aef2528fc92c5cebb66ff4c74fe44d457f43cf9ec2f4a98c3c68d25e_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:25e0f4153eb5bc6fbc6b389d5adc81bfde103070ef58317c3c25ce4144a628d3_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:acd3c0369c18cbfa63a5972ed1721f93f1fcb456963ff855dea2c295baf1cdb8_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:d086075db52f4476aa64d7e2680baa01e99da246275fa9cae0ba4a74de63c7f3_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:07d89c1b524d1451051feb865bc716da2197add90fa0c58c4cf4a82975ec846c_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:6582e647d7dd604e25977ec1579969aa1fcb29ead1a0ea65833531d633bbdd2b_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:75e3aec03dffbd0f40f88a08ff5e0319f4515d73f0bcfae28b5fa526b494afc4_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:f0079e8ae53d84223aea2d3186e7bc6b525b7c03d307cde50cfb9f1bbc18712b_arm64 | — |
Workaround
|
A flaw was found in Axios, a promise-based HTTP client, specifically in its Node.js HTTP adapter. When Axios is configured to use an authenticated proxy and follows a redirect, it may inadvertently send the Proxy-Authorization header, containing proxy credentials, to the redirect target. This can lead to the disclosure of sensitive proxy credentials to an unintended remote server.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:1384e5ba2b7d23119a49d8713826f4c65668bca310589ac7abd0c0d41c7e4c90_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:7f58528b1da9146aa55917324fdf2b375794742b34e5d10ff57f713af60746cd_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:844c3b1499b00aeadfc561642e53792ad80f535efd53b35793ba08b0f26c6d61_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:e1019c30e1d84e66d775d0d6fc7d051803dcbe44823fb2a1914807be39c79dae_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:137ffbb95d463d95da6c350600d968f3cd0e9873bf2e7c6edf952ae3229e9e2b_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:1cccdfd7e90877c27c6d8caea4f1e8ad89bb97c83d97ddf570d4f4ee116f1986_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:71657b82894cfd9e350746f48965e148868a675b9a20dcb7f94a6bc7a5b16ea5_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:881e405e32821ef10cf992c7a633281c1dc45df721fe909048df1689472000ce_ppc64le | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:8c9a7ebf430b9f4ca200c6c70b049e8456cf88fd8bf0871b42d65e8dc786d451_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:926d965e6fd12ec0d758270fb4c90bbdc1a05e60cc4c895cf9b671a296c9d867_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:e8e807451e3c5d8d0a8575e1280d7125a4ece51547a7b4a5cd247837662cedad_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:f2a24aa01cbe0d926d4aefe3b12eba21eb5ec7f87276e572a6814c727228624c_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:45cc0d783d1e7874ac73dfbdfe7e03c63b227ab3c4f1e15a0a2f5c97956a76d9_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:6f3eb26734e89375c3e1fb7ac366e12dc0d41bac8f07de9210c7e9845a01eec1_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:768c45fa9f35d98dfe5cfe1ea12f552402bf68ac6e1f828b14310ef59ce57c40_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:b5f1bf30495f6be97c696cf7f90768629cee96f8d106f745bf95fdefddc99592_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:6c85b42ede0f4745ed558bcb03d033c49f56cef17a70c12e5308066124cac6e3_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:091529a93e258a612fd4a98222e6a370ee10b4e97efa791b50f79a2670163d01_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0e8958a22f6771ddfe32b34027c69dbbef65d980c7e465a79d4202d2627994ad_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:5a8b0203ff083113e8b30a123ab30c4bad571f57fb59c1e7e01807b92552504e_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:89bf6a32a0935cacadbc6d23566dce6ca741e404d58c11050638c7b8e868028b_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:077cc953354ea2edd85569a622f97c15d44163d68234e7a9fdee899d25c19cdb_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:66285f866090e1bfbedacd592e9d5ea9f2a30b88aa03bc86bc790d6b98a929a4_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:8c80054171d5063457df4bd074674b1824783a101dacb6137da227080aff957c_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:b0f15904251c6665961eef9c944d00f17499f7219351fe213fe7935f62fbf7ac_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:62476ac2fb0096caa9b181f523cc3573ccffe70be1433f08d1d0255b6d3a0640_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:6f632bc9829880a44e2e94084284b52683b4a01dc3315043b0aa32eb344b16cb_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:aa3d1cf7853bfe8307efb01f714585f378d1d3d4ed5de7c8808a72e4aeecd4f3_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:bf1d4b2b1ef03e65be59699ce3233a75a34e1777abc182984c7a8efa698a936e_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:141f17d12c748c7ab9e94cfd9db7e2492d3063e7478249d6430ac0d8fcfb8875_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:5909184fe3d37eb45ba3bf55d7b708d818f2a5abfc2949c4a7081a5cd30cea4f_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:6217f0bb4937fa0e0fc0a5c86456fdc1992e169dfedc3d11d5165cef575d4d53_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:d55a55a36a23e7deb83718bd5dcc19b083b84d441add72ea7f4e28935e4717e3_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:0f8e1171f278395f3c72e4d9d3c0492bed15b678963fb2b6182bd65343b85a2e_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:823bb59b1c7d01557c29f9f1e4a4ee39814c38d826b06c3c9de4b8d179078419_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:93c7e9b321c7e9aa4a412a993a6b20412e24772832cc0dd23bbb17aa25f15487_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:9e50b45f81fedab27e896f04b80bacaa01d8370ff5679147f95ad79b61972d83_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:8f145d4e336bd77fcc94f0845f9ebf94563ffd96d56794d96a665c11241df152_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:981917806c7faf31156241cc85577cf375ee566f78adaeadc096d0ba8482b835_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:af3ed91687500d64e2348cca4877c43f73211b8fbd132e7767c3521763185348_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:c05020e5ee5bddc62e38493cd16b6e4ffde7c2248a00d710f32b90a6ee12ceeb_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2af86b409540513f6da1afa83110a5cafe8778d2ec16332faa31c964bd5f43f7_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2f3bec76a833a72c7dfa93ed55e55e80e2621c154e5a2f156deaf78d7c6b97b4_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:81a2385be30079500f13f97a18607aa685abd61265bf8fa78bc6ce126341be50_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:fdc8f64f3b82b200a5e31b01b8612069f1aa897014085c1de755394552a1a70a_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:856b9088dbda4e7374daf232602f4bb90b05ad1be1df46d6e363a002f549f4de_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:a107ae2f7b140f2fb2243f33c378228c2f164cfd2d23f57e63f6c424fd400929_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:e21de356b7d879800a96f6c5aeee6bc59a3ed9c58d36503f7089625ce887bb25_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:fcaf6d60d682cf51866948ea3b4846c2993e2801adb69dc745ffa832318f515c_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:11f005939e15d63057bf2f0a988b6baebc275d3e752e9f7696d0f7f5266fd5d6_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:4b4c98be96a932d508fad769eff61bff2a44e13baa60b22b6c543f4a11eb71c2_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:6c87453ffe89e8be752ee40c8a9ccf6894c83be703f13901b1e8b64a4c0e549a_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:c18a1c50a4fc7081c6564d1c4ed4904212b7939a4f1f46afef0a36dc1d76f38e_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:33367b9fdb3addce3302ad35bc10423505fefe3dd27b8b9013b26d66caac2a6c_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:72cbdb061cbcd295be5e66a0eabb409af16ade7f0aa12b04c2d7327e9e1a24ba_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:d0379f9da8cbb5514394a4550ff0d79f90fa691fcced5806296479c7b63353da_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:e99d1d877bd7335736cbaeb4db5b9904369a1d07f6df332c38ad79ff1256b67b_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:06285611aef2528fc92c5cebb66ff4c74fe44d457f43cf9ec2f4a98c3c68d25e_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:25e0f4153eb5bc6fbc6b389d5adc81bfde103070ef58317c3c25ce4144a628d3_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:acd3c0369c18cbfa63a5972ed1721f93f1fcb456963ff855dea2c295baf1cdb8_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:d086075db52f4476aa64d7e2680baa01e99da246275fa9cae0ba4a74de63c7f3_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:07d89c1b524d1451051feb865bc716da2197add90fa0c58c4cf4a82975ec846c_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:6582e647d7dd604e25977ec1579969aa1fcb29ead1a0ea65833531d633bbdd2b_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:75e3aec03dffbd0f40f88a08ff5e0319f4515d73f0bcfae28b5fa526b494afc4_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:f0079e8ae53d84223aea2d3186e7bc6b525b7c03d307cde50cfb9f1bbc18712b_arm64 | — |
Workaround
|
A flaw was found in Axios. During specific proxy-to-direct redirect flows in the Node.js HTTP adapter, a remote attacker could exploit this vulnerability. The Proxy-Authorization header, which contains proxy credentials and is intended only for the outbound proxy, may be forwarded to the final redirected origin. This can lead to the disclosure of sensitive proxy credentials to an unintended third party.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:1384e5ba2b7d23119a49d8713826f4c65668bca310589ac7abd0c0d41c7e4c90_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:7f58528b1da9146aa55917324fdf2b375794742b34e5d10ff57f713af60746cd_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:844c3b1499b00aeadfc561642e53792ad80f535efd53b35793ba08b0f26c6d61_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:e1019c30e1d84e66d775d0d6fc7d051803dcbe44823fb2a1914807be39c79dae_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:137ffbb95d463d95da6c350600d968f3cd0e9873bf2e7c6edf952ae3229e9e2b_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:1cccdfd7e90877c27c6d8caea4f1e8ad89bb97c83d97ddf570d4f4ee116f1986_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:71657b82894cfd9e350746f48965e148868a675b9a20dcb7f94a6bc7a5b16ea5_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:881e405e32821ef10cf992c7a633281c1dc45df721fe909048df1689472000ce_ppc64le | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:8c9a7ebf430b9f4ca200c6c70b049e8456cf88fd8bf0871b42d65e8dc786d451_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:926d965e6fd12ec0d758270fb4c90bbdc1a05e60cc4c895cf9b671a296c9d867_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:e8e807451e3c5d8d0a8575e1280d7125a4ece51547a7b4a5cd247837662cedad_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:f2a24aa01cbe0d926d4aefe3b12eba21eb5ec7f87276e572a6814c727228624c_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:45cc0d783d1e7874ac73dfbdfe7e03c63b227ab3c4f1e15a0a2f5c97956a76d9_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:6f3eb26734e89375c3e1fb7ac366e12dc0d41bac8f07de9210c7e9845a01eec1_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:768c45fa9f35d98dfe5cfe1ea12f552402bf68ac6e1f828b14310ef59ce57c40_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:b5f1bf30495f6be97c696cf7f90768629cee96f8d106f745bf95fdefddc99592_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:6c85b42ede0f4745ed558bcb03d033c49f56cef17a70c12e5308066124cac6e3_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:091529a93e258a612fd4a98222e6a370ee10b4e97efa791b50f79a2670163d01_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0e8958a22f6771ddfe32b34027c69dbbef65d980c7e465a79d4202d2627994ad_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:5a8b0203ff083113e8b30a123ab30c4bad571f57fb59c1e7e01807b92552504e_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:89bf6a32a0935cacadbc6d23566dce6ca741e404d58c11050638c7b8e868028b_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:077cc953354ea2edd85569a622f97c15d44163d68234e7a9fdee899d25c19cdb_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:66285f866090e1bfbedacd592e9d5ea9f2a30b88aa03bc86bc790d6b98a929a4_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:8c80054171d5063457df4bd074674b1824783a101dacb6137da227080aff957c_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:b0f15904251c6665961eef9c944d00f17499f7219351fe213fe7935f62fbf7ac_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:62476ac2fb0096caa9b181f523cc3573ccffe70be1433f08d1d0255b6d3a0640_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:6f632bc9829880a44e2e94084284b52683b4a01dc3315043b0aa32eb344b16cb_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:aa3d1cf7853bfe8307efb01f714585f378d1d3d4ed5de7c8808a72e4aeecd4f3_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:bf1d4b2b1ef03e65be59699ce3233a75a34e1777abc182984c7a8efa698a936e_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:141f17d12c748c7ab9e94cfd9db7e2492d3063e7478249d6430ac0d8fcfb8875_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:5909184fe3d37eb45ba3bf55d7b708d818f2a5abfc2949c4a7081a5cd30cea4f_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:6217f0bb4937fa0e0fc0a5c86456fdc1992e169dfedc3d11d5165cef575d4d53_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:d55a55a36a23e7deb83718bd5dcc19b083b84d441add72ea7f4e28935e4717e3_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:0f8e1171f278395f3c72e4d9d3c0492bed15b678963fb2b6182bd65343b85a2e_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:823bb59b1c7d01557c29f9f1e4a4ee39814c38d826b06c3c9de4b8d179078419_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:93c7e9b321c7e9aa4a412a993a6b20412e24772832cc0dd23bbb17aa25f15487_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:9e50b45f81fedab27e896f04b80bacaa01d8370ff5679147f95ad79b61972d83_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:8f145d4e336bd77fcc94f0845f9ebf94563ffd96d56794d96a665c11241df152_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:981917806c7faf31156241cc85577cf375ee566f78adaeadc096d0ba8482b835_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:af3ed91687500d64e2348cca4877c43f73211b8fbd132e7767c3521763185348_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:c05020e5ee5bddc62e38493cd16b6e4ffde7c2248a00d710f32b90a6ee12ceeb_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2af86b409540513f6da1afa83110a5cafe8778d2ec16332faa31c964bd5f43f7_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2f3bec76a833a72c7dfa93ed55e55e80e2621c154e5a2f156deaf78d7c6b97b4_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:81a2385be30079500f13f97a18607aa685abd61265bf8fa78bc6ce126341be50_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:fdc8f64f3b82b200a5e31b01b8612069f1aa897014085c1de755394552a1a70a_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:856b9088dbda4e7374daf232602f4bb90b05ad1be1df46d6e363a002f549f4de_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:a107ae2f7b140f2fb2243f33c378228c2f164cfd2d23f57e63f6c424fd400929_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:e21de356b7d879800a96f6c5aeee6bc59a3ed9c58d36503f7089625ce887bb25_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:fcaf6d60d682cf51866948ea3b4846c2993e2801adb69dc745ffa832318f515c_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:11f005939e15d63057bf2f0a988b6baebc275d3e752e9f7696d0f7f5266fd5d6_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:4b4c98be96a932d508fad769eff61bff2a44e13baa60b22b6c543f4a11eb71c2_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:6c87453ffe89e8be752ee40c8a9ccf6894c83be703f13901b1e8b64a4c0e549a_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:c18a1c50a4fc7081c6564d1c4ed4904212b7939a4f1f46afef0a36dc1d76f38e_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:33367b9fdb3addce3302ad35bc10423505fefe3dd27b8b9013b26d66caac2a6c_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:72cbdb061cbcd295be5e66a0eabb409af16ade7f0aa12b04c2d7327e9e1a24ba_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:d0379f9da8cbb5514394a4550ff0d79f90fa691fcced5806296479c7b63353da_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:e99d1d877bd7335736cbaeb4db5b9904369a1d07f6df332c38ad79ff1256b67b_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:06285611aef2528fc92c5cebb66ff4c74fe44d457f43cf9ec2f4a98c3c68d25e_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:25e0f4153eb5bc6fbc6b389d5adc81bfde103070ef58317c3c25ce4144a628d3_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:acd3c0369c18cbfa63a5972ed1721f93f1fcb456963ff855dea2c295baf1cdb8_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:d086075db52f4476aa64d7e2680baa01e99da246275fa9cae0ba4a74de63c7f3_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:07d89c1b524d1451051feb865bc716da2197add90fa0c58c4cf4a82975ec846c_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:6582e647d7dd604e25977ec1579969aa1fcb29ead1a0ea65833531d633bbdd2b_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:75e3aec03dffbd0f40f88a08ff5e0319f4515d73f0bcfae28b5fa526b494afc4_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:f0079e8ae53d84223aea2d3186e7bc6b525b7c03d307cde50cfb9f1bbc18712b_arm64 | — |
Workaround
|
A flaw was found in Axios, a promise-based HTTP client. When using the fetch adapter, Axios did not properly enforce configured request and response size limits. This vulnerability allows a remote attacker, through a malicious or compromised server, or by supplying a large data URL, to send or receive oversized data bodies. This can lead to resource exhaustion in server-side applications, resulting in a Denial of Service (DoS).
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:1384e5ba2b7d23119a49d8713826f4c65668bca310589ac7abd0c0d41c7e4c90_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:7f58528b1da9146aa55917324fdf2b375794742b34e5d10ff57f713af60746cd_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:844c3b1499b00aeadfc561642e53792ad80f535efd53b35793ba08b0f26c6d61_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:e1019c30e1d84e66d775d0d6fc7d051803dcbe44823fb2a1914807be39c79dae_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:137ffbb95d463d95da6c350600d968f3cd0e9873bf2e7c6edf952ae3229e9e2b_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:1cccdfd7e90877c27c6d8caea4f1e8ad89bb97c83d97ddf570d4f4ee116f1986_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:71657b82894cfd9e350746f48965e148868a675b9a20dcb7f94a6bc7a5b16ea5_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:881e405e32821ef10cf992c7a633281c1dc45df721fe909048df1689472000ce_ppc64le | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:8c9a7ebf430b9f4ca200c6c70b049e8456cf88fd8bf0871b42d65e8dc786d451_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:926d965e6fd12ec0d758270fb4c90bbdc1a05e60cc4c895cf9b671a296c9d867_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:e8e807451e3c5d8d0a8575e1280d7125a4ece51547a7b4a5cd247837662cedad_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:f2a24aa01cbe0d926d4aefe3b12eba21eb5ec7f87276e572a6814c727228624c_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:45cc0d783d1e7874ac73dfbdfe7e03c63b227ab3c4f1e15a0a2f5c97956a76d9_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:6f3eb26734e89375c3e1fb7ac366e12dc0d41bac8f07de9210c7e9845a01eec1_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:768c45fa9f35d98dfe5cfe1ea12f552402bf68ac6e1f828b14310ef59ce57c40_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:b5f1bf30495f6be97c696cf7f90768629cee96f8d106f745bf95fdefddc99592_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:6c85b42ede0f4745ed558bcb03d033c49f56cef17a70c12e5308066124cac6e3_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:091529a93e258a612fd4a98222e6a370ee10b4e97efa791b50f79a2670163d01_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0e8958a22f6771ddfe32b34027c69dbbef65d980c7e465a79d4202d2627994ad_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:5a8b0203ff083113e8b30a123ab30c4bad571f57fb59c1e7e01807b92552504e_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:89bf6a32a0935cacadbc6d23566dce6ca741e404d58c11050638c7b8e868028b_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:077cc953354ea2edd85569a622f97c15d44163d68234e7a9fdee899d25c19cdb_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:66285f866090e1bfbedacd592e9d5ea9f2a30b88aa03bc86bc790d6b98a929a4_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:8c80054171d5063457df4bd074674b1824783a101dacb6137da227080aff957c_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:b0f15904251c6665961eef9c944d00f17499f7219351fe213fe7935f62fbf7ac_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:62476ac2fb0096caa9b181f523cc3573ccffe70be1433f08d1d0255b6d3a0640_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:6f632bc9829880a44e2e94084284b52683b4a01dc3315043b0aa32eb344b16cb_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:aa3d1cf7853bfe8307efb01f714585f378d1d3d4ed5de7c8808a72e4aeecd4f3_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:bf1d4b2b1ef03e65be59699ce3233a75a34e1777abc182984c7a8efa698a936e_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:141f17d12c748c7ab9e94cfd9db7e2492d3063e7478249d6430ac0d8fcfb8875_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:5909184fe3d37eb45ba3bf55d7b708d818f2a5abfc2949c4a7081a5cd30cea4f_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:6217f0bb4937fa0e0fc0a5c86456fdc1992e169dfedc3d11d5165cef575d4d53_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:d55a55a36a23e7deb83718bd5dcc19b083b84d441add72ea7f4e28935e4717e3_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:0f8e1171f278395f3c72e4d9d3c0492bed15b678963fb2b6182bd65343b85a2e_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:823bb59b1c7d01557c29f9f1e4a4ee39814c38d826b06c3c9de4b8d179078419_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:93c7e9b321c7e9aa4a412a993a6b20412e24772832cc0dd23bbb17aa25f15487_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:9e50b45f81fedab27e896f04b80bacaa01d8370ff5679147f95ad79b61972d83_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:8f145d4e336bd77fcc94f0845f9ebf94563ffd96d56794d96a665c11241df152_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:981917806c7faf31156241cc85577cf375ee566f78adaeadc096d0ba8482b835_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:af3ed91687500d64e2348cca4877c43f73211b8fbd132e7767c3521763185348_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:c05020e5ee5bddc62e38493cd16b6e4ffde7c2248a00d710f32b90a6ee12ceeb_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2af86b409540513f6da1afa83110a5cafe8778d2ec16332faa31c964bd5f43f7_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2f3bec76a833a72c7dfa93ed55e55e80e2621c154e5a2f156deaf78d7c6b97b4_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:81a2385be30079500f13f97a18607aa685abd61265bf8fa78bc6ce126341be50_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:fdc8f64f3b82b200a5e31b01b8612069f1aa897014085c1de755394552a1a70a_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:856b9088dbda4e7374daf232602f4bb90b05ad1be1df46d6e363a002f549f4de_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:a107ae2f7b140f2fb2243f33c378228c2f164cfd2d23f57e63f6c424fd400929_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:e21de356b7d879800a96f6c5aeee6bc59a3ed9c58d36503f7089625ce887bb25_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:fcaf6d60d682cf51866948ea3b4846c2993e2801adb69dc745ffa832318f515c_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:11f005939e15d63057bf2f0a988b6baebc275d3e752e9f7696d0f7f5266fd5d6_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:4b4c98be96a932d508fad769eff61bff2a44e13baa60b22b6c543f4a11eb71c2_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:6c87453ffe89e8be752ee40c8a9ccf6894c83be703f13901b1e8b64a4c0e549a_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:c18a1c50a4fc7081c6564d1c4ed4904212b7939a4f1f46afef0a36dc1d76f38e_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:33367b9fdb3addce3302ad35bc10423505fefe3dd27b8b9013b26d66caac2a6c_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:72cbdb061cbcd295be5e66a0eabb409af16ade7f0aa12b04c2d7327e9e1a24ba_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:d0379f9da8cbb5514394a4550ff0d79f90fa691fcced5806296479c7b63353da_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:e99d1d877bd7335736cbaeb4db5b9904369a1d07f6df332c38ad79ff1256b67b_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:06285611aef2528fc92c5cebb66ff4c74fe44d457f43cf9ec2f4a98c3c68d25e_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:25e0f4153eb5bc6fbc6b389d5adc81bfde103070ef58317c3c25ce4144a628d3_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:acd3c0369c18cbfa63a5972ed1721f93f1fcb456963ff855dea2c295baf1cdb8_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:d086075db52f4476aa64d7e2680baa01e99da246275fa9cae0ba4a74de63c7f3_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:07d89c1b524d1451051feb865bc716da2197add90fa0c58c4cf4a82975ec846c_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:6582e647d7dd604e25977ec1579969aa1fcb29ead1a0ea65833531d633bbdd2b_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:75e3aec03dffbd0f40f88a08ff5e0319f4515d73f0bcfae28b5fa526b494afc4_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:f0079e8ae53d84223aea2d3186e7bc6b525b7c03d307cde50cfb9f1bbc18712b_arm64 | — |
Workaround
|
A flaw was found in Axios, a promise-based HTTP client. This vulnerability occurs because Axios does not properly normalize IPv4-mapped IPv6 addresses. When a NO_PROXY setting is configured to block direct access to specific IPv4 addresses, an attacker can bypass this restriction by using the IPv4-mapped IPv6 form of the address in a request URL. This allows the request to be routed through the proxy, potentially exposing internal services or sensitive information that should otherwise be inaccessible.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:1384e5ba2b7d23119a49d8713826f4c65668bca310589ac7abd0c0d41c7e4c90_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:7f58528b1da9146aa55917324fdf2b375794742b34e5d10ff57f713af60746cd_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:844c3b1499b00aeadfc561642e53792ad80f535efd53b35793ba08b0f26c6d61_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:e1019c30e1d84e66d775d0d6fc7d051803dcbe44823fb2a1914807be39c79dae_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:137ffbb95d463d95da6c350600d968f3cd0e9873bf2e7c6edf952ae3229e9e2b_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:1cccdfd7e90877c27c6d8caea4f1e8ad89bb97c83d97ddf570d4f4ee116f1986_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:71657b82894cfd9e350746f48965e148868a675b9a20dcb7f94a6bc7a5b16ea5_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:881e405e32821ef10cf992c7a633281c1dc45df721fe909048df1689472000ce_ppc64le | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:8c9a7ebf430b9f4ca200c6c70b049e8456cf88fd8bf0871b42d65e8dc786d451_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:926d965e6fd12ec0d758270fb4c90bbdc1a05e60cc4c895cf9b671a296c9d867_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:e8e807451e3c5d8d0a8575e1280d7125a4ece51547a7b4a5cd247837662cedad_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:f2a24aa01cbe0d926d4aefe3b12eba21eb5ec7f87276e572a6814c727228624c_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:45cc0d783d1e7874ac73dfbdfe7e03c63b227ab3c4f1e15a0a2f5c97956a76d9_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:6f3eb26734e89375c3e1fb7ac366e12dc0d41bac8f07de9210c7e9845a01eec1_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:768c45fa9f35d98dfe5cfe1ea12f552402bf68ac6e1f828b14310ef59ce57c40_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:b5f1bf30495f6be97c696cf7f90768629cee96f8d106f745bf95fdefddc99592_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:6c85b42ede0f4745ed558bcb03d033c49f56cef17a70c12e5308066124cac6e3_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:091529a93e258a612fd4a98222e6a370ee10b4e97efa791b50f79a2670163d01_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0e8958a22f6771ddfe32b34027c69dbbef65d980c7e465a79d4202d2627994ad_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:5a8b0203ff083113e8b30a123ab30c4bad571f57fb59c1e7e01807b92552504e_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:89bf6a32a0935cacadbc6d23566dce6ca741e404d58c11050638c7b8e868028b_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:077cc953354ea2edd85569a622f97c15d44163d68234e7a9fdee899d25c19cdb_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:66285f866090e1bfbedacd592e9d5ea9f2a30b88aa03bc86bc790d6b98a929a4_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:8c80054171d5063457df4bd074674b1824783a101dacb6137da227080aff957c_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:b0f15904251c6665961eef9c944d00f17499f7219351fe213fe7935f62fbf7ac_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:62476ac2fb0096caa9b181f523cc3573ccffe70be1433f08d1d0255b6d3a0640_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:6f632bc9829880a44e2e94084284b52683b4a01dc3315043b0aa32eb344b16cb_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:aa3d1cf7853bfe8307efb01f714585f378d1d3d4ed5de7c8808a72e4aeecd4f3_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:bf1d4b2b1ef03e65be59699ce3233a75a34e1777abc182984c7a8efa698a936e_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:141f17d12c748c7ab9e94cfd9db7e2492d3063e7478249d6430ac0d8fcfb8875_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:5909184fe3d37eb45ba3bf55d7b708d818f2a5abfc2949c4a7081a5cd30cea4f_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:6217f0bb4937fa0e0fc0a5c86456fdc1992e169dfedc3d11d5165cef575d4d53_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:d55a55a36a23e7deb83718bd5dcc19b083b84d441add72ea7f4e28935e4717e3_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:0f8e1171f278395f3c72e4d9d3c0492bed15b678963fb2b6182bd65343b85a2e_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:823bb59b1c7d01557c29f9f1e4a4ee39814c38d826b06c3c9de4b8d179078419_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:93c7e9b321c7e9aa4a412a993a6b20412e24772832cc0dd23bbb17aa25f15487_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:9e50b45f81fedab27e896f04b80bacaa01d8370ff5679147f95ad79b61972d83_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:8f145d4e336bd77fcc94f0845f9ebf94563ffd96d56794d96a665c11241df152_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:981917806c7faf31156241cc85577cf375ee566f78adaeadc096d0ba8482b835_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:af3ed91687500d64e2348cca4877c43f73211b8fbd132e7767c3521763185348_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:c05020e5ee5bddc62e38493cd16b6e4ffde7c2248a00d710f32b90a6ee12ceeb_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2af86b409540513f6da1afa83110a5cafe8778d2ec16332faa31c964bd5f43f7_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2f3bec76a833a72c7dfa93ed55e55e80e2621c154e5a2f156deaf78d7c6b97b4_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:81a2385be30079500f13f97a18607aa685abd61265bf8fa78bc6ce126341be50_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:fdc8f64f3b82b200a5e31b01b8612069f1aa897014085c1de755394552a1a70a_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:856b9088dbda4e7374daf232602f4bb90b05ad1be1df46d6e363a002f549f4de_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:a107ae2f7b140f2fb2243f33c378228c2f164cfd2d23f57e63f6c424fd400929_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:e21de356b7d879800a96f6c5aeee6bc59a3ed9c58d36503f7089625ce887bb25_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:fcaf6d60d682cf51866948ea3b4846c2993e2801adb69dc745ffa832318f515c_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:11f005939e15d63057bf2f0a988b6baebc275d3e752e9f7696d0f7f5266fd5d6_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:4b4c98be96a932d508fad769eff61bff2a44e13baa60b22b6c543f4a11eb71c2_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:6c87453ffe89e8be752ee40c8a9ccf6894c83be703f13901b1e8b64a4c0e549a_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:c18a1c50a4fc7081c6564d1c4ed4904212b7939a4f1f46afef0a36dc1d76f38e_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:33367b9fdb3addce3302ad35bc10423505fefe3dd27b8b9013b26d66caac2a6c_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:72cbdb061cbcd295be5e66a0eabb409af16ade7f0aa12b04c2d7327e9e1a24ba_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:d0379f9da8cbb5514394a4550ff0d79f90fa691fcced5806296479c7b63353da_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:e99d1d877bd7335736cbaeb4db5b9904369a1d07f6df332c38ad79ff1256b67b_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:06285611aef2528fc92c5cebb66ff4c74fe44d457f43cf9ec2f4a98c3c68d25e_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:25e0f4153eb5bc6fbc6b389d5adc81bfde103070ef58317c3c25ce4144a628d3_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:acd3c0369c18cbfa63a5972ed1721f93f1fcb456963ff855dea2c295baf1cdb8_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:d086075db52f4476aa64d7e2680baa01e99da246275fa9cae0ba4a74de63c7f3_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:07d89c1b524d1451051feb865bc716da2197add90fa0c58c4cf4a82975ec846c_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:6582e647d7dd604e25977ec1579969aa1fcb29ead1a0ea65833531d633bbdd2b_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:75e3aec03dffbd0f40f88a08ff5e0319f4515d73f0bcfae28b5fa526b494afc4_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:f0079e8ae53d84223aea2d3186e7bc6b525b7c03d307cde50cfb9f1bbc18712b_arm64 | — |
Workaround
|
A flaw was found in Axios. This vulnerability, a Prototype Pollution "Gadget" attack, allows an attacker to escalate any existing Object.prototype pollution in an application's dependency tree into a full Man-in-the-Middle (MITM) attack. This enables the attacker to intercept, read, and modify all HTTP traffic, including sensitive authentication credentials. The flaw occurs because the `config.proxy` setting is susceptible to prototype pollution, allowing an attacker to inject a malicious proxy server.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:1384e5ba2b7d23119a49d8713826f4c65668bca310589ac7abd0c0d41c7e4c90_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:7f58528b1da9146aa55917324fdf2b375794742b34e5d10ff57f713af60746cd_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:844c3b1499b00aeadfc561642e53792ad80f535efd53b35793ba08b0f26c6d61_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:e1019c30e1d84e66d775d0d6fc7d051803dcbe44823fb2a1914807be39c79dae_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:137ffbb95d463d95da6c350600d968f3cd0e9873bf2e7c6edf952ae3229e9e2b_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:1cccdfd7e90877c27c6d8caea4f1e8ad89bb97c83d97ddf570d4f4ee116f1986_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:71657b82894cfd9e350746f48965e148868a675b9a20dcb7f94a6bc7a5b16ea5_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:881e405e32821ef10cf992c7a633281c1dc45df721fe909048df1689472000ce_ppc64le | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:8c9a7ebf430b9f4ca200c6c70b049e8456cf88fd8bf0871b42d65e8dc786d451_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:926d965e6fd12ec0d758270fb4c90bbdc1a05e60cc4c895cf9b671a296c9d867_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:e8e807451e3c5d8d0a8575e1280d7125a4ece51547a7b4a5cd247837662cedad_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:f2a24aa01cbe0d926d4aefe3b12eba21eb5ec7f87276e572a6814c727228624c_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:45cc0d783d1e7874ac73dfbdfe7e03c63b227ab3c4f1e15a0a2f5c97956a76d9_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:6f3eb26734e89375c3e1fb7ac366e12dc0d41bac8f07de9210c7e9845a01eec1_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:768c45fa9f35d98dfe5cfe1ea12f552402bf68ac6e1f828b14310ef59ce57c40_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:b5f1bf30495f6be97c696cf7f90768629cee96f8d106f745bf95fdefddc99592_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:6c85b42ede0f4745ed558bcb03d033c49f56cef17a70c12e5308066124cac6e3_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:091529a93e258a612fd4a98222e6a370ee10b4e97efa791b50f79a2670163d01_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0e8958a22f6771ddfe32b34027c69dbbef65d980c7e465a79d4202d2627994ad_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:5a8b0203ff083113e8b30a123ab30c4bad571f57fb59c1e7e01807b92552504e_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:89bf6a32a0935cacadbc6d23566dce6ca741e404d58c11050638c7b8e868028b_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:077cc953354ea2edd85569a622f97c15d44163d68234e7a9fdee899d25c19cdb_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:66285f866090e1bfbedacd592e9d5ea9f2a30b88aa03bc86bc790d6b98a929a4_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:8c80054171d5063457df4bd074674b1824783a101dacb6137da227080aff957c_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:b0f15904251c6665961eef9c944d00f17499f7219351fe213fe7935f62fbf7ac_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:62476ac2fb0096caa9b181f523cc3573ccffe70be1433f08d1d0255b6d3a0640_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:6f632bc9829880a44e2e94084284b52683b4a01dc3315043b0aa32eb344b16cb_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:aa3d1cf7853bfe8307efb01f714585f378d1d3d4ed5de7c8808a72e4aeecd4f3_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:bf1d4b2b1ef03e65be59699ce3233a75a34e1777abc182984c7a8efa698a936e_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:141f17d12c748c7ab9e94cfd9db7e2492d3063e7478249d6430ac0d8fcfb8875_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:5909184fe3d37eb45ba3bf55d7b708d818f2a5abfc2949c4a7081a5cd30cea4f_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:6217f0bb4937fa0e0fc0a5c86456fdc1992e169dfedc3d11d5165cef575d4d53_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:d55a55a36a23e7deb83718bd5dcc19b083b84d441add72ea7f4e28935e4717e3_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:0f8e1171f278395f3c72e4d9d3c0492bed15b678963fb2b6182bd65343b85a2e_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:823bb59b1c7d01557c29f9f1e4a4ee39814c38d826b06c3c9de4b8d179078419_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:93c7e9b321c7e9aa4a412a993a6b20412e24772832cc0dd23bbb17aa25f15487_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:9e50b45f81fedab27e896f04b80bacaa01d8370ff5679147f95ad79b61972d83_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:8f145d4e336bd77fcc94f0845f9ebf94563ffd96d56794d96a665c11241df152_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:981917806c7faf31156241cc85577cf375ee566f78adaeadc096d0ba8482b835_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:af3ed91687500d64e2348cca4877c43f73211b8fbd132e7767c3521763185348_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:c05020e5ee5bddc62e38493cd16b6e4ffde7c2248a00d710f32b90a6ee12ceeb_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2af86b409540513f6da1afa83110a5cafe8778d2ec16332faa31c964bd5f43f7_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2f3bec76a833a72c7dfa93ed55e55e80e2621c154e5a2f156deaf78d7c6b97b4_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:81a2385be30079500f13f97a18607aa685abd61265bf8fa78bc6ce126341be50_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:fdc8f64f3b82b200a5e31b01b8612069f1aa897014085c1de755394552a1a70a_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:856b9088dbda4e7374daf232602f4bb90b05ad1be1df46d6e363a002f549f4de_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:a107ae2f7b140f2fb2243f33c378228c2f164cfd2d23f57e63f6c424fd400929_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:e21de356b7d879800a96f6c5aeee6bc59a3ed9c58d36503f7089625ce887bb25_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:fcaf6d60d682cf51866948ea3b4846c2993e2801adb69dc745ffa832318f515c_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:11f005939e15d63057bf2f0a988b6baebc275d3e752e9f7696d0f7f5266fd5d6_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:4b4c98be96a932d508fad769eff61bff2a44e13baa60b22b6c543f4a11eb71c2_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:6c87453ffe89e8be752ee40c8a9ccf6894c83be703f13901b1e8b64a4c0e549a_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:c18a1c50a4fc7081c6564d1c4ed4904212b7939a4f1f46afef0a36dc1d76f38e_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:33367b9fdb3addce3302ad35bc10423505fefe3dd27b8b9013b26d66caac2a6c_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:72cbdb061cbcd295be5e66a0eabb409af16ade7f0aa12b04c2d7327e9e1a24ba_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:d0379f9da8cbb5514394a4550ff0d79f90fa691fcced5806296479c7b63353da_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:e99d1d877bd7335736cbaeb4db5b9904369a1d07f6df332c38ad79ff1256b67b_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:06285611aef2528fc92c5cebb66ff4c74fe44d457f43cf9ec2f4a98c3c68d25e_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:25e0f4153eb5bc6fbc6b389d5adc81bfde103070ef58317c3c25ce4144a628d3_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:acd3c0369c18cbfa63a5972ed1721f93f1fcb456963ff855dea2c295baf1cdb8_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:d086075db52f4476aa64d7e2680baa01e99da246275fa9cae0ba4a74de63c7f3_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:07d89c1b524d1451051feb865bc716da2197add90fa0c58c4cf4a82975ec846c_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:6582e647d7dd604e25977ec1579969aa1fcb29ead1a0ea65833531d633bbdd2b_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:75e3aec03dffbd0f40f88a08ff5e0319f4515d73f0bcfae28b5fa526b494afc4_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:f0079e8ae53d84223aea2d3186e7bc6b525b7c03d307cde50cfb9f1bbc18712b_arm64 | — |
Workaround
|
A flaw was found in Axios, a promise-based HTTP client. This vulnerability involves prototype pollution gadgets in the request configuration processing. If another vulnerability has already polluted the Object.prototype.transformResponse, affected Axios versions may incorrectly interpret this inherited value as part of the request configuration or as an option validator. Axios does not itself create the prototype pollution. Exploitability requires a separate prototype-pollution vulnerability or equivalent attacker control over Object.prototype before Axios creates a request.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:137ffbb95d463d95da6c350600d968f3cd0e9873bf2e7c6edf952ae3229e9e2b_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:1cccdfd7e90877c27c6d8caea4f1e8ad89bb97c83d97ddf570d4f4ee116f1986_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:71657b82894cfd9e350746f48965e148868a675b9a20dcb7f94a6bc7a5b16ea5_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:881e405e32821ef10cf992c7a633281c1dc45df721fe909048df1689472000ce_ppc64le | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:1384e5ba2b7d23119a49d8713826f4c65668bca310589ac7abd0c0d41c7e4c90_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:7f58528b1da9146aa55917324fdf2b375794742b34e5d10ff57f713af60746cd_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:844c3b1499b00aeadfc561642e53792ad80f535efd53b35793ba08b0f26c6d61_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:e1019c30e1d84e66d775d0d6fc7d051803dcbe44823fb2a1914807be39c79dae_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:8c9a7ebf430b9f4ca200c6c70b049e8456cf88fd8bf0871b42d65e8dc786d451_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:926d965e6fd12ec0d758270fb4c90bbdc1a05e60cc4c895cf9b671a296c9d867_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:e8e807451e3c5d8d0a8575e1280d7125a4ece51547a7b4a5cd247837662cedad_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:f2a24aa01cbe0d926d4aefe3b12eba21eb5ec7f87276e572a6814c727228624c_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:45cc0d783d1e7874ac73dfbdfe7e03c63b227ab3c4f1e15a0a2f5c97956a76d9_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:6f3eb26734e89375c3e1fb7ac366e12dc0d41bac8f07de9210c7e9845a01eec1_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:768c45fa9f35d98dfe5cfe1ea12f552402bf68ac6e1f828b14310ef59ce57c40_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:b5f1bf30495f6be97c696cf7f90768629cee96f8d106f745bf95fdefddc99592_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:6c85b42ede0f4745ed558bcb03d033c49f56cef17a70c12e5308066124cac6e3_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:091529a93e258a612fd4a98222e6a370ee10b4e97efa791b50f79a2670163d01_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0e8958a22f6771ddfe32b34027c69dbbef65d980c7e465a79d4202d2627994ad_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:5a8b0203ff083113e8b30a123ab30c4bad571f57fb59c1e7e01807b92552504e_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:89bf6a32a0935cacadbc6d23566dce6ca741e404d58c11050638c7b8e868028b_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:077cc953354ea2edd85569a622f97c15d44163d68234e7a9fdee899d25c19cdb_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:66285f866090e1bfbedacd592e9d5ea9f2a30b88aa03bc86bc790d6b98a929a4_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:8c80054171d5063457df4bd074674b1824783a101dacb6137da227080aff957c_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:b0f15904251c6665961eef9c944d00f17499f7219351fe213fe7935f62fbf7ac_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:62476ac2fb0096caa9b181f523cc3573ccffe70be1433f08d1d0255b6d3a0640_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:6f632bc9829880a44e2e94084284b52683b4a01dc3315043b0aa32eb344b16cb_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:aa3d1cf7853bfe8307efb01f714585f378d1d3d4ed5de7c8808a72e4aeecd4f3_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:bf1d4b2b1ef03e65be59699ce3233a75a34e1777abc182984c7a8efa698a936e_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:141f17d12c748c7ab9e94cfd9db7e2492d3063e7478249d6430ac0d8fcfb8875_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:5909184fe3d37eb45ba3bf55d7b708d818f2a5abfc2949c4a7081a5cd30cea4f_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:6217f0bb4937fa0e0fc0a5c86456fdc1992e169dfedc3d11d5165cef575d4d53_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:d55a55a36a23e7deb83718bd5dcc19b083b84d441add72ea7f4e28935e4717e3_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:0f8e1171f278395f3c72e4d9d3c0492bed15b678963fb2b6182bd65343b85a2e_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:823bb59b1c7d01557c29f9f1e4a4ee39814c38d826b06c3c9de4b8d179078419_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:93c7e9b321c7e9aa4a412a993a6b20412e24772832cc0dd23bbb17aa25f15487_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:9e50b45f81fedab27e896f04b80bacaa01d8370ff5679147f95ad79b61972d83_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:8f145d4e336bd77fcc94f0845f9ebf94563ffd96d56794d96a665c11241df152_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:981917806c7faf31156241cc85577cf375ee566f78adaeadc096d0ba8482b835_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:af3ed91687500d64e2348cca4877c43f73211b8fbd132e7767c3521763185348_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:c05020e5ee5bddc62e38493cd16b6e4ffde7c2248a00d710f32b90a6ee12ceeb_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2af86b409540513f6da1afa83110a5cafe8778d2ec16332faa31c964bd5f43f7_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2f3bec76a833a72c7dfa93ed55e55e80e2621c154e5a2f156deaf78d7c6b97b4_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:81a2385be30079500f13f97a18607aa685abd61265bf8fa78bc6ce126341be50_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:fdc8f64f3b82b200a5e31b01b8612069f1aa897014085c1de755394552a1a70a_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:856b9088dbda4e7374daf232602f4bb90b05ad1be1df46d6e363a002f549f4de_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:a107ae2f7b140f2fb2243f33c378228c2f164cfd2d23f57e63f6c424fd400929_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:e21de356b7d879800a96f6c5aeee6bc59a3ed9c58d36503f7089625ce887bb25_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:fcaf6d60d682cf51866948ea3b4846c2993e2801adb69dc745ffa832318f515c_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:11f005939e15d63057bf2f0a988b6baebc275d3e752e9f7696d0f7f5266fd5d6_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:4b4c98be96a932d508fad769eff61bff2a44e13baa60b22b6c543f4a11eb71c2_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:6c87453ffe89e8be752ee40c8a9ccf6894c83be703f13901b1e8b64a4c0e549a_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:c18a1c50a4fc7081c6564d1c4ed4904212b7939a4f1f46afef0a36dc1d76f38e_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:33367b9fdb3addce3302ad35bc10423505fefe3dd27b8b9013b26d66caac2a6c_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:72cbdb061cbcd295be5e66a0eabb409af16ade7f0aa12b04c2d7327e9e1a24ba_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:d0379f9da8cbb5514394a4550ff0d79f90fa691fcced5806296479c7b63353da_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:e99d1d877bd7335736cbaeb4db5b9904369a1d07f6df332c38ad79ff1256b67b_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:06285611aef2528fc92c5cebb66ff4c74fe44d457f43cf9ec2f4a98c3c68d25e_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:25e0f4153eb5bc6fbc6b389d5adc81bfde103070ef58317c3c25ce4144a628d3_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:acd3c0369c18cbfa63a5972ed1721f93f1fcb456963ff855dea2c295baf1cdb8_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:d086075db52f4476aa64d7e2680baa01e99da246275fa9cae0ba4a74de63c7f3_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:07d89c1b524d1451051feb865bc716da2197add90fa0c58c4cf4a82975ec846c_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:6582e647d7dd604e25977ec1579969aa1fcb29ead1a0ea65833531d633bbdd2b_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:75e3aec03dffbd0f40f88a08ff5e0319f4515d73f0bcfae28b5fa526b494afc4_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:f0079e8ae53d84223aea2d3186e7bc6b525b7c03d307cde50cfb9f1bbc18712b_arm64 | — |
Workaround
|
A flaw was found in Axios. A remote attacker, by influencing the XSRF cookie name in a browser environment, could cause the application to construct a regular expression that leads to excessive processing. This can result in a client-side Denial of Service (DoS), where the affected browser tab may freeze, impacting the availability of the application for the user.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:1384e5ba2b7d23119a49d8713826f4c65668bca310589ac7abd0c0d41c7e4c90_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:7f58528b1da9146aa55917324fdf2b375794742b34e5d10ff57f713af60746cd_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:844c3b1499b00aeadfc561642e53792ad80f535efd53b35793ba08b0f26c6d61_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:e1019c30e1d84e66d775d0d6fc7d051803dcbe44823fb2a1914807be39c79dae_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:137ffbb95d463d95da6c350600d968f3cd0e9873bf2e7c6edf952ae3229e9e2b_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:1cccdfd7e90877c27c6d8caea4f1e8ad89bb97c83d97ddf570d4f4ee116f1986_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:71657b82894cfd9e350746f48965e148868a675b9a20dcb7f94a6bc7a5b16ea5_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:881e405e32821ef10cf992c7a633281c1dc45df721fe909048df1689472000ce_ppc64le | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:8c9a7ebf430b9f4ca200c6c70b049e8456cf88fd8bf0871b42d65e8dc786d451_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:926d965e6fd12ec0d758270fb4c90bbdc1a05e60cc4c895cf9b671a296c9d867_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:e8e807451e3c5d8d0a8575e1280d7125a4ece51547a7b4a5cd247837662cedad_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:f2a24aa01cbe0d926d4aefe3b12eba21eb5ec7f87276e572a6814c727228624c_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:45cc0d783d1e7874ac73dfbdfe7e03c63b227ab3c4f1e15a0a2f5c97956a76d9_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:6f3eb26734e89375c3e1fb7ac366e12dc0d41bac8f07de9210c7e9845a01eec1_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:768c45fa9f35d98dfe5cfe1ea12f552402bf68ac6e1f828b14310ef59ce57c40_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:b5f1bf30495f6be97c696cf7f90768629cee96f8d106f745bf95fdefddc99592_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:6c85b42ede0f4745ed558bcb03d033c49f56cef17a70c12e5308066124cac6e3_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:091529a93e258a612fd4a98222e6a370ee10b4e97efa791b50f79a2670163d01_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0e8958a22f6771ddfe32b34027c69dbbef65d980c7e465a79d4202d2627994ad_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:5a8b0203ff083113e8b30a123ab30c4bad571f57fb59c1e7e01807b92552504e_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:89bf6a32a0935cacadbc6d23566dce6ca741e404d58c11050638c7b8e868028b_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:077cc953354ea2edd85569a622f97c15d44163d68234e7a9fdee899d25c19cdb_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:66285f866090e1bfbedacd592e9d5ea9f2a30b88aa03bc86bc790d6b98a929a4_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:8c80054171d5063457df4bd074674b1824783a101dacb6137da227080aff957c_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:b0f15904251c6665961eef9c944d00f17499f7219351fe213fe7935f62fbf7ac_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:62476ac2fb0096caa9b181f523cc3573ccffe70be1433f08d1d0255b6d3a0640_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:6f632bc9829880a44e2e94084284b52683b4a01dc3315043b0aa32eb344b16cb_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:aa3d1cf7853bfe8307efb01f714585f378d1d3d4ed5de7c8808a72e4aeecd4f3_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:bf1d4b2b1ef03e65be59699ce3233a75a34e1777abc182984c7a8efa698a936e_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:141f17d12c748c7ab9e94cfd9db7e2492d3063e7478249d6430ac0d8fcfb8875_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:5909184fe3d37eb45ba3bf55d7b708d818f2a5abfc2949c4a7081a5cd30cea4f_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:6217f0bb4937fa0e0fc0a5c86456fdc1992e169dfedc3d11d5165cef575d4d53_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:d55a55a36a23e7deb83718bd5dcc19b083b84d441add72ea7f4e28935e4717e3_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:0f8e1171f278395f3c72e4d9d3c0492bed15b678963fb2b6182bd65343b85a2e_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:823bb59b1c7d01557c29f9f1e4a4ee39814c38d826b06c3c9de4b8d179078419_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:93c7e9b321c7e9aa4a412a993a6b20412e24772832cc0dd23bbb17aa25f15487_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:9e50b45f81fedab27e896f04b80bacaa01d8370ff5679147f95ad79b61972d83_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:8f145d4e336bd77fcc94f0845f9ebf94563ffd96d56794d96a665c11241df152_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:981917806c7faf31156241cc85577cf375ee566f78adaeadc096d0ba8482b835_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:af3ed91687500d64e2348cca4877c43f73211b8fbd132e7767c3521763185348_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:c05020e5ee5bddc62e38493cd16b6e4ffde7c2248a00d710f32b90a6ee12ceeb_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2af86b409540513f6da1afa83110a5cafe8778d2ec16332faa31c964bd5f43f7_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2f3bec76a833a72c7dfa93ed55e55e80e2621c154e5a2f156deaf78d7c6b97b4_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:81a2385be30079500f13f97a18607aa685abd61265bf8fa78bc6ce126341be50_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:fdc8f64f3b82b200a5e31b01b8612069f1aa897014085c1de755394552a1a70a_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:856b9088dbda4e7374daf232602f4bb90b05ad1be1df46d6e363a002f549f4de_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:a107ae2f7b140f2fb2243f33c378228c2f164cfd2d23f57e63f6c424fd400929_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:e21de356b7d879800a96f6c5aeee6bc59a3ed9c58d36503f7089625ce887bb25_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:fcaf6d60d682cf51866948ea3b4846c2993e2801adb69dc745ffa832318f515c_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:11f005939e15d63057bf2f0a988b6baebc275d3e752e9f7696d0f7f5266fd5d6_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:4b4c98be96a932d508fad769eff61bff2a44e13baa60b22b6c543f4a11eb71c2_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:6c87453ffe89e8be752ee40c8a9ccf6894c83be703f13901b1e8b64a4c0e549a_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:c18a1c50a4fc7081c6564d1c4ed4904212b7939a4f1f46afef0a36dc1d76f38e_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:33367b9fdb3addce3302ad35bc10423505fefe3dd27b8b9013b26d66caac2a6c_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:72cbdb061cbcd295be5e66a0eabb409af16ade7f0aa12b04c2d7327e9e1a24ba_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:d0379f9da8cbb5514394a4550ff0d79f90fa691fcced5806296479c7b63353da_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:e99d1d877bd7335736cbaeb4db5b9904369a1d07f6df332c38ad79ff1256b67b_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:06285611aef2528fc92c5cebb66ff4c74fe44d457f43cf9ec2f4a98c3c68d25e_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:25e0f4153eb5bc6fbc6b389d5adc81bfde103070ef58317c3c25ce4144a628d3_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:acd3c0369c18cbfa63a5972ed1721f93f1fcb456963ff855dea2c295baf1cdb8_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:d086075db52f4476aa64d7e2680baa01e99da246275fa9cae0ba4a74de63c7f3_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:07d89c1b524d1451051feb865bc716da2197add90fa0c58c4cf4a82975ec846c_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:6582e647d7dd604e25977ec1579969aa1fcb29ead1a0ea65833531d633bbdd2b_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:75e3aec03dffbd0f40f88a08ff5e0319f4515d73f0bcfae28b5fa526b494afc4_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:f0079e8ae53d84223aea2d3186e7bc6b525b7c03d307cde50cfb9f1bbc18712b_arm64 | — |
Workaround
|
A flaw was found in Traefik. A low-privileged tenant with HTTPRoute creation permissions in Traefik's Kubernetes Gateway API provider can bypass security settings. This allows the tenant to expose the REST provider handler and gain live dynamic configuration write access to Traefik. This vulnerability enables unauthorized reconfiguration of routers and services, potentially leading to privilege escalation within the system.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:11f005939e15d63057bf2f0a988b6baebc275d3e752e9f7696d0f7f5266fd5d6_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:4b4c98be96a932d508fad769eff61bff2a44e13baa60b22b6c543f4a11eb71c2_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:6c87453ffe89e8be752ee40c8a9ccf6894c83be703f13901b1e8b64a4c0e549a_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:c18a1c50a4fc7081c6564d1c4ed4904212b7939a4f1f46afef0a36dc1d76f38e_arm64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:1384e5ba2b7d23119a49d8713826f4c65668bca310589ac7abd0c0d41c7e4c90_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:7f58528b1da9146aa55917324fdf2b375794742b34e5d10ff57f713af60746cd_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:844c3b1499b00aeadfc561642e53792ad80f535efd53b35793ba08b0f26c6d61_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:e1019c30e1d84e66d775d0d6fc7d051803dcbe44823fb2a1914807be39c79dae_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:8c9a7ebf430b9f4ca200c6c70b049e8456cf88fd8bf0871b42d65e8dc786d451_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:926d965e6fd12ec0d758270fb4c90bbdc1a05e60cc4c895cf9b671a296c9d867_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:e8e807451e3c5d8d0a8575e1280d7125a4ece51547a7b4a5cd247837662cedad_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:f2a24aa01cbe0d926d4aefe3b12eba21eb5ec7f87276e572a6814c727228624c_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:45cc0d783d1e7874ac73dfbdfe7e03c63b227ab3c4f1e15a0a2f5c97956a76d9_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:6f3eb26734e89375c3e1fb7ac366e12dc0d41bac8f07de9210c7e9845a01eec1_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:768c45fa9f35d98dfe5cfe1ea12f552402bf68ac6e1f828b14310ef59ce57c40_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:b5f1bf30495f6be97c696cf7f90768629cee96f8d106f745bf95fdefddc99592_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:137ffbb95d463d95da6c350600d968f3cd0e9873bf2e7c6edf952ae3229e9e2b_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:1cccdfd7e90877c27c6d8caea4f1e8ad89bb97c83d97ddf570d4f4ee116f1986_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:71657b82894cfd9e350746f48965e148868a675b9a20dcb7f94a6bc7a5b16ea5_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:881e405e32821ef10cf992c7a633281c1dc45df721fe909048df1689472000ce_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:6c85b42ede0f4745ed558bcb03d033c49f56cef17a70c12e5308066124cac6e3_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:091529a93e258a612fd4a98222e6a370ee10b4e97efa791b50f79a2670163d01_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0e8958a22f6771ddfe32b34027c69dbbef65d980c7e465a79d4202d2627994ad_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:5a8b0203ff083113e8b30a123ab30c4bad571f57fb59c1e7e01807b92552504e_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:89bf6a32a0935cacadbc6d23566dce6ca741e404d58c11050638c7b8e868028b_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:077cc953354ea2edd85569a622f97c15d44163d68234e7a9fdee899d25c19cdb_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:66285f866090e1bfbedacd592e9d5ea9f2a30b88aa03bc86bc790d6b98a929a4_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:8c80054171d5063457df4bd074674b1824783a101dacb6137da227080aff957c_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:b0f15904251c6665961eef9c944d00f17499f7219351fe213fe7935f62fbf7ac_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:62476ac2fb0096caa9b181f523cc3573ccffe70be1433f08d1d0255b6d3a0640_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:6f632bc9829880a44e2e94084284b52683b4a01dc3315043b0aa32eb344b16cb_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:aa3d1cf7853bfe8307efb01f714585f378d1d3d4ed5de7c8808a72e4aeecd4f3_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:bf1d4b2b1ef03e65be59699ce3233a75a34e1777abc182984c7a8efa698a936e_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:141f17d12c748c7ab9e94cfd9db7e2492d3063e7478249d6430ac0d8fcfb8875_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:5909184fe3d37eb45ba3bf55d7b708d818f2a5abfc2949c4a7081a5cd30cea4f_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:6217f0bb4937fa0e0fc0a5c86456fdc1992e169dfedc3d11d5165cef575d4d53_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:d55a55a36a23e7deb83718bd5dcc19b083b84d441add72ea7f4e28935e4717e3_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:0f8e1171f278395f3c72e4d9d3c0492bed15b678963fb2b6182bd65343b85a2e_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:823bb59b1c7d01557c29f9f1e4a4ee39814c38d826b06c3c9de4b8d179078419_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:93c7e9b321c7e9aa4a412a993a6b20412e24772832cc0dd23bbb17aa25f15487_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:9e50b45f81fedab27e896f04b80bacaa01d8370ff5679147f95ad79b61972d83_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:8f145d4e336bd77fcc94f0845f9ebf94563ffd96d56794d96a665c11241df152_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:981917806c7faf31156241cc85577cf375ee566f78adaeadc096d0ba8482b835_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:af3ed91687500d64e2348cca4877c43f73211b8fbd132e7767c3521763185348_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:c05020e5ee5bddc62e38493cd16b6e4ffde7c2248a00d710f32b90a6ee12ceeb_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2af86b409540513f6da1afa83110a5cafe8778d2ec16332faa31c964bd5f43f7_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2f3bec76a833a72c7dfa93ed55e55e80e2621c154e5a2f156deaf78d7c6b97b4_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:81a2385be30079500f13f97a18607aa685abd61265bf8fa78bc6ce126341be50_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:fdc8f64f3b82b200a5e31b01b8612069f1aa897014085c1de755394552a1a70a_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:856b9088dbda4e7374daf232602f4bb90b05ad1be1df46d6e363a002f549f4de_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:a107ae2f7b140f2fb2243f33c378228c2f164cfd2d23f57e63f6c424fd400929_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:e21de356b7d879800a96f6c5aeee6bc59a3ed9c58d36503f7089625ce887bb25_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:fcaf6d60d682cf51866948ea3b4846c2993e2801adb69dc745ffa832318f515c_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:33367b9fdb3addce3302ad35bc10423505fefe3dd27b8b9013b26d66caac2a6c_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:72cbdb061cbcd295be5e66a0eabb409af16ade7f0aa12b04c2d7327e9e1a24ba_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:d0379f9da8cbb5514394a4550ff0d79f90fa691fcced5806296479c7b63353da_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:e99d1d877bd7335736cbaeb4db5b9904369a1d07f6df332c38ad79ff1256b67b_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:06285611aef2528fc92c5cebb66ff4c74fe44d457f43cf9ec2f4a98c3c68d25e_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:25e0f4153eb5bc6fbc6b389d5adc81bfde103070ef58317c3c25ce4144a628d3_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:acd3c0369c18cbfa63a5972ed1721f93f1fcb456963ff855dea2c295baf1cdb8_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:d086075db52f4476aa64d7e2680baa01e99da246275fa9cae0ba4a74de63c7f3_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:07d89c1b524d1451051feb865bc716da2197add90fa0c58c4cf4a82975ec846c_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:6582e647d7dd604e25977ec1579969aa1fcb29ead1a0ea65833531d633bbdd2b_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:75e3aec03dffbd0f40f88a08ff5e0319f4515d73f0bcfae28b5fa526b494afc4_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:f0079e8ae53d84223aea2d3186e7bc6b525b7c03d307cde50cfb9f1bbc18712b_arm64 | — |
Workaround
|
A flaw was found in netty-codec-haproxy, a component of the Netty network application framework. A remote attacker can exploit this vulnerability by sending a specially crafted HAProxy message with a malformed PP2_TYPE_SSL TLV (Type-Length-Value) header. This can lead to an IndexOutOfBoundsException and prevent the release of retained memory, ultimately causing a Denial of Service (DoS) condition for the affected application.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:141f17d12c748c7ab9e94cfd9db7e2492d3063e7478249d6430ac0d8fcfb8875_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:5909184fe3d37eb45ba3bf55d7b708d818f2a5abfc2949c4a7081a5cd30cea4f_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:6217f0bb4937fa0e0fc0a5c86456fdc1992e169dfedc3d11d5165cef575d4d53_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:d55a55a36a23e7deb83718bd5dcc19b083b84d441add72ea7f4e28935e4717e3_ppc64le | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:1384e5ba2b7d23119a49d8713826f4c65668bca310589ac7abd0c0d41c7e4c90_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:7f58528b1da9146aa55917324fdf2b375794742b34e5d10ff57f713af60746cd_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:844c3b1499b00aeadfc561642e53792ad80f535efd53b35793ba08b0f26c6d61_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:e1019c30e1d84e66d775d0d6fc7d051803dcbe44823fb2a1914807be39c79dae_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:8c9a7ebf430b9f4ca200c6c70b049e8456cf88fd8bf0871b42d65e8dc786d451_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:926d965e6fd12ec0d758270fb4c90bbdc1a05e60cc4c895cf9b671a296c9d867_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:e8e807451e3c5d8d0a8575e1280d7125a4ece51547a7b4a5cd247837662cedad_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:f2a24aa01cbe0d926d4aefe3b12eba21eb5ec7f87276e572a6814c727228624c_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:45cc0d783d1e7874ac73dfbdfe7e03c63b227ab3c4f1e15a0a2f5c97956a76d9_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:6f3eb26734e89375c3e1fb7ac366e12dc0d41bac8f07de9210c7e9845a01eec1_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:768c45fa9f35d98dfe5cfe1ea12f552402bf68ac6e1f828b14310ef59ce57c40_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:b5f1bf30495f6be97c696cf7f90768629cee96f8d106f745bf95fdefddc99592_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:137ffbb95d463d95da6c350600d968f3cd0e9873bf2e7c6edf952ae3229e9e2b_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:1cccdfd7e90877c27c6d8caea4f1e8ad89bb97c83d97ddf570d4f4ee116f1986_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:71657b82894cfd9e350746f48965e148868a675b9a20dcb7f94a6bc7a5b16ea5_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:881e405e32821ef10cf992c7a633281c1dc45df721fe909048df1689472000ce_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:6c85b42ede0f4745ed558bcb03d033c49f56cef17a70c12e5308066124cac6e3_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:091529a93e258a612fd4a98222e6a370ee10b4e97efa791b50f79a2670163d01_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0e8958a22f6771ddfe32b34027c69dbbef65d980c7e465a79d4202d2627994ad_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:5a8b0203ff083113e8b30a123ab30c4bad571f57fb59c1e7e01807b92552504e_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:89bf6a32a0935cacadbc6d23566dce6ca741e404d58c11050638c7b8e868028b_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:077cc953354ea2edd85569a622f97c15d44163d68234e7a9fdee899d25c19cdb_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:66285f866090e1bfbedacd592e9d5ea9f2a30b88aa03bc86bc790d6b98a929a4_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:8c80054171d5063457df4bd074674b1824783a101dacb6137da227080aff957c_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:b0f15904251c6665961eef9c944d00f17499f7219351fe213fe7935f62fbf7ac_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:62476ac2fb0096caa9b181f523cc3573ccffe70be1433f08d1d0255b6d3a0640_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:6f632bc9829880a44e2e94084284b52683b4a01dc3315043b0aa32eb344b16cb_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:aa3d1cf7853bfe8307efb01f714585f378d1d3d4ed5de7c8808a72e4aeecd4f3_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:bf1d4b2b1ef03e65be59699ce3233a75a34e1777abc182984c7a8efa698a936e_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:0f8e1171f278395f3c72e4d9d3c0492bed15b678963fb2b6182bd65343b85a2e_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:823bb59b1c7d01557c29f9f1e4a4ee39814c38d826b06c3c9de4b8d179078419_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:93c7e9b321c7e9aa4a412a993a6b20412e24772832cc0dd23bbb17aa25f15487_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:9e50b45f81fedab27e896f04b80bacaa01d8370ff5679147f95ad79b61972d83_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:8f145d4e336bd77fcc94f0845f9ebf94563ffd96d56794d96a665c11241df152_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:981917806c7faf31156241cc85577cf375ee566f78adaeadc096d0ba8482b835_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:af3ed91687500d64e2348cca4877c43f73211b8fbd132e7767c3521763185348_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:c05020e5ee5bddc62e38493cd16b6e4ffde7c2248a00d710f32b90a6ee12ceeb_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2af86b409540513f6da1afa83110a5cafe8778d2ec16332faa31c964bd5f43f7_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2f3bec76a833a72c7dfa93ed55e55e80e2621c154e5a2f156deaf78d7c6b97b4_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:81a2385be30079500f13f97a18607aa685abd61265bf8fa78bc6ce126341be50_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:fdc8f64f3b82b200a5e31b01b8612069f1aa897014085c1de755394552a1a70a_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:856b9088dbda4e7374daf232602f4bb90b05ad1be1df46d6e363a002f549f4de_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:a107ae2f7b140f2fb2243f33c378228c2f164cfd2d23f57e63f6c424fd400929_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:e21de356b7d879800a96f6c5aeee6bc59a3ed9c58d36503f7089625ce887bb25_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:fcaf6d60d682cf51866948ea3b4846c2993e2801adb69dc745ffa832318f515c_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:11f005939e15d63057bf2f0a988b6baebc275d3e752e9f7696d0f7f5266fd5d6_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:4b4c98be96a932d508fad769eff61bff2a44e13baa60b22b6c543f4a11eb71c2_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:6c87453ffe89e8be752ee40c8a9ccf6894c83be703f13901b1e8b64a4c0e549a_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:c18a1c50a4fc7081c6564d1c4ed4904212b7939a4f1f46afef0a36dc1d76f38e_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:33367b9fdb3addce3302ad35bc10423505fefe3dd27b8b9013b26d66caac2a6c_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:72cbdb061cbcd295be5e66a0eabb409af16ade7f0aa12b04c2d7327e9e1a24ba_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:d0379f9da8cbb5514394a4550ff0d79f90fa691fcced5806296479c7b63353da_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:e99d1d877bd7335736cbaeb4db5b9904369a1d07f6df332c38ad79ff1256b67b_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:06285611aef2528fc92c5cebb66ff4c74fe44d457f43cf9ec2f4a98c3c68d25e_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:25e0f4153eb5bc6fbc6b389d5adc81bfde103070ef58317c3c25ce4144a628d3_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:acd3c0369c18cbfa63a5972ed1721f93f1fcb456963ff855dea2c295baf1cdb8_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:d086075db52f4476aa64d7e2680baa01e99da246275fa9cae0ba4a74de63c7f3_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:07d89c1b524d1451051feb865bc716da2197add90fa0c58c4cf4a82975ec846c_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:6582e647d7dd604e25977ec1579969aa1fcb29ead1a0ea65833531d633bbdd2b_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:75e3aec03dffbd0f40f88a08ff5e0319f4515d73f0bcfae28b5fa526b494afc4_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:f0079e8ae53d84223aea2d3186e7bc6b525b7c03d307cde50cfb9f1bbc18712b_arm64 | — |
Workaround
|
A flaw was found in OpenTelemetry Java, specifically within the baggage propagation implementation of opentelemetry-api and opentelemetry-extension-trace-propagators. A remote attacker can exploit this vulnerability by sending oversized baggage, which leads to unbounded memory allocation and high CPU consumption. This can result in a Denial of Service (DoS) for the affected service. Furthermore, because baggage is automatically re-injected into outgoing requests, the impact can spread to other downstream services.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:8f145d4e336bd77fcc94f0845f9ebf94563ffd96d56794d96a665c11241df152_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:981917806c7faf31156241cc85577cf375ee566f78adaeadc096d0ba8482b835_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:af3ed91687500d64e2348cca4877c43f73211b8fbd132e7767c3521763185348_arm64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:c05020e5ee5bddc62e38493cd16b6e4ffde7c2248a00d710f32b90a6ee12ceeb_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2af86b409540513f6da1afa83110a5cafe8778d2ec16332faa31c964bd5f43f7_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2f3bec76a833a72c7dfa93ed55e55e80e2621c154e5a2f156deaf78d7c6b97b4_arm64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:81a2385be30079500f13f97a18607aa685abd61265bf8fa78bc6ce126341be50_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:fdc8f64f3b82b200a5e31b01b8612069f1aa897014085c1de755394552a1a70a_amd64 | — |
Vendor Fix
fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:1384e5ba2b7d23119a49d8713826f4c65668bca310589ac7abd0c0d41c7e4c90_arm64 | — | ||
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:7f58528b1da9146aa55917324fdf2b375794742b34e5d10ff57f713af60746cd_amd64 | — | ||
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:844c3b1499b00aeadfc561642e53792ad80f535efd53b35793ba08b0f26c6d61_s390x | — | ||
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:e1019c30e1d84e66d775d0d6fc7d051803dcbe44823fb2a1914807be39c79dae_ppc64le | — | ||
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:8c9a7ebf430b9f4ca200c6c70b049e8456cf88fd8bf0871b42d65e8dc786d451_amd64 | — | ||
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:926d965e6fd12ec0d758270fb4c90bbdc1a05e60cc4c895cf9b671a296c9d867_ppc64le | — | ||
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:e8e807451e3c5d8d0a8575e1280d7125a4ece51547a7b4a5cd247837662cedad_s390x | — | ||
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:f2a24aa01cbe0d926d4aefe3b12eba21eb5ec7f87276e572a6814c727228624c_arm64 | — | ||
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:45cc0d783d1e7874ac73dfbdfe7e03c63b227ab3c4f1e15a0a2f5c97956a76d9_s390x | — | ||
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:6f3eb26734e89375c3e1fb7ac366e12dc0d41bac8f07de9210c7e9845a01eec1_arm64 | — | ||
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:768c45fa9f35d98dfe5cfe1ea12f552402bf68ac6e1f828b14310ef59ce57c40_ppc64le | — | ||
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:b5f1bf30495f6be97c696cf7f90768629cee96f8d106f745bf95fdefddc99592_amd64 | — | ||
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:137ffbb95d463d95da6c350600d968f3cd0e9873bf2e7c6edf952ae3229e9e2b_amd64 | — | ||
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:1cccdfd7e90877c27c6d8caea4f1e8ad89bb97c83d97ddf570d4f4ee116f1986_arm64 | — | ||
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:71657b82894cfd9e350746f48965e148868a675b9a20dcb7f94a6bc7a5b16ea5_s390x | — | ||
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:881e405e32821ef10cf992c7a633281c1dc45df721fe909048df1689472000ce_ppc64le | — | ||
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:6c85b42ede0f4745ed558bcb03d033c49f56cef17a70c12e5308066124cac6e3_amd64 | — | ||
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:091529a93e258a612fd4a98222e6a370ee10b4e97efa791b50f79a2670163d01_amd64 | — | ||
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0e8958a22f6771ddfe32b34027c69dbbef65d980c7e465a79d4202d2627994ad_arm64 | — | ||
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:5a8b0203ff083113e8b30a123ab30c4bad571f57fb59c1e7e01807b92552504e_s390x | — | ||
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:89bf6a32a0935cacadbc6d23566dce6ca741e404d58c11050638c7b8e868028b_ppc64le | — | ||
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:077cc953354ea2edd85569a622f97c15d44163d68234e7a9fdee899d25c19cdb_amd64 | — | ||
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:66285f866090e1bfbedacd592e9d5ea9f2a30b88aa03bc86bc790d6b98a929a4_ppc64le | — | ||
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:8c80054171d5063457df4bd074674b1824783a101dacb6137da227080aff957c_s390x | — | ||
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:b0f15904251c6665961eef9c944d00f17499f7219351fe213fe7935f62fbf7ac_arm64 | — | ||
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:62476ac2fb0096caa9b181f523cc3573ccffe70be1433f08d1d0255b6d3a0640_arm64 | — | ||
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:6f632bc9829880a44e2e94084284b52683b4a01dc3315043b0aa32eb344b16cb_amd64 | — | ||
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:aa3d1cf7853bfe8307efb01f714585f378d1d3d4ed5de7c8808a72e4aeecd4f3_s390x | — | ||
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:bf1d4b2b1ef03e65be59699ce3233a75a34e1777abc182984c7a8efa698a936e_ppc64le | — | ||
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:141f17d12c748c7ab9e94cfd9db7e2492d3063e7478249d6430ac0d8fcfb8875_s390x | — | ||
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:5909184fe3d37eb45ba3bf55d7b708d818f2a5abfc2949c4a7081a5cd30cea4f_amd64 | — | ||
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:6217f0bb4937fa0e0fc0a5c86456fdc1992e169dfedc3d11d5165cef575d4d53_arm64 | — | ||
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:d55a55a36a23e7deb83718bd5dcc19b083b84d441add72ea7f4e28935e4717e3_ppc64le | — | ||
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:0f8e1171f278395f3c72e4d9d3c0492bed15b678963fb2b6182bd65343b85a2e_ppc64le | — | ||
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:823bb59b1c7d01557c29f9f1e4a4ee39814c38d826b06c3c9de4b8d179078419_s390x | — | ||
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:93c7e9b321c7e9aa4a412a993a6b20412e24772832cc0dd23bbb17aa25f15487_arm64 | — | ||
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:9e50b45f81fedab27e896f04b80bacaa01d8370ff5679147f95ad79b61972d83_amd64 | — | ||
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:856b9088dbda4e7374daf232602f4bb90b05ad1be1df46d6e363a002f549f4de_arm64 | — | ||
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:a107ae2f7b140f2fb2243f33c378228c2f164cfd2d23f57e63f6c424fd400929_s390x | — | ||
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:e21de356b7d879800a96f6c5aeee6bc59a3ed9c58d36503f7089625ce887bb25_ppc64le | — | ||
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:fcaf6d60d682cf51866948ea3b4846c2993e2801adb69dc745ffa832318f515c_amd64 | — | ||
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:11f005939e15d63057bf2f0a988b6baebc275d3e752e9f7696d0f7f5266fd5d6_amd64 | — | ||
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:4b4c98be96a932d508fad769eff61bff2a44e13baa60b22b6c543f4a11eb71c2_s390x | — | ||
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:6c87453ffe89e8be752ee40c8a9ccf6894c83be703f13901b1e8b64a4c0e549a_ppc64le | — | ||
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:c18a1c50a4fc7081c6564d1c4ed4904212b7939a4f1f46afef0a36dc1d76f38e_arm64 | — | ||
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:33367b9fdb3addce3302ad35bc10423505fefe3dd27b8b9013b26d66caac2a6c_arm64 | — | ||
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:72cbdb061cbcd295be5e66a0eabb409af16ade7f0aa12b04c2d7327e9e1a24ba_ppc64le | — | ||
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:d0379f9da8cbb5514394a4550ff0d79f90fa691fcced5806296479c7b63353da_amd64 | — | ||
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:e99d1d877bd7335736cbaeb4db5b9904369a1d07f6df332c38ad79ff1256b67b_s390x | — | ||
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:06285611aef2528fc92c5cebb66ff4c74fe44d457f43cf9ec2f4a98c3c68d25e_amd64 | — | ||
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:25e0f4153eb5bc6fbc6b389d5adc81bfde103070ef58317c3c25ce4144a628d3_arm64 | — | ||
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:acd3c0369c18cbfa63a5972ed1721f93f1fcb456963ff855dea2c295baf1cdb8_ppc64le | — | ||
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:d086075db52f4476aa64d7e2680baa01e99da246275fa9cae0ba4a74de63c7f3_s390x | — | ||
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:07d89c1b524d1451051feb865bc716da2197add90fa0c58c4cf4a82975ec846c_s390x | — | ||
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:6582e647d7dd604e25977ec1579969aa1fcb29ead1a0ea65833531d633bbdd2b_amd64 | — | ||
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:75e3aec03dffbd0f40f88a08ff5e0319f4515d73f0bcfae28b5fa526b494afc4_ppc64le | — | ||
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:f0079e8ae53d84223aea2d3186e7bc6b525b7c03d307cde50cfb9f1bbc18712b_arm64 | — |
A flaw was found in ws, an open source WebSocket client and server for Node.js. The `websocket.close()` implementation is vulnerable to uninitialized memory disclosure when a `TypedArray` is passed as the reason argument. This can lead to the disclosure of sensitive information from uninitialized memory.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:1384e5ba2b7d23119a49d8713826f4c65668bca310589ac7abd0c0d41c7e4c90_arm64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:7f58528b1da9146aa55917324fdf2b375794742b34e5d10ff57f713af60746cd_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:844c3b1499b00aeadfc561642e53792ad80f535efd53b35793ba08b0f26c6d61_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:e1019c30e1d84e66d775d0d6fc7d051803dcbe44823fb2a1914807be39c79dae_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:137ffbb95d463d95da6c350600d968f3cd0e9873bf2e7c6edf952ae3229e9e2b_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:1cccdfd7e90877c27c6d8caea4f1e8ad89bb97c83d97ddf570d4f4ee116f1986_arm64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:71657b82894cfd9e350746f48965e148868a675b9a20dcb7f94a6bc7a5b16ea5_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:881e405e32821ef10cf992c7a633281c1dc45df721fe909048df1689472000ce_ppc64le | — |
Vendor Fix
fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:8c9a7ebf430b9f4ca200c6c70b049e8456cf88fd8bf0871b42d65e8dc786d451_amd64 | — | ||
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:926d965e6fd12ec0d758270fb4c90bbdc1a05e60cc4c895cf9b671a296c9d867_ppc64le | — | ||
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:e8e807451e3c5d8d0a8575e1280d7125a4ece51547a7b4a5cd247837662cedad_s390x | — | ||
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:f2a24aa01cbe0d926d4aefe3b12eba21eb5ec7f87276e572a6814c727228624c_arm64 | — | ||
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:45cc0d783d1e7874ac73dfbdfe7e03c63b227ab3c4f1e15a0a2f5c97956a76d9_s390x | — | ||
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:6f3eb26734e89375c3e1fb7ac366e12dc0d41bac8f07de9210c7e9845a01eec1_arm64 | — | ||
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:768c45fa9f35d98dfe5cfe1ea12f552402bf68ac6e1f828b14310ef59ce57c40_ppc64le | — | ||
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:b5f1bf30495f6be97c696cf7f90768629cee96f8d106f745bf95fdefddc99592_amd64 | — | ||
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:6c85b42ede0f4745ed558bcb03d033c49f56cef17a70c12e5308066124cac6e3_amd64 | — | ||
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:091529a93e258a612fd4a98222e6a370ee10b4e97efa791b50f79a2670163d01_amd64 | — | ||
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0e8958a22f6771ddfe32b34027c69dbbef65d980c7e465a79d4202d2627994ad_arm64 | — | ||
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:5a8b0203ff083113e8b30a123ab30c4bad571f57fb59c1e7e01807b92552504e_s390x | — | ||
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:89bf6a32a0935cacadbc6d23566dce6ca741e404d58c11050638c7b8e868028b_ppc64le | — | ||
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:077cc953354ea2edd85569a622f97c15d44163d68234e7a9fdee899d25c19cdb_amd64 | — | ||
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:66285f866090e1bfbedacd592e9d5ea9f2a30b88aa03bc86bc790d6b98a929a4_ppc64le | — | ||
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:8c80054171d5063457df4bd074674b1824783a101dacb6137da227080aff957c_s390x | — | ||
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:b0f15904251c6665961eef9c944d00f17499f7219351fe213fe7935f62fbf7ac_arm64 | — | ||
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:62476ac2fb0096caa9b181f523cc3573ccffe70be1433f08d1d0255b6d3a0640_arm64 | — | ||
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:6f632bc9829880a44e2e94084284b52683b4a01dc3315043b0aa32eb344b16cb_amd64 | — | ||
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:aa3d1cf7853bfe8307efb01f714585f378d1d3d4ed5de7c8808a72e4aeecd4f3_s390x | — | ||
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:bf1d4b2b1ef03e65be59699ce3233a75a34e1777abc182984c7a8efa698a936e_ppc64le | — | ||
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:141f17d12c748c7ab9e94cfd9db7e2492d3063e7478249d6430ac0d8fcfb8875_s390x | — | ||
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:5909184fe3d37eb45ba3bf55d7b708d818f2a5abfc2949c4a7081a5cd30cea4f_amd64 | — | ||
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:6217f0bb4937fa0e0fc0a5c86456fdc1992e169dfedc3d11d5165cef575d4d53_arm64 | — | ||
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:d55a55a36a23e7deb83718bd5dcc19b083b84d441add72ea7f4e28935e4717e3_ppc64le | — | ||
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:0f8e1171f278395f3c72e4d9d3c0492bed15b678963fb2b6182bd65343b85a2e_ppc64le | — | ||
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:823bb59b1c7d01557c29f9f1e4a4ee39814c38d826b06c3c9de4b8d179078419_s390x | — | ||
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:93c7e9b321c7e9aa4a412a993a6b20412e24772832cc0dd23bbb17aa25f15487_arm64 | — | ||
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:9e50b45f81fedab27e896f04b80bacaa01d8370ff5679147f95ad79b61972d83_amd64 | — | ||
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:8f145d4e336bd77fcc94f0845f9ebf94563ffd96d56794d96a665c11241df152_s390x | — | ||
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:981917806c7faf31156241cc85577cf375ee566f78adaeadc096d0ba8482b835_ppc64le | — | ||
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:af3ed91687500d64e2348cca4877c43f73211b8fbd132e7767c3521763185348_arm64 | — | ||
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:c05020e5ee5bddc62e38493cd16b6e4ffde7c2248a00d710f32b90a6ee12ceeb_amd64 | — | ||
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2af86b409540513f6da1afa83110a5cafe8778d2ec16332faa31c964bd5f43f7_s390x | — | ||
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2f3bec76a833a72c7dfa93ed55e55e80e2621c154e5a2f156deaf78d7c6b97b4_arm64 | — | ||
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:81a2385be30079500f13f97a18607aa685abd61265bf8fa78bc6ce126341be50_ppc64le | — | ||
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:fdc8f64f3b82b200a5e31b01b8612069f1aa897014085c1de755394552a1a70a_amd64 | — | ||
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:856b9088dbda4e7374daf232602f4bb90b05ad1be1df46d6e363a002f549f4de_arm64 | — | ||
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:a107ae2f7b140f2fb2243f33c378228c2f164cfd2d23f57e63f6c424fd400929_s390x | — | ||
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:e21de356b7d879800a96f6c5aeee6bc59a3ed9c58d36503f7089625ce887bb25_ppc64le | — | ||
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:fcaf6d60d682cf51866948ea3b4846c2993e2801adb69dc745ffa832318f515c_amd64 | — | ||
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:11f005939e15d63057bf2f0a988b6baebc275d3e752e9f7696d0f7f5266fd5d6_amd64 | — | ||
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:4b4c98be96a932d508fad769eff61bff2a44e13baa60b22b6c543f4a11eb71c2_s390x | — | ||
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:6c87453ffe89e8be752ee40c8a9ccf6894c83be703f13901b1e8b64a4c0e549a_ppc64le | — | ||
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:c18a1c50a4fc7081c6564d1c4ed4904212b7939a4f1f46afef0a36dc1d76f38e_arm64 | — | ||
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:33367b9fdb3addce3302ad35bc10423505fefe3dd27b8b9013b26d66caac2a6c_arm64 | — | ||
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:72cbdb061cbcd295be5e66a0eabb409af16ade7f0aa12b04c2d7327e9e1a24ba_ppc64le | — | ||
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:d0379f9da8cbb5514394a4550ff0d79f90fa691fcced5806296479c7b63353da_amd64 | — | ||
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:e99d1d877bd7335736cbaeb4db5b9904369a1d07f6df332c38ad79ff1256b67b_s390x | — | ||
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:06285611aef2528fc92c5cebb66ff4c74fe44d457f43cf9ec2f4a98c3c68d25e_amd64 | — | ||
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:25e0f4153eb5bc6fbc6b389d5adc81bfde103070ef58317c3c25ce4144a628d3_arm64 | — | ||
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:acd3c0369c18cbfa63a5972ed1721f93f1fcb456963ff855dea2c295baf1cdb8_ppc64le | — | ||
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:d086075db52f4476aa64d7e2680baa01e99da246275fa9cae0ba4a74de63c7f3_s390x | — | ||
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:07d89c1b524d1451051feb865bc716da2197add90fa0c58c4cf4a82975ec846c_s390x | — | ||
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:6582e647d7dd604e25977ec1579969aa1fcb29ead1a0ea65833531d633bbdd2b_amd64 | — | ||
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:75e3aec03dffbd0f40f88a08ff5e0319f4515d73f0bcfae28b5fa526b494afc4_ppc64le | — | ||
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:f0079e8ae53d84223aea2d3186e7bc6b525b7c03d307cde50cfb9f1bbc18712b_arm64 | — |
A flaw was found in golang.org/x/crypto/ssh. Source-address validation can be skipped when an SSH server configuration uses an authentication callback type other than public key, allowing authorization bypass in misconfigured servers. This is a follow-on to incomplete coverage from the CVE-2024-45337 fix.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:11f005939e15d63057bf2f0a988b6baebc275d3e752e9f7696d0f7f5266fd5d6_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:4b4c98be96a932d508fad769eff61bff2a44e13baa60b22b6c543f4a11eb71c2_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:6c87453ffe89e8be752ee40c8a9ccf6894c83be703f13901b1e8b64a4c0e549a_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:c18a1c50a4fc7081c6564d1c4ed4904212b7939a4f1f46afef0a36dc1d76f38e_arm64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:1384e5ba2b7d23119a49d8713826f4c65668bca310589ac7abd0c0d41c7e4c90_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:7f58528b1da9146aa55917324fdf2b375794742b34e5d10ff57f713af60746cd_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:844c3b1499b00aeadfc561642e53792ad80f535efd53b35793ba08b0f26c6d61_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:e1019c30e1d84e66d775d0d6fc7d051803dcbe44823fb2a1914807be39c79dae_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:8c9a7ebf430b9f4ca200c6c70b049e8456cf88fd8bf0871b42d65e8dc786d451_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:926d965e6fd12ec0d758270fb4c90bbdc1a05e60cc4c895cf9b671a296c9d867_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:e8e807451e3c5d8d0a8575e1280d7125a4ece51547a7b4a5cd247837662cedad_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:f2a24aa01cbe0d926d4aefe3b12eba21eb5ec7f87276e572a6814c727228624c_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:45cc0d783d1e7874ac73dfbdfe7e03c63b227ab3c4f1e15a0a2f5c97956a76d9_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:6f3eb26734e89375c3e1fb7ac366e12dc0d41bac8f07de9210c7e9845a01eec1_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:768c45fa9f35d98dfe5cfe1ea12f552402bf68ac6e1f828b14310ef59ce57c40_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:b5f1bf30495f6be97c696cf7f90768629cee96f8d106f745bf95fdefddc99592_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:137ffbb95d463d95da6c350600d968f3cd0e9873bf2e7c6edf952ae3229e9e2b_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:1cccdfd7e90877c27c6d8caea4f1e8ad89bb97c83d97ddf570d4f4ee116f1986_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:71657b82894cfd9e350746f48965e148868a675b9a20dcb7f94a6bc7a5b16ea5_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:881e405e32821ef10cf992c7a633281c1dc45df721fe909048df1689472000ce_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:6c85b42ede0f4745ed558bcb03d033c49f56cef17a70c12e5308066124cac6e3_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:091529a93e258a612fd4a98222e6a370ee10b4e97efa791b50f79a2670163d01_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0e8958a22f6771ddfe32b34027c69dbbef65d980c7e465a79d4202d2627994ad_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:5a8b0203ff083113e8b30a123ab30c4bad571f57fb59c1e7e01807b92552504e_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:89bf6a32a0935cacadbc6d23566dce6ca741e404d58c11050638c7b8e868028b_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:077cc953354ea2edd85569a622f97c15d44163d68234e7a9fdee899d25c19cdb_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:66285f866090e1bfbedacd592e9d5ea9f2a30b88aa03bc86bc790d6b98a929a4_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:8c80054171d5063457df4bd074674b1824783a101dacb6137da227080aff957c_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:b0f15904251c6665961eef9c944d00f17499f7219351fe213fe7935f62fbf7ac_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:62476ac2fb0096caa9b181f523cc3573ccffe70be1433f08d1d0255b6d3a0640_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:6f632bc9829880a44e2e94084284b52683b4a01dc3315043b0aa32eb344b16cb_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:aa3d1cf7853bfe8307efb01f714585f378d1d3d4ed5de7c8808a72e4aeecd4f3_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:bf1d4b2b1ef03e65be59699ce3233a75a34e1777abc182984c7a8efa698a936e_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:141f17d12c748c7ab9e94cfd9db7e2492d3063e7478249d6430ac0d8fcfb8875_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:5909184fe3d37eb45ba3bf55d7b708d818f2a5abfc2949c4a7081a5cd30cea4f_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:6217f0bb4937fa0e0fc0a5c86456fdc1992e169dfedc3d11d5165cef575d4d53_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:d55a55a36a23e7deb83718bd5dcc19b083b84d441add72ea7f4e28935e4717e3_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:0f8e1171f278395f3c72e4d9d3c0492bed15b678963fb2b6182bd65343b85a2e_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:823bb59b1c7d01557c29f9f1e4a4ee39814c38d826b06c3c9de4b8d179078419_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:93c7e9b321c7e9aa4a412a993a6b20412e24772832cc0dd23bbb17aa25f15487_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:9e50b45f81fedab27e896f04b80bacaa01d8370ff5679147f95ad79b61972d83_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:8f145d4e336bd77fcc94f0845f9ebf94563ffd96d56794d96a665c11241df152_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:981917806c7faf31156241cc85577cf375ee566f78adaeadc096d0ba8482b835_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:af3ed91687500d64e2348cca4877c43f73211b8fbd132e7767c3521763185348_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:c05020e5ee5bddc62e38493cd16b6e4ffde7c2248a00d710f32b90a6ee12ceeb_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2af86b409540513f6da1afa83110a5cafe8778d2ec16332faa31c964bd5f43f7_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2f3bec76a833a72c7dfa93ed55e55e80e2621c154e5a2f156deaf78d7c6b97b4_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:81a2385be30079500f13f97a18607aa685abd61265bf8fa78bc6ce126341be50_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:fdc8f64f3b82b200a5e31b01b8612069f1aa897014085c1de755394552a1a70a_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:856b9088dbda4e7374daf232602f4bb90b05ad1be1df46d6e363a002f549f4de_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:a107ae2f7b140f2fb2243f33c378228c2f164cfd2d23f57e63f6c424fd400929_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:e21de356b7d879800a96f6c5aeee6bc59a3ed9c58d36503f7089625ce887bb25_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:fcaf6d60d682cf51866948ea3b4846c2993e2801adb69dc745ffa832318f515c_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:33367b9fdb3addce3302ad35bc10423505fefe3dd27b8b9013b26d66caac2a6c_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:72cbdb061cbcd295be5e66a0eabb409af16ade7f0aa12b04c2d7327e9e1a24ba_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:d0379f9da8cbb5514394a4550ff0d79f90fa691fcced5806296479c7b63353da_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:e99d1d877bd7335736cbaeb4db5b9904369a1d07f6df332c38ad79ff1256b67b_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:06285611aef2528fc92c5cebb66ff4c74fe44d457f43cf9ec2f4a98c3c68d25e_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:25e0f4153eb5bc6fbc6b389d5adc81bfde103070ef58317c3c25ce4144a628d3_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:acd3c0369c18cbfa63a5972ed1721f93f1fcb456963ff855dea2c295baf1cdb8_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:d086075db52f4476aa64d7e2680baa01e99da246275fa9cae0ba4a74de63c7f3_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:07d89c1b524d1451051feb865bc716da2197add90fa0c58c4cf4a82975ec846c_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:6582e647d7dd604e25977ec1579969aa1fcb29ead1a0ea65833531d633bbdd2b_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:75e3aec03dffbd0f40f88a08ff5e0319f4515d73f0bcfae28b5fa526b494afc4_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:f0079e8ae53d84223aea2d3186e7bc6b525b7c03d307cde50cfb9f1bbc18712b_arm64 | — |
Workaround
|
A flaw was found in netty-codec-http2. A remote attacker could send specially crafted frames that cause a resource leak within the `DelegatingDecompressorFrameListener` class. This resource leak could lead to an Out Of Memory Error (OOME), potentially causing a Denial of Service (DoS) by taking down the entire Java Virtual Machine (JVM).
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:141f17d12c748c7ab9e94cfd9db7e2492d3063e7478249d6430ac0d8fcfb8875_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:5909184fe3d37eb45ba3bf55d7b708d818f2a5abfc2949c4a7081a5cd30cea4f_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:6217f0bb4937fa0e0fc0a5c86456fdc1992e169dfedc3d11d5165cef575d4d53_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:d55a55a36a23e7deb83718bd5dcc19b083b84d441add72ea7f4e28935e4717e3_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:8f145d4e336bd77fcc94f0845f9ebf94563ffd96d56794d96a665c11241df152_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:981917806c7faf31156241cc85577cf375ee566f78adaeadc096d0ba8482b835_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:af3ed91687500d64e2348cca4877c43f73211b8fbd132e7767c3521763185348_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:c05020e5ee5bddc62e38493cd16b6e4ffde7c2248a00d710f32b90a6ee12ceeb_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2af86b409540513f6da1afa83110a5cafe8778d2ec16332faa31c964bd5f43f7_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2f3bec76a833a72c7dfa93ed55e55e80e2621c154e5a2f156deaf78d7c6b97b4_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:81a2385be30079500f13f97a18607aa685abd61265bf8fa78bc6ce126341be50_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:fdc8f64f3b82b200a5e31b01b8612069f1aa897014085c1de755394552a1a70a_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:856b9088dbda4e7374daf232602f4bb90b05ad1be1df46d6e363a002f549f4de_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:a107ae2f7b140f2fb2243f33c378228c2f164cfd2d23f57e63f6c424fd400929_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:e21de356b7d879800a96f6c5aeee6bc59a3ed9c58d36503f7089625ce887bb25_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:fcaf6d60d682cf51866948ea3b4846c2993e2801adb69dc745ffa832318f515c_amd64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:1384e5ba2b7d23119a49d8713826f4c65668bca310589ac7abd0c0d41c7e4c90_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:7f58528b1da9146aa55917324fdf2b375794742b34e5d10ff57f713af60746cd_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:844c3b1499b00aeadfc561642e53792ad80f535efd53b35793ba08b0f26c6d61_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:e1019c30e1d84e66d775d0d6fc7d051803dcbe44823fb2a1914807be39c79dae_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:8c9a7ebf430b9f4ca200c6c70b049e8456cf88fd8bf0871b42d65e8dc786d451_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:926d965e6fd12ec0d758270fb4c90bbdc1a05e60cc4c895cf9b671a296c9d867_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:e8e807451e3c5d8d0a8575e1280d7125a4ece51547a7b4a5cd247837662cedad_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:f2a24aa01cbe0d926d4aefe3b12eba21eb5ec7f87276e572a6814c727228624c_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:45cc0d783d1e7874ac73dfbdfe7e03c63b227ab3c4f1e15a0a2f5c97956a76d9_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:6f3eb26734e89375c3e1fb7ac366e12dc0d41bac8f07de9210c7e9845a01eec1_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:768c45fa9f35d98dfe5cfe1ea12f552402bf68ac6e1f828b14310ef59ce57c40_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:b5f1bf30495f6be97c696cf7f90768629cee96f8d106f745bf95fdefddc99592_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:137ffbb95d463d95da6c350600d968f3cd0e9873bf2e7c6edf952ae3229e9e2b_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:1cccdfd7e90877c27c6d8caea4f1e8ad89bb97c83d97ddf570d4f4ee116f1986_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:71657b82894cfd9e350746f48965e148868a675b9a20dcb7f94a6bc7a5b16ea5_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:881e405e32821ef10cf992c7a633281c1dc45df721fe909048df1689472000ce_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:6c85b42ede0f4745ed558bcb03d033c49f56cef17a70c12e5308066124cac6e3_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:091529a93e258a612fd4a98222e6a370ee10b4e97efa791b50f79a2670163d01_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0e8958a22f6771ddfe32b34027c69dbbef65d980c7e465a79d4202d2627994ad_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:5a8b0203ff083113e8b30a123ab30c4bad571f57fb59c1e7e01807b92552504e_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:89bf6a32a0935cacadbc6d23566dce6ca741e404d58c11050638c7b8e868028b_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:077cc953354ea2edd85569a622f97c15d44163d68234e7a9fdee899d25c19cdb_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:66285f866090e1bfbedacd592e9d5ea9f2a30b88aa03bc86bc790d6b98a929a4_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:8c80054171d5063457df4bd074674b1824783a101dacb6137da227080aff957c_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:b0f15904251c6665961eef9c944d00f17499f7219351fe213fe7935f62fbf7ac_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:62476ac2fb0096caa9b181f523cc3573ccffe70be1433f08d1d0255b6d3a0640_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:6f632bc9829880a44e2e94084284b52683b4a01dc3315043b0aa32eb344b16cb_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:aa3d1cf7853bfe8307efb01f714585f378d1d3d4ed5de7c8808a72e4aeecd4f3_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:bf1d4b2b1ef03e65be59699ce3233a75a34e1777abc182984c7a8efa698a936e_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:0f8e1171f278395f3c72e4d9d3c0492bed15b678963fb2b6182bd65343b85a2e_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:823bb59b1c7d01557c29f9f1e4a4ee39814c38d826b06c3c9de4b8d179078419_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:93c7e9b321c7e9aa4a412a993a6b20412e24772832cc0dd23bbb17aa25f15487_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:9e50b45f81fedab27e896f04b80bacaa01d8370ff5679147f95ad79b61972d83_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:11f005939e15d63057bf2f0a988b6baebc275d3e752e9f7696d0f7f5266fd5d6_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:4b4c98be96a932d508fad769eff61bff2a44e13baa60b22b6c543f4a11eb71c2_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:6c87453ffe89e8be752ee40c8a9ccf6894c83be703f13901b1e8b64a4c0e549a_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:c18a1c50a4fc7081c6564d1c4ed4904212b7939a4f1f46afef0a36dc1d76f38e_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:33367b9fdb3addce3302ad35bc10423505fefe3dd27b8b9013b26d66caac2a6c_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:72cbdb061cbcd295be5e66a0eabb409af16ade7f0aa12b04c2d7327e9e1a24ba_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:d0379f9da8cbb5514394a4550ff0d79f90fa691fcced5806296479c7b63353da_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:e99d1d877bd7335736cbaeb4db5b9904369a1d07f6df332c38ad79ff1256b67b_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:06285611aef2528fc92c5cebb66ff4c74fe44d457f43cf9ec2f4a98c3c68d25e_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:25e0f4153eb5bc6fbc6b389d5adc81bfde103070ef58317c3c25ce4144a628d3_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:acd3c0369c18cbfa63a5972ed1721f93f1fcb456963ff855dea2c295baf1cdb8_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:d086075db52f4476aa64d7e2680baa01e99da246275fa9cae0ba4a74de63c7f3_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:07d89c1b524d1451051feb865bc716da2197add90fa0c58c4cf4a82975ec846c_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:6582e647d7dd604e25977ec1579969aa1fcb29ead1a0ea65833531d633bbdd2b_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:75e3aec03dffbd0f40f88a08ff5e0319f4515d73f0bcfae28b5fa526b494afc4_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:f0079e8ae53d84223aea2d3186e7bc6b525b7c03d307cde50cfb9f1bbc18712b_arm64 | — |
Workaround
|
A flaw was found in the Netty HAProxy PROXY protocol v2 codec. A remote attacker can exploit this vulnerability by sending a specially crafted HAProxy PROXY protocol v2 header with nested `PP2_TYPE_SSL` type-length-value (TLV) records. This can lead to a memory leak, causing the underlying cumulation buffer to remain permanently pinned and potentially resulting in a Denial of Service (DoS) due to resource exhaustion.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:141f17d12c748c7ab9e94cfd9db7e2492d3063e7478249d6430ac0d8fcfb8875_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:5909184fe3d37eb45ba3bf55d7b708d818f2a5abfc2949c4a7081a5cd30cea4f_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:6217f0bb4937fa0e0fc0a5c86456fdc1992e169dfedc3d11d5165cef575d4d53_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:d55a55a36a23e7deb83718bd5dcc19b083b84d441add72ea7f4e28935e4717e3_ppc64le | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:1384e5ba2b7d23119a49d8713826f4c65668bca310589ac7abd0c0d41c7e4c90_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:7f58528b1da9146aa55917324fdf2b375794742b34e5d10ff57f713af60746cd_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:844c3b1499b00aeadfc561642e53792ad80f535efd53b35793ba08b0f26c6d61_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:e1019c30e1d84e66d775d0d6fc7d051803dcbe44823fb2a1914807be39c79dae_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:8c9a7ebf430b9f4ca200c6c70b049e8456cf88fd8bf0871b42d65e8dc786d451_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:926d965e6fd12ec0d758270fb4c90bbdc1a05e60cc4c895cf9b671a296c9d867_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:e8e807451e3c5d8d0a8575e1280d7125a4ece51547a7b4a5cd247837662cedad_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:f2a24aa01cbe0d926d4aefe3b12eba21eb5ec7f87276e572a6814c727228624c_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:45cc0d783d1e7874ac73dfbdfe7e03c63b227ab3c4f1e15a0a2f5c97956a76d9_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:6f3eb26734e89375c3e1fb7ac366e12dc0d41bac8f07de9210c7e9845a01eec1_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:768c45fa9f35d98dfe5cfe1ea12f552402bf68ac6e1f828b14310ef59ce57c40_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:b5f1bf30495f6be97c696cf7f90768629cee96f8d106f745bf95fdefddc99592_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:137ffbb95d463d95da6c350600d968f3cd0e9873bf2e7c6edf952ae3229e9e2b_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:1cccdfd7e90877c27c6d8caea4f1e8ad89bb97c83d97ddf570d4f4ee116f1986_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:71657b82894cfd9e350746f48965e148868a675b9a20dcb7f94a6bc7a5b16ea5_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:881e405e32821ef10cf992c7a633281c1dc45df721fe909048df1689472000ce_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:6c85b42ede0f4745ed558bcb03d033c49f56cef17a70c12e5308066124cac6e3_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:091529a93e258a612fd4a98222e6a370ee10b4e97efa791b50f79a2670163d01_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0e8958a22f6771ddfe32b34027c69dbbef65d980c7e465a79d4202d2627994ad_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:5a8b0203ff083113e8b30a123ab30c4bad571f57fb59c1e7e01807b92552504e_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:89bf6a32a0935cacadbc6d23566dce6ca741e404d58c11050638c7b8e868028b_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:077cc953354ea2edd85569a622f97c15d44163d68234e7a9fdee899d25c19cdb_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:66285f866090e1bfbedacd592e9d5ea9f2a30b88aa03bc86bc790d6b98a929a4_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:8c80054171d5063457df4bd074674b1824783a101dacb6137da227080aff957c_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:b0f15904251c6665961eef9c944d00f17499f7219351fe213fe7935f62fbf7ac_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:62476ac2fb0096caa9b181f523cc3573ccffe70be1433f08d1d0255b6d3a0640_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:6f632bc9829880a44e2e94084284b52683b4a01dc3315043b0aa32eb344b16cb_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:aa3d1cf7853bfe8307efb01f714585f378d1d3d4ed5de7c8808a72e4aeecd4f3_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:bf1d4b2b1ef03e65be59699ce3233a75a34e1777abc182984c7a8efa698a936e_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:0f8e1171f278395f3c72e4d9d3c0492bed15b678963fb2b6182bd65343b85a2e_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:823bb59b1c7d01557c29f9f1e4a4ee39814c38d826b06c3c9de4b8d179078419_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:93c7e9b321c7e9aa4a412a993a6b20412e24772832cc0dd23bbb17aa25f15487_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:9e50b45f81fedab27e896f04b80bacaa01d8370ff5679147f95ad79b61972d83_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:8f145d4e336bd77fcc94f0845f9ebf94563ffd96d56794d96a665c11241df152_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:981917806c7faf31156241cc85577cf375ee566f78adaeadc096d0ba8482b835_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:af3ed91687500d64e2348cca4877c43f73211b8fbd132e7767c3521763185348_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:c05020e5ee5bddc62e38493cd16b6e4ffde7c2248a00d710f32b90a6ee12ceeb_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2af86b409540513f6da1afa83110a5cafe8778d2ec16332faa31c964bd5f43f7_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2f3bec76a833a72c7dfa93ed55e55e80e2621c154e5a2f156deaf78d7c6b97b4_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:81a2385be30079500f13f97a18607aa685abd61265bf8fa78bc6ce126341be50_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:fdc8f64f3b82b200a5e31b01b8612069f1aa897014085c1de755394552a1a70a_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:856b9088dbda4e7374daf232602f4bb90b05ad1be1df46d6e363a002f549f4de_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:a107ae2f7b140f2fb2243f33c378228c2f164cfd2d23f57e63f6c424fd400929_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:e21de356b7d879800a96f6c5aeee6bc59a3ed9c58d36503f7089625ce887bb25_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:fcaf6d60d682cf51866948ea3b4846c2993e2801adb69dc745ffa832318f515c_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:11f005939e15d63057bf2f0a988b6baebc275d3e752e9f7696d0f7f5266fd5d6_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:4b4c98be96a932d508fad769eff61bff2a44e13baa60b22b6c543f4a11eb71c2_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:6c87453ffe89e8be752ee40c8a9ccf6894c83be703f13901b1e8b64a4c0e549a_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:c18a1c50a4fc7081c6564d1c4ed4904212b7939a4f1f46afef0a36dc1d76f38e_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:33367b9fdb3addce3302ad35bc10423505fefe3dd27b8b9013b26d66caac2a6c_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:72cbdb061cbcd295be5e66a0eabb409af16ade7f0aa12b04c2d7327e9e1a24ba_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:d0379f9da8cbb5514394a4550ff0d79f90fa691fcced5806296479c7b63353da_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:e99d1d877bd7335736cbaeb4db5b9904369a1d07f6df332c38ad79ff1256b67b_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:06285611aef2528fc92c5cebb66ff4c74fe44d457f43cf9ec2f4a98c3c68d25e_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:25e0f4153eb5bc6fbc6b389d5adc81bfde103070ef58317c3c25ce4144a628d3_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:acd3c0369c18cbfa63a5972ed1721f93f1fcb456963ff855dea2c295baf1cdb8_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:d086075db52f4476aa64d7e2680baa01e99da246275fa9cae0ba4a74de63c7f3_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:07d89c1b524d1451051feb865bc716da2197add90fa0c58c4cf4a82975ec846c_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:6582e647d7dd604e25977ec1579969aa1fcb29ead1a0ea65833531d633bbdd2b_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:75e3aec03dffbd0f40f88a08ff5e0319f4515d73f0bcfae28b5fa526b494afc4_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:f0079e8ae53d84223aea2d3186e7bc6b525b7c03d307cde50cfb9f1bbc18712b_arm64 | — |
Workaround
|
A flaw was found in ws, an open source WebSocket client and server. A remote attacker can exploit this memory exhaustion vulnerability by sending a high volume of exceptionally small fragments and data chunks. This action forces the affected component to allocate and hold structural wrappers that consume excessive memory. Consequently, this leads to process termination and a denial of service (DoS) for the remote peer.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:1384e5ba2b7d23119a49d8713826f4c65668bca310589ac7abd0c0d41c7e4c90_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:7f58528b1da9146aa55917324fdf2b375794742b34e5d10ff57f713af60746cd_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:844c3b1499b00aeadfc561642e53792ad80f535efd53b35793ba08b0f26c6d61_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:e1019c30e1d84e66d775d0d6fc7d051803dcbe44823fb2a1914807be39c79dae_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:137ffbb95d463d95da6c350600d968f3cd0e9873bf2e7c6edf952ae3229e9e2b_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:1cccdfd7e90877c27c6d8caea4f1e8ad89bb97c83d97ddf570d4f4ee116f1986_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:71657b82894cfd9e350746f48965e148868a675b9a20dcb7f94a6bc7a5b16ea5_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:881e405e32821ef10cf992c7a633281c1dc45df721fe909048df1689472000ce_ppc64le | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:8c9a7ebf430b9f4ca200c6c70b049e8456cf88fd8bf0871b42d65e8dc786d451_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:926d965e6fd12ec0d758270fb4c90bbdc1a05e60cc4c895cf9b671a296c9d867_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:e8e807451e3c5d8d0a8575e1280d7125a4ece51547a7b4a5cd247837662cedad_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:f2a24aa01cbe0d926d4aefe3b12eba21eb5ec7f87276e572a6814c727228624c_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:45cc0d783d1e7874ac73dfbdfe7e03c63b227ab3c4f1e15a0a2f5c97956a76d9_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:6f3eb26734e89375c3e1fb7ac366e12dc0d41bac8f07de9210c7e9845a01eec1_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:768c45fa9f35d98dfe5cfe1ea12f552402bf68ac6e1f828b14310ef59ce57c40_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:b5f1bf30495f6be97c696cf7f90768629cee96f8d106f745bf95fdefddc99592_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:6c85b42ede0f4745ed558bcb03d033c49f56cef17a70c12e5308066124cac6e3_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:091529a93e258a612fd4a98222e6a370ee10b4e97efa791b50f79a2670163d01_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0e8958a22f6771ddfe32b34027c69dbbef65d980c7e465a79d4202d2627994ad_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:5a8b0203ff083113e8b30a123ab30c4bad571f57fb59c1e7e01807b92552504e_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:89bf6a32a0935cacadbc6d23566dce6ca741e404d58c11050638c7b8e868028b_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:077cc953354ea2edd85569a622f97c15d44163d68234e7a9fdee899d25c19cdb_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:66285f866090e1bfbedacd592e9d5ea9f2a30b88aa03bc86bc790d6b98a929a4_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:8c80054171d5063457df4bd074674b1824783a101dacb6137da227080aff957c_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:b0f15904251c6665961eef9c944d00f17499f7219351fe213fe7935f62fbf7ac_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:62476ac2fb0096caa9b181f523cc3573ccffe70be1433f08d1d0255b6d3a0640_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:6f632bc9829880a44e2e94084284b52683b4a01dc3315043b0aa32eb344b16cb_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:aa3d1cf7853bfe8307efb01f714585f378d1d3d4ed5de7c8808a72e4aeecd4f3_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:bf1d4b2b1ef03e65be59699ce3233a75a34e1777abc182984c7a8efa698a936e_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:141f17d12c748c7ab9e94cfd9db7e2492d3063e7478249d6430ac0d8fcfb8875_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:5909184fe3d37eb45ba3bf55d7b708d818f2a5abfc2949c4a7081a5cd30cea4f_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:6217f0bb4937fa0e0fc0a5c86456fdc1992e169dfedc3d11d5165cef575d4d53_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:d55a55a36a23e7deb83718bd5dcc19b083b84d441add72ea7f4e28935e4717e3_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:0f8e1171f278395f3c72e4d9d3c0492bed15b678963fb2b6182bd65343b85a2e_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:823bb59b1c7d01557c29f9f1e4a4ee39814c38d826b06c3c9de4b8d179078419_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:93c7e9b321c7e9aa4a412a993a6b20412e24772832cc0dd23bbb17aa25f15487_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:9e50b45f81fedab27e896f04b80bacaa01d8370ff5679147f95ad79b61972d83_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:8f145d4e336bd77fcc94f0845f9ebf94563ffd96d56794d96a665c11241df152_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:981917806c7faf31156241cc85577cf375ee566f78adaeadc096d0ba8482b835_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:af3ed91687500d64e2348cca4877c43f73211b8fbd132e7767c3521763185348_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:c05020e5ee5bddc62e38493cd16b6e4ffde7c2248a00d710f32b90a6ee12ceeb_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2af86b409540513f6da1afa83110a5cafe8778d2ec16332faa31c964bd5f43f7_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2f3bec76a833a72c7dfa93ed55e55e80e2621c154e5a2f156deaf78d7c6b97b4_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:81a2385be30079500f13f97a18607aa685abd61265bf8fa78bc6ce126341be50_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:fdc8f64f3b82b200a5e31b01b8612069f1aa897014085c1de755394552a1a70a_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:856b9088dbda4e7374daf232602f4bb90b05ad1be1df46d6e363a002f549f4de_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:a107ae2f7b140f2fb2243f33c378228c2f164cfd2d23f57e63f6c424fd400929_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:e21de356b7d879800a96f6c5aeee6bc59a3ed9c58d36503f7089625ce887bb25_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:fcaf6d60d682cf51866948ea3b4846c2993e2801adb69dc745ffa832318f515c_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:11f005939e15d63057bf2f0a988b6baebc275d3e752e9f7696d0f7f5266fd5d6_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:4b4c98be96a932d508fad769eff61bff2a44e13baa60b22b6c543f4a11eb71c2_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:6c87453ffe89e8be752ee40c8a9ccf6894c83be703f13901b1e8b64a4c0e549a_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:c18a1c50a4fc7081c6564d1c4ed4904212b7939a4f1f46afef0a36dc1d76f38e_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:33367b9fdb3addce3302ad35bc10423505fefe3dd27b8b9013b26d66caac2a6c_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:72cbdb061cbcd295be5e66a0eabb409af16ade7f0aa12b04c2d7327e9e1a24ba_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:d0379f9da8cbb5514394a4550ff0d79f90fa691fcced5806296479c7b63353da_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:e99d1d877bd7335736cbaeb4db5b9904369a1d07f6df332c38ad79ff1256b67b_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:06285611aef2528fc92c5cebb66ff4c74fe44d457f43cf9ec2f4a98c3c68d25e_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:25e0f4153eb5bc6fbc6b389d5adc81bfde103070ef58317c3c25ce4144a628d3_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:acd3c0369c18cbfa63a5972ed1721f93f1fcb456963ff855dea2c295baf1cdb8_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:d086075db52f4476aa64d7e2680baa01e99da246275fa9cae0ba4a74de63c7f3_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:07d89c1b524d1451051feb865bc716da2197add90fa0c58c4cf4a82975ec846c_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:6582e647d7dd604e25977ec1579969aa1fcb29ead1a0ea65833531d633bbdd2b_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:75e3aec03dffbd0f40f88a08ff5e0319f4515d73f0bcfae28b5fa526b494afc4_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:f0079e8ae53d84223aea2d3186e7bc6b525b7c03d307cde50cfb9f1bbc18712b_arm64 | — |
Workaround
|
A flaw was found in Quarkus. A remote attacker could bypass HTTP path-based authorization policies by using specially crafted encoded semicolons, slashes, or backslashes in HTTP requests. This could allow unauthorized access to protected static resources, leading to information disclosure.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:141f17d12c748c7ab9e94cfd9db7e2492d3063e7478249d6430ac0d8fcfb8875_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:5909184fe3d37eb45ba3bf55d7b708d818f2a5abfc2949c4a7081a5cd30cea4f_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:6217f0bb4937fa0e0fc0a5c86456fdc1992e169dfedc3d11d5165cef575d4d53_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:d55a55a36a23e7deb83718bd5dcc19b083b84d441add72ea7f4e28935e4717e3_ppc64le | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:1384e5ba2b7d23119a49d8713826f4c65668bca310589ac7abd0c0d41c7e4c90_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:7f58528b1da9146aa55917324fdf2b375794742b34e5d10ff57f713af60746cd_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:844c3b1499b00aeadfc561642e53792ad80f535efd53b35793ba08b0f26c6d61_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:e1019c30e1d84e66d775d0d6fc7d051803dcbe44823fb2a1914807be39c79dae_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:8c9a7ebf430b9f4ca200c6c70b049e8456cf88fd8bf0871b42d65e8dc786d451_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:926d965e6fd12ec0d758270fb4c90bbdc1a05e60cc4c895cf9b671a296c9d867_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:e8e807451e3c5d8d0a8575e1280d7125a4ece51547a7b4a5cd247837662cedad_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:f2a24aa01cbe0d926d4aefe3b12eba21eb5ec7f87276e572a6814c727228624c_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:45cc0d783d1e7874ac73dfbdfe7e03c63b227ab3c4f1e15a0a2f5c97956a76d9_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:6f3eb26734e89375c3e1fb7ac366e12dc0d41bac8f07de9210c7e9845a01eec1_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:768c45fa9f35d98dfe5cfe1ea12f552402bf68ac6e1f828b14310ef59ce57c40_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:b5f1bf30495f6be97c696cf7f90768629cee96f8d106f745bf95fdefddc99592_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:137ffbb95d463d95da6c350600d968f3cd0e9873bf2e7c6edf952ae3229e9e2b_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:1cccdfd7e90877c27c6d8caea4f1e8ad89bb97c83d97ddf570d4f4ee116f1986_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:71657b82894cfd9e350746f48965e148868a675b9a20dcb7f94a6bc7a5b16ea5_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:881e405e32821ef10cf992c7a633281c1dc45df721fe909048df1689472000ce_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:6c85b42ede0f4745ed558bcb03d033c49f56cef17a70c12e5308066124cac6e3_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:091529a93e258a612fd4a98222e6a370ee10b4e97efa791b50f79a2670163d01_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0e8958a22f6771ddfe32b34027c69dbbef65d980c7e465a79d4202d2627994ad_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:5a8b0203ff083113e8b30a123ab30c4bad571f57fb59c1e7e01807b92552504e_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:89bf6a32a0935cacadbc6d23566dce6ca741e404d58c11050638c7b8e868028b_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:077cc953354ea2edd85569a622f97c15d44163d68234e7a9fdee899d25c19cdb_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:66285f866090e1bfbedacd592e9d5ea9f2a30b88aa03bc86bc790d6b98a929a4_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:8c80054171d5063457df4bd074674b1824783a101dacb6137da227080aff957c_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:b0f15904251c6665961eef9c944d00f17499f7219351fe213fe7935f62fbf7ac_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:62476ac2fb0096caa9b181f523cc3573ccffe70be1433f08d1d0255b6d3a0640_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:6f632bc9829880a44e2e94084284b52683b4a01dc3315043b0aa32eb344b16cb_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:aa3d1cf7853bfe8307efb01f714585f378d1d3d4ed5de7c8808a72e4aeecd4f3_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:bf1d4b2b1ef03e65be59699ce3233a75a34e1777abc182984c7a8efa698a936e_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:0f8e1171f278395f3c72e4d9d3c0492bed15b678963fb2b6182bd65343b85a2e_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:823bb59b1c7d01557c29f9f1e4a4ee39814c38d826b06c3c9de4b8d179078419_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:93c7e9b321c7e9aa4a412a993a6b20412e24772832cc0dd23bbb17aa25f15487_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:9e50b45f81fedab27e896f04b80bacaa01d8370ff5679147f95ad79b61972d83_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:8f145d4e336bd77fcc94f0845f9ebf94563ffd96d56794d96a665c11241df152_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:981917806c7faf31156241cc85577cf375ee566f78adaeadc096d0ba8482b835_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:af3ed91687500d64e2348cca4877c43f73211b8fbd132e7767c3521763185348_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:c05020e5ee5bddc62e38493cd16b6e4ffde7c2248a00d710f32b90a6ee12ceeb_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2af86b409540513f6da1afa83110a5cafe8778d2ec16332faa31c964bd5f43f7_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2f3bec76a833a72c7dfa93ed55e55e80e2621c154e5a2f156deaf78d7c6b97b4_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:81a2385be30079500f13f97a18607aa685abd61265bf8fa78bc6ce126341be50_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:fdc8f64f3b82b200a5e31b01b8612069f1aa897014085c1de755394552a1a70a_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:856b9088dbda4e7374daf232602f4bb90b05ad1be1df46d6e363a002f549f4de_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:a107ae2f7b140f2fb2243f33c378228c2f164cfd2d23f57e63f6c424fd400929_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:e21de356b7d879800a96f6c5aeee6bc59a3ed9c58d36503f7089625ce887bb25_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:fcaf6d60d682cf51866948ea3b4846c2993e2801adb69dc745ffa832318f515c_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:11f005939e15d63057bf2f0a988b6baebc275d3e752e9f7696d0f7f5266fd5d6_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:4b4c98be96a932d508fad769eff61bff2a44e13baa60b22b6c543f4a11eb71c2_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:6c87453ffe89e8be752ee40c8a9ccf6894c83be703f13901b1e8b64a4c0e549a_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:c18a1c50a4fc7081c6564d1c4ed4904212b7939a4f1f46afef0a36dc1d76f38e_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:33367b9fdb3addce3302ad35bc10423505fefe3dd27b8b9013b26d66caac2a6c_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:72cbdb061cbcd295be5e66a0eabb409af16ade7f0aa12b04c2d7327e9e1a24ba_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:d0379f9da8cbb5514394a4550ff0d79f90fa691fcced5806296479c7b63353da_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:e99d1d877bd7335736cbaeb4db5b9904369a1d07f6df332c38ad79ff1256b67b_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:06285611aef2528fc92c5cebb66ff4c74fe44d457f43cf9ec2f4a98c3c68d25e_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:25e0f4153eb5bc6fbc6b389d5adc81bfde103070ef58317c3c25ce4144a628d3_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:acd3c0369c18cbfa63a5972ed1721f93f1fcb456963ff855dea2c295baf1cdb8_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:d086075db52f4476aa64d7e2680baa01e99da246275fa9cae0ba4a74de63c7f3_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:07d89c1b524d1451051feb865bc716da2197add90fa0c58c4cf4a82975ec846c_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:6582e647d7dd604e25977ec1579969aa1fcb29ead1a0ea65833531d633bbdd2b_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:75e3aec03dffbd0f40f88a08ff5e0319f4515d73f0bcfae28b5fa526b494afc4_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:f0079e8ae53d84223aea2d3186e7bc6b525b7c03d307cde50cfb9f1bbc18712b_arm64 | — |
Workaround
|
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Red Hat OpenShift Dev Spaces 3.29.0 has been released.",
"title": "Topic"
},
{
"category": "general",
"text": "Red Hat OpenShift Dev Spaces provides a cloud developer workspace server and a browser-based IDE built for teams and organizations. Dev Spaces runs in OpenShift and is well-suited for container-based development.\nThe 3.29 release is based on Eclipse Che 7.119 and uses the DevWorkspace engine to provide support for workspaces based on devfile v2.1 and v2.2.\nUsers still using the v1 standard should migrate as soon as possible.\nhttps://devfile.io/docs/2.2.0/migrating-to-devfile-v2\nDev Spaces supports OpenShift EUS releases v4.16 and higher. Users are expected to update to supported OpenShift releases in order to continue to get Dev Spaces updates.\nhttps://access.redhat.com/support/policy/updates/openshift#crw",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2026:36820",
"url": "https://access.redhat.com/errata/RHSA-2026:36820"
},
{
"category": "external",
"summary": "https://access.redhat.com/documentation/en-us/red_hat_openshift_dev_spaces/3.29/html/administration_guide/installing-devspaces",
"url": "https://access.redhat.com/documentation/en-us/red_hat_openshift_dev_spaces/3.29/html/administration_guide/installing-devspaces"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-12151",
"url": "https://access.redhat.com/security/cve/CVE-2026-12151"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-12856",
"url": "https://access.redhat.com/security/cve/CVE-2026-12856"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-34986",
"url": "https://access.redhat.com/security/cve/CVE-2026-34986"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-39821",
"url": "https://access.redhat.com/security/cve/CVE-2026-39821"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-39829",
"url": "https://access.redhat.com/security/cve/CVE-2026-39829"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-42338",
"url": "https://access.redhat.com/security/cve/CVE-2026-42338"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-42578",
"url": "https://access.redhat.com/security/cve/CVE-2026-42578"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-42579",
"url": "https://access.redhat.com/security/cve/CVE-2026-42579"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-42581",
"url": "https://access.redhat.com/security/cve/CVE-2026-42581"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-42583",
"url": "https://access.redhat.com/security/cve/CVE-2026-42583"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-42584",
"url": "https://access.redhat.com/security/cve/CVE-2026-42584"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-42587",
"url": "https://access.redhat.com/security/cve/CVE-2026-42587"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-44249",
"url": "https://access.redhat.com/security/cve/CVE-2026-44249"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-44486",
"url": "https://access.redhat.com/security/cve/CVE-2026-44486"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-44487",
"url": "https://access.redhat.com/security/cve/CVE-2026-44487"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-44488",
"url": "https://access.redhat.com/security/cve/CVE-2026-44488"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-44492",
"url": "https://access.redhat.com/security/cve/CVE-2026-44492"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-44494",
"url": "https://access.redhat.com/security/cve/CVE-2026-44494"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-44495",
"url": "https://access.redhat.com/security/cve/CVE-2026-44495"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-44496",
"url": "https://access.redhat.com/security/cve/CVE-2026-44496"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-44774",
"url": "https://access.redhat.com/security/cve/CVE-2026-44774"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-44893",
"url": "https://access.redhat.com/security/cve/CVE-2026-44893"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-45292",
"url": "https://access.redhat.com/security/cve/CVE-2026-45292"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-45736",
"url": "https://access.redhat.com/security/cve/CVE-2026-45736"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-46595",
"url": "https://access.redhat.com/security/cve/CVE-2026-46595"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-48043",
"url": "https://access.redhat.com/security/cve/CVE-2026-48043"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-48059",
"url": "https://access.redhat.com/security/cve/CVE-2026-48059"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-48779",
"url": "https://access.redhat.com/security/cve/CVE-2026-48779"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-50559",
"url": "https://access.redhat.com/security/cve/CVE-2026-50559"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-6734",
"url": "https://access.redhat.com/security/cve/CVE-2026-6734"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-9697",
"url": "https://access.redhat.com/security/cve/CVE-2026-9697"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/",
"url": "https://access.redhat.com/security/updates/classification/"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2026/rhsa-2026_36820.json"
}
],
"title": "Red Hat Security Advisory: Red Hat OpenShift Dev Spaces 3.29.0 Release.",
"tracking": {
"current_release_date": "2026-07-13T04:01:45+00:00",
"generator": {
"date": "2026-07-13T04:01:45+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "5.3.2"
}
},
"id": "RHSA-2026:36820",
"initial_release_date": "2026-07-08T17:12:17+00:00",
"revision_history": [
{
"date": "2026-07-08T17:12:17+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2026-07-08T17:12:20+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2026-07-13T04:01:45+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat OpenShift Dev Spaces 3.29",
"product": {
"name": "Red Hat OpenShift Dev Spaces 3.29",
"product_id": "Red Hat OpenShift Dev Spaces 3.29",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:openshift_devspaces:3.29::el9"
}
}
}
],
"category": "product_family",
"name": "Red Hat OpenShift Dev Spaces"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/devspaces/code-rhel9@sha256:7f58528b1da9146aa55917324fdf2b375794742b34e5d10ff57f713af60746cd_amd64",
"product": {
"name": "registry.redhat.io/devspaces/code-rhel9@sha256:7f58528b1da9146aa55917324fdf2b375794742b34e5d10ff57f713af60746cd_amd64",
"product_id": "registry.redhat.io/devspaces/code-rhel9@sha256:7f58528b1da9146aa55917324fdf2b375794742b34e5d10ff57f713af60746cd_amd64",
"product_identification_helper": {
"purl": "pkg:oci/code-rhel9@sha256%3A7f58528b1da9146aa55917324fdf2b375794742b34e5d10ff57f713af60746cd?arch=amd64\u0026repository_url=registry.redhat.io/devspaces/code-rhel9\u0026tag=1782498475"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/devspaces/code-sshd-rhel9@sha256:8c9a7ebf430b9f4ca200c6c70b049e8456cf88fd8bf0871b42d65e8dc786d451_amd64",
"product": {
"name": "registry.redhat.io/devspaces/code-sshd-rhel9@sha256:8c9a7ebf430b9f4ca200c6c70b049e8456cf88fd8bf0871b42d65e8dc786d451_amd64",
"product_id": "registry.redhat.io/devspaces/code-sshd-rhel9@sha256:8c9a7ebf430b9f4ca200c6c70b049e8456cf88fd8bf0871b42d65e8dc786d451_amd64",
"product_identification_helper": {
"purl": "pkg:oci/code-sshd-rhel9@sha256%3A8c9a7ebf430b9f4ca200c6c70b049e8456cf88fd8bf0871b42d65e8dc786d451?arch=amd64\u0026repository_url=registry.redhat.io/devspaces/code-sshd-rhel9\u0026tag=1782497670"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/devspaces/configbump-rhel9@sha256:b5f1bf30495f6be97c696cf7f90768629cee96f8d106f745bf95fdefddc99592_amd64",
"product": {
"name": "registry.redhat.io/devspaces/configbump-rhel9@sha256:b5f1bf30495f6be97c696cf7f90768629cee96f8d106f745bf95fdefddc99592_amd64",
"product_id": "registry.redhat.io/devspaces/configbump-rhel9@sha256:b5f1bf30495f6be97c696cf7f90768629cee96f8d106f745bf95fdefddc99592_amd64",
"product_identification_helper": {
"purl": "pkg:oci/configbump-rhel9@sha256%3Ab5f1bf30495f6be97c696cf7f90768629cee96f8d106f745bf95fdefddc99592?arch=amd64\u0026repository_url=registry.redhat.io/devspaces/configbump-rhel9\u0026tag=1782403514"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/devspaces/dashboard-rhel9@sha256:137ffbb95d463d95da6c350600d968f3cd0e9873bf2e7c6edf952ae3229e9e2b_amd64",
"product": {
"name": "registry.redhat.io/devspaces/dashboard-rhel9@sha256:137ffbb95d463d95da6c350600d968f3cd0e9873bf2e7c6edf952ae3229e9e2b_amd64",
"product_id": "registry.redhat.io/devspaces/dashboard-rhel9@sha256:137ffbb95d463d95da6c350600d968f3cd0e9873bf2e7c6edf952ae3229e9e2b_amd64",
"product_identification_helper": {
"purl": "pkg:oci/dashboard-rhel9@sha256%3A137ffbb95d463d95da6c350600d968f3cd0e9873bf2e7c6edf952ae3229e9e2b?arch=amd64\u0026repository_url=registry.redhat.io/devspaces/dashboard-rhel9\u0026tag=1782498792"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/devspaces/imagepuller-rhel9@sha256:077cc953354ea2edd85569a622f97c15d44163d68234e7a9fdee899d25c19cdb_amd64",
"product": {
"name": "registry.redhat.io/devspaces/imagepuller-rhel9@sha256:077cc953354ea2edd85569a622f97c15d44163d68234e7a9fdee899d25c19cdb_amd64",
"product_id": "registry.redhat.io/devspaces/imagepuller-rhel9@sha256:077cc953354ea2edd85569a622f97c15d44163d68234e7a9fdee899d25c19cdb_amd64",
"product_identification_helper": {
"purl": "pkg:oci/imagepuller-rhel9@sha256%3A077cc953354ea2edd85569a622f97c15d44163d68234e7a9fdee899d25c19cdb?arch=amd64\u0026repository_url=registry.redhat.io/devspaces/imagepuller-rhel9\u0026tag=1782403262"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:6f632bc9829880a44e2e94084284b52683b4a01dc3315043b0aa32eb344b16cb_amd64",
"product": {
"name": "registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:6f632bc9829880a44e2e94084284b52683b4a01dc3315043b0aa32eb344b16cb_amd64",
"product_id": "registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:6f632bc9829880a44e2e94084284b52683b4a01dc3315043b0aa32eb344b16cb_amd64",
"product_identification_helper": {
"purl": "pkg:oci/jetbrains-ide-rhel9@sha256%3A6f632bc9829880a44e2e94084284b52683b4a01dc3315043b0aa32eb344b16cb?arch=amd64\u0026repository_url=registry.redhat.io/devspaces/jetbrains-ide-rhel9\u0026tag=1783093088"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:5909184fe3d37eb45ba3bf55d7b708d818f2a5abfc2949c4a7081a5cd30cea4f_amd64",
"product": {
"name": "registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:5909184fe3d37eb45ba3bf55d7b708d818f2a5abfc2949c4a7081a5cd30cea4f_amd64",
"product_id": "registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:5909184fe3d37eb45ba3bf55d7b708d818f2a5abfc2949c4a7081a5cd30cea4f_amd64",
"product_identification_helper": {
"purl": "pkg:oci/multicluster-redirector-rhel9@sha256%3A5909184fe3d37eb45ba3bf55d7b708d818f2a5abfc2949c4a7081a5cd30cea4f?arch=amd64\u0026repository_url=registry.redhat.io/devspaces/multicluster-redirector-rhel9\u0026tag=1782989027"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:9e50b45f81fedab27e896f04b80bacaa01d8370ff5679147f95ad79b61972d83_amd64",
"product": {
"name": "registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:9e50b45f81fedab27e896f04b80bacaa01d8370ff5679147f95ad79b61972d83_amd64",
"product_id": "registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:9e50b45f81fedab27e896f04b80bacaa01d8370ff5679147f95ad79b61972d83_amd64",
"product_identification_helper": {
"purl": "pkg:oci/oauth2-proxy-rhel9@sha256%3A9e50b45f81fedab27e896f04b80bacaa01d8370ff5679147f95ad79b61972d83?arch=amd64\u0026repository_url=registry.redhat.io/devspaces/oauth2-proxy-rhel9\u0026tag=1782487406"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/devspaces/openvsx-rhel9@sha256:c05020e5ee5bddc62e38493cd16b6e4ffde7c2248a00d710f32b90a6ee12ceeb_amd64",
"product": {
"name": "registry.redhat.io/devspaces/openvsx-rhel9@sha256:c05020e5ee5bddc62e38493cd16b6e4ffde7c2248a00d710f32b90a6ee12ceeb_amd64",
"product_id": "registry.redhat.io/devspaces/openvsx-rhel9@sha256:c05020e5ee5bddc62e38493cd16b6e4ffde7c2248a00d710f32b90a6ee12ceeb_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openvsx-rhel9@sha256%3Ac05020e5ee5bddc62e38493cd16b6e4ffde7c2248a00d710f32b90a6ee12ceeb?arch=amd64\u0026repository_url=registry.redhat.io/devspaces/openvsx-rhel9\u0026tag=1783007534"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:091529a93e258a612fd4a98222e6a370ee10b4e97efa791b50f79a2670163d01_amd64",
"product": {
"name": "registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:091529a93e258a612fd4a98222e6a370ee10b4e97efa791b50f79a2670163d01_amd64",
"product_id": "registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:091529a93e258a612fd4a98222e6a370ee10b4e97efa791b50f79a2670163d01_amd64",
"product_identification_helper": {
"purl": "pkg:oci/devspaces-rhel9-operator@sha256%3A091529a93e258a612fd4a98222e6a370ee10b4e97efa791b50f79a2670163d01?arch=amd64\u0026repository_url=registry.redhat.io/devspaces/devspaces-rhel9-operator\u0026tag=1782403611"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:6c85b42ede0f4745ed558bcb03d033c49f56cef17a70c12e5308066124cac6e3_amd64",
"product": {
"name": "registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:6c85b42ede0f4745ed558bcb03d033c49f56cef17a70c12e5308066124cac6e3_amd64",
"product_id": "registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:6c85b42ede0f4745ed558bcb03d033c49f56cef17a70c12e5308066124cac6e3_amd64",
"product_identification_helper": {
"purl": "pkg:oci/devspaces-operator-bundle@sha256%3A6c85b42ede0f4745ed558bcb03d033c49f56cef17a70c12e5308066124cac6e3?arch=amd64\u0026repository_url=registry.redhat.io/devspaces/devspaces-operator-bundle\u0026tag=1783094587"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:fdc8f64f3b82b200a5e31b01b8612069f1aa897014085c1de755394552a1a70a_amd64",
"product": {
"name": "registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:fdc8f64f3b82b200a5e31b01b8612069f1aa897014085c1de755394552a1a70a_amd64",
"product_id": "registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:fdc8f64f3b82b200a5e31b01b8612069f1aa897014085c1de755394552a1a70a_amd64",
"product_identification_helper": {
"purl": "pkg:oci/pluginregistry-rhel9@sha256%3Afdc8f64f3b82b200a5e31b01b8612069f1aa897014085c1de755394552a1a70a?arch=amd64\u0026repository_url=registry.redhat.io/devspaces/pluginregistry-rhel9\u0026tag=1782989367"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/devspaces/server-rhel9@sha256:fcaf6d60d682cf51866948ea3b4846c2993e2801adb69dc745ffa832318f515c_amd64",
"product": {
"name": "registry.redhat.io/devspaces/server-rhel9@sha256:fcaf6d60d682cf51866948ea3b4846c2993e2801adb69dc745ffa832318f515c_amd64",
"product_id": "registry.redhat.io/devspaces/server-rhel9@sha256:fcaf6d60d682cf51866948ea3b4846c2993e2801adb69dc745ffa832318f515c_amd64",
"product_identification_helper": {
"purl": "pkg:oci/server-rhel9@sha256%3Afcaf6d60d682cf51866948ea3b4846c2993e2801adb69dc745ffa832318f515c?arch=amd64\u0026repository_url=registry.redhat.io/devspaces/server-rhel9\u0026tag=1783033397"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/devspaces/traefik-rhel9@sha256:11f005939e15d63057bf2f0a988b6baebc275d3e752e9f7696d0f7f5266fd5d6_amd64",
"product": {
"name": "registry.redhat.io/devspaces/traefik-rhel9@sha256:11f005939e15d63057bf2f0a988b6baebc275d3e752e9f7696d0f7f5266fd5d6_amd64",
"product_id": "registry.redhat.io/devspaces/traefik-rhel9@sha256:11f005939e15d63057bf2f0a988b6baebc275d3e752e9f7696d0f7f5266fd5d6_amd64",
"product_identification_helper": {
"purl": "pkg:oci/traefik-rhel9@sha256%3A11f005939e15d63057bf2f0a988b6baebc275d3e752e9f7696d0f7f5266fd5d6?arch=amd64\u0026repository_url=registry.redhat.io/devspaces/traefik-rhel9\u0026tag=1782403274"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/devspaces/udi-rhel9@sha256:6582e647d7dd604e25977ec1579969aa1fcb29ead1a0ea65833531d633bbdd2b_amd64",
"product": {
"name": "registry.redhat.io/devspaces/udi-rhel9@sha256:6582e647d7dd604e25977ec1579969aa1fcb29ead1a0ea65833531d633bbdd2b_amd64",
"product_id": "registry.redhat.io/devspaces/udi-rhel9@sha256:6582e647d7dd604e25977ec1579969aa1fcb29ead1a0ea65833531d633bbdd2b_amd64",
"product_identification_helper": {
"purl": "pkg:oci/udi-rhel9@sha256%3A6582e647d7dd604e25977ec1579969aa1fcb29ead1a0ea65833531d633bbdd2b?arch=amd64\u0026repository_url=registry.redhat.io/devspaces/udi-rhel9\u0026tag=1782991491"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/devspaces/udi-base-rhel10@sha256:d0379f9da8cbb5514394a4550ff0d79f90fa691fcced5806296479c7b63353da_amd64",
"product": {
"name": "registry.redhat.io/devspaces/udi-base-rhel10@sha256:d0379f9da8cbb5514394a4550ff0d79f90fa691fcced5806296479c7b63353da_amd64",
"product_id": "registry.redhat.io/devspaces/udi-base-rhel10@sha256:d0379f9da8cbb5514394a4550ff0d79f90fa691fcced5806296479c7b63353da_amd64",
"product_identification_helper": {
"purl": "pkg:oci/udi-base-rhel10@sha256%3Ad0379f9da8cbb5514394a4550ff0d79f90fa691fcced5806296479c7b63353da?arch=amd64\u0026repository_url=registry.redhat.io/devspaces/udi-base-rhel10\u0026tag=1782987430"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/devspaces/udi-base-rhel9@sha256:06285611aef2528fc92c5cebb66ff4c74fe44d457f43cf9ec2f4a98c3c68d25e_amd64",
"product": {
"name": "registry.redhat.io/devspaces/udi-base-rhel9@sha256:06285611aef2528fc92c5cebb66ff4c74fe44d457f43cf9ec2f4a98c3c68d25e_amd64",
"product_id": "registry.redhat.io/devspaces/udi-base-rhel9@sha256:06285611aef2528fc92c5cebb66ff4c74fe44d457f43cf9ec2f4a98c3c68d25e_amd64",
"product_identification_helper": {
"purl": "pkg:oci/udi-base-rhel9@sha256%3A06285611aef2528fc92c5cebb66ff4c74fe44d457f43cf9ec2f4a98c3c68d25e?arch=amd64\u0026repository_url=registry.redhat.io/devspaces/udi-base-rhel9\u0026tag=1782987705"
}
}
}
],
"category": "architecture",
"name": "amd64"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/devspaces/code-rhel9@sha256:844c3b1499b00aeadfc561642e53792ad80f535efd53b35793ba08b0f26c6d61_s390x",
"product": {
"name": "registry.redhat.io/devspaces/code-rhel9@sha256:844c3b1499b00aeadfc561642e53792ad80f535efd53b35793ba08b0f26c6d61_s390x",
"product_id": "registry.redhat.io/devspaces/code-rhel9@sha256:844c3b1499b00aeadfc561642e53792ad80f535efd53b35793ba08b0f26c6d61_s390x",
"product_identification_helper": {
"purl": "pkg:oci/code-rhel9@sha256%3A844c3b1499b00aeadfc561642e53792ad80f535efd53b35793ba08b0f26c6d61?arch=s390x\u0026repository_url=registry.redhat.io/devspaces/code-rhel9\u0026tag=1782498475"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/devspaces/code-sshd-rhel9@sha256:e8e807451e3c5d8d0a8575e1280d7125a4ece51547a7b4a5cd247837662cedad_s390x",
"product": {
"name": "registry.redhat.io/devspaces/code-sshd-rhel9@sha256:e8e807451e3c5d8d0a8575e1280d7125a4ece51547a7b4a5cd247837662cedad_s390x",
"product_id": "registry.redhat.io/devspaces/code-sshd-rhel9@sha256:e8e807451e3c5d8d0a8575e1280d7125a4ece51547a7b4a5cd247837662cedad_s390x",
"product_identification_helper": {
"purl": "pkg:oci/code-sshd-rhel9@sha256%3Ae8e807451e3c5d8d0a8575e1280d7125a4ece51547a7b4a5cd247837662cedad?arch=s390x\u0026repository_url=registry.redhat.io/devspaces/code-sshd-rhel9\u0026tag=1782497670"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/devspaces/configbump-rhel9@sha256:45cc0d783d1e7874ac73dfbdfe7e03c63b227ab3c4f1e15a0a2f5c97956a76d9_s390x",
"product": {
"name": "registry.redhat.io/devspaces/configbump-rhel9@sha256:45cc0d783d1e7874ac73dfbdfe7e03c63b227ab3c4f1e15a0a2f5c97956a76d9_s390x",
"product_id": "registry.redhat.io/devspaces/configbump-rhel9@sha256:45cc0d783d1e7874ac73dfbdfe7e03c63b227ab3c4f1e15a0a2f5c97956a76d9_s390x",
"product_identification_helper": {
"purl": "pkg:oci/configbump-rhel9@sha256%3A45cc0d783d1e7874ac73dfbdfe7e03c63b227ab3c4f1e15a0a2f5c97956a76d9?arch=s390x\u0026repository_url=registry.redhat.io/devspaces/configbump-rhel9\u0026tag=1782403514"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/devspaces/dashboard-rhel9@sha256:71657b82894cfd9e350746f48965e148868a675b9a20dcb7f94a6bc7a5b16ea5_s390x",
"product": {
"name": "registry.redhat.io/devspaces/dashboard-rhel9@sha256:71657b82894cfd9e350746f48965e148868a675b9a20dcb7f94a6bc7a5b16ea5_s390x",
"product_id": "registry.redhat.io/devspaces/dashboard-rhel9@sha256:71657b82894cfd9e350746f48965e148868a675b9a20dcb7f94a6bc7a5b16ea5_s390x",
"product_identification_helper": {
"purl": "pkg:oci/dashboard-rhel9@sha256%3A71657b82894cfd9e350746f48965e148868a675b9a20dcb7f94a6bc7a5b16ea5?arch=s390x\u0026repository_url=registry.redhat.io/devspaces/dashboard-rhel9\u0026tag=1782498792"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/devspaces/imagepuller-rhel9@sha256:8c80054171d5063457df4bd074674b1824783a101dacb6137da227080aff957c_s390x",
"product": {
"name": "registry.redhat.io/devspaces/imagepuller-rhel9@sha256:8c80054171d5063457df4bd074674b1824783a101dacb6137da227080aff957c_s390x",
"product_id": "registry.redhat.io/devspaces/imagepuller-rhel9@sha256:8c80054171d5063457df4bd074674b1824783a101dacb6137da227080aff957c_s390x",
"product_identification_helper": {
"purl": "pkg:oci/imagepuller-rhel9@sha256%3A8c80054171d5063457df4bd074674b1824783a101dacb6137da227080aff957c?arch=s390x\u0026repository_url=registry.redhat.io/devspaces/imagepuller-rhel9\u0026tag=1782403262"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:aa3d1cf7853bfe8307efb01f714585f378d1d3d4ed5de7c8808a72e4aeecd4f3_s390x",
"product": {
"name": "registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:aa3d1cf7853bfe8307efb01f714585f378d1d3d4ed5de7c8808a72e4aeecd4f3_s390x",
"product_id": "registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:aa3d1cf7853bfe8307efb01f714585f378d1d3d4ed5de7c8808a72e4aeecd4f3_s390x",
"product_identification_helper": {
"purl": "pkg:oci/jetbrains-ide-rhel9@sha256%3Aaa3d1cf7853bfe8307efb01f714585f378d1d3d4ed5de7c8808a72e4aeecd4f3?arch=s390x\u0026repository_url=registry.redhat.io/devspaces/jetbrains-ide-rhel9\u0026tag=1783093088"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:141f17d12c748c7ab9e94cfd9db7e2492d3063e7478249d6430ac0d8fcfb8875_s390x",
"product": {
"name": "registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:141f17d12c748c7ab9e94cfd9db7e2492d3063e7478249d6430ac0d8fcfb8875_s390x",
"product_id": "registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:141f17d12c748c7ab9e94cfd9db7e2492d3063e7478249d6430ac0d8fcfb8875_s390x",
"product_identification_helper": {
"purl": "pkg:oci/multicluster-redirector-rhel9@sha256%3A141f17d12c748c7ab9e94cfd9db7e2492d3063e7478249d6430ac0d8fcfb8875?arch=s390x\u0026repository_url=registry.redhat.io/devspaces/multicluster-redirector-rhel9\u0026tag=1782989027"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:823bb59b1c7d01557c29f9f1e4a4ee39814c38d826b06c3c9de4b8d179078419_s390x",
"product": {
"name": "registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:823bb59b1c7d01557c29f9f1e4a4ee39814c38d826b06c3c9de4b8d179078419_s390x",
"product_id": "registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:823bb59b1c7d01557c29f9f1e4a4ee39814c38d826b06c3c9de4b8d179078419_s390x",
"product_identification_helper": {
"purl": "pkg:oci/oauth2-proxy-rhel9@sha256%3A823bb59b1c7d01557c29f9f1e4a4ee39814c38d826b06c3c9de4b8d179078419?arch=s390x\u0026repository_url=registry.redhat.io/devspaces/oauth2-proxy-rhel9\u0026tag=1782487406"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/devspaces/openvsx-rhel9@sha256:8f145d4e336bd77fcc94f0845f9ebf94563ffd96d56794d96a665c11241df152_s390x",
"product": {
"name": "registry.redhat.io/devspaces/openvsx-rhel9@sha256:8f145d4e336bd77fcc94f0845f9ebf94563ffd96d56794d96a665c11241df152_s390x",
"product_id": "registry.redhat.io/devspaces/openvsx-rhel9@sha256:8f145d4e336bd77fcc94f0845f9ebf94563ffd96d56794d96a665c11241df152_s390x",
"product_identification_helper": {
"purl": "pkg:oci/openvsx-rhel9@sha256%3A8f145d4e336bd77fcc94f0845f9ebf94563ffd96d56794d96a665c11241df152?arch=s390x\u0026repository_url=registry.redhat.io/devspaces/openvsx-rhel9\u0026tag=1783007534"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:5a8b0203ff083113e8b30a123ab30c4bad571f57fb59c1e7e01807b92552504e_s390x",
"product": {
"name": "registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:5a8b0203ff083113e8b30a123ab30c4bad571f57fb59c1e7e01807b92552504e_s390x",
"product_id": "registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:5a8b0203ff083113e8b30a123ab30c4bad571f57fb59c1e7e01807b92552504e_s390x",
"product_identification_helper": {
"purl": "pkg:oci/devspaces-rhel9-operator@sha256%3A5a8b0203ff083113e8b30a123ab30c4bad571f57fb59c1e7e01807b92552504e?arch=s390x\u0026repository_url=registry.redhat.io/devspaces/devspaces-rhel9-operator\u0026tag=1782403611"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2af86b409540513f6da1afa83110a5cafe8778d2ec16332faa31c964bd5f43f7_s390x",
"product": {
"name": "registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2af86b409540513f6da1afa83110a5cafe8778d2ec16332faa31c964bd5f43f7_s390x",
"product_id": "registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2af86b409540513f6da1afa83110a5cafe8778d2ec16332faa31c964bd5f43f7_s390x",
"product_identification_helper": {
"purl": "pkg:oci/pluginregistry-rhel9@sha256%3A2af86b409540513f6da1afa83110a5cafe8778d2ec16332faa31c964bd5f43f7?arch=s390x\u0026repository_url=registry.redhat.io/devspaces/pluginregistry-rhel9\u0026tag=1782989367"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/devspaces/server-rhel9@sha256:a107ae2f7b140f2fb2243f33c378228c2f164cfd2d23f57e63f6c424fd400929_s390x",
"product": {
"name": "registry.redhat.io/devspaces/server-rhel9@sha256:a107ae2f7b140f2fb2243f33c378228c2f164cfd2d23f57e63f6c424fd400929_s390x",
"product_id": "registry.redhat.io/devspaces/server-rhel9@sha256:a107ae2f7b140f2fb2243f33c378228c2f164cfd2d23f57e63f6c424fd400929_s390x",
"product_identification_helper": {
"purl": "pkg:oci/server-rhel9@sha256%3Aa107ae2f7b140f2fb2243f33c378228c2f164cfd2d23f57e63f6c424fd400929?arch=s390x\u0026repository_url=registry.redhat.io/devspaces/server-rhel9\u0026tag=1783033397"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/devspaces/traefik-rhel9@sha256:4b4c98be96a932d508fad769eff61bff2a44e13baa60b22b6c543f4a11eb71c2_s390x",
"product": {
"name": "registry.redhat.io/devspaces/traefik-rhel9@sha256:4b4c98be96a932d508fad769eff61bff2a44e13baa60b22b6c543f4a11eb71c2_s390x",
"product_id": "registry.redhat.io/devspaces/traefik-rhel9@sha256:4b4c98be96a932d508fad769eff61bff2a44e13baa60b22b6c543f4a11eb71c2_s390x",
"product_identification_helper": {
"purl": "pkg:oci/traefik-rhel9@sha256%3A4b4c98be96a932d508fad769eff61bff2a44e13baa60b22b6c543f4a11eb71c2?arch=s390x\u0026repository_url=registry.redhat.io/devspaces/traefik-rhel9\u0026tag=1782403274"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/devspaces/udi-rhel9@sha256:07d89c1b524d1451051feb865bc716da2197add90fa0c58c4cf4a82975ec846c_s390x",
"product": {
"name": "registry.redhat.io/devspaces/udi-rhel9@sha256:07d89c1b524d1451051feb865bc716da2197add90fa0c58c4cf4a82975ec846c_s390x",
"product_id": "registry.redhat.io/devspaces/udi-rhel9@sha256:07d89c1b524d1451051feb865bc716da2197add90fa0c58c4cf4a82975ec846c_s390x",
"product_identification_helper": {
"purl": "pkg:oci/udi-rhel9@sha256%3A07d89c1b524d1451051feb865bc716da2197add90fa0c58c4cf4a82975ec846c?arch=s390x\u0026repository_url=registry.redhat.io/devspaces/udi-rhel9\u0026tag=1782991491"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/devspaces/udi-base-rhel10@sha256:e99d1d877bd7335736cbaeb4db5b9904369a1d07f6df332c38ad79ff1256b67b_s390x",
"product": {
"name": "registry.redhat.io/devspaces/udi-base-rhel10@sha256:e99d1d877bd7335736cbaeb4db5b9904369a1d07f6df332c38ad79ff1256b67b_s390x",
"product_id": "registry.redhat.io/devspaces/udi-base-rhel10@sha256:e99d1d877bd7335736cbaeb4db5b9904369a1d07f6df332c38ad79ff1256b67b_s390x",
"product_identification_helper": {
"purl": "pkg:oci/udi-base-rhel10@sha256%3Ae99d1d877bd7335736cbaeb4db5b9904369a1d07f6df332c38ad79ff1256b67b?arch=s390x\u0026repository_url=registry.redhat.io/devspaces/udi-base-rhel10\u0026tag=1782987430"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/devspaces/udi-base-rhel9@sha256:d086075db52f4476aa64d7e2680baa01e99da246275fa9cae0ba4a74de63c7f3_s390x",
"product": {
"name": "registry.redhat.io/devspaces/udi-base-rhel9@sha256:d086075db52f4476aa64d7e2680baa01e99da246275fa9cae0ba4a74de63c7f3_s390x",
"product_id": "registry.redhat.io/devspaces/udi-base-rhel9@sha256:d086075db52f4476aa64d7e2680baa01e99da246275fa9cae0ba4a74de63c7f3_s390x",
"product_identification_helper": {
"purl": "pkg:oci/udi-base-rhel9@sha256%3Ad086075db52f4476aa64d7e2680baa01e99da246275fa9cae0ba4a74de63c7f3?arch=s390x\u0026repository_url=registry.redhat.io/devspaces/udi-base-rhel9\u0026tag=1782987705"
}
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/devspaces/code-rhel9@sha256:e1019c30e1d84e66d775d0d6fc7d051803dcbe44823fb2a1914807be39c79dae_ppc64le",
"product": {
"name": "registry.redhat.io/devspaces/code-rhel9@sha256:e1019c30e1d84e66d775d0d6fc7d051803dcbe44823fb2a1914807be39c79dae_ppc64le",
"product_id": "registry.redhat.io/devspaces/code-rhel9@sha256:e1019c30e1d84e66d775d0d6fc7d051803dcbe44823fb2a1914807be39c79dae_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/code-rhel9@sha256%3Ae1019c30e1d84e66d775d0d6fc7d051803dcbe44823fb2a1914807be39c79dae?arch=ppc64le\u0026repository_url=registry.redhat.io/devspaces/code-rhel9\u0026tag=1782498475"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/devspaces/code-sshd-rhel9@sha256:926d965e6fd12ec0d758270fb4c90bbdc1a05e60cc4c895cf9b671a296c9d867_ppc64le",
"product": {
"name": "registry.redhat.io/devspaces/code-sshd-rhel9@sha256:926d965e6fd12ec0d758270fb4c90bbdc1a05e60cc4c895cf9b671a296c9d867_ppc64le",
"product_id": "registry.redhat.io/devspaces/code-sshd-rhel9@sha256:926d965e6fd12ec0d758270fb4c90bbdc1a05e60cc4c895cf9b671a296c9d867_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/code-sshd-rhel9@sha256%3A926d965e6fd12ec0d758270fb4c90bbdc1a05e60cc4c895cf9b671a296c9d867?arch=ppc64le\u0026repository_url=registry.redhat.io/devspaces/code-sshd-rhel9\u0026tag=1782497670"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/devspaces/configbump-rhel9@sha256:768c45fa9f35d98dfe5cfe1ea12f552402bf68ac6e1f828b14310ef59ce57c40_ppc64le",
"product": {
"name": "registry.redhat.io/devspaces/configbump-rhel9@sha256:768c45fa9f35d98dfe5cfe1ea12f552402bf68ac6e1f828b14310ef59ce57c40_ppc64le",
"product_id": "registry.redhat.io/devspaces/configbump-rhel9@sha256:768c45fa9f35d98dfe5cfe1ea12f552402bf68ac6e1f828b14310ef59ce57c40_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/configbump-rhel9@sha256%3A768c45fa9f35d98dfe5cfe1ea12f552402bf68ac6e1f828b14310ef59ce57c40?arch=ppc64le\u0026repository_url=registry.redhat.io/devspaces/configbump-rhel9\u0026tag=1782403514"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/devspaces/dashboard-rhel9@sha256:881e405e32821ef10cf992c7a633281c1dc45df721fe909048df1689472000ce_ppc64le",
"product": {
"name": "registry.redhat.io/devspaces/dashboard-rhel9@sha256:881e405e32821ef10cf992c7a633281c1dc45df721fe909048df1689472000ce_ppc64le",
"product_id": "registry.redhat.io/devspaces/dashboard-rhel9@sha256:881e405e32821ef10cf992c7a633281c1dc45df721fe909048df1689472000ce_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/dashboard-rhel9@sha256%3A881e405e32821ef10cf992c7a633281c1dc45df721fe909048df1689472000ce?arch=ppc64le\u0026repository_url=registry.redhat.io/devspaces/dashboard-rhel9\u0026tag=1782498792"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/devspaces/imagepuller-rhel9@sha256:66285f866090e1bfbedacd592e9d5ea9f2a30b88aa03bc86bc790d6b98a929a4_ppc64le",
"product": {
"name": "registry.redhat.io/devspaces/imagepuller-rhel9@sha256:66285f866090e1bfbedacd592e9d5ea9f2a30b88aa03bc86bc790d6b98a929a4_ppc64le",
"product_id": "registry.redhat.io/devspaces/imagepuller-rhel9@sha256:66285f866090e1bfbedacd592e9d5ea9f2a30b88aa03bc86bc790d6b98a929a4_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/imagepuller-rhel9@sha256%3A66285f866090e1bfbedacd592e9d5ea9f2a30b88aa03bc86bc790d6b98a929a4?arch=ppc64le\u0026repository_url=registry.redhat.io/devspaces/imagepuller-rhel9\u0026tag=1782403262"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:bf1d4b2b1ef03e65be59699ce3233a75a34e1777abc182984c7a8efa698a936e_ppc64le",
"product": {
"name": "registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:bf1d4b2b1ef03e65be59699ce3233a75a34e1777abc182984c7a8efa698a936e_ppc64le",
"product_id": "registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:bf1d4b2b1ef03e65be59699ce3233a75a34e1777abc182984c7a8efa698a936e_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/jetbrains-ide-rhel9@sha256%3Abf1d4b2b1ef03e65be59699ce3233a75a34e1777abc182984c7a8efa698a936e?arch=ppc64le\u0026repository_url=registry.redhat.io/devspaces/jetbrains-ide-rhel9\u0026tag=1783093088"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:d55a55a36a23e7deb83718bd5dcc19b083b84d441add72ea7f4e28935e4717e3_ppc64le",
"product": {
"name": "registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:d55a55a36a23e7deb83718bd5dcc19b083b84d441add72ea7f4e28935e4717e3_ppc64le",
"product_id": "registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:d55a55a36a23e7deb83718bd5dcc19b083b84d441add72ea7f4e28935e4717e3_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/multicluster-redirector-rhel9@sha256%3Ad55a55a36a23e7deb83718bd5dcc19b083b84d441add72ea7f4e28935e4717e3?arch=ppc64le\u0026repository_url=registry.redhat.io/devspaces/multicluster-redirector-rhel9\u0026tag=1782989027"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:0f8e1171f278395f3c72e4d9d3c0492bed15b678963fb2b6182bd65343b85a2e_ppc64le",
"product": {
"name": "registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:0f8e1171f278395f3c72e4d9d3c0492bed15b678963fb2b6182bd65343b85a2e_ppc64le",
"product_id": "registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:0f8e1171f278395f3c72e4d9d3c0492bed15b678963fb2b6182bd65343b85a2e_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/oauth2-proxy-rhel9@sha256%3A0f8e1171f278395f3c72e4d9d3c0492bed15b678963fb2b6182bd65343b85a2e?arch=ppc64le\u0026repository_url=registry.redhat.io/devspaces/oauth2-proxy-rhel9\u0026tag=1782487406"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/devspaces/openvsx-rhel9@sha256:981917806c7faf31156241cc85577cf375ee566f78adaeadc096d0ba8482b835_ppc64le",
"product": {
"name": "registry.redhat.io/devspaces/openvsx-rhel9@sha256:981917806c7faf31156241cc85577cf375ee566f78adaeadc096d0ba8482b835_ppc64le",
"product_id": "registry.redhat.io/devspaces/openvsx-rhel9@sha256:981917806c7faf31156241cc85577cf375ee566f78adaeadc096d0ba8482b835_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/openvsx-rhel9@sha256%3A981917806c7faf31156241cc85577cf375ee566f78adaeadc096d0ba8482b835?arch=ppc64le\u0026repository_url=registry.redhat.io/devspaces/openvsx-rhel9\u0026tag=1783007534"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:89bf6a32a0935cacadbc6d23566dce6ca741e404d58c11050638c7b8e868028b_ppc64le",
"product": {
"name": "registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:89bf6a32a0935cacadbc6d23566dce6ca741e404d58c11050638c7b8e868028b_ppc64le",
"product_id": "registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:89bf6a32a0935cacadbc6d23566dce6ca741e404d58c11050638c7b8e868028b_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/devspaces-rhel9-operator@sha256%3A89bf6a32a0935cacadbc6d23566dce6ca741e404d58c11050638c7b8e868028b?arch=ppc64le\u0026repository_url=registry.redhat.io/devspaces/devspaces-rhel9-operator\u0026tag=1782403611"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:81a2385be30079500f13f97a18607aa685abd61265bf8fa78bc6ce126341be50_ppc64le",
"product": {
"name": "registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:81a2385be30079500f13f97a18607aa685abd61265bf8fa78bc6ce126341be50_ppc64le",
"product_id": "registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:81a2385be30079500f13f97a18607aa685abd61265bf8fa78bc6ce126341be50_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/pluginregistry-rhel9@sha256%3A81a2385be30079500f13f97a18607aa685abd61265bf8fa78bc6ce126341be50?arch=ppc64le\u0026repository_url=registry.redhat.io/devspaces/pluginregistry-rhel9\u0026tag=1782989367"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/devspaces/server-rhel9@sha256:e21de356b7d879800a96f6c5aeee6bc59a3ed9c58d36503f7089625ce887bb25_ppc64le",
"product": {
"name": "registry.redhat.io/devspaces/server-rhel9@sha256:e21de356b7d879800a96f6c5aeee6bc59a3ed9c58d36503f7089625ce887bb25_ppc64le",
"product_id": "registry.redhat.io/devspaces/server-rhel9@sha256:e21de356b7d879800a96f6c5aeee6bc59a3ed9c58d36503f7089625ce887bb25_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/server-rhel9@sha256%3Ae21de356b7d879800a96f6c5aeee6bc59a3ed9c58d36503f7089625ce887bb25?arch=ppc64le\u0026repository_url=registry.redhat.io/devspaces/server-rhel9\u0026tag=1783033397"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/devspaces/traefik-rhel9@sha256:6c87453ffe89e8be752ee40c8a9ccf6894c83be703f13901b1e8b64a4c0e549a_ppc64le",
"product": {
"name": "registry.redhat.io/devspaces/traefik-rhel9@sha256:6c87453ffe89e8be752ee40c8a9ccf6894c83be703f13901b1e8b64a4c0e549a_ppc64le",
"product_id": "registry.redhat.io/devspaces/traefik-rhel9@sha256:6c87453ffe89e8be752ee40c8a9ccf6894c83be703f13901b1e8b64a4c0e549a_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/traefik-rhel9@sha256%3A6c87453ffe89e8be752ee40c8a9ccf6894c83be703f13901b1e8b64a4c0e549a?arch=ppc64le\u0026repository_url=registry.redhat.io/devspaces/traefik-rhel9\u0026tag=1782403274"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/devspaces/udi-rhel9@sha256:75e3aec03dffbd0f40f88a08ff5e0319f4515d73f0bcfae28b5fa526b494afc4_ppc64le",
"product": {
"name": "registry.redhat.io/devspaces/udi-rhel9@sha256:75e3aec03dffbd0f40f88a08ff5e0319f4515d73f0bcfae28b5fa526b494afc4_ppc64le",
"product_id": "registry.redhat.io/devspaces/udi-rhel9@sha256:75e3aec03dffbd0f40f88a08ff5e0319f4515d73f0bcfae28b5fa526b494afc4_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/udi-rhel9@sha256%3A75e3aec03dffbd0f40f88a08ff5e0319f4515d73f0bcfae28b5fa526b494afc4?arch=ppc64le\u0026repository_url=registry.redhat.io/devspaces/udi-rhel9\u0026tag=1782991491"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/devspaces/udi-base-rhel10@sha256:72cbdb061cbcd295be5e66a0eabb409af16ade7f0aa12b04c2d7327e9e1a24ba_ppc64le",
"product": {
"name": "registry.redhat.io/devspaces/udi-base-rhel10@sha256:72cbdb061cbcd295be5e66a0eabb409af16ade7f0aa12b04c2d7327e9e1a24ba_ppc64le",
"product_id": "registry.redhat.io/devspaces/udi-base-rhel10@sha256:72cbdb061cbcd295be5e66a0eabb409af16ade7f0aa12b04c2d7327e9e1a24ba_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/udi-base-rhel10@sha256%3A72cbdb061cbcd295be5e66a0eabb409af16ade7f0aa12b04c2d7327e9e1a24ba?arch=ppc64le\u0026repository_url=registry.redhat.io/devspaces/udi-base-rhel10\u0026tag=1782987430"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/devspaces/udi-base-rhel9@sha256:acd3c0369c18cbfa63a5972ed1721f93f1fcb456963ff855dea2c295baf1cdb8_ppc64le",
"product": {
"name": "registry.redhat.io/devspaces/udi-base-rhel9@sha256:acd3c0369c18cbfa63a5972ed1721f93f1fcb456963ff855dea2c295baf1cdb8_ppc64le",
"product_id": "registry.redhat.io/devspaces/udi-base-rhel9@sha256:acd3c0369c18cbfa63a5972ed1721f93f1fcb456963ff855dea2c295baf1cdb8_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/udi-base-rhel9@sha256%3Aacd3c0369c18cbfa63a5972ed1721f93f1fcb456963ff855dea2c295baf1cdb8?arch=ppc64le\u0026repository_url=registry.redhat.io/devspaces/udi-base-rhel9\u0026tag=1782987705"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/devspaces/code-rhel9@sha256:1384e5ba2b7d23119a49d8713826f4c65668bca310589ac7abd0c0d41c7e4c90_arm64",
"product": {
"name": "registry.redhat.io/devspaces/code-rhel9@sha256:1384e5ba2b7d23119a49d8713826f4c65668bca310589ac7abd0c0d41c7e4c90_arm64",
"product_id": "registry.redhat.io/devspaces/code-rhel9@sha256:1384e5ba2b7d23119a49d8713826f4c65668bca310589ac7abd0c0d41c7e4c90_arm64",
"product_identification_helper": {
"purl": "pkg:oci/code-rhel9@sha256%3A1384e5ba2b7d23119a49d8713826f4c65668bca310589ac7abd0c0d41c7e4c90?arch=arm64\u0026repository_url=registry.redhat.io/devspaces/code-rhel9\u0026tag=1782498475"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/devspaces/code-sshd-rhel9@sha256:f2a24aa01cbe0d926d4aefe3b12eba21eb5ec7f87276e572a6814c727228624c_arm64",
"product": {
"name": "registry.redhat.io/devspaces/code-sshd-rhel9@sha256:f2a24aa01cbe0d926d4aefe3b12eba21eb5ec7f87276e572a6814c727228624c_arm64",
"product_id": "registry.redhat.io/devspaces/code-sshd-rhel9@sha256:f2a24aa01cbe0d926d4aefe3b12eba21eb5ec7f87276e572a6814c727228624c_arm64",
"product_identification_helper": {
"purl": "pkg:oci/code-sshd-rhel9@sha256%3Af2a24aa01cbe0d926d4aefe3b12eba21eb5ec7f87276e572a6814c727228624c?arch=arm64\u0026repository_url=registry.redhat.io/devspaces/code-sshd-rhel9\u0026tag=1782497670"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/devspaces/configbump-rhel9@sha256:6f3eb26734e89375c3e1fb7ac366e12dc0d41bac8f07de9210c7e9845a01eec1_arm64",
"product": {
"name": "registry.redhat.io/devspaces/configbump-rhel9@sha256:6f3eb26734e89375c3e1fb7ac366e12dc0d41bac8f07de9210c7e9845a01eec1_arm64",
"product_id": "registry.redhat.io/devspaces/configbump-rhel9@sha256:6f3eb26734e89375c3e1fb7ac366e12dc0d41bac8f07de9210c7e9845a01eec1_arm64",
"product_identification_helper": {
"purl": "pkg:oci/configbump-rhel9@sha256%3A6f3eb26734e89375c3e1fb7ac366e12dc0d41bac8f07de9210c7e9845a01eec1?arch=arm64\u0026repository_url=registry.redhat.io/devspaces/configbump-rhel9\u0026tag=1782403514"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/devspaces/dashboard-rhel9@sha256:1cccdfd7e90877c27c6d8caea4f1e8ad89bb97c83d97ddf570d4f4ee116f1986_arm64",
"product": {
"name": "registry.redhat.io/devspaces/dashboard-rhel9@sha256:1cccdfd7e90877c27c6d8caea4f1e8ad89bb97c83d97ddf570d4f4ee116f1986_arm64",
"product_id": "registry.redhat.io/devspaces/dashboard-rhel9@sha256:1cccdfd7e90877c27c6d8caea4f1e8ad89bb97c83d97ddf570d4f4ee116f1986_arm64",
"product_identification_helper": {
"purl": "pkg:oci/dashboard-rhel9@sha256%3A1cccdfd7e90877c27c6d8caea4f1e8ad89bb97c83d97ddf570d4f4ee116f1986?arch=arm64\u0026repository_url=registry.redhat.io/devspaces/dashboard-rhel9\u0026tag=1782498792"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/devspaces/imagepuller-rhel9@sha256:b0f15904251c6665961eef9c944d00f17499f7219351fe213fe7935f62fbf7ac_arm64",
"product": {
"name": "registry.redhat.io/devspaces/imagepuller-rhel9@sha256:b0f15904251c6665961eef9c944d00f17499f7219351fe213fe7935f62fbf7ac_arm64",
"product_id": "registry.redhat.io/devspaces/imagepuller-rhel9@sha256:b0f15904251c6665961eef9c944d00f17499f7219351fe213fe7935f62fbf7ac_arm64",
"product_identification_helper": {
"purl": "pkg:oci/imagepuller-rhel9@sha256%3Ab0f15904251c6665961eef9c944d00f17499f7219351fe213fe7935f62fbf7ac?arch=arm64\u0026repository_url=registry.redhat.io/devspaces/imagepuller-rhel9\u0026tag=1782403262"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:62476ac2fb0096caa9b181f523cc3573ccffe70be1433f08d1d0255b6d3a0640_arm64",
"product": {
"name": "registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:62476ac2fb0096caa9b181f523cc3573ccffe70be1433f08d1d0255b6d3a0640_arm64",
"product_id": "registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:62476ac2fb0096caa9b181f523cc3573ccffe70be1433f08d1d0255b6d3a0640_arm64",
"product_identification_helper": {
"purl": "pkg:oci/jetbrains-ide-rhel9@sha256%3A62476ac2fb0096caa9b181f523cc3573ccffe70be1433f08d1d0255b6d3a0640?arch=arm64\u0026repository_url=registry.redhat.io/devspaces/jetbrains-ide-rhel9\u0026tag=1783093088"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:6217f0bb4937fa0e0fc0a5c86456fdc1992e169dfedc3d11d5165cef575d4d53_arm64",
"product": {
"name": "registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:6217f0bb4937fa0e0fc0a5c86456fdc1992e169dfedc3d11d5165cef575d4d53_arm64",
"product_id": "registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:6217f0bb4937fa0e0fc0a5c86456fdc1992e169dfedc3d11d5165cef575d4d53_arm64",
"product_identification_helper": {
"purl": "pkg:oci/multicluster-redirector-rhel9@sha256%3A6217f0bb4937fa0e0fc0a5c86456fdc1992e169dfedc3d11d5165cef575d4d53?arch=arm64\u0026repository_url=registry.redhat.io/devspaces/multicluster-redirector-rhel9\u0026tag=1782989027"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:93c7e9b321c7e9aa4a412a993a6b20412e24772832cc0dd23bbb17aa25f15487_arm64",
"product": {
"name": "registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:93c7e9b321c7e9aa4a412a993a6b20412e24772832cc0dd23bbb17aa25f15487_arm64",
"product_id": "registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:93c7e9b321c7e9aa4a412a993a6b20412e24772832cc0dd23bbb17aa25f15487_arm64",
"product_identification_helper": {
"purl": "pkg:oci/oauth2-proxy-rhel9@sha256%3A93c7e9b321c7e9aa4a412a993a6b20412e24772832cc0dd23bbb17aa25f15487?arch=arm64\u0026repository_url=registry.redhat.io/devspaces/oauth2-proxy-rhel9\u0026tag=1782487406"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/devspaces/openvsx-rhel9@sha256:af3ed91687500d64e2348cca4877c43f73211b8fbd132e7767c3521763185348_arm64",
"product": {
"name": "registry.redhat.io/devspaces/openvsx-rhel9@sha256:af3ed91687500d64e2348cca4877c43f73211b8fbd132e7767c3521763185348_arm64",
"product_id": "registry.redhat.io/devspaces/openvsx-rhel9@sha256:af3ed91687500d64e2348cca4877c43f73211b8fbd132e7767c3521763185348_arm64",
"product_identification_helper": {
"purl": "pkg:oci/openvsx-rhel9@sha256%3Aaf3ed91687500d64e2348cca4877c43f73211b8fbd132e7767c3521763185348?arch=arm64\u0026repository_url=registry.redhat.io/devspaces/openvsx-rhel9\u0026tag=1783007534"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0e8958a22f6771ddfe32b34027c69dbbef65d980c7e465a79d4202d2627994ad_arm64",
"product": {
"name": "registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0e8958a22f6771ddfe32b34027c69dbbef65d980c7e465a79d4202d2627994ad_arm64",
"product_id": "registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0e8958a22f6771ddfe32b34027c69dbbef65d980c7e465a79d4202d2627994ad_arm64",
"product_identification_helper": {
"purl": "pkg:oci/devspaces-rhel9-operator@sha256%3A0e8958a22f6771ddfe32b34027c69dbbef65d980c7e465a79d4202d2627994ad?arch=arm64\u0026repository_url=registry.redhat.io/devspaces/devspaces-rhel9-operator\u0026tag=1782403611"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2f3bec76a833a72c7dfa93ed55e55e80e2621c154e5a2f156deaf78d7c6b97b4_arm64",
"product": {
"name": "registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2f3bec76a833a72c7dfa93ed55e55e80e2621c154e5a2f156deaf78d7c6b97b4_arm64",
"product_id": "registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2f3bec76a833a72c7dfa93ed55e55e80e2621c154e5a2f156deaf78d7c6b97b4_arm64",
"product_identification_helper": {
"purl": "pkg:oci/pluginregistry-rhel9@sha256%3A2f3bec76a833a72c7dfa93ed55e55e80e2621c154e5a2f156deaf78d7c6b97b4?arch=arm64\u0026repository_url=registry.redhat.io/devspaces/pluginregistry-rhel9\u0026tag=1782989367"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/devspaces/server-rhel9@sha256:856b9088dbda4e7374daf232602f4bb90b05ad1be1df46d6e363a002f549f4de_arm64",
"product": {
"name": "registry.redhat.io/devspaces/server-rhel9@sha256:856b9088dbda4e7374daf232602f4bb90b05ad1be1df46d6e363a002f549f4de_arm64",
"product_id": "registry.redhat.io/devspaces/server-rhel9@sha256:856b9088dbda4e7374daf232602f4bb90b05ad1be1df46d6e363a002f549f4de_arm64",
"product_identification_helper": {
"purl": "pkg:oci/server-rhel9@sha256%3A856b9088dbda4e7374daf232602f4bb90b05ad1be1df46d6e363a002f549f4de?arch=arm64\u0026repository_url=registry.redhat.io/devspaces/server-rhel9\u0026tag=1783033397"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/devspaces/traefik-rhel9@sha256:c18a1c50a4fc7081c6564d1c4ed4904212b7939a4f1f46afef0a36dc1d76f38e_arm64",
"product": {
"name": "registry.redhat.io/devspaces/traefik-rhel9@sha256:c18a1c50a4fc7081c6564d1c4ed4904212b7939a4f1f46afef0a36dc1d76f38e_arm64",
"product_id": "registry.redhat.io/devspaces/traefik-rhel9@sha256:c18a1c50a4fc7081c6564d1c4ed4904212b7939a4f1f46afef0a36dc1d76f38e_arm64",
"product_identification_helper": {
"purl": "pkg:oci/traefik-rhel9@sha256%3Ac18a1c50a4fc7081c6564d1c4ed4904212b7939a4f1f46afef0a36dc1d76f38e?arch=arm64\u0026repository_url=registry.redhat.io/devspaces/traefik-rhel9\u0026tag=1782403274"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/devspaces/udi-rhel9@sha256:f0079e8ae53d84223aea2d3186e7bc6b525b7c03d307cde50cfb9f1bbc18712b_arm64",
"product": {
"name": "registry.redhat.io/devspaces/udi-rhel9@sha256:f0079e8ae53d84223aea2d3186e7bc6b525b7c03d307cde50cfb9f1bbc18712b_arm64",
"product_id": "registry.redhat.io/devspaces/udi-rhel9@sha256:f0079e8ae53d84223aea2d3186e7bc6b525b7c03d307cde50cfb9f1bbc18712b_arm64",
"product_identification_helper": {
"purl": "pkg:oci/udi-rhel9@sha256%3Af0079e8ae53d84223aea2d3186e7bc6b525b7c03d307cde50cfb9f1bbc18712b?arch=arm64\u0026repository_url=registry.redhat.io/devspaces/udi-rhel9\u0026tag=1782991491"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/devspaces/udi-base-rhel10@sha256:33367b9fdb3addce3302ad35bc10423505fefe3dd27b8b9013b26d66caac2a6c_arm64",
"product": {
"name": "registry.redhat.io/devspaces/udi-base-rhel10@sha256:33367b9fdb3addce3302ad35bc10423505fefe3dd27b8b9013b26d66caac2a6c_arm64",
"product_id": "registry.redhat.io/devspaces/udi-base-rhel10@sha256:33367b9fdb3addce3302ad35bc10423505fefe3dd27b8b9013b26d66caac2a6c_arm64",
"product_identification_helper": {
"purl": "pkg:oci/udi-base-rhel10@sha256%3A33367b9fdb3addce3302ad35bc10423505fefe3dd27b8b9013b26d66caac2a6c?arch=arm64\u0026repository_url=registry.redhat.io/devspaces/udi-base-rhel10\u0026tag=1782987430"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/devspaces/udi-base-rhel9@sha256:25e0f4153eb5bc6fbc6b389d5adc81bfde103070ef58317c3c25ce4144a628d3_arm64",
"product": {
"name": "registry.redhat.io/devspaces/udi-base-rhel9@sha256:25e0f4153eb5bc6fbc6b389d5adc81bfde103070ef58317c3c25ce4144a628d3_arm64",
"product_id": "registry.redhat.io/devspaces/udi-base-rhel9@sha256:25e0f4153eb5bc6fbc6b389d5adc81bfde103070ef58317c3c25ce4144a628d3_arm64",
"product_identification_helper": {
"purl": "pkg:oci/udi-base-rhel9@sha256%3A25e0f4153eb5bc6fbc6b389d5adc81bfde103070ef58317c3c25ce4144a628d3?arch=arm64\u0026repository_url=registry.redhat.io/devspaces/udi-base-rhel9\u0026tag=1782987705"
}
}
}
],
"category": "architecture",
"name": "arm64"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/devspaces/code-rhel9@sha256:1384e5ba2b7d23119a49d8713826f4c65668bca310589ac7abd0c0d41c7e4c90_arm64 as a component of Red Hat OpenShift Dev Spaces 3.29",
"product_id": "Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:1384e5ba2b7d23119a49d8713826f4c65668bca310589ac7abd0c0d41c7e4c90_arm64"
},
"product_reference": "registry.redhat.io/devspaces/code-rhel9@sha256:1384e5ba2b7d23119a49d8713826f4c65668bca310589ac7abd0c0d41c7e4c90_arm64",
"relates_to_product_reference": "Red Hat OpenShift Dev Spaces 3.29"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/devspaces/code-rhel9@sha256:7f58528b1da9146aa55917324fdf2b375794742b34e5d10ff57f713af60746cd_amd64 as a component of Red Hat OpenShift Dev Spaces 3.29",
"product_id": "Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:7f58528b1da9146aa55917324fdf2b375794742b34e5d10ff57f713af60746cd_amd64"
},
"product_reference": "registry.redhat.io/devspaces/code-rhel9@sha256:7f58528b1da9146aa55917324fdf2b375794742b34e5d10ff57f713af60746cd_amd64",
"relates_to_product_reference": "Red Hat OpenShift Dev Spaces 3.29"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/devspaces/code-rhel9@sha256:844c3b1499b00aeadfc561642e53792ad80f535efd53b35793ba08b0f26c6d61_s390x as a component of Red Hat OpenShift Dev Spaces 3.29",
"product_id": "Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:844c3b1499b00aeadfc561642e53792ad80f535efd53b35793ba08b0f26c6d61_s390x"
},
"product_reference": "registry.redhat.io/devspaces/code-rhel9@sha256:844c3b1499b00aeadfc561642e53792ad80f535efd53b35793ba08b0f26c6d61_s390x",
"relates_to_product_reference": "Red Hat OpenShift Dev Spaces 3.29"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/devspaces/code-rhel9@sha256:e1019c30e1d84e66d775d0d6fc7d051803dcbe44823fb2a1914807be39c79dae_ppc64le as a component of Red Hat OpenShift Dev Spaces 3.29",
"product_id": "Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:e1019c30e1d84e66d775d0d6fc7d051803dcbe44823fb2a1914807be39c79dae_ppc64le"
},
"product_reference": "registry.redhat.io/devspaces/code-rhel9@sha256:e1019c30e1d84e66d775d0d6fc7d051803dcbe44823fb2a1914807be39c79dae_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift Dev Spaces 3.29"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/devspaces/code-sshd-rhel9@sha256:8c9a7ebf430b9f4ca200c6c70b049e8456cf88fd8bf0871b42d65e8dc786d451_amd64 as a component of Red Hat OpenShift Dev Spaces 3.29",
"product_id": "Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:8c9a7ebf430b9f4ca200c6c70b049e8456cf88fd8bf0871b42d65e8dc786d451_amd64"
},
"product_reference": "registry.redhat.io/devspaces/code-sshd-rhel9@sha256:8c9a7ebf430b9f4ca200c6c70b049e8456cf88fd8bf0871b42d65e8dc786d451_amd64",
"relates_to_product_reference": "Red Hat OpenShift Dev Spaces 3.29"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/devspaces/code-sshd-rhel9@sha256:926d965e6fd12ec0d758270fb4c90bbdc1a05e60cc4c895cf9b671a296c9d867_ppc64le as a component of Red Hat OpenShift Dev Spaces 3.29",
"product_id": "Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:926d965e6fd12ec0d758270fb4c90bbdc1a05e60cc4c895cf9b671a296c9d867_ppc64le"
},
"product_reference": "registry.redhat.io/devspaces/code-sshd-rhel9@sha256:926d965e6fd12ec0d758270fb4c90bbdc1a05e60cc4c895cf9b671a296c9d867_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift Dev Spaces 3.29"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/devspaces/code-sshd-rhel9@sha256:e8e807451e3c5d8d0a8575e1280d7125a4ece51547a7b4a5cd247837662cedad_s390x as a component of Red Hat OpenShift Dev Spaces 3.29",
"product_id": "Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:e8e807451e3c5d8d0a8575e1280d7125a4ece51547a7b4a5cd247837662cedad_s390x"
},
"product_reference": "registry.redhat.io/devspaces/code-sshd-rhel9@sha256:e8e807451e3c5d8d0a8575e1280d7125a4ece51547a7b4a5cd247837662cedad_s390x",
"relates_to_product_reference": "Red Hat OpenShift Dev Spaces 3.29"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/devspaces/code-sshd-rhel9@sha256:f2a24aa01cbe0d926d4aefe3b12eba21eb5ec7f87276e572a6814c727228624c_arm64 as a component of Red Hat OpenShift Dev Spaces 3.29",
"product_id": "Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:f2a24aa01cbe0d926d4aefe3b12eba21eb5ec7f87276e572a6814c727228624c_arm64"
},
"product_reference": "registry.redhat.io/devspaces/code-sshd-rhel9@sha256:f2a24aa01cbe0d926d4aefe3b12eba21eb5ec7f87276e572a6814c727228624c_arm64",
"relates_to_product_reference": "Red Hat OpenShift Dev Spaces 3.29"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/devspaces/configbump-rhel9@sha256:45cc0d783d1e7874ac73dfbdfe7e03c63b227ab3c4f1e15a0a2f5c97956a76d9_s390x as a component of Red Hat OpenShift Dev Spaces 3.29",
"product_id": "Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:45cc0d783d1e7874ac73dfbdfe7e03c63b227ab3c4f1e15a0a2f5c97956a76d9_s390x"
},
"product_reference": "registry.redhat.io/devspaces/configbump-rhel9@sha256:45cc0d783d1e7874ac73dfbdfe7e03c63b227ab3c4f1e15a0a2f5c97956a76d9_s390x",
"relates_to_product_reference": "Red Hat OpenShift Dev Spaces 3.29"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/devspaces/configbump-rhel9@sha256:6f3eb26734e89375c3e1fb7ac366e12dc0d41bac8f07de9210c7e9845a01eec1_arm64 as a component of Red Hat OpenShift Dev Spaces 3.29",
"product_id": "Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:6f3eb26734e89375c3e1fb7ac366e12dc0d41bac8f07de9210c7e9845a01eec1_arm64"
},
"product_reference": "registry.redhat.io/devspaces/configbump-rhel9@sha256:6f3eb26734e89375c3e1fb7ac366e12dc0d41bac8f07de9210c7e9845a01eec1_arm64",
"relates_to_product_reference": "Red Hat OpenShift Dev Spaces 3.29"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/devspaces/configbump-rhel9@sha256:768c45fa9f35d98dfe5cfe1ea12f552402bf68ac6e1f828b14310ef59ce57c40_ppc64le as a component of Red Hat OpenShift Dev Spaces 3.29",
"product_id": "Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:768c45fa9f35d98dfe5cfe1ea12f552402bf68ac6e1f828b14310ef59ce57c40_ppc64le"
},
"product_reference": "registry.redhat.io/devspaces/configbump-rhel9@sha256:768c45fa9f35d98dfe5cfe1ea12f552402bf68ac6e1f828b14310ef59ce57c40_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift Dev Spaces 3.29"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/devspaces/configbump-rhel9@sha256:b5f1bf30495f6be97c696cf7f90768629cee96f8d106f745bf95fdefddc99592_amd64 as a component of Red Hat OpenShift Dev Spaces 3.29",
"product_id": "Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:b5f1bf30495f6be97c696cf7f90768629cee96f8d106f745bf95fdefddc99592_amd64"
},
"product_reference": "registry.redhat.io/devspaces/configbump-rhel9@sha256:b5f1bf30495f6be97c696cf7f90768629cee96f8d106f745bf95fdefddc99592_amd64",
"relates_to_product_reference": "Red Hat OpenShift Dev Spaces 3.29"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/devspaces/dashboard-rhel9@sha256:137ffbb95d463d95da6c350600d968f3cd0e9873bf2e7c6edf952ae3229e9e2b_amd64 as a component of Red Hat OpenShift Dev Spaces 3.29",
"product_id": "Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:137ffbb95d463d95da6c350600d968f3cd0e9873bf2e7c6edf952ae3229e9e2b_amd64"
},
"product_reference": "registry.redhat.io/devspaces/dashboard-rhel9@sha256:137ffbb95d463d95da6c350600d968f3cd0e9873bf2e7c6edf952ae3229e9e2b_amd64",
"relates_to_product_reference": "Red Hat OpenShift Dev Spaces 3.29"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/devspaces/dashboard-rhel9@sha256:1cccdfd7e90877c27c6d8caea4f1e8ad89bb97c83d97ddf570d4f4ee116f1986_arm64 as a component of Red Hat OpenShift Dev Spaces 3.29",
"product_id": "Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:1cccdfd7e90877c27c6d8caea4f1e8ad89bb97c83d97ddf570d4f4ee116f1986_arm64"
},
"product_reference": "registry.redhat.io/devspaces/dashboard-rhel9@sha256:1cccdfd7e90877c27c6d8caea4f1e8ad89bb97c83d97ddf570d4f4ee116f1986_arm64",
"relates_to_product_reference": "Red Hat OpenShift Dev Spaces 3.29"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/devspaces/dashboard-rhel9@sha256:71657b82894cfd9e350746f48965e148868a675b9a20dcb7f94a6bc7a5b16ea5_s390x as a component of Red Hat OpenShift Dev Spaces 3.29",
"product_id": "Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:71657b82894cfd9e350746f48965e148868a675b9a20dcb7f94a6bc7a5b16ea5_s390x"
},
"product_reference": "registry.redhat.io/devspaces/dashboard-rhel9@sha256:71657b82894cfd9e350746f48965e148868a675b9a20dcb7f94a6bc7a5b16ea5_s390x",
"relates_to_product_reference": "Red Hat OpenShift Dev Spaces 3.29"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/devspaces/dashboard-rhel9@sha256:881e405e32821ef10cf992c7a633281c1dc45df721fe909048df1689472000ce_ppc64le as a component of Red Hat OpenShift Dev Spaces 3.29",
"product_id": "Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:881e405e32821ef10cf992c7a633281c1dc45df721fe909048df1689472000ce_ppc64le"
},
"product_reference": "registry.redhat.io/devspaces/dashboard-rhel9@sha256:881e405e32821ef10cf992c7a633281c1dc45df721fe909048df1689472000ce_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift Dev Spaces 3.29"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:6c85b42ede0f4745ed558bcb03d033c49f56cef17a70c12e5308066124cac6e3_amd64 as a component of Red Hat OpenShift Dev Spaces 3.29",
"product_id": "Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:6c85b42ede0f4745ed558bcb03d033c49f56cef17a70c12e5308066124cac6e3_amd64"
},
"product_reference": "registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:6c85b42ede0f4745ed558bcb03d033c49f56cef17a70c12e5308066124cac6e3_amd64",
"relates_to_product_reference": "Red Hat OpenShift Dev Spaces 3.29"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:091529a93e258a612fd4a98222e6a370ee10b4e97efa791b50f79a2670163d01_amd64 as a component of Red Hat OpenShift Dev Spaces 3.29",
"product_id": "Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:091529a93e258a612fd4a98222e6a370ee10b4e97efa791b50f79a2670163d01_amd64"
},
"product_reference": "registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:091529a93e258a612fd4a98222e6a370ee10b4e97efa791b50f79a2670163d01_amd64",
"relates_to_product_reference": "Red Hat OpenShift Dev Spaces 3.29"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0e8958a22f6771ddfe32b34027c69dbbef65d980c7e465a79d4202d2627994ad_arm64 as a component of Red Hat OpenShift Dev Spaces 3.29",
"product_id": "Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0e8958a22f6771ddfe32b34027c69dbbef65d980c7e465a79d4202d2627994ad_arm64"
},
"product_reference": "registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0e8958a22f6771ddfe32b34027c69dbbef65d980c7e465a79d4202d2627994ad_arm64",
"relates_to_product_reference": "Red Hat OpenShift Dev Spaces 3.29"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:5a8b0203ff083113e8b30a123ab30c4bad571f57fb59c1e7e01807b92552504e_s390x as a component of Red Hat OpenShift Dev Spaces 3.29",
"product_id": "Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:5a8b0203ff083113e8b30a123ab30c4bad571f57fb59c1e7e01807b92552504e_s390x"
},
"product_reference": "registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:5a8b0203ff083113e8b30a123ab30c4bad571f57fb59c1e7e01807b92552504e_s390x",
"relates_to_product_reference": "Red Hat OpenShift Dev Spaces 3.29"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:89bf6a32a0935cacadbc6d23566dce6ca741e404d58c11050638c7b8e868028b_ppc64le as a component of Red Hat OpenShift Dev Spaces 3.29",
"product_id": "Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:89bf6a32a0935cacadbc6d23566dce6ca741e404d58c11050638c7b8e868028b_ppc64le"
},
"product_reference": "registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:89bf6a32a0935cacadbc6d23566dce6ca741e404d58c11050638c7b8e868028b_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift Dev Spaces 3.29"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/devspaces/imagepuller-rhel9@sha256:077cc953354ea2edd85569a622f97c15d44163d68234e7a9fdee899d25c19cdb_amd64 as a component of Red Hat OpenShift Dev Spaces 3.29",
"product_id": "Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:077cc953354ea2edd85569a622f97c15d44163d68234e7a9fdee899d25c19cdb_amd64"
},
"product_reference": "registry.redhat.io/devspaces/imagepuller-rhel9@sha256:077cc953354ea2edd85569a622f97c15d44163d68234e7a9fdee899d25c19cdb_amd64",
"relates_to_product_reference": "Red Hat OpenShift Dev Spaces 3.29"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/devspaces/imagepuller-rhel9@sha256:66285f866090e1bfbedacd592e9d5ea9f2a30b88aa03bc86bc790d6b98a929a4_ppc64le as a component of Red Hat OpenShift Dev Spaces 3.29",
"product_id": "Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:66285f866090e1bfbedacd592e9d5ea9f2a30b88aa03bc86bc790d6b98a929a4_ppc64le"
},
"product_reference": "registry.redhat.io/devspaces/imagepuller-rhel9@sha256:66285f866090e1bfbedacd592e9d5ea9f2a30b88aa03bc86bc790d6b98a929a4_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift Dev Spaces 3.29"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/devspaces/imagepuller-rhel9@sha256:8c80054171d5063457df4bd074674b1824783a101dacb6137da227080aff957c_s390x as a component of Red Hat OpenShift Dev Spaces 3.29",
"product_id": "Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:8c80054171d5063457df4bd074674b1824783a101dacb6137da227080aff957c_s390x"
},
"product_reference": "registry.redhat.io/devspaces/imagepuller-rhel9@sha256:8c80054171d5063457df4bd074674b1824783a101dacb6137da227080aff957c_s390x",
"relates_to_product_reference": "Red Hat OpenShift Dev Spaces 3.29"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/devspaces/imagepuller-rhel9@sha256:b0f15904251c6665961eef9c944d00f17499f7219351fe213fe7935f62fbf7ac_arm64 as a component of Red Hat OpenShift Dev Spaces 3.29",
"product_id": "Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:b0f15904251c6665961eef9c944d00f17499f7219351fe213fe7935f62fbf7ac_arm64"
},
"product_reference": "registry.redhat.io/devspaces/imagepuller-rhel9@sha256:b0f15904251c6665961eef9c944d00f17499f7219351fe213fe7935f62fbf7ac_arm64",
"relates_to_product_reference": "Red Hat OpenShift Dev Spaces 3.29"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:62476ac2fb0096caa9b181f523cc3573ccffe70be1433f08d1d0255b6d3a0640_arm64 as a component of Red Hat OpenShift Dev Spaces 3.29",
"product_id": "Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:62476ac2fb0096caa9b181f523cc3573ccffe70be1433f08d1d0255b6d3a0640_arm64"
},
"product_reference": "registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:62476ac2fb0096caa9b181f523cc3573ccffe70be1433f08d1d0255b6d3a0640_arm64",
"relates_to_product_reference": "Red Hat OpenShift Dev Spaces 3.29"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:6f632bc9829880a44e2e94084284b52683b4a01dc3315043b0aa32eb344b16cb_amd64 as a component of Red Hat OpenShift Dev Spaces 3.29",
"product_id": "Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:6f632bc9829880a44e2e94084284b52683b4a01dc3315043b0aa32eb344b16cb_amd64"
},
"product_reference": "registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:6f632bc9829880a44e2e94084284b52683b4a01dc3315043b0aa32eb344b16cb_amd64",
"relates_to_product_reference": "Red Hat OpenShift Dev Spaces 3.29"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:aa3d1cf7853bfe8307efb01f714585f378d1d3d4ed5de7c8808a72e4aeecd4f3_s390x as a component of Red Hat OpenShift Dev Spaces 3.29",
"product_id": "Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:aa3d1cf7853bfe8307efb01f714585f378d1d3d4ed5de7c8808a72e4aeecd4f3_s390x"
},
"product_reference": "registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:aa3d1cf7853bfe8307efb01f714585f378d1d3d4ed5de7c8808a72e4aeecd4f3_s390x",
"relates_to_product_reference": "Red Hat OpenShift Dev Spaces 3.29"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:bf1d4b2b1ef03e65be59699ce3233a75a34e1777abc182984c7a8efa698a936e_ppc64le as a component of Red Hat OpenShift Dev Spaces 3.29",
"product_id": "Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:bf1d4b2b1ef03e65be59699ce3233a75a34e1777abc182984c7a8efa698a936e_ppc64le"
},
"product_reference": "registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:bf1d4b2b1ef03e65be59699ce3233a75a34e1777abc182984c7a8efa698a936e_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift Dev Spaces 3.29"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:141f17d12c748c7ab9e94cfd9db7e2492d3063e7478249d6430ac0d8fcfb8875_s390x as a component of Red Hat OpenShift Dev Spaces 3.29",
"product_id": "Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:141f17d12c748c7ab9e94cfd9db7e2492d3063e7478249d6430ac0d8fcfb8875_s390x"
},
"product_reference": "registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:141f17d12c748c7ab9e94cfd9db7e2492d3063e7478249d6430ac0d8fcfb8875_s390x",
"relates_to_product_reference": "Red Hat OpenShift Dev Spaces 3.29"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:5909184fe3d37eb45ba3bf55d7b708d818f2a5abfc2949c4a7081a5cd30cea4f_amd64 as a component of Red Hat OpenShift Dev Spaces 3.29",
"product_id": "Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:5909184fe3d37eb45ba3bf55d7b708d818f2a5abfc2949c4a7081a5cd30cea4f_amd64"
},
"product_reference": "registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:5909184fe3d37eb45ba3bf55d7b708d818f2a5abfc2949c4a7081a5cd30cea4f_amd64",
"relates_to_product_reference": "Red Hat OpenShift Dev Spaces 3.29"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:6217f0bb4937fa0e0fc0a5c86456fdc1992e169dfedc3d11d5165cef575d4d53_arm64 as a component of Red Hat OpenShift Dev Spaces 3.29",
"product_id": "Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:6217f0bb4937fa0e0fc0a5c86456fdc1992e169dfedc3d11d5165cef575d4d53_arm64"
},
"product_reference": "registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:6217f0bb4937fa0e0fc0a5c86456fdc1992e169dfedc3d11d5165cef575d4d53_arm64",
"relates_to_product_reference": "Red Hat OpenShift Dev Spaces 3.29"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:d55a55a36a23e7deb83718bd5dcc19b083b84d441add72ea7f4e28935e4717e3_ppc64le as a component of Red Hat OpenShift Dev Spaces 3.29",
"product_id": "Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:d55a55a36a23e7deb83718bd5dcc19b083b84d441add72ea7f4e28935e4717e3_ppc64le"
},
"product_reference": "registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:d55a55a36a23e7deb83718bd5dcc19b083b84d441add72ea7f4e28935e4717e3_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift Dev Spaces 3.29"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:0f8e1171f278395f3c72e4d9d3c0492bed15b678963fb2b6182bd65343b85a2e_ppc64le as a component of Red Hat OpenShift Dev Spaces 3.29",
"product_id": "Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:0f8e1171f278395f3c72e4d9d3c0492bed15b678963fb2b6182bd65343b85a2e_ppc64le"
},
"product_reference": "registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:0f8e1171f278395f3c72e4d9d3c0492bed15b678963fb2b6182bd65343b85a2e_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift Dev Spaces 3.29"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:823bb59b1c7d01557c29f9f1e4a4ee39814c38d826b06c3c9de4b8d179078419_s390x as a component of Red Hat OpenShift Dev Spaces 3.29",
"product_id": "Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:823bb59b1c7d01557c29f9f1e4a4ee39814c38d826b06c3c9de4b8d179078419_s390x"
},
"product_reference": "registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:823bb59b1c7d01557c29f9f1e4a4ee39814c38d826b06c3c9de4b8d179078419_s390x",
"relates_to_product_reference": "Red Hat OpenShift Dev Spaces 3.29"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:93c7e9b321c7e9aa4a412a993a6b20412e24772832cc0dd23bbb17aa25f15487_arm64 as a component of Red Hat OpenShift Dev Spaces 3.29",
"product_id": "Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:93c7e9b321c7e9aa4a412a993a6b20412e24772832cc0dd23bbb17aa25f15487_arm64"
},
"product_reference": "registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:93c7e9b321c7e9aa4a412a993a6b20412e24772832cc0dd23bbb17aa25f15487_arm64",
"relates_to_product_reference": "Red Hat OpenShift Dev Spaces 3.29"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:9e50b45f81fedab27e896f04b80bacaa01d8370ff5679147f95ad79b61972d83_amd64 as a component of Red Hat OpenShift Dev Spaces 3.29",
"product_id": "Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:9e50b45f81fedab27e896f04b80bacaa01d8370ff5679147f95ad79b61972d83_amd64"
},
"product_reference": "registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:9e50b45f81fedab27e896f04b80bacaa01d8370ff5679147f95ad79b61972d83_amd64",
"relates_to_product_reference": "Red Hat OpenShift Dev Spaces 3.29"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/devspaces/openvsx-rhel9@sha256:8f145d4e336bd77fcc94f0845f9ebf94563ffd96d56794d96a665c11241df152_s390x as a component of Red Hat OpenShift Dev Spaces 3.29",
"product_id": "Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:8f145d4e336bd77fcc94f0845f9ebf94563ffd96d56794d96a665c11241df152_s390x"
},
"product_reference": "registry.redhat.io/devspaces/openvsx-rhel9@sha256:8f145d4e336bd77fcc94f0845f9ebf94563ffd96d56794d96a665c11241df152_s390x",
"relates_to_product_reference": "Red Hat OpenShift Dev Spaces 3.29"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/devspaces/openvsx-rhel9@sha256:981917806c7faf31156241cc85577cf375ee566f78adaeadc096d0ba8482b835_ppc64le as a component of Red Hat OpenShift Dev Spaces 3.29",
"product_id": "Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:981917806c7faf31156241cc85577cf375ee566f78adaeadc096d0ba8482b835_ppc64le"
},
"product_reference": "registry.redhat.io/devspaces/openvsx-rhel9@sha256:981917806c7faf31156241cc85577cf375ee566f78adaeadc096d0ba8482b835_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift Dev Spaces 3.29"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/devspaces/openvsx-rhel9@sha256:af3ed91687500d64e2348cca4877c43f73211b8fbd132e7767c3521763185348_arm64 as a component of Red Hat OpenShift Dev Spaces 3.29",
"product_id": "Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:af3ed91687500d64e2348cca4877c43f73211b8fbd132e7767c3521763185348_arm64"
},
"product_reference": "registry.redhat.io/devspaces/openvsx-rhel9@sha256:af3ed91687500d64e2348cca4877c43f73211b8fbd132e7767c3521763185348_arm64",
"relates_to_product_reference": "Red Hat OpenShift Dev Spaces 3.29"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/devspaces/openvsx-rhel9@sha256:c05020e5ee5bddc62e38493cd16b6e4ffde7c2248a00d710f32b90a6ee12ceeb_amd64 as a component of Red Hat OpenShift Dev Spaces 3.29",
"product_id": "Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:c05020e5ee5bddc62e38493cd16b6e4ffde7c2248a00d710f32b90a6ee12ceeb_amd64"
},
"product_reference": "registry.redhat.io/devspaces/openvsx-rhel9@sha256:c05020e5ee5bddc62e38493cd16b6e4ffde7c2248a00d710f32b90a6ee12ceeb_amd64",
"relates_to_product_reference": "Red Hat OpenShift Dev Spaces 3.29"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2af86b409540513f6da1afa83110a5cafe8778d2ec16332faa31c964bd5f43f7_s390x as a component of Red Hat OpenShift Dev Spaces 3.29",
"product_id": "Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2af86b409540513f6da1afa83110a5cafe8778d2ec16332faa31c964bd5f43f7_s390x"
},
"product_reference": "registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2af86b409540513f6da1afa83110a5cafe8778d2ec16332faa31c964bd5f43f7_s390x",
"relates_to_product_reference": "Red Hat OpenShift Dev Spaces 3.29"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2f3bec76a833a72c7dfa93ed55e55e80e2621c154e5a2f156deaf78d7c6b97b4_arm64 as a component of Red Hat OpenShift Dev Spaces 3.29",
"product_id": "Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2f3bec76a833a72c7dfa93ed55e55e80e2621c154e5a2f156deaf78d7c6b97b4_arm64"
},
"product_reference": "registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2f3bec76a833a72c7dfa93ed55e55e80e2621c154e5a2f156deaf78d7c6b97b4_arm64",
"relates_to_product_reference": "Red Hat OpenShift Dev Spaces 3.29"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:81a2385be30079500f13f97a18607aa685abd61265bf8fa78bc6ce126341be50_ppc64le as a component of Red Hat OpenShift Dev Spaces 3.29",
"product_id": "Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:81a2385be30079500f13f97a18607aa685abd61265bf8fa78bc6ce126341be50_ppc64le"
},
"product_reference": "registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:81a2385be30079500f13f97a18607aa685abd61265bf8fa78bc6ce126341be50_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift Dev Spaces 3.29"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:fdc8f64f3b82b200a5e31b01b8612069f1aa897014085c1de755394552a1a70a_amd64 as a component of Red Hat OpenShift Dev Spaces 3.29",
"product_id": "Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:fdc8f64f3b82b200a5e31b01b8612069f1aa897014085c1de755394552a1a70a_amd64"
},
"product_reference": "registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:fdc8f64f3b82b200a5e31b01b8612069f1aa897014085c1de755394552a1a70a_amd64",
"relates_to_product_reference": "Red Hat OpenShift Dev Spaces 3.29"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/devspaces/server-rhel9@sha256:856b9088dbda4e7374daf232602f4bb90b05ad1be1df46d6e363a002f549f4de_arm64 as a component of Red Hat OpenShift Dev Spaces 3.29",
"product_id": "Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:856b9088dbda4e7374daf232602f4bb90b05ad1be1df46d6e363a002f549f4de_arm64"
},
"product_reference": "registry.redhat.io/devspaces/server-rhel9@sha256:856b9088dbda4e7374daf232602f4bb90b05ad1be1df46d6e363a002f549f4de_arm64",
"relates_to_product_reference": "Red Hat OpenShift Dev Spaces 3.29"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/devspaces/server-rhel9@sha256:a107ae2f7b140f2fb2243f33c378228c2f164cfd2d23f57e63f6c424fd400929_s390x as a component of Red Hat OpenShift Dev Spaces 3.29",
"product_id": "Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:a107ae2f7b140f2fb2243f33c378228c2f164cfd2d23f57e63f6c424fd400929_s390x"
},
"product_reference": "registry.redhat.io/devspaces/server-rhel9@sha256:a107ae2f7b140f2fb2243f33c378228c2f164cfd2d23f57e63f6c424fd400929_s390x",
"relates_to_product_reference": "Red Hat OpenShift Dev Spaces 3.29"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/devspaces/server-rhel9@sha256:e21de356b7d879800a96f6c5aeee6bc59a3ed9c58d36503f7089625ce887bb25_ppc64le as a component of Red Hat OpenShift Dev Spaces 3.29",
"product_id": "Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:e21de356b7d879800a96f6c5aeee6bc59a3ed9c58d36503f7089625ce887bb25_ppc64le"
},
"product_reference": "registry.redhat.io/devspaces/server-rhel9@sha256:e21de356b7d879800a96f6c5aeee6bc59a3ed9c58d36503f7089625ce887bb25_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift Dev Spaces 3.29"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/devspaces/server-rhel9@sha256:fcaf6d60d682cf51866948ea3b4846c2993e2801adb69dc745ffa832318f515c_amd64 as a component of Red Hat OpenShift Dev Spaces 3.29",
"product_id": "Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:fcaf6d60d682cf51866948ea3b4846c2993e2801adb69dc745ffa832318f515c_amd64"
},
"product_reference": "registry.redhat.io/devspaces/server-rhel9@sha256:fcaf6d60d682cf51866948ea3b4846c2993e2801adb69dc745ffa832318f515c_amd64",
"relates_to_product_reference": "Red Hat OpenShift Dev Spaces 3.29"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/devspaces/traefik-rhel9@sha256:11f005939e15d63057bf2f0a988b6baebc275d3e752e9f7696d0f7f5266fd5d6_amd64 as a component of Red Hat OpenShift Dev Spaces 3.29",
"product_id": "Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:11f005939e15d63057bf2f0a988b6baebc275d3e752e9f7696d0f7f5266fd5d6_amd64"
},
"product_reference": "registry.redhat.io/devspaces/traefik-rhel9@sha256:11f005939e15d63057bf2f0a988b6baebc275d3e752e9f7696d0f7f5266fd5d6_amd64",
"relates_to_product_reference": "Red Hat OpenShift Dev Spaces 3.29"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/devspaces/traefik-rhel9@sha256:4b4c98be96a932d508fad769eff61bff2a44e13baa60b22b6c543f4a11eb71c2_s390x as a component of Red Hat OpenShift Dev Spaces 3.29",
"product_id": "Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:4b4c98be96a932d508fad769eff61bff2a44e13baa60b22b6c543f4a11eb71c2_s390x"
},
"product_reference": "registry.redhat.io/devspaces/traefik-rhel9@sha256:4b4c98be96a932d508fad769eff61bff2a44e13baa60b22b6c543f4a11eb71c2_s390x",
"relates_to_product_reference": "Red Hat OpenShift Dev Spaces 3.29"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/devspaces/traefik-rhel9@sha256:6c87453ffe89e8be752ee40c8a9ccf6894c83be703f13901b1e8b64a4c0e549a_ppc64le as a component of Red Hat OpenShift Dev Spaces 3.29",
"product_id": "Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:6c87453ffe89e8be752ee40c8a9ccf6894c83be703f13901b1e8b64a4c0e549a_ppc64le"
},
"product_reference": "registry.redhat.io/devspaces/traefik-rhel9@sha256:6c87453ffe89e8be752ee40c8a9ccf6894c83be703f13901b1e8b64a4c0e549a_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift Dev Spaces 3.29"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/devspaces/traefik-rhel9@sha256:c18a1c50a4fc7081c6564d1c4ed4904212b7939a4f1f46afef0a36dc1d76f38e_arm64 as a component of Red Hat OpenShift Dev Spaces 3.29",
"product_id": "Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:c18a1c50a4fc7081c6564d1c4ed4904212b7939a4f1f46afef0a36dc1d76f38e_arm64"
},
"product_reference": "registry.redhat.io/devspaces/traefik-rhel9@sha256:c18a1c50a4fc7081c6564d1c4ed4904212b7939a4f1f46afef0a36dc1d76f38e_arm64",
"relates_to_product_reference": "Red Hat OpenShift Dev Spaces 3.29"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/devspaces/udi-base-rhel10@sha256:33367b9fdb3addce3302ad35bc10423505fefe3dd27b8b9013b26d66caac2a6c_arm64 as a component of Red Hat OpenShift Dev Spaces 3.29",
"product_id": "Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:33367b9fdb3addce3302ad35bc10423505fefe3dd27b8b9013b26d66caac2a6c_arm64"
},
"product_reference": "registry.redhat.io/devspaces/udi-base-rhel10@sha256:33367b9fdb3addce3302ad35bc10423505fefe3dd27b8b9013b26d66caac2a6c_arm64",
"relates_to_product_reference": "Red Hat OpenShift Dev Spaces 3.29"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/devspaces/udi-base-rhel10@sha256:72cbdb061cbcd295be5e66a0eabb409af16ade7f0aa12b04c2d7327e9e1a24ba_ppc64le as a component of Red Hat OpenShift Dev Spaces 3.29",
"product_id": "Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:72cbdb061cbcd295be5e66a0eabb409af16ade7f0aa12b04c2d7327e9e1a24ba_ppc64le"
},
"product_reference": "registry.redhat.io/devspaces/udi-base-rhel10@sha256:72cbdb061cbcd295be5e66a0eabb409af16ade7f0aa12b04c2d7327e9e1a24ba_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift Dev Spaces 3.29"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/devspaces/udi-base-rhel10@sha256:d0379f9da8cbb5514394a4550ff0d79f90fa691fcced5806296479c7b63353da_amd64 as a component of Red Hat OpenShift Dev Spaces 3.29",
"product_id": "Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:d0379f9da8cbb5514394a4550ff0d79f90fa691fcced5806296479c7b63353da_amd64"
},
"product_reference": "registry.redhat.io/devspaces/udi-base-rhel10@sha256:d0379f9da8cbb5514394a4550ff0d79f90fa691fcced5806296479c7b63353da_amd64",
"relates_to_product_reference": "Red Hat OpenShift Dev Spaces 3.29"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/devspaces/udi-base-rhel10@sha256:e99d1d877bd7335736cbaeb4db5b9904369a1d07f6df332c38ad79ff1256b67b_s390x as a component of Red Hat OpenShift Dev Spaces 3.29",
"product_id": "Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:e99d1d877bd7335736cbaeb4db5b9904369a1d07f6df332c38ad79ff1256b67b_s390x"
},
"product_reference": "registry.redhat.io/devspaces/udi-base-rhel10@sha256:e99d1d877bd7335736cbaeb4db5b9904369a1d07f6df332c38ad79ff1256b67b_s390x",
"relates_to_product_reference": "Red Hat OpenShift Dev Spaces 3.29"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/devspaces/udi-base-rhel9@sha256:06285611aef2528fc92c5cebb66ff4c74fe44d457f43cf9ec2f4a98c3c68d25e_amd64 as a component of Red Hat OpenShift Dev Spaces 3.29",
"product_id": "Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:06285611aef2528fc92c5cebb66ff4c74fe44d457f43cf9ec2f4a98c3c68d25e_amd64"
},
"product_reference": "registry.redhat.io/devspaces/udi-base-rhel9@sha256:06285611aef2528fc92c5cebb66ff4c74fe44d457f43cf9ec2f4a98c3c68d25e_amd64",
"relates_to_product_reference": "Red Hat OpenShift Dev Spaces 3.29"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/devspaces/udi-base-rhel9@sha256:25e0f4153eb5bc6fbc6b389d5adc81bfde103070ef58317c3c25ce4144a628d3_arm64 as a component of Red Hat OpenShift Dev Spaces 3.29",
"product_id": "Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:25e0f4153eb5bc6fbc6b389d5adc81bfde103070ef58317c3c25ce4144a628d3_arm64"
},
"product_reference": "registry.redhat.io/devspaces/udi-base-rhel9@sha256:25e0f4153eb5bc6fbc6b389d5adc81bfde103070ef58317c3c25ce4144a628d3_arm64",
"relates_to_product_reference": "Red Hat OpenShift Dev Spaces 3.29"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/devspaces/udi-base-rhel9@sha256:acd3c0369c18cbfa63a5972ed1721f93f1fcb456963ff855dea2c295baf1cdb8_ppc64le as a component of Red Hat OpenShift Dev Spaces 3.29",
"product_id": "Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:acd3c0369c18cbfa63a5972ed1721f93f1fcb456963ff855dea2c295baf1cdb8_ppc64le"
},
"product_reference": "registry.redhat.io/devspaces/udi-base-rhel9@sha256:acd3c0369c18cbfa63a5972ed1721f93f1fcb456963ff855dea2c295baf1cdb8_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift Dev Spaces 3.29"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/devspaces/udi-base-rhel9@sha256:d086075db52f4476aa64d7e2680baa01e99da246275fa9cae0ba4a74de63c7f3_s390x as a component of Red Hat OpenShift Dev Spaces 3.29",
"product_id": "Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:d086075db52f4476aa64d7e2680baa01e99da246275fa9cae0ba4a74de63c7f3_s390x"
},
"product_reference": "registry.redhat.io/devspaces/udi-base-rhel9@sha256:d086075db52f4476aa64d7e2680baa01e99da246275fa9cae0ba4a74de63c7f3_s390x",
"relates_to_product_reference": "Red Hat OpenShift Dev Spaces 3.29"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/devspaces/udi-rhel9@sha256:07d89c1b524d1451051feb865bc716da2197add90fa0c58c4cf4a82975ec846c_s390x as a component of Red Hat OpenShift Dev Spaces 3.29",
"product_id": "Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:07d89c1b524d1451051feb865bc716da2197add90fa0c58c4cf4a82975ec846c_s390x"
},
"product_reference": "registry.redhat.io/devspaces/udi-rhel9@sha256:07d89c1b524d1451051feb865bc716da2197add90fa0c58c4cf4a82975ec846c_s390x",
"relates_to_product_reference": "Red Hat OpenShift Dev Spaces 3.29"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/devspaces/udi-rhel9@sha256:6582e647d7dd604e25977ec1579969aa1fcb29ead1a0ea65833531d633bbdd2b_amd64 as a component of Red Hat OpenShift Dev Spaces 3.29",
"product_id": "Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:6582e647d7dd604e25977ec1579969aa1fcb29ead1a0ea65833531d633bbdd2b_amd64"
},
"product_reference": "registry.redhat.io/devspaces/udi-rhel9@sha256:6582e647d7dd604e25977ec1579969aa1fcb29ead1a0ea65833531d633bbdd2b_amd64",
"relates_to_product_reference": "Red Hat OpenShift Dev Spaces 3.29"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/devspaces/udi-rhel9@sha256:75e3aec03dffbd0f40f88a08ff5e0319f4515d73f0bcfae28b5fa526b494afc4_ppc64le as a component of Red Hat OpenShift Dev Spaces 3.29",
"product_id": "Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:75e3aec03dffbd0f40f88a08ff5e0319f4515d73f0bcfae28b5fa526b494afc4_ppc64le"
},
"product_reference": "registry.redhat.io/devspaces/udi-rhel9@sha256:75e3aec03dffbd0f40f88a08ff5e0319f4515d73f0bcfae28b5fa526b494afc4_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift Dev Spaces 3.29"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/devspaces/udi-rhel9@sha256:f0079e8ae53d84223aea2d3186e7bc6b525b7c03d307cde50cfb9f1bbc18712b_arm64 as a component of Red Hat OpenShift Dev Spaces 3.29",
"product_id": "Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:f0079e8ae53d84223aea2d3186e7bc6b525b7c03d307cde50cfb9f1bbc18712b_arm64"
},
"product_reference": "registry.redhat.io/devspaces/udi-rhel9@sha256:f0079e8ae53d84223aea2d3186e7bc6b525b7c03d307cde50cfb9f1bbc18712b_arm64",
"relates_to_product_reference": "Red Hat OpenShift Dev Spaces 3.29"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2026-6734",
"cwe": {
"id": "CWE-940",
"name": "Improper Verification of Source of a Communication Channel"
},
"discovery_date": "2026-06-17T19:04:00.272340+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:1384e5ba2b7d23119a49d8713826f4c65668bca310589ac7abd0c0d41c7e4c90_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:7f58528b1da9146aa55917324fdf2b375794742b34e5d10ff57f713af60746cd_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:844c3b1499b00aeadfc561642e53792ad80f535efd53b35793ba08b0f26c6d61_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:e1019c30e1d84e66d775d0d6fc7d051803dcbe44823fb2a1914807be39c79dae_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:8c9a7ebf430b9f4ca200c6c70b049e8456cf88fd8bf0871b42d65e8dc786d451_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:926d965e6fd12ec0d758270fb4c90bbdc1a05e60cc4c895cf9b671a296c9d867_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:e8e807451e3c5d8d0a8575e1280d7125a4ece51547a7b4a5cd247837662cedad_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:f2a24aa01cbe0d926d4aefe3b12eba21eb5ec7f87276e572a6814c727228624c_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:45cc0d783d1e7874ac73dfbdfe7e03c63b227ab3c4f1e15a0a2f5c97956a76d9_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:6f3eb26734e89375c3e1fb7ac366e12dc0d41bac8f07de9210c7e9845a01eec1_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:768c45fa9f35d98dfe5cfe1ea12f552402bf68ac6e1f828b14310ef59ce57c40_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:b5f1bf30495f6be97c696cf7f90768629cee96f8d106f745bf95fdefddc99592_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:6c85b42ede0f4745ed558bcb03d033c49f56cef17a70c12e5308066124cac6e3_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:091529a93e258a612fd4a98222e6a370ee10b4e97efa791b50f79a2670163d01_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0e8958a22f6771ddfe32b34027c69dbbef65d980c7e465a79d4202d2627994ad_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:5a8b0203ff083113e8b30a123ab30c4bad571f57fb59c1e7e01807b92552504e_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:89bf6a32a0935cacadbc6d23566dce6ca741e404d58c11050638c7b8e868028b_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:077cc953354ea2edd85569a622f97c15d44163d68234e7a9fdee899d25c19cdb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:66285f866090e1bfbedacd592e9d5ea9f2a30b88aa03bc86bc790d6b98a929a4_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:8c80054171d5063457df4bd074674b1824783a101dacb6137da227080aff957c_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:b0f15904251c6665961eef9c944d00f17499f7219351fe213fe7935f62fbf7ac_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:62476ac2fb0096caa9b181f523cc3573ccffe70be1433f08d1d0255b6d3a0640_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:6f632bc9829880a44e2e94084284b52683b4a01dc3315043b0aa32eb344b16cb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:aa3d1cf7853bfe8307efb01f714585f378d1d3d4ed5de7c8808a72e4aeecd4f3_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:bf1d4b2b1ef03e65be59699ce3233a75a34e1777abc182984c7a8efa698a936e_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:141f17d12c748c7ab9e94cfd9db7e2492d3063e7478249d6430ac0d8fcfb8875_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:5909184fe3d37eb45ba3bf55d7b708d818f2a5abfc2949c4a7081a5cd30cea4f_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:6217f0bb4937fa0e0fc0a5c86456fdc1992e169dfedc3d11d5165cef575d4d53_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:d55a55a36a23e7deb83718bd5dcc19b083b84d441add72ea7f4e28935e4717e3_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:0f8e1171f278395f3c72e4d9d3c0492bed15b678963fb2b6182bd65343b85a2e_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:823bb59b1c7d01557c29f9f1e4a4ee39814c38d826b06c3c9de4b8d179078419_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:93c7e9b321c7e9aa4a412a993a6b20412e24772832cc0dd23bbb17aa25f15487_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:9e50b45f81fedab27e896f04b80bacaa01d8370ff5679147f95ad79b61972d83_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:856b9088dbda4e7374daf232602f4bb90b05ad1be1df46d6e363a002f549f4de_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:a107ae2f7b140f2fb2243f33c378228c2f164cfd2d23f57e63f6c424fd400929_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:e21de356b7d879800a96f6c5aeee6bc59a3ed9c58d36503f7089625ce887bb25_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:fcaf6d60d682cf51866948ea3b4846c2993e2801adb69dc745ffa832318f515c_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:11f005939e15d63057bf2f0a988b6baebc275d3e752e9f7696d0f7f5266fd5d6_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:4b4c98be96a932d508fad769eff61bff2a44e13baa60b22b6c543f4a11eb71c2_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:6c87453ffe89e8be752ee40c8a9ccf6894c83be703f13901b1e8b64a4c0e549a_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:c18a1c50a4fc7081c6564d1c4ed4904212b7939a4f1f46afef0a36dc1d76f38e_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:33367b9fdb3addce3302ad35bc10423505fefe3dd27b8b9013b26d66caac2a6c_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:72cbdb061cbcd295be5e66a0eabb409af16ade7f0aa12b04c2d7327e9e1a24ba_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:d0379f9da8cbb5514394a4550ff0d79f90fa691fcced5806296479c7b63353da_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:e99d1d877bd7335736cbaeb4db5b9904369a1d07f6df332c38ad79ff1256b67b_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:06285611aef2528fc92c5cebb66ff4c74fe44d457f43cf9ec2f4a98c3c68d25e_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:25e0f4153eb5bc6fbc6b389d5adc81bfde103070ef58317c3c25ce4144a628d3_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:acd3c0369c18cbfa63a5972ed1721f93f1fcb456963ff855dea2c295baf1cdb8_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:d086075db52f4476aa64d7e2680baa01e99da246275fa9cae0ba4a74de63c7f3_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:07d89c1b524d1451051feb865bc716da2197add90fa0c58c4cf4a82975ec846c_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:6582e647d7dd604e25977ec1579969aa1fcb29ead1a0ea65833531d633bbdd2b_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:75e3aec03dffbd0f40f88a08ff5e0319f4515d73f0bcfae28b5fa526b494afc4_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:f0079e8ae53d84223aea2d3186e7bc6b525b7c03d307cde50cfb9f1bbc18712b_arm64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2490024"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in undici. When using Socks5ProxyAgent, undici incorrectly reuses a single connection pool across different origins. This can lead to cross-origin request routing, where sensitive credentials and data intended for one destination are sent to another. Consequently, responses from unintended origins may be trusted, and secure HTTPS connections could be silently downgraded to unencrypted HTTP, resulting in information disclosure and data integrity issues.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "undici: undici: Information disclosure and data integrity issues due to incorrect Socks5ProxyAgent connection routing",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This is rated as an Important security flaw. The `undici` library, when configured with `Socks5ProxyAgent` to handle requests for multiple origins, incorrectly reuses connection pools. This can lead to sensitive data and credentials being misrouted to unintended destinations, potentially downgrading HTTPS connections to HTTP and compromising data integrity and confidentiality. Red Hat products utilizing `undici` with `Socks5ProxyAgent` in multi-origin scenarios are affected.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:137ffbb95d463d95da6c350600d968f3cd0e9873bf2e7c6edf952ae3229e9e2b_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:1cccdfd7e90877c27c6d8caea4f1e8ad89bb97c83d97ddf570d4f4ee116f1986_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:71657b82894cfd9e350746f48965e148868a675b9a20dcb7f94a6bc7a5b16ea5_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:881e405e32821ef10cf992c7a633281c1dc45df721fe909048df1689472000ce_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:8f145d4e336bd77fcc94f0845f9ebf94563ffd96d56794d96a665c11241df152_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:981917806c7faf31156241cc85577cf375ee566f78adaeadc096d0ba8482b835_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:af3ed91687500d64e2348cca4877c43f73211b8fbd132e7767c3521763185348_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:c05020e5ee5bddc62e38493cd16b6e4ffde7c2248a00d710f32b90a6ee12ceeb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2af86b409540513f6da1afa83110a5cafe8778d2ec16332faa31c964bd5f43f7_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2f3bec76a833a72c7dfa93ed55e55e80e2621c154e5a2f156deaf78d7c6b97b4_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:81a2385be30079500f13f97a18607aa685abd61265bf8fa78bc6ce126341be50_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:fdc8f64f3b82b200a5e31b01b8612069f1aa897014085c1de755394552a1a70a_amd64"
],
"known_not_affected": [
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:1384e5ba2b7d23119a49d8713826f4c65668bca310589ac7abd0c0d41c7e4c90_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:7f58528b1da9146aa55917324fdf2b375794742b34e5d10ff57f713af60746cd_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:844c3b1499b00aeadfc561642e53792ad80f535efd53b35793ba08b0f26c6d61_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:e1019c30e1d84e66d775d0d6fc7d051803dcbe44823fb2a1914807be39c79dae_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:8c9a7ebf430b9f4ca200c6c70b049e8456cf88fd8bf0871b42d65e8dc786d451_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:926d965e6fd12ec0d758270fb4c90bbdc1a05e60cc4c895cf9b671a296c9d867_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:e8e807451e3c5d8d0a8575e1280d7125a4ece51547a7b4a5cd247837662cedad_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:f2a24aa01cbe0d926d4aefe3b12eba21eb5ec7f87276e572a6814c727228624c_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:45cc0d783d1e7874ac73dfbdfe7e03c63b227ab3c4f1e15a0a2f5c97956a76d9_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:6f3eb26734e89375c3e1fb7ac366e12dc0d41bac8f07de9210c7e9845a01eec1_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:768c45fa9f35d98dfe5cfe1ea12f552402bf68ac6e1f828b14310ef59ce57c40_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:b5f1bf30495f6be97c696cf7f90768629cee96f8d106f745bf95fdefddc99592_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:6c85b42ede0f4745ed558bcb03d033c49f56cef17a70c12e5308066124cac6e3_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:091529a93e258a612fd4a98222e6a370ee10b4e97efa791b50f79a2670163d01_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0e8958a22f6771ddfe32b34027c69dbbef65d980c7e465a79d4202d2627994ad_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:5a8b0203ff083113e8b30a123ab30c4bad571f57fb59c1e7e01807b92552504e_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:89bf6a32a0935cacadbc6d23566dce6ca741e404d58c11050638c7b8e868028b_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:077cc953354ea2edd85569a622f97c15d44163d68234e7a9fdee899d25c19cdb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:66285f866090e1bfbedacd592e9d5ea9f2a30b88aa03bc86bc790d6b98a929a4_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:8c80054171d5063457df4bd074674b1824783a101dacb6137da227080aff957c_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:b0f15904251c6665961eef9c944d00f17499f7219351fe213fe7935f62fbf7ac_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:62476ac2fb0096caa9b181f523cc3573ccffe70be1433f08d1d0255b6d3a0640_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:6f632bc9829880a44e2e94084284b52683b4a01dc3315043b0aa32eb344b16cb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:aa3d1cf7853bfe8307efb01f714585f378d1d3d4ed5de7c8808a72e4aeecd4f3_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:bf1d4b2b1ef03e65be59699ce3233a75a34e1777abc182984c7a8efa698a936e_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:141f17d12c748c7ab9e94cfd9db7e2492d3063e7478249d6430ac0d8fcfb8875_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:5909184fe3d37eb45ba3bf55d7b708d818f2a5abfc2949c4a7081a5cd30cea4f_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:6217f0bb4937fa0e0fc0a5c86456fdc1992e169dfedc3d11d5165cef575d4d53_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:d55a55a36a23e7deb83718bd5dcc19b083b84d441add72ea7f4e28935e4717e3_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:0f8e1171f278395f3c72e4d9d3c0492bed15b678963fb2b6182bd65343b85a2e_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:823bb59b1c7d01557c29f9f1e4a4ee39814c38d826b06c3c9de4b8d179078419_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:93c7e9b321c7e9aa4a412a993a6b20412e24772832cc0dd23bbb17aa25f15487_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:9e50b45f81fedab27e896f04b80bacaa01d8370ff5679147f95ad79b61972d83_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:856b9088dbda4e7374daf232602f4bb90b05ad1be1df46d6e363a002f549f4de_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:a107ae2f7b140f2fb2243f33c378228c2f164cfd2d23f57e63f6c424fd400929_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:e21de356b7d879800a96f6c5aeee6bc59a3ed9c58d36503f7089625ce887bb25_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:fcaf6d60d682cf51866948ea3b4846c2993e2801adb69dc745ffa832318f515c_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:11f005939e15d63057bf2f0a988b6baebc275d3e752e9f7696d0f7f5266fd5d6_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:4b4c98be96a932d508fad769eff61bff2a44e13baa60b22b6c543f4a11eb71c2_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:6c87453ffe89e8be752ee40c8a9ccf6894c83be703f13901b1e8b64a4c0e549a_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:c18a1c50a4fc7081c6564d1c4ed4904212b7939a4f1f46afef0a36dc1d76f38e_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:33367b9fdb3addce3302ad35bc10423505fefe3dd27b8b9013b26d66caac2a6c_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:72cbdb061cbcd295be5e66a0eabb409af16ade7f0aa12b04c2d7327e9e1a24ba_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:d0379f9da8cbb5514394a4550ff0d79f90fa691fcced5806296479c7b63353da_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:e99d1d877bd7335736cbaeb4db5b9904369a1d07f6df332c38ad79ff1256b67b_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:06285611aef2528fc92c5cebb66ff4c74fe44d457f43cf9ec2f4a98c3c68d25e_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:25e0f4153eb5bc6fbc6b389d5adc81bfde103070ef58317c3c25ce4144a628d3_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:acd3c0369c18cbfa63a5972ed1721f93f1fcb456963ff855dea2c295baf1cdb8_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:d086075db52f4476aa64d7e2680baa01e99da246275fa9cae0ba4a74de63c7f3_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:07d89c1b524d1451051feb865bc716da2197add90fa0c58c4cf4a82975ec846c_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:6582e647d7dd604e25977ec1579969aa1fcb29ead1a0ea65833531d633bbdd2b_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:75e3aec03dffbd0f40f88a08ff5e0319f4515d73f0bcfae28b5fa526b494afc4_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:f0079e8ae53d84223aea2d3186e7bc6b525b7c03d307cde50cfb9f1bbc18712b_arm64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-6734"
},
{
"category": "external",
"summary": "RHBZ#2490024",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2490024"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-6734",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-6734"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-6734",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-6734"
},
{
"category": "external",
"summary": "https://cna.openjsf.org/security-advisories.html",
"url": "https://cna.openjsf.org/security-advisories.html"
},
{
"category": "external",
"summary": "https://github.com/nodejs/undici/security/advisories/GHSA-hm92-r4w5-c3mj",
"url": "https://github.com/nodejs/undici/security/advisories/GHSA-hm92-r4w5-c3mj"
}
],
"release_date": "2026-06-17T16:36:55.439000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T17:12:17+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\nFor details on how to apply this update, refer to:\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:137ffbb95d463d95da6c350600d968f3cd0e9873bf2e7c6edf952ae3229e9e2b_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:1cccdfd7e90877c27c6d8caea4f1e8ad89bb97c83d97ddf570d4f4ee116f1986_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:71657b82894cfd9e350746f48965e148868a675b9a20dcb7f94a6bc7a5b16ea5_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:881e405e32821ef10cf992c7a633281c1dc45df721fe909048df1689472000ce_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:8f145d4e336bd77fcc94f0845f9ebf94563ffd96d56794d96a665c11241df152_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:981917806c7faf31156241cc85577cf375ee566f78adaeadc096d0ba8482b835_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:af3ed91687500d64e2348cca4877c43f73211b8fbd132e7767c3521763185348_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:c05020e5ee5bddc62e38493cd16b6e4ffde7c2248a00d710f32b90a6ee12ceeb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2af86b409540513f6da1afa83110a5cafe8778d2ec16332faa31c964bd5f43f7_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2f3bec76a833a72c7dfa93ed55e55e80e2621c154e5a2f156deaf78d7c6b97b4_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:81a2385be30079500f13f97a18607aa685abd61265bf8fa78bc6ce126341be50_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:fdc8f64f3b82b200a5e31b01b8612069f1aa897014085c1de755394552a1a70a_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36820"
},
{
"category": "workaround",
"details": "The single most impactful mitigation is applying network egress controls to restrict which external destinations affected applications can reach. Because the vulnerability causes requests to be misrouted to wrong origins, limiting the set of reachable origins directly reduces the attack surface. These controls collectively limit the blast radius of the connection pool misrouting \u2014 the attacker must compromise one of the explicitly allowed destinations rather than any arbitrary origin \u2014 but they do not fix the underlying logic bug.",
"product_ids": [
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:1384e5ba2b7d23119a49d8713826f4c65668bca310589ac7abd0c0d41c7e4c90_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:7f58528b1da9146aa55917324fdf2b375794742b34e5d10ff57f713af60746cd_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:844c3b1499b00aeadfc561642e53792ad80f535efd53b35793ba08b0f26c6d61_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:e1019c30e1d84e66d775d0d6fc7d051803dcbe44823fb2a1914807be39c79dae_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:8c9a7ebf430b9f4ca200c6c70b049e8456cf88fd8bf0871b42d65e8dc786d451_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:926d965e6fd12ec0d758270fb4c90bbdc1a05e60cc4c895cf9b671a296c9d867_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:e8e807451e3c5d8d0a8575e1280d7125a4ece51547a7b4a5cd247837662cedad_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:f2a24aa01cbe0d926d4aefe3b12eba21eb5ec7f87276e572a6814c727228624c_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:45cc0d783d1e7874ac73dfbdfe7e03c63b227ab3c4f1e15a0a2f5c97956a76d9_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:6f3eb26734e89375c3e1fb7ac366e12dc0d41bac8f07de9210c7e9845a01eec1_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:768c45fa9f35d98dfe5cfe1ea12f552402bf68ac6e1f828b14310ef59ce57c40_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:b5f1bf30495f6be97c696cf7f90768629cee96f8d106f745bf95fdefddc99592_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:137ffbb95d463d95da6c350600d968f3cd0e9873bf2e7c6edf952ae3229e9e2b_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:1cccdfd7e90877c27c6d8caea4f1e8ad89bb97c83d97ddf570d4f4ee116f1986_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:71657b82894cfd9e350746f48965e148868a675b9a20dcb7f94a6bc7a5b16ea5_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:881e405e32821ef10cf992c7a633281c1dc45df721fe909048df1689472000ce_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:6c85b42ede0f4745ed558bcb03d033c49f56cef17a70c12e5308066124cac6e3_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:091529a93e258a612fd4a98222e6a370ee10b4e97efa791b50f79a2670163d01_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0e8958a22f6771ddfe32b34027c69dbbef65d980c7e465a79d4202d2627994ad_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:5a8b0203ff083113e8b30a123ab30c4bad571f57fb59c1e7e01807b92552504e_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:89bf6a32a0935cacadbc6d23566dce6ca741e404d58c11050638c7b8e868028b_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:077cc953354ea2edd85569a622f97c15d44163d68234e7a9fdee899d25c19cdb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:66285f866090e1bfbedacd592e9d5ea9f2a30b88aa03bc86bc790d6b98a929a4_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:8c80054171d5063457df4bd074674b1824783a101dacb6137da227080aff957c_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:b0f15904251c6665961eef9c944d00f17499f7219351fe213fe7935f62fbf7ac_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:62476ac2fb0096caa9b181f523cc3573ccffe70be1433f08d1d0255b6d3a0640_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:6f632bc9829880a44e2e94084284b52683b4a01dc3315043b0aa32eb344b16cb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:aa3d1cf7853bfe8307efb01f714585f378d1d3d4ed5de7c8808a72e4aeecd4f3_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:bf1d4b2b1ef03e65be59699ce3233a75a34e1777abc182984c7a8efa698a936e_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:141f17d12c748c7ab9e94cfd9db7e2492d3063e7478249d6430ac0d8fcfb8875_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:5909184fe3d37eb45ba3bf55d7b708d818f2a5abfc2949c4a7081a5cd30cea4f_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:6217f0bb4937fa0e0fc0a5c86456fdc1992e169dfedc3d11d5165cef575d4d53_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:d55a55a36a23e7deb83718bd5dcc19b083b84d441add72ea7f4e28935e4717e3_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:0f8e1171f278395f3c72e4d9d3c0492bed15b678963fb2b6182bd65343b85a2e_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:823bb59b1c7d01557c29f9f1e4a4ee39814c38d826b06c3c9de4b8d179078419_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:93c7e9b321c7e9aa4a412a993a6b20412e24772832cc0dd23bbb17aa25f15487_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:9e50b45f81fedab27e896f04b80bacaa01d8370ff5679147f95ad79b61972d83_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:8f145d4e336bd77fcc94f0845f9ebf94563ffd96d56794d96a665c11241df152_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:981917806c7faf31156241cc85577cf375ee566f78adaeadc096d0ba8482b835_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:af3ed91687500d64e2348cca4877c43f73211b8fbd132e7767c3521763185348_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:c05020e5ee5bddc62e38493cd16b6e4ffde7c2248a00d710f32b90a6ee12ceeb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2af86b409540513f6da1afa83110a5cafe8778d2ec16332faa31c964bd5f43f7_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2f3bec76a833a72c7dfa93ed55e55e80e2621c154e5a2f156deaf78d7c6b97b4_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:81a2385be30079500f13f97a18607aa685abd61265bf8fa78bc6ce126341be50_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:fdc8f64f3b82b200a5e31b01b8612069f1aa897014085c1de755394552a1a70a_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:856b9088dbda4e7374daf232602f4bb90b05ad1be1df46d6e363a002f549f4de_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:a107ae2f7b140f2fb2243f33c378228c2f164cfd2d23f57e63f6c424fd400929_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:e21de356b7d879800a96f6c5aeee6bc59a3ed9c58d36503f7089625ce887bb25_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:fcaf6d60d682cf51866948ea3b4846c2993e2801adb69dc745ffa832318f515c_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:11f005939e15d63057bf2f0a988b6baebc275d3e752e9f7696d0f7f5266fd5d6_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:4b4c98be96a932d508fad769eff61bff2a44e13baa60b22b6c543f4a11eb71c2_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:6c87453ffe89e8be752ee40c8a9ccf6894c83be703f13901b1e8b64a4c0e549a_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:c18a1c50a4fc7081c6564d1c4ed4904212b7939a4f1f46afef0a36dc1d76f38e_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:33367b9fdb3addce3302ad35bc10423505fefe3dd27b8b9013b26d66caac2a6c_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:72cbdb061cbcd295be5e66a0eabb409af16ade7f0aa12b04c2d7327e9e1a24ba_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:d0379f9da8cbb5514394a4550ff0d79f90fa691fcced5806296479c7b63353da_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:e99d1d877bd7335736cbaeb4db5b9904369a1d07f6df332c38ad79ff1256b67b_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:06285611aef2528fc92c5cebb66ff4c74fe44d457f43cf9ec2f4a98c3c68d25e_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:25e0f4153eb5bc6fbc6b389d5adc81bfde103070ef58317c3c25ce4144a628d3_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:acd3c0369c18cbfa63a5972ed1721f93f1fcb456963ff855dea2c295baf1cdb8_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:d086075db52f4476aa64d7e2680baa01e99da246275fa9cae0ba4a74de63c7f3_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:07d89c1b524d1451051feb865bc716da2197add90fa0c58c4cf4a82975ec846c_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:6582e647d7dd604e25977ec1579969aa1fcb29ead1a0ea65833531d633bbdd2b_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:75e3aec03dffbd0f40f88a08ff5e0319f4515d73f0bcfae28b5fa526b494afc4_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:f0079e8ae53d84223aea2d3186e7bc6b525b7c03d307cde50cfb9f1bbc18712b_arm64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:1384e5ba2b7d23119a49d8713826f4c65668bca310589ac7abd0c0d41c7e4c90_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:7f58528b1da9146aa55917324fdf2b375794742b34e5d10ff57f713af60746cd_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:844c3b1499b00aeadfc561642e53792ad80f535efd53b35793ba08b0f26c6d61_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:e1019c30e1d84e66d775d0d6fc7d051803dcbe44823fb2a1914807be39c79dae_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:8c9a7ebf430b9f4ca200c6c70b049e8456cf88fd8bf0871b42d65e8dc786d451_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:926d965e6fd12ec0d758270fb4c90bbdc1a05e60cc4c895cf9b671a296c9d867_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:e8e807451e3c5d8d0a8575e1280d7125a4ece51547a7b4a5cd247837662cedad_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:f2a24aa01cbe0d926d4aefe3b12eba21eb5ec7f87276e572a6814c727228624c_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:45cc0d783d1e7874ac73dfbdfe7e03c63b227ab3c4f1e15a0a2f5c97956a76d9_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:6f3eb26734e89375c3e1fb7ac366e12dc0d41bac8f07de9210c7e9845a01eec1_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:768c45fa9f35d98dfe5cfe1ea12f552402bf68ac6e1f828b14310ef59ce57c40_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:b5f1bf30495f6be97c696cf7f90768629cee96f8d106f745bf95fdefddc99592_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:137ffbb95d463d95da6c350600d968f3cd0e9873bf2e7c6edf952ae3229e9e2b_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:1cccdfd7e90877c27c6d8caea4f1e8ad89bb97c83d97ddf570d4f4ee116f1986_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:71657b82894cfd9e350746f48965e148868a675b9a20dcb7f94a6bc7a5b16ea5_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:881e405e32821ef10cf992c7a633281c1dc45df721fe909048df1689472000ce_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:6c85b42ede0f4745ed558bcb03d033c49f56cef17a70c12e5308066124cac6e3_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:091529a93e258a612fd4a98222e6a370ee10b4e97efa791b50f79a2670163d01_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0e8958a22f6771ddfe32b34027c69dbbef65d980c7e465a79d4202d2627994ad_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:5a8b0203ff083113e8b30a123ab30c4bad571f57fb59c1e7e01807b92552504e_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:89bf6a32a0935cacadbc6d23566dce6ca741e404d58c11050638c7b8e868028b_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:077cc953354ea2edd85569a622f97c15d44163d68234e7a9fdee899d25c19cdb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:66285f866090e1bfbedacd592e9d5ea9f2a30b88aa03bc86bc790d6b98a929a4_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:8c80054171d5063457df4bd074674b1824783a101dacb6137da227080aff957c_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:b0f15904251c6665961eef9c944d00f17499f7219351fe213fe7935f62fbf7ac_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:62476ac2fb0096caa9b181f523cc3573ccffe70be1433f08d1d0255b6d3a0640_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:6f632bc9829880a44e2e94084284b52683b4a01dc3315043b0aa32eb344b16cb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:aa3d1cf7853bfe8307efb01f714585f378d1d3d4ed5de7c8808a72e4aeecd4f3_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:bf1d4b2b1ef03e65be59699ce3233a75a34e1777abc182984c7a8efa698a936e_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:141f17d12c748c7ab9e94cfd9db7e2492d3063e7478249d6430ac0d8fcfb8875_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:5909184fe3d37eb45ba3bf55d7b708d818f2a5abfc2949c4a7081a5cd30cea4f_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:6217f0bb4937fa0e0fc0a5c86456fdc1992e169dfedc3d11d5165cef575d4d53_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:d55a55a36a23e7deb83718bd5dcc19b083b84d441add72ea7f4e28935e4717e3_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:0f8e1171f278395f3c72e4d9d3c0492bed15b678963fb2b6182bd65343b85a2e_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:823bb59b1c7d01557c29f9f1e4a4ee39814c38d826b06c3c9de4b8d179078419_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:93c7e9b321c7e9aa4a412a993a6b20412e24772832cc0dd23bbb17aa25f15487_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:9e50b45f81fedab27e896f04b80bacaa01d8370ff5679147f95ad79b61972d83_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:8f145d4e336bd77fcc94f0845f9ebf94563ffd96d56794d96a665c11241df152_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:981917806c7faf31156241cc85577cf375ee566f78adaeadc096d0ba8482b835_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:af3ed91687500d64e2348cca4877c43f73211b8fbd132e7767c3521763185348_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:c05020e5ee5bddc62e38493cd16b6e4ffde7c2248a00d710f32b90a6ee12ceeb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2af86b409540513f6da1afa83110a5cafe8778d2ec16332faa31c964bd5f43f7_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2f3bec76a833a72c7dfa93ed55e55e80e2621c154e5a2f156deaf78d7c6b97b4_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:81a2385be30079500f13f97a18607aa685abd61265bf8fa78bc6ce126341be50_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:fdc8f64f3b82b200a5e31b01b8612069f1aa897014085c1de755394552a1a70a_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:856b9088dbda4e7374daf232602f4bb90b05ad1be1df46d6e363a002f549f4de_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:a107ae2f7b140f2fb2243f33c378228c2f164cfd2d23f57e63f6c424fd400929_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:e21de356b7d879800a96f6c5aeee6bc59a3ed9c58d36503f7089625ce887bb25_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:fcaf6d60d682cf51866948ea3b4846c2993e2801adb69dc745ffa832318f515c_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:11f005939e15d63057bf2f0a988b6baebc275d3e752e9f7696d0f7f5266fd5d6_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:4b4c98be96a932d508fad769eff61bff2a44e13baa60b22b6c543f4a11eb71c2_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:6c87453ffe89e8be752ee40c8a9ccf6894c83be703f13901b1e8b64a4c0e549a_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:c18a1c50a4fc7081c6564d1c4ed4904212b7939a4f1f46afef0a36dc1d76f38e_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:33367b9fdb3addce3302ad35bc10423505fefe3dd27b8b9013b26d66caac2a6c_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:72cbdb061cbcd295be5e66a0eabb409af16ade7f0aa12b04c2d7327e9e1a24ba_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:d0379f9da8cbb5514394a4550ff0d79f90fa691fcced5806296479c7b63353da_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:e99d1d877bd7335736cbaeb4db5b9904369a1d07f6df332c38ad79ff1256b67b_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:06285611aef2528fc92c5cebb66ff4c74fe44d457f43cf9ec2f4a98c3c68d25e_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:25e0f4153eb5bc6fbc6b389d5adc81bfde103070ef58317c3c25ce4144a628d3_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:acd3c0369c18cbfa63a5972ed1721f93f1fcb456963ff855dea2c295baf1cdb8_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:d086075db52f4476aa64d7e2680baa01e99da246275fa9cae0ba4a74de63c7f3_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:07d89c1b524d1451051feb865bc716da2197add90fa0c58c4cf4a82975ec846c_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:6582e647d7dd604e25977ec1579969aa1fcb29ead1a0ea65833531d633bbdd2b_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:75e3aec03dffbd0f40f88a08ff5e0319f4515d73f0bcfae28b5fa526b494afc4_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:f0079e8ae53d84223aea2d3186e7bc6b525b7c03d307cde50cfb9f1bbc18712b_arm64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "undici: undici: Information disclosure and data integrity issues due to incorrect Socks5ProxyAgent connection routing"
},
{
"cve": "CVE-2026-9697",
"cwe": {
"id": "CWE-295",
"name": "Improper Certificate Validation"
},
"discovery_date": "2026-06-17T19:03:30.813843+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:1384e5ba2b7d23119a49d8713826f4c65668bca310589ac7abd0c0d41c7e4c90_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:7f58528b1da9146aa55917324fdf2b375794742b34e5d10ff57f713af60746cd_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:844c3b1499b00aeadfc561642e53792ad80f535efd53b35793ba08b0f26c6d61_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:e1019c30e1d84e66d775d0d6fc7d051803dcbe44823fb2a1914807be39c79dae_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:8c9a7ebf430b9f4ca200c6c70b049e8456cf88fd8bf0871b42d65e8dc786d451_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:926d965e6fd12ec0d758270fb4c90bbdc1a05e60cc4c895cf9b671a296c9d867_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:e8e807451e3c5d8d0a8575e1280d7125a4ece51547a7b4a5cd247837662cedad_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:f2a24aa01cbe0d926d4aefe3b12eba21eb5ec7f87276e572a6814c727228624c_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:45cc0d783d1e7874ac73dfbdfe7e03c63b227ab3c4f1e15a0a2f5c97956a76d9_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:6f3eb26734e89375c3e1fb7ac366e12dc0d41bac8f07de9210c7e9845a01eec1_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:768c45fa9f35d98dfe5cfe1ea12f552402bf68ac6e1f828b14310ef59ce57c40_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:b5f1bf30495f6be97c696cf7f90768629cee96f8d106f745bf95fdefddc99592_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:6c85b42ede0f4745ed558bcb03d033c49f56cef17a70c12e5308066124cac6e3_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:091529a93e258a612fd4a98222e6a370ee10b4e97efa791b50f79a2670163d01_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0e8958a22f6771ddfe32b34027c69dbbef65d980c7e465a79d4202d2627994ad_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:5a8b0203ff083113e8b30a123ab30c4bad571f57fb59c1e7e01807b92552504e_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:89bf6a32a0935cacadbc6d23566dce6ca741e404d58c11050638c7b8e868028b_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:077cc953354ea2edd85569a622f97c15d44163d68234e7a9fdee899d25c19cdb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:66285f866090e1bfbedacd592e9d5ea9f2a30b88aa03bc86bc790d6b98a929a4_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:8c80054171d5063457df4bd074674b1824783a101dacb6137da227080aff957c_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:b0f15904251c6665961eef9c944d00f17499f7219351fe213fe7935f62fbf7ac_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:62476ac2fb0096caa9b181f523cc3573ccffe70be1433f08d1d0255b6d3a0640_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:6f632bc9829880a44e2e94084284b52683b4a01dc3315043b0aa32eb344b16cb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:aa3d1cf7853bfe8307efb01f714585f378d1d3d4ed5de7c8808a72e4aeecd4f3_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:bf1d4b2b1ef03e65be59699ce3233a75a34e1777abc182984c7a8efa698a936e_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:141f17d12c748c7ab9e94cfd9db7e2492d3063e7478249d6430ac0d8fcfb8875_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:5909184fe3d37eb45ba3bf55d7b708d818f2a5abfc2949c4a7081a5cd30cea4f_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:6217f0bb4937fa0e0fc0a5c86456fdc1992e169dfedc3d11d5165cef575d4d53_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:d55a55a36a23e7deb83718bd5dcc19b083b84d441add72ea7f4e28935e4717e3_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:0f8e1171f278395f3c72e4d9d3c0492bed15b678963fb2b6182bd65343b85a2e_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:823bb59b1c7d01557c29f9f1e4a4ee39814c38d826b06c3c9de4b8d179078419_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:93c7e9b321c7e9aa4a412a993a6b20412e24772832cc0dd23bbb17aa25f15487_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:9e50b45f81fedab27e896f04b80bacaa01d8370ff5679147f95ad79b61972d83_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:856b9088dbda4e7374daf232602f4bb90b05ad1be1df46d6e363a002f549f4de_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:a107ae2f7b140f2fb2243f33c378228c2f164cfd2d23f57e63f6c424fd400929_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:e21de356b7d879800a96f6c5aeee6bc59a3ed9c58d36503f7089625ce887bb25_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:fcaf6d60d682cf51866948ea3b4846c2993e2801adb69dc745ffa832318f515c_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:11f005939e15d63057bf2f0a988b6baebc275d3e752e9f7696d0f7f5266fd5d6_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:4b4c98be96a932d508fad769eff61bff2a44e13baa60b22b6c543f4a11eb71c2_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:6c87453ffe89e8be752ee40c8a9ccf6894c83be703f13901b1e8b64a4c0e549a_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:c18a1c50a4fc7081c6564d1c4ed4904212b7939a4f1f46afef0a36dc1d76f38e_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:33367b9fdb3addce3302ad35bc10423505fefe3dd27b8b9013b26d66caac2a6c_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:72cbdb061cbcd295be5e66a0eabb409af16ade7f0aa12b04c2d7327e9e1a24ba_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:d0379f9da8cbb5514394a4550ff0d79f90fa691fcced5806296479c7b63353da_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:e99d1d877bd7335736cbaeb4db5b9904369a1d07f6df332c38ad79ff1256b67b_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:06285611aef2528fc92c5cebb66ff4c74fe44d457f43cf9ec2f4a98c3c68d25e_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:25e0f4153eb5bc6fbc6b389d5adc81bfde103070ef58317c3c25ce4144a628d3_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:acd3c0369c18cbfa63a5972ed1721f93f1fcb456963ff855dea2c295baf1cdb8_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:d086075db52f4476aa64d7e2680baa01e99da246275fa9cae0ba4a74de63c7f3_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:07d89c1b524d1451051feb865bc716da2197add90fa0c58c4cf4a82975ec846c_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:6582e647d7dd604e25977ec1579969aa1fcb29ead1a0ea65833531d633bbdd2b_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:75e3aec03dffbd0f40f88a08ff5e0319f4515d73f0bcfae28b5fa526b494afc4_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:f0079e8ae53d84223aea2d3186e7bc6b525b7c03d307cde50cfb9f1bbc18712b_arm64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2490018"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in undici. When undici\u0027s ProxyAgent is configured with a SOCKS5 proxy Uniform Resource Identifier (URI), it silently ignores Transport Layer Security (TLS) options, such as custom Certificate Authorities (CAs). This allows a remote attacker to perform a Man-in-the-Middle (MITM) attack, intercepting and tampering with HTTPS communications. The connection falls back to Node.js\u0027s default trust store, bypassing intended security configurations and potentially leading to information disclosure or arbitrary code execution.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "undici: undici: Man-in-the-Middle attack via ignored TLS options with SOCKS5 proxy",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This is an Important vulnerability. Applications using `undici`\u0027s `ProxyAgent` with a SOCKS5 proxy URI will silently ignore user-configured TLS options, including custom Certificate Authorities. This bypasses intended security controls for HTTPS communication, enabling a remote attacker to perform Man-in-the-Middle attacks, potentially leading to information disclosure or arbitrary code execution in affected Red Hat products.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:137ffbb95d463d95da6c350600d968f3cd0e9873bf2e7c6edf952ae3229e9e2b_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:1cccdfd7e90877c27c6d8caea4f1e8ad89bb97c83d97ddf570d4f4ee116f1986_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:71657b82894cfd9e350746f48965e148868a675b9a20dcb7f94a6bc7a5b16ea5_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:881e405e32821ef10cf992c7a633281c1dc45df721fe909048df1689472000ce_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:8f145d4e336bd77fcc94f0845f9ebf94563ffd96d56794d96a665c11241df152_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:981917806c7faf31156241cc85577cf375ee566f78adaeadc096d0ba8482b835_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:af3ed91687500d64e2348cca4877c43f73211b8fbd132e7767c3521763185348_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:c05020e5ee5bddc62e38493cd16b6e4ffde7c2248a00d710f32b90a6ee12ceeb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2af86b409540513f6da1afa83110a5cafe8778d2ec16332faa31c964bd5f43f7_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2f3bec76a833a72c7dfa93ed55e55e80e2621c154e5a2f156deaf78d7c6b97b4_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:81a2385be30079500f13f97a18607aa685abd61265bf8fa78bc6ce126341be50_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:fdc8f64f3b82b200a5e31b01b8612069f1aa897014085c1de755394552a1a70a_amd64"
],
"known_not_affected": [
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:1384e5ba2b7d23119a49d8713826f4c65668bca310589ac7abd0c0d41c7e4c90_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:7f58528b1da9146aa55917324fdf2b375794742b34e5d10ff57f713af60746cd_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:844c3b1499b00aeadfc561642e53792ad80f535efd53b35793ba08b0f26c6d61_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:e1019c30e1d84e66d775d0d6fc7d051803dcbe44823fb2a1914807be39c79dae_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:8c9a7ebf430b9f4ca200c6c70b049e8456cf88fd8bf0871b42d65e8dc786d451_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:926d965e6fd12ec0d758270fb4c90bbdc1a05e60cc4c895cf9b671a296c9d867_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:e8e807451e3c5d8d0a8575e1280d7125a4ece51547a7b4a5cd247837662cedad_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:f2a24aa01cbe0d926d4aefe3b12eba21eb5ec7f87276e572a6814c727228624c_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:45cc0d783d1e7874ac73dfbdfe7e03c63b227ab3c4f1e15a0a2f5c97956a76d9_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:6f3eb26734e89375c3e1fb7ac366e12dc0d41bac8f07de9210c7e9845a01eec1_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:768c45fa9f35d98dfe5cfe1ea12f552402bf68ac6e1f828b14310ef59ce57c40_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:b5f1bf30495f6be97c696cf7f90768629cee96f8d106f745bf95fdefddc99592_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:6c85b42ede0f4745ed558bcb03d033c49f56cef17a70c12e5308066124cac6e3_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:091529a93e258a612fd4a98222e6a370ee10b4e97efa791b50f79a2670163d01_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0e8958a22f6771ddfe32b34027c69dbbef65d980c7e465a79d4202d2627994ad_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:5a8b0203ff083113e8b30a123ab30c4bad571f57fb59c1e7e01807b92552504e_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:89bf6a32a0935cacadbc6d23566dce6ca741e404d58c11050638c7b8e868028b_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:077cc953354ea2edd85569a622f97c15d44163d68234e7a9fdee899d25c19cdb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:66285f866090e1bfbedacd592e9d5ea9f2a30b88aa03bc86bc790d6b98a929a4_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:8c80054171d5063457df4bd074674b1824783a101dacb6137da227080aff957c_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:b0f15904251c6665961eef9c944d00f17499f7219351fe213fe7935f62fbf7ac_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:62476ac2fb0096caa9b181f523cc3573ccffe70be1433f08d1d0255b6d3a0640_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:6f632bc9829880a44e2e94084284b52683b4a01dc3315043b0aa32eb344b16cb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:aa3d1cf7853bfe8307efb01f714585f378d1d3d4ed5de7c8808a72e4aeecd4f3_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:bf1d4b2b1ef03e65be59699ce3233a75a34e1777abc182984c7a8efa698a936e_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:141f17d12c748c7ab9e94cfd9db7e2492d3063e7478249d6430ac0d8fcfb8875_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:5909184fe3d37eb45ba3bf55d7b708d818f2a5abfc2949c4a7081a5cd30cea4f_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:6217f0bb4937fa0e0fc0a5c86456fdc1992e169dfedc3d11d5165cef575d4d53_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:d55a55a36a23e7deb83718bd5dcc19b083b84d441add72ea7f4e28935e4717e3_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:0f8e1171f278395f3c72e4d9d3c0492bed15b678963fb2b6182bd65343b85a2e_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:823bb59b1c7d01557c29f9f1e4a4ee39814c38d826b06c3c9de4b8d179078419_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:93c7e9b321c7e9aa4a412a993a6b20412e24772832cc0dd23bbb17aa25f15487_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:9e50b45f81fedab27e896f04b80bacaa01d8370ff5679147f95ad79b61972d83_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:856b9088dbda4e7374daf232602f4bb90b05ad1be1df46d6e363a002f549f4de_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:a107ae2f7b140f2fb2243f33c378228c2f164cfd2d23f57e63f6c424fd400929_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:e21de356b7d879800a96f6c5aeee6bc59a3ed9c58d36503f7089625ce887bb25_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:fcaf6d60d682cf51866948ea3b4846c2993e2801adb69dc745ffa832318f515c_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:11f005939e15d63057bf2f0a988b6baebc275d3e752e9f7696d0f7f5266fd5d6_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:4b4c98be96a932d508fad769eff61bff2a44e13baa60b22b6c543f4a11eb71c2_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:6c87453ffe89e8be752ee40c8a9ccf6894c83be703f13901b1e8b64a4c0e549a_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:c18a1c50a4fc7081c6564d1c4ed4904212b7939a4f1f46afef0a36dc1d76f38e_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:33367b9fdb3addce3302ad35bc10423505fefe3dd27b8b9013b26d66caac2a6c_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:72cbdb061cbcd295be5e66a0eabb409af16ade7f0aa12b04c2d7327e9e1a24ba_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:d0379f9da8cbb5514394a4550ff0d79f90fa691fcced5806296479c7b63353da_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:e99d1d877bd7335736cbaeb4db5b9904369a1d07f6df332c38ad79ff1256b67b_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:06285611aef2528fc92c5cebb66ff4c74fe44d457f43cf9ec2f4a98c3c68d25e_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:25e0f4153eb5bc6fbc6b389d5adc81bfde103070ef58317c3c25ce4144a628d3_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:acd3c0369c18cbfa63a5972ed1721f93f1fcb456963ff855dea2c295baf1cdb8_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:d086075db52f4476aa64d7e2680baa01e99da246275fa9cae0ba4a74de63c7f3_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:07d89c1b524d1451051feb865bc716da2197add90fa0c58c4cf4a82975ec846c_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:6582e647d7dd604e25977ec1579969aa1fcb29ead1a0ea65833531d633bbdd2b_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:75e3aec03dffbd0f40f88a08ff5e0319f4515d73f0bcfae28b5fa526b494afc4_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:f0079e8ae53d84223aea2d3186e7bc6b525b7c03d307cde50cfb9f1bbc18712b_arm64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-9697"
},
{
"category": "external",
"summary": "RHBZ#2490018",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2490018"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-9697",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-9697"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-9697",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-9697"
},
{
"category": "external",
"summary": "https://cna.openjsf.org/security-advisories.html",
"url": "https://cna.openjsf.org/security-advisories.html"
},
{
"category": "external",
"summary": "https://github.com/nodejs/undici/security/advisories/GHSA-vmh5-mc38-953g",
"url": "https://github.com/nodejs/undici/security/advisories/GHSA-vmh5-mc38-953g"
}
],
"release_date": "2026-06-17T16:46:42.706000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T17:12:17+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\nFor details on how to apply this update, refer to:\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:137ffbb95d463d95da6c350600d968f3cd0e9873bf2e7c6edf952ae3229e9e2b_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:1cccdfd7e90877c27c6d8caea4f1e8ad89bb97c83d97ddf570d4f4ee116f1986_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:71657b82894cfd9e350746f48965e148868a675b9a20dcb7f94a6bc7a5b16ea5_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:881e405e32821ef10cf992c7a633281c1dc45df721fe909048df1689472000ce_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:8f145d4e336bd77fcc94f0845f9ebf94563ffd96d56794d96a665c11241df152_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:981917806c7faf31156241cc85577cf375ee566f78adaeadc096d0ba8482b835_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:af3ed91687500d64e2348cca4877c43f73211b8fbd132e7767c3521763185348_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:c05020e5ee5bddc62e38493cd16b6e4ffde7c2248a00d710f32b90a6ee12ceeb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2af86b409540513f6da1afa83110a5cafe8778d2ec16332faa31c964bd5f43f7_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2f3bec76a833a72c7dfa93ed55e55e80e2621c154e5a2f156deaf78d7c6b97b4_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:81a2385be30079500f13f97a18607aa685abd61265bf8fa78bc6ce126341be50_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:fdc8f64f3b82b200a5e31b01b8612069f1aa897014085c1de755394552a1a70a_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36820"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:1384e5ba2b7d23119a49d8713826f4c65668bca310589ac7abd0c0d41c7e4c90_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:7f58528b1da9146aa55917324fdf2b375794742b34e5d10ff57f713af60746cd_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:844c3b1499b00aeadfc561642e53792ad80f535efd53b35793ba08b0f26c6d61_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:e1019c30e1d84e66d775d0d6fc7d051803dcbe44823fb2a1914807be39c79dae_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:8c9a7ebf430b9f4ca200c6c70b049e8456cf88fd8bf0871b42d65e8dc786d451_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:926d965e6fd12ec0d758270fb4c90bbdc1a05e60cc4c895cf9b671a296c9d867_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:e8e807451e3c5d8d0a8575e1280d7125a4ece51547a7b4a5cd247837662cedad_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:f2a24aa01cbe0d926d4aefe3b12eba21eb5ec7f87276e572a6814c727228624c_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:45cc0d783d1e7874ac73dfbdfe7e03c63b227ab3c4f1e15a0a2f5c97956a76d9_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:6f3eb26734e89375c3e1fb7ac366e12dc0d41bac8f07de9210c7e9845a01eec1_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:768c45fa9f35d98dfe5cfe1ea12f552402bf68ac6e1f828b14310ef59ce57c40_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:b5f1bf30495f6be97c696cf7f90768629cee96f8d106f745bf95fdefddc99592_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:137ffbb95d463d95da6c350600d968f3cd0e9873bf2e7c6edf952ae3229e9e2b_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:1cccdfd7e90877c27c6d8caea4f1e8ad89bb97c83d97ddf570d4f4ee116f1986_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:71657b82894cfd9e350746f48965e148868a675b9a20dcb7f94a6bc7a5b16ea5_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:881e405e32821ef10cf992c7a633281c1dc45df721fe909048df1689472000ce_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:6c85b42ede0f4745ed558bcb03d033c49f56cef17a70c12e5308066124cac6e3_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:091529a93e258a612fd4a98222e6a370ee10b4e97efa791b50f79a2670163d01_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0e8958a22f6771ddfe32b34027c69dbbef65d980c7e465a79d4202d2627994ad_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:5a8b0203ff083113e8b30a123ab30c4bad571f57fb59c1e7e01807b92552504e_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:89bf6a32a0935cacadbc6d23566dce6ca741e404d58c11050638c7b8e868028b_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:077cc953354ea2edd85569a622f97c15d44163d68234e7a9fdee899d25c19cdb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:66285f866090e1bfbedacd592e9d5ea9f2a30b88aa03bc86bc790d6b98a929a4_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:8c80054171d5063457df4bd074674b1824783a101dacb6137da227080aff957c_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:b0f15904251c6665961eef9c944d00f17499f7219351fe213fe7935f62fbf7ac_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:62476ac2fb0096caa9b181f523cc3573ccffe70be1433f08d1d0255b6d3a0640_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:6f632bc9829880a44e2e94084284b52683b4a01dc3315043b0aa32eb344b16cb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:aa3d1cf7853bfe8307efb01f714585f378d1d3d4ed5de7c8808a72e4aeecd4f3_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:bf1d4b2b1ef03e65be59699ce3233a75a34e1777abc182984c7a8efa698a936e_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:141f17d12c748c7ab9e94cfd9db7e2492d3063e7478249d6430ac0d8fcfb8875_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:5909184fe3d37eb45ba3bf55d7b708d818f2a5abfc2949c4a7081a5cd30cea4f_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:6217f0bb4937fa0e0fc0a5c86456fdc1992e169dfedc3d11d5165cef575d4d53_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:d55a55a36a23e7deb83718bd5dcc19b083b84d441add72ea7f4e28935e4717e3_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:0f8e1171f278395f3c72e4d9d3c0492bed15b678963fb2b6182bd65343b85a2e_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:823bb59b1c7d01557c29f9f1e4a4ee39814c38d826b06c3c9de4b8d179078419_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:93c7e9b321c7e9aa4a412a993a6b20412e24772832cc0dd23bbb17aa25f15487_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:9e50b45f81fedab27e896f04b80bacaa01d8370ff5679147f95ad79b61972d83_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:8f145d4e336bd77fcc94f0845f9ebf94563ffd96d56794d96a665c11241df152_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:981917806c7faf31156241cc85577cf375ee566f78adaeadc096d0ba8482b835_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:af3ed91687500d64e2348cca4877c43f73211b8fbd132e7767c3521763185348_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:c05020e5ee5bddc62e38493cd16b6e4ffde7c2248a00d710f32b90a6ee12ceeb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2af86b409540513f6da1afa83110a5cafe8778d2ec16332faa31c964bd5f43f7_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2f3bec76a833a72c7dfa93ed55e55e80e2621c154e5a2f156deaf78d7c6b97b4_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:81a2385be30079500f13f97a18607aa685abd61265bf8fa78bc6ce126341be50_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:fdc8f64f3b82b200a5e31b01b8612069f1aa897014085c1de755394552a1a70a_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:856b9088dbda4e7374daf232602f4bb90b05ad1be1df46d6e363a002f549f4de_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:a107ae2f7b140f2fb2243f33c378228c2f164cfd2d23f57e63f6c424fd400929_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:e21de356b7d879800a96f6c5aeee6bc59a3ed9c58d36503f7089625ce887bb25_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:fcaf6d60d682cf51866948ea3b4846c2993e2801adb69dc745ffa832318f515c_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:11f005939e15d63057bf2f0a988b6baebc275d3e752e9f7696d0f7f5266fd5d6_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:4b4c98be96a932d508fad769eff61bff2a44e13baa60b22b6c543f4a11eb71c2_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:6c87453ffe89e8be752ee40c8a9ccf6894c83be703f13901b1e8b64a4c0e549a_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:c18a1c50a4fc7081c6564d1c4ed4904212b7939a4f1f46afef0a36dc1d76f38e_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:33367b9fdb3addce3302ad35bc10423505fefe3dd27b8b9013b26d66caac2a6c_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:72cbdb061cbcd295be5e66a0eabb409af16ade7f0aa12b04c2d7327e9e1a24ba_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:d0379f9da8cbb5514394a4550ff0d79f90fa691fcced5806296479c7b63353da_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:e99d1d877bd7335736cbaeb4db5b9904369a1d07f6df332c38ad79ff1256b67b_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:06285611aef2528fc92c5cebb66ff4c74fe44d457f43cf9ec2f4a98c3c68d25e_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:25e0f4153eb5bc6fbc6b389d5adc81bfde103070ef58317c3c25ce4144a628d3_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:acd3c0369c18cbfa63a5972ed1721f93f1fcb456963ff855dea2c295baf1cdb8_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:d086075db52f4476aa64d7e2680baa01e99da246275fa9cae0ba4a74de63c7f3_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:07d89c1b524d1451051feb865bc716da2197add90fa0c58c4cf4a82975ec846c_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:6582e647d7dd604e25977ec1579969aa1fcb29ead1a0ea65833531d633bbdd2b_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:75e3aec03dffbd0f40f88a08ff5e0319f4515d73f0bcfae28b5fa526b494afc4_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:f0079e8ae53d84223aea2d3186e7bc6b525b7c03d307cde50cfb9f1bbc18712b_arm64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.4,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:1384e5ba2b7d23119a49d8713826f4c65668bca310589ac7abd0c0d41c7e4c90_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:7f58528b1da9146aa55917324fdf2b375794742b34e5d10ff57f713af60746cd_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:844c3b1499b00aeadfc561642e53792ad80f535efd53b35793ba08b0f26c6d61_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:e1019c30e1d84e66d775d0d6fc7d051803dcbe44823fb2a1914807be39c79dae_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:8c9a7ebf430b9f4ca200c6c70b049e8456cf88fd8bf0871b42d65e8dc786d451_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:926d965e6fd12ec0d758270fb4c90bbdc1a05e60cc4c895cf9b671a296c9d867_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:e8e807451e3c5d8d0a8575e1280d7125a4ece51547a7b4a5cd247837662cedad_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:f2a24aa01cbe0d926d4aefe3b12eba21eb5ec7f87276e572a6814c727228624c_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:45cc0d783d1e7874ac73dfbdfe7e03c63b227ab3c4f1e15a0a2f5c97956a76d9_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:6f3eb26734e89375c3e1fb7ac366e12dc0d41bac8f07de9210c7e9845a01eec1_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:768c45fa9f35d98dfe5cfe1ea12f552402bf68ac6e1f828b14310ef59ce57c40_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:b5f1bf30495f6be97c696cf7f90768629cee96f8d106f745bf95fdefddc99592_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:137ffbb95d463d95da6c350600d968f3cd0e9873bf2e7c6edf952ae3229e9e2b_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:1cccdfd7e90877c27c6d8caea4f1e8ad89bb97c83d97ddf570d4f4ee116f1986_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:71657b82894cfd9e350746f48965e148868a675b9a20dcb7f94a6bc7a5b16ea5_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:881e405e32821ef10cf992c7a633281c1dc45df721fe909048df1689472000ce_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:6c85b42ede0f4745ed558bcb03d033c49f56cef17a70c12e5308066124cac6e3_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:091529a93e258a612fd4a98222e6a370ee10b4e97efa791b50f79a2670163d01_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0e8958a22f6771ddfe32b34027c69dbbef65d980c7e465a79d4202d2627994ad_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:5a8b0203ff083113e8b30a123ab30c4bad571f57fb59c1e7e01807b92552504e_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:89bf6a32a0935cacadbc6d23566dce6ca741e404d58c11050638c7b8e868028b_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:077cc953354ea2edd85569a622f97c15d44163d68234e7a9fdee899d25c19cdb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:66285f866090e1bfbedacd592e9d5ea9f2a30b88aa03bc86bc790d6b98a929a4_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:8c80054171d5063457df4bd074674b1824783a101dacb6137da227080aff957c_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:b0f15904251c6665961eef9c944d00f17499f7219351fe213fe7935f62fbf7ac_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:62476ac2fb0096caa9b181f523cc3573ccffe70be1433f08d1d0255b6d3a0640_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:6f632bc9829880a44e2e94084284b52683b4a01dc3315043b0aa32eb344b16cb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:aa3d1cf7853bfe8307efb01f714585f378d1d3d4ed5de7c8808a72e4aeecd4f3_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:bf1d4b2b1ef03e65be59699ce3233a75a34e1777abc182984c7a8efa698a936e_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:141f17d12c748c7ab9e94cfd9db7e2492d3063e7478249d6430ac0d8fcfb8875_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:5909184fe3d37eb45ba3bf55d7b708d818f2a5abfc2949c4a7081a5cd30cea4f_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:6217f0bb4937fa0e0fc0a5c86456fdc1992e169dfedc3d11d5165cef575d4d53_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:d55a55a36a23e7deb83718bd5dcc19b083b84d441add72ea7f4e28935e4717e3_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:0f8e1171f278395f3c72e4d9d3c0492bed15b678963fb2b6182bd65343b85a2e_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:823bb59b1c7d01557c29f9f1e4a4ee39814c38d826b06c3c9de4b8d179078419_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:93c7e9b321c7e9aa4a412a993a6b20412e24772832cc0dd23bbb17aa25f15487_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:9e50b45f81fedab27e896f04b80bacaa01d8370ff5679147f95ad79b61972d83_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:8f145d4e336bd77fcc94f0845f9ebf94563ffd96d56794d96a665c11241df152_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:981917806c7faf31156241cc85577cf375ee566f78adaeadc096d0ba8482b835_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:af3ed91687500d64e2348cca4877c43f73211b8fbd132e7767c3521763185348_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:c05020e5ee5bddc62e38493cd16b6e4ffde7c2248a00d710f32b90a6ee12ceeb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2af86b409540513f6da1afa83110a5cafe8778d2ec16332faa31c964bd5f43f7_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2f3bec76a833a72c7dfa93ed55e55e80e2621c154e5a2f156deaf78d7c6b97b4_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:81a2385be30079500f13f97a18607aa685abd61265bf8fa78bc6ce126341be50_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:fdc8f64f3b82b200a5e31b01b8612069f1aa897014085c1de755394552a1a70a_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:856b9088dbda4e7374daf232602f4bb90b05ad1be1df46d6e363a002f549f4de_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:a107ae2f7b140f2fb2243f33c378228c2f164cfd2d23f57e63f6c424fd400929_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:e21de356b7d879800a96f6c5aeee6bc59a3ed9c58d36503f7089625ce887bb25_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:fcaf6d60d682cf51866948ea3b4846c2993e2801adb69dc745ffa832318f515c_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:11f005939e15d63057bf2f0a988b6baebc275d3e752e9f7696d0f7f5266fd5d6_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:4b4c98be96a932d508fad769eff61bff2a44e13baa60b22b6c543f4a11eb71c2_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:6c87453ffe89e8be752ee40c8a9ccf6894c83be703f13901b1e8b64a4c0e549a_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:c18a1c50a4fc7081c6564d1c4ed4904212b7939a4f1f46afef0a36dc1d76f38e_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:33367b9fdb3addce3302ad35bc10423505fefe3dd27b8b9013b26d66caac2a6c_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:72cbdb061cbcd295be5e66a0eabb409af16ade7f0aa12b04c2d7327e9e1a24ba_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:d0379f9da8cbb5514394a4550ff0d79f90fa691fcced5806296479c7b63353da_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:e99d1d877bd7335736cbaeb4db5b9904369a1d07f6df332c38ad79ff1256b67b_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:06285611aef2528fc92c5cebb66ff4c74fe44d457f43cf9ec2f4a98c3c68d25e_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:25e0f4153eb5bc6fbc6b389d5adc81bfde103070ef58317c3c25ce4144a628d3_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:acd3c0369c18cbfa63a5972ed1721f93f1fcb456963ff855dea2c295baf1cdb8_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:d086075db52f4476aa64d7e2680baa01e99da246275fa9cae0ba4a74de63c7f3_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:07d89c1b524d1451051feb865bc716da2197add90fa0c58c4cf4a82975ec846c_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:6582e647d7dd604e25977ec1579969aa1fcb29ead1a0ea65833531d633bbdd2b_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:75e3aec03dffbd0f40f88a08ff5e0319f4515d73f0bcfae28b5fa526b494afc4_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:f0079e8ae53d84223aea2d3186e7bc6b525b7c03d307cde50cfb9f1bbc18712b_arm64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "undici: undici: Man-in-the-Middle attack via ignored TLS options with SOCKS5 proxy"
},
{
"cve": "CVE-2026-12151",
"cwe": {
"id": "CWE-770",
"name": "Allocation of Resources Without Limits or Throttling"
},
"discovery_date": "2026-06-17T17:01:45.297604+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:1384e5ba2b7d23119a49d8713826f4c65668bca310589ac7abd0c0d41c7e4c90_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:7f58528b1da9146aa55917324fdf2b375794742b34e5d10ff57f713af60746cd_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:844c3b1499b00aeadfc561642e53792ad80f535efd53b35793ba08b0f26c6d61_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:e1019c30e1d84e66d775d0d6fc7d051803dcbe44823fb2a1914807be39c79dae_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:8c9a7ebf430b9f4ca200c6c70b049e8456cf88fd8bf0871b42d65e8dc786d451_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:926d965e6fd12ec0d758270fb4c90bbdc1a05e60cc4c895cf9b671a296c9d867_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:e8e807451e3c5d8d0a8575e1280d7125a4ece51547a7b4a5cd247837662cedad_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:f2a24aa01cbe0d926d4aefe3b12eba21eb5ec7f87276e572a6814c727228624c_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:45cc0d783d1e7874ac73dfbdfe7e03c63b227ab3c4f1e15a0a2f5c97956a76d9_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:6f3eb26734e89375c3e1fb7ac366e12dc0d41bac8f07de9210c7e9845a01eec1_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:768c45fa9f35d98dfe5cfe1ea12f552402bf68ac6e1f828b14310ef59ce57c40_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:b5f1bf30495f6be97c696cf7f90768629cee96f8d106f745bf95fdefddc99592_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:6c85b42ede0f4745ed558bcb03d033c49f56cef17a70c12e5308066124cac6e3_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:091529a93e258a612fd4a98222e6a370ee10b4e97efa791b50f79a2670163d01_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0e8958a22f6771ddfe32b34027c69dbbef65d980c7e465a79d4202d2627994ad_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:5a8b0203ff083113e8b30a123ab30c4bad571f57fb59c1e7e01807b92552504e_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:89bf6a32a0935cacadbc6d23566dce6ca741e404d58c11050638c7b8e868028b_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:077cc953354ea2edd85569a622f97c15d44163d68234e7a9fdee899d25c19cdb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:66285f866090e1bfbedacd592e9d5ea9f2a30b88aa03bc86bc790d6b98a929a4_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:8c80054171d5063457df4bd074674b1824783a101dacb6137da227080aff957c_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:b0f15904251c6665961eef9c944d00f17499f7219351fe213fe7935f62fbf7ac_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:62476ac2fb0096caa9b181f523cc3573ccffe70be1433f08d1d0255b6d3a0640_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:6f632bc9829880a44e2e94084284b52683b4a01dc3315043b0aa32eb344b16cb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:aa3d1cf7853bfe8307efb01f714585f378d1d3d4ed5de7c8808a72e4aeecd4f3_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:bf1d4b2b1ef03e65be59699ce3233a75a34e1777abc182984c7a8efa698a936e_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:141f17d12c748c7ab9e94cfd9db7e2492d3063e7478249d6430ac0d8fcfb8875_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:5909184fe3d37eb45ba3bf55d7b708d818f2a5abfc2949c4a7081a5cd30cea4f_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:6217f0bb4937fa0e0fc0a5c86456fdc1992e169dfedc3d11d5165cef575d4d53_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:d55a55a36a23e7deb83718bd5dcc19b083b84d441add72ea7f4e28935e4717e3_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:0f8e1171f278395f3c72e4d9d3c0492bed15b678963fb2b6182bd65343b85a2e_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:823bb59b1c7d01557c29f9f1e4a4ee39814c38d826b06c3c9de4b8d179078419_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:93c7e9b321c7e9aa4a412a993a6b20412e24772832cc0dd23bbb17aa25f15487_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:9e50b45f81fedab27e896f04b80bacaa01d8370ff5679147f95ad79b61972d83_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:856b9088dbda4e7374daf232602f4bb90b05ad1be1df46d6e363a002f549f4de_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:a107ae2f7b140f2fb2243f33c378228c2f164cfd2d23f57e63f6c424fd400929_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:e21de356b7d879800a96f6c5aeee6bc59a3ed9c58d36503f7089625ce887bb25_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:fcaf6d60d682cf51866948ea3b4846c2993e2801adb69dc745ffa832318f515c_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:11f005939e15d63057bf2f0a988b6baebc275d3e752e9f7696d0f7f5266fd5d6_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:4b4c98be96a932d508fad769eff61bff2a44e13baa60b22b6c543f4a11eb71c2_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:6c87453ffe89e8be752ee40c8a9ccf6894c83be703f13901b1e8b64a4c0e549a_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:c18a1c50a4fc7081c6564d1c4ed4904212b7939a4f1f46afef0a36dc1d76f38e_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:33367b9fdb3addce3302ad35bc10423505fefe3dd27b8b9013b26d66caac2a6c_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:72cbdb061cbcd295be5e66a0eabb409af16ade7f0aa12b04c2d7327e9e1a24ba_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:d0379f9da8cbb5514394a4550ff0d79f90fa691fcced5806296479c7b63353da_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:e99d1d877bd7335736cbaeb4db5b9904369a1d07f6df332c38ad79ff1256b67b_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:06285611aef2528fc92c5cebb66ff4c74fe44d457f43cf9ec2f4a98c3c68d25e_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:25e0f4153eb5bc6fbc6b389d5adc81bfde103070ef58317c3c25ce4144a628d3_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:acd3c0369c18cbfa63a5972ed1721f93f1fcb456963ff855dea2c295baf1cdb8_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:d086075db52f4476aa64d7e2680baa01e99da246275fa9cae0ba4a74de63c7f3_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:07d89c1b524d1451051feb865bc716da2197add90fa0c58c4cf4a82975ec846c_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:6582e647d7dd604e25977ec1579969aa1fcb29ead1a0ea65833531d633bbdd2b_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:75e3aec03dffbd0f40f88a08ff5e0319f4515d73f0bcfae28b5fa526b494afc4_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:f0079e8ae53d84223aea2d3186e7bc6b525b7c03d307cde50cfb9f1bbc18712b_arm64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2489980"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in undici. A malicious WebSocket server can exploit this by streaming numerous small or empty continuation frames. This can bypass per-frame and cumulative-size validation, leading to unbounded memory growth in the client process. The primary consequence is memory exhaustion, resulting in a denial of service (DoS) for affected applications using the undici WebSocket client or WebSocketStream API.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "undici: undici: Denial of Service due to unbounded memory growth via WebSocket frames",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This Important denial of service flaw in the `undici` WebSocket client allows a remote attacker to cause unbounded memory growth. By sending numerous small or empty WebSocket frames, an unauthenticated attacker can exhaust system memory, leading to a denial of service in Red Hat products that use the affected client.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:137ffbb95d463d95da6c350600d968f3cd0e9873bf2e7c6edf952ae3229e9e2b_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:1cccdfd7e90877c27c6d8caea4f1e8ad89bb97c83d97ddf570d4f4ee116f1986_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:71657b82894cfd9e350746f48965e148868a675b9a20dcb7f94a6bc7a5b16ea5_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:881e405e32821ef10cf992c7a633281c1dc45df721fe909048df1689472000ce_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:8f145d4e336bd77fcc94f0845f9ebf94563ffd96d56794d96a665c11241df152_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:981917806c7faf31156241cc85577cf375ee566f78adaeadc096d0ba8482b835_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:af3ed91687500d64e2348cca4877c43f73211b8fbd132e7767c3521763185348_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:c05020e5ee5bddc62e38493cd16b6e4ffde7c2248a00d710f32b90a6ee12ceeb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2af86b409540513f6da1afa83110a5cafe8778d2ec16332faa31c964bd5f43f7_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2f3bec76a833a72c7dfa93ed55e55e80e2621c154e5a2f156deaf78d7c6b97b4_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:81a2385be30079500f13f97a18607aa685abd61265bf8fa78bc6ce126341be50_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:fdc8f64f3b82b200a5e31b01b8612069f1aa897014085c1de755394552a1a70a_amd64"
],
"known_not_affected": [
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:1384e5ba2b7d23119a49d8713826f4c65668bca310589ac7abd0c0d41c7e4c90_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:7f58528b1da9146aa55917324fdf2b375794742b34e5d10ff57f713af60746cd_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:844c3b1499b00aeadfc561642e53792ad80f535efd53b35793ba08b0f26c6d61_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:e1019c30e1d84e66d775d0d6fc7d051803dcbe44823fb2a1914807be39c79dae_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:8c9a7ebf430b9f4ca200c6c70b049e8456cf88fd8bf0871b42d65e8dc786d451_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:926d965e6fd12ec0d758270fb4c90bbdc1a05e60cc4c895cf9b671a296c9d867_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:e8e807451e3c5d8d0a8575e1280d7125a4ece51547a7b4a5cd247837662cedad_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:f2a24aa01cbe0d926d4aefe3b12eba21eb5ec7f87276e572a6814c727228624c_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:45cc0d783d1e7874ac73dfbdfe7e03c63b227ab3c4f1e15a0a2f5c97956a76d9_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:6f3eb26734e89375c3e1fb7ac366e12dc0d41bac8f07de9210c7e9845a01eec1_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:768c45fa9f35d98dfe5cfe1ea12f552402bf68ac6e1f828b14310ef59ce57c40_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:b5f1bf30495f6be97c696cf7f90768629cee96f8d106f745bf95fdefddc99592_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:6c85b42ede0f4745ed558bcb03d033c49f56cef17a70c12e5308066124cac6e3_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:091529a93e258a612fd4a98222e6a370ee10b4e97efa791b50f79a2670163d01_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0e8958a22f6771ddfe32b34027c69dbbef65d980c7e465a79d4202d2627994ad_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:5a8b0203ff083113e8b30a123ab30c4bad571f57fb59c1e7e01807b92552504e_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:89bf6a32a0935cacadbc6d23566dce6ca741e404d58c11050638c7b8e868028b_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:077cc953354ea2edd85569a622f97c15d44163d68234e7a9fdee899d25c19cdb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:66285f866090e1bfbedacd592e9d5ea9f2a30b88aa03bc86bc790d6b98a929a4_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:8c80054171d5063457df4bd074674b1824783a101dacb6137da227080aff957c_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:b0f15904251c6665961eef9c944d00f17499f7219351fe213fe7935f62fbf7ac_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:62476ac2fb0096caa9b181f523cc3573ccffe70be1433f08d1d0255b6d3a0640_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:6f632bc9829880a44e2e94084284b52683b4a01dc3315043b0aa32eb344b16cb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:aa3d1cf7853bfe8307efb01f714585f378d1d3d4ed5de7c8808a72e4aeecd4f3_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:bf1d4b2b1ef03e65be59699ce3233a75a34e1777abc182984c7a8efa698a936e_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:141f17d12c748c7ab9e94cfd9db7e2492d3063e7478249d6430ac0d8fcfb8875_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:5909184fe3d37eb45ba3bf55d7b708d818f2a5abfc2949c4a7081a5cd30cea4f_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:6217f0bb4937fa0e0fc0a5c86456fdc1992e169dfedc3d11d5165cef575d4d53_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:d55a55a36a23e7deb83718bd5dcc19b083b84d441add72ea7f4e28935e4717e3_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:0f8e1171f278395f3c72e4d9d3c0492bed15b678963fb2b6182bd65343b85a2e_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:823bb59b1c7d01557c29f9f1e4a4ee39814c38d826b06c3c9de4b8d179078419_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:93c7e9b321c7e9aa4a412a993a6b20412e24772832cc0dd23bbb17aa25f15487_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:9e50b45f81fedab27e896f04b80bacaa01d8370ff5679147f95ad79b61972d83_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:856b9088dbda4e7374daf232602f4bb90b05ad1be1df46d6e363a002f549f4de_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:a107ae2f7b140f2fb2243f33c378228c2f164cfd2d23f57e63f6c424fd400929_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:e21de356b7d879800a96f6c5aeee6bc59a3ed9c58d36503f7089625ce887bb25_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:fcaf6d60d682cf51866948ea3b4846c2993e2801adb69dc745ffa832318f515c_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:11f005939e15d63057bf2f0a988b6baebc275d3e752e9f7696d0f7f5266fd5d6_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:4b4c98be96a932d508fad769eff61bff2a44e13baa60b22b6c543f4a11eb71c2_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:6c87453ffe89e8be752ee40c8a9ccf6894c83be703f13901b1e8b64a4c0e549a_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:c18a1c50a4fc7081c6564d1c4ed4904212b7939a4f1f46afef0a36dc1d76f38e_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:33367b9fdb3addce3302ad35bc10423505fefe3dd27b8b9013b26d66caac2a6c_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:72cbdb061cbcd295be5e66a0eabb409af16ade7f0aa12b04c2d7327e9e1a24ba_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:d0379f9da8cbb5514394a4550ff0d79f90fa691fcced5806296479c7b63353da_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:e99d1d877bd7335736cbaeb4db5b9904369a1d07f6df332c38ad79ff1256b67b_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:06285611aef2528fc92c5cebb66ff4c74fe44d457f43cf9ec2f4a98c3c68d25e_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:25e0f4153eb5bc6fbc6b389d5adc81bfde103070ef58317c3c25ce4144a628d3_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:acd3c0369c18cbfa63a5972ed1721f93f1fcb456963ff855dea2c295baf1cdb8_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:d086075db52f4476aa64d7e2680baa01e99da246275fa9cae0ba4a74de63c7f3_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:07d89c1b524d1451051feb865bc716da2197add90fa0c58c4cf4a82975ec846c_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:6582e647d7dd604e25977ec1579969aa1fcb29ead1a0ea65833531d633bbdd2b_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:75e3aec03dffbd0f40f88a08ff5e0319f4515d73f0bcfae28b5fa526b494afc4_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:f0079e8ae53d84223aea2d3186e7bc6b525b7c03d307cde50cfb9f1bbc18712b_arm64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-12151"
},
{
"category": "external",
"summary": "RHBZ#2489980",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2489980"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-12151",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-12151"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-12151",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-12151"
},
{
"category": "external",
"summary": "https://cna.openjsf.org/security-advisories.html",
"url": "https://cna.openjsf.org/security-advisories.html"
},
{
"category": "external",
"summary": "https://github.com/nodejs/undici/security/advisories/GHSA-vxpw-j846-p89q",
"url": "https://github.com/nodejs/undici/security/advisories/GHSA-vxpw-j846-p89q"
}
],
"release_date": "2026-06-17T16:05:38.785000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T17:12:17+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\nFor details on how to apply this update, refer to:\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:137ffbb95d463d95da6c350600d968f3cd0e9873bf2e7c6edf952ae3229e9e2b_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:1cccdfd7e90877c27c6d8caea4f1e8ad89bb97c83d97ddf570d4f4ee116f1986_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:71657b82894cfd9e350746f48965e148868a675b9a20dcb7f94a6bc7a5b16ea5_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:881e405e32821ef10cf992c7a633281c1dc45df721fe909048df1689472000ce_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:8f145d4e336bd77fcc94f0845f9ebf94563ffd96d56794d96a665c11241df152_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:981917806c7faf31156241cc85577cf375ee566f78adaeadc096d0ba8482b835_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:af3ed91687500d64e2348cca4877c43f73211b8fbd132e7767c3521763185348_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:c05020e5ee5bddc62e38493cd16b6e4ffde7c2248a00d710f32b90a6ee12ceeb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2af86b409540513f6da1afa83110a5cafe8778d2ec16332faa31c964bd5f43f7_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2f3bec76a833a72c7dfa93ed55e55e80e2621c154e5a2f156deaf78d7c6b97b4_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:81a2385be30079500f13f97a18607aa685abd61265bf8fa78bc6ce126341be50_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:fdc8f64f3b82b200a5e31b01b8612069f1aa897014085c1de755394552a1a70a_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36820"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:1384e5ba2b7d23119a49d8713826f4c65668bca310589ac7abd0c0d41c7e4c90_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:7f58528b1da9146aa55917324fdf2b375794742b34e5d10ff57f713af60746cd_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:844c3b1499b00aeadfc561642e53792ad80f535efd53b35793ba08b0f26c6d61_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:e1019c30e1d84e66d775d0d6fc7d051803dcbe44823fb2a1914807be39c79dae_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:8c9a7ebf430b9f4ca200c6c70b049e8456cf88fd8bf0871b42d65e8dc786d451_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:926d965e6fd12ec0d758270fb4c90bbdc1a05e60cc4c895cf9b671a296c9d867_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:e8e807451e3c5d8d0a8575e1280d7125a4ece51547a7b4a5cd247837662cedad_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:f2a24aa01cbe0d926d4aefe3b12eba21eb5ec7f87276e572a6814c727228624c_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:45cc0d783d1e7874ac73dfbdfe7e03c63b227ab3c4f1e15a0a2f5c97956a76d9_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:6f3eb26734e89375c3e1fb7ac366e12dc0d41bac8f07de9210c7e9845a01eec1_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:768c45fa9f35d98dfe5cfe1ea12f552402bf68ac6e1f828b14310ef59ce57c40_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:b5f1bf30495f6be97c696cf7f90768629cee96f8d106f745bf95fdefddc99592_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:137ffbb95d463d95da6c350600d968f3cd0e9873bf2e7c6edf952ae3229e9e2b_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:1cccdfd7e90877c27c6d8caea4f1e8ad89bb97c83d97ddf570d4f4ee116f1986_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:71657b82894cfd9e350746f48965e148868a675b9a20dcb7f94a6bc7a5b16ea5_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:881e405e32821ef10cf992c7a633281c1dc45df721fe909048df1689472000ce_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:6c85b42ede0f4745ed558bcb03d033c49f56cef17a70c12e5308066124cac6e3_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:091529a93e258a612fd4a98222e6a370ee10b4e97efa791b50f79a2670163d01_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0e8958a22f6771ddfe32b34027c69dbbef65d980c7e465a79d4202d2627994ad_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:5a8b0203ff083113e8b30a123ab30c4bad571f57fb59c1e7e01807b92552504e_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:89bf6a32a0935cacadbc6d23566dce6ca741e404d58c11050638c7b8e868028b_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:077cc953354ea2edd85569a622f97c15d44163d68234e7a9fdee899d25c19cdb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:66285f866090e1bfbedacd592e9d5ea9f2a30b88aa03bc86bc790d6b98a929a4_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:8c80054171d5063457df4bd074674b1824783a101dacb6137da227080aff957c_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:b0f15904251c6665961eef9c944d00f17499f7219351fe213fe7935f62fbf7ac_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:62476ac2fb0096caa9b181f523cc3573ccffe70be1433f08d1d0255b6d3a0640_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:6f632bc9829880a44e2e94084284b52683b4a01dc3315043b0aa32eb344b16cb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:aa3d1cf7853bfe8307efb01f714585f378d1d3d4ed5de7c8808a72e4aeecd4f3_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:bf1d4b2b1ef03e65be59699ce3233a75a34e1777abc182984c7a8efa698a936e_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:141f17d12c748c7ab9e94cfd9db7e2492d3063e7478249d6430ac0d8fcfb8875_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:5909184fe3d37eb45ba3bf55d7b708d818f2a5abfc2949c4a7081a5cd30cea4f_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:6217f0bb4937fa0e0fc0a5c86456fdc1992e169dfedc3d11d5165cef575d4d53_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:d55a55a36a23e7deb83718bd5dcc19b083b84d441add72ea7f4e28935e4717e3_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:0f8e1171f278395f3c72e4d9d3c0492bed15b678963fb2b6182bd65343b85a2e_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:823bb59b1c7d01557c29f9f1e4a4ee39814c38d826b06c3c9de4b8d179078419_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:93c7e9b321c7e9aa4a412a993a6b20412e24772832cc0dd23bbb17aa25f15487_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:9e50b45f81fedab27e896f04b80bacaa01d8370ff5679147f95ad79b61972d83_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:8f145d4e336bd77fcc94f0845f9ebf94563ffd96d56794d96a665c11241df152_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:981917806c7faf31156241cc85577cf375ee566f78adaeadc096d0ba8482b835_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:af3ed91687500d64e2348cca4877c43f73211b8fbd132e7767c3521763185348_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:c05020e5ee5bddc62e38493cd16b6e4ffde7c2248a00d710f32b90a6ee12ceeb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2af86b409540513f6da1afa83110a5cafe8778d2ec16332faa31c964bd5f43f7_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2f3bec76a833a72c7dfa93ed55e55e80e2621c154e5a2f156deaf78d7c6b97b4_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:81a2385be30079500f13f97a18607aa685abd61265bf8fa78bc6ce126341be50_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:fdc8f64f3b82b200a5e31b01b8612069f1aa897014085c1de755394552a1a70a_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:856b9088dbda4e7374daf232602f4bb90b05ad1be1df46d6e363a002f549f4de_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:a107ae2f7b140f2fb2243f33c378228c2f164cfd2d23f57e63f6c424fd400929_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:e21de356b7d879800a96f6c5aeee6bc59a3ed9c58d36503f7089625ce887bb25_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:fcaf6d60d682cf51866948ea3b4846c2993e2801adb69dc745ffa832318f515c_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:11f005939e15d63057bf2f0a988b6baebc275d3e752e9f7696d0f7f5266fd5d6_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:4b4c98be96a932d508fad769eff61bff2a44e13baa60b22b6c543f4a11eb71c2_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:6c87453ffe89e8be752ee40c8a9ccf6894c83be703f13901b1e8b64a4c0e549a_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:c18a1c50a4fc7081c6564d1c4ed4904212b7939a4f1f46afef0a36dc1d76f38e_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:33367b9fdb3addce3302ad35bc10423505fefe3dd27b8b9013b26d66caac2a6c_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:72cbdb061cbcd295be5e66a0eabb409af16ade7f0aa12b04c2d7327e9e1a24ba_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:d0379f9da8cbb5514394a4550ff0d79f90fa691fcced5806296479c7b63353da_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:e99d1d877bd7335736cbaeb4db5b9904369a1d07f6df332c38ad79ff1256b67b_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:06285611aef2528fc92c5cebb66ff4c74fe44d457f43cf9ec2f4a98c3c68d25e_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:25e0f4153eb5bc6fbc6b389d5adc81bfde103070ef58317c3c25ce4144a628d3_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:acd3c0369c18cbfa63a5972ed1721f93f1fcb456963ff855dea2c295baf1cdb8_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:d086075db52f4476aa64d7e2680baa01e99da246275fa9cae0ba4a74de63c7f3_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:07d89c1b524d1451051feb865bc716da2197add90fa0c58c4cf4a82975ec846c_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:6582e647d7dd604e25977ec1579969aa1fcb29ead1a0ea65833531d633bbdd2b_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:75e3aec03dffbd0f40f88a08ff5e0319f4515d73f0bcfae28b5fa526b494afc4_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:f0079e8ae53d84223aea2d3186e7bc6b525b7c03d307cde50cfb9f1bbc18712b_arm64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:1384e5ba2b7d23119a49d8713826f4c65668bca310589ac7abd0c0d41c7e4c90_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:7f58528b1da9146aa55917324fdf2b375794742b34e5d10ff57f713af60746cd_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:844c3b1499b00aeadfc561642e53792ad80f535efd53b35793ba08b0f26c6d61_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:e1019c30e1d84e66d775d0d6fc7d051803dcbe44823fb2a1914807be39c79dae_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:8c9a7ebf430b9f4ca200c6c70b049e8456cf88fd8bf0871b42d65e8dc786d451_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:926d965e6fd12ec0d758270fb4c90bbdc1a05e60cc4c895cf9b671a296c9d867_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:e8e807451e3c5d8d0a8575e1280d7125a4ece51547a7b4a5cd247837662cedad_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:f2a24aa01cbe0d926d4aefe3b12eba21eb5ec7f87276e572a6814c727228624c_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:45cc0d783d1e7874ac73dfbdfe7e03c63b227ab3c4f1e15a0a2f5c97956a76d9_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:6f3eb26734e89375c3e1fb7ac366e12dc0d41bac8f07de9210c7e9845a01eec1_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:768c45fa9f35d98dfe5cfe1ea12f552402bf68ac6e1f828b14310ef59ce57c40_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:b5f1bf30495f6be97c696cf7f90768629cee96f8d106f745bf95fdefddc99592_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:137ffbb95d463d95da6c350600d968f3cd0e9873bf2e7c6edf952ae3229e9e2b_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:1cccdfd7e90877c27c6d8caea4f1e8ad89bb97c83d97ddf570d4f4ee116f1986_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:71657b82894cfd9e350746f48965e148868a675b9a20dcb7f94a6bc7a5b16ea5_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:881e405e32821ef10cf992c7a633281c1dc45df721fe909048df1689472000ce_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:6c85b42ede0f4745ed558bcb03d033c49f56cef17a70c12e5308066124cac6e3_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:091529a93e258a612fd4a98222e6a370ee10b4e97efa791b50f79a2670163d01_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0e8958a22f6771ddfe32b34027c69dbbef65d980c7e465a79d4202d2627994ad_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:5a8b0203ff083113e8b30a123ab30c4bad571f57fb59c1e7e01807b92552504e_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:89bf6a32a0935cacadbc6d23566dce6ca741e404d58c11050638c7b8e868028b_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:077cc953354ea2edd85569a622f97c15d44163d68234e7a9fdee899d25c19cdb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:66285f866090e1bfbedacd592e9d5ea9f2a30b88aa03bc86bc790d6b98a929a4_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:8c80054171d5063457df4bd074674b1824783a101dacb6137da227080aff957c_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:b0f15904251c6665961eef9c944d00f17499f7219351fe213fe7935f62fbf7ac_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:62476ac2fb0096caa9b181f523cc3573ccffe70be1433f08d1d0255b6d3a0640_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:6f632bc9829880a44e2e94084284b52683b4a01dc3315043b0aa32eb344b16cb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:aa3d1cf7853bfe8307efb01f714585f378d1d3d4ed5de7c8808a72e4aeecd4f3_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:bf1d4b2b1ef03e65be59699ce3233a75a34e1777abc182984c7a8efa698a936e_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:141f17d12c748c7ab9e94cfd9db7e2492d3063e7478249d6430ac0d8fcfb8875_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:5909184fe3d37eb45ba3bf55d7b708d818f2a5abfc2949c4a7081a5cd30cea4f_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:6217f0bb4937fa0e0fc0a5c86456fdc1992e169dfedc3d11d5165cef575d4d53_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:d55a55a36a23e7deb83718bd5dcc19b083b84d441add72ea7f4e28935e4717e3_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:0f8e1171f278395f3c72e4d9d3c0492bed15b678963fb2b6182bd65343b85a2e_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:823bb59b1c7d01557c29f9f1e4a4ee39814c38d826b06c3c9de4b8d179078419_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:93c7e9b321c7e9aa4a412a993a6b20412e24772832cc0dd23bbb17aa25f15487_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:9e50b45f81fedab27e896f04b80bacaa01d8370ff5679147f95ad79b61972d83_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:8f145d4e336bd77fcc94f0845f9ebf94563ffd96d56794d96a665c11241df152_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:981917806c7faf31156241cc85577cf375ee566f78adaeadc096d0ba8482b835_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:af3ed91687500d64e2348cca4877c43f73211b8fbd132e7767c3521763185348_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:c05020e5ee5bddc62e38493cd16b6e4ffde7c2248a00d710f32b90a6ee12ceeb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2af86b409540513f6da1afa83110a5cafe8778d2ec16332faa31c964bd5f43f7_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2f3bec76a833a72c7dfa93ed55e55e80e2621c154e5a2f156deaf78d7c6b97b4_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:81a2385be30079500f13f97a18607aa685abd61265bf8fa78bc6ce126341be50_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:fdc8f64f3b82b200a5e31b01b8612069f1aa897014085c1de755394552a1a70a_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:856b9088dbda4e7374daf232602f4bb90b05ad1be1df46d6e363a002f549f4de_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:a107ae2f7b140f2fb2243f33c378228c2f164cfd2d23f57e63f6c424fd400929_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:e21de356b7d879800a96f6c5aeee6bc59a3ed9c58d36503f7089625ce887bb25_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:fcaf6d60d682cf51866948ea3b4846c2993e2801adb69dc745ffa832318f515c_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:11f005939e15d63057bf2f0a988b6baebc275d3e752e9f7696d0f7f5266fd5d6_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:4b4c98be96a932d508fad769eff61bff2a44e13baa60b22b6c543f4a11eb71c2_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:6c87453ffe89e8be752ee40c8a9ccf6894c83be703f13901b1e8b64a4c0e549a_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:c18a1c50a4fc7081c6564d1c4ed4904212b7939a4f1f46afef0a36dc1d76f38e_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:33367b9fdb3addce3302ad35bc10423505fefe3dd27b8b9013b26d66caac2a6c_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:72cbdb061cbcd295be5e66a0eabb409af16ade7f0aa12b04c2d7327e9e1a24ba_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:d0379f9da8cbb5514394a4550ff0d79f90fa691fcced5806296479c7b63353da_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:e99d1d877bd7335736cbaeb4db5b9904369a1d07f6df332c38ad79ff1256b67b_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:06285611aef2528fc92c5cebb66ff4c74fe44d457f43cf9ec2f4a98c3c68d25e_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:25e0f4153eb5bc6fbc6b389d5adc81bfde103070ef58317c3c25ce4144a628d3_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:acd3c0369c18cbfa63a5972ed1721f93f1fcb456963ff855dea2c295baf1cdb8_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:d086075db52f4476aa64d7e2680baa01e99da246275fa9cae0ba4a74de63c7f3_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:07d89c1b524d1451051feb865bc716da2197add90fa0c58c4cf4a82975ec846c_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:6582e647d7dd604e25977ec1579969aa1fcb29ead1a0ea65833531d633bbdd2b_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:75e3aec03dffbd0f40f88a08ff5e0319f4515d73f0bcfae28b5fa526b494afc4_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:f0079e8ae53d84223aea2d3186e7bc6b525b7c03d307cde50cfb9f1bbc18712b_arm64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "undici: undici: Denial of Service due to unbounded memory growth via WebSocket frames"
},
{
"acknowledgments": [
{
"names": [
"byte256"
]
}
],
"cve": "CVE-2026-12856",
"cwe": {
"id": "CWE-88",
"name": "Improper Neutralization of Argument Delimiters in a Command (\u0027Argument Injection\u0027)"
},
"discovery_date": "2026-06-20T17:33:27+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:1384e5ba2b7d23119a49d8713826f4c65668bca310589ac7abd0c0d41c7e4c90_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:7f58528b1da9146aa55917324fdf2b375794742b34e5d10ff57f713af60746cd_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:844c3b1499b00aeadfc561642e53792ad80f535efd53b35793ba08b0f26c6d61_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:e1019c30e1d84e66d775d0d6fc7d051803dcbe44823fb2a1914807be39c79dae_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:8c9a7ebf430b9f4ca200c6c70b049e8456cf88fd8bf0871b42d65e8dc786d451_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:926d965e6fd12ec0d758270fb4c90bbdc1a05e60cc4c895cf9b671a296c9d867_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:e8e807451e3c5d8d0a8575e1280d7125a4ece51547a7b4a5cd247837662cedad_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:f2a24aa01cbe0d926d4aefe3b12eba21eb5ec7f87276e572a6814c727228624c_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:45cc0d783d1e7874ac73dfbdfe7e03c63b227ab3c4f1e15a0a2f5c97956a76d9_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:6f3eb26734e89375c3e1fb7ac366e12dc0d41bac8f07de9210c7e9845a01eec1_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:768c45fa9f35d98dfe5cfe1ea12f552402bf68ac6e1f828b14310ef59ce57c40_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:b5f1bf30495f6be97c696cf7f90768629cee96f8d106f745bf95fdefddc99592_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:137ffbb95d463d95da6c350600d968f3cd0e9873bf2e7c6edf952ae3229e9e2b_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:1cccdfd7e90877c27c6d8caea4f1e8ad89bb97c83d97ddf570d4f4ee116f1986_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:71657b82894cfd9e350746f48965e148868a675b9a20dcb7f94a6bc7a5b16ea5_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:881e405e32821ef10cf992c7a633281c1dc45df721fe909048df1689472000ce_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:6c85b42ede0f4745ed558bcb03d033c49f56cef17a70c12e5308066124cac6e3_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:091529a93e258a612fd4a98222e6a370ee10b4e97efa791b50f79a2670163d01_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0e8958a22f6771ddfe32b34027c69dbbef65d980c7e465a79d4202d2627994ad_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:5a8b0203ff083113e8b30a123ab30c4bad571f57fb59c1e7e01807b92552504e_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:89bf6a32a0935cacadbc6d23566dce6ca741e404d58c11050638c7b8e868028b_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:077cc953354ea2edd85569a622f97c15d44163d68234e7a9fdee899d25c19cdb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:66285f866090e1bfbedacd592e9d5ea9f2a30b88aa03bc86bc790d6b98a929a4_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:8c80054171d5063457df4bd074674b1824783a101dacb6137da227080aff957c_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:b0f15904251c6665961eef9c944d00f17499f7219351fe213fe7935f62fbf7ac_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:62476ac2fb0096caa9b181f523cc3573ccffe70be1433f08d1d0255b6d3a0640_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:6f632bc9829880a44e2e94084284b52683b4a01dc3315043b0aa32eb344b16cb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:aa3d1cf7853bfe8307efb01f714585f378d1d3d4ed5de7c8808a72e4aeecd4f3_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:bf1d4b2b1ef03e65be59699ce3233a75a34e1777abc182984c7a8efa698a936e_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:141f17d12c748c7ab9e94cfd9db7e2492d3063e7478249d6430ac0d8fcfb8875_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:5909184fe3d37eb45ba3bf55d7b708d818f2a5abfc2949c4a7081a5cd30cea4f_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:6217f0bb4937fa0e0fc0a5c86456fdc1992e169dfedc3d11d5165cef575d4d53_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:d55a55a36a23e7deb83718bd5dcc19b083b84d441add72ea7f4e28935e4717e3_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:0f8e1171f278395f3c72e4d9d3c0492bed15b678963fb2b6182bd65343b85a2e_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:823bb59b1c7d01557c29f9f1e4a4ee39814c38d826b06c3c9de4b8d179078419_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:93c7e9b321c7e9aa4a412a993a6b20412e24772832cc0dd23bbb17aa25f15487_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:9e50b45f81fedab27e896f04b80bacaa01d8370ff5679147f95ad79b61972d83_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:8f145d4e336bd77fcc94f0845f9ebf94563ffd96d56794d96a665c11241df152_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:981917806c7faf31156241cc85577cf375ee566f78adaeadc096d0ba8482b835_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:af3ed91687500d64e2348cca4877c43f73211b8fbd132e7767c3521763185348_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:c05020e5ee5bddc62e38493cd16b6e4ffde7c2248a00d710f32b90a6ee12ceeb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:856b9088dbda4e7374daf232602f4bb90b05ad1be1df46d6e363a002f549f4de_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:a107ae2f7b140f2fb2243f33c378228c2f164cfd2d23f57e63f6c424fd400929_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:e21de356b7d879800a96f6c5aeee6bc59a3ed9c58d36503f7089625ce887bb25_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:fcaf6d60d682cf51866948ea3b4846c2993e2801adb69dc745ffa832318f515c_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:11f005939e15d63057bf2f0a988b6baebc275d3e752e9f7696d0f7f5266fd5d6_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:4b4c98be96a932d508fad769eff61bff2a44e13baa60b22b6c543f4a11eb71c2_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:6c87453ffe89e8be752ee40c8a9ccf6894c83be703f13901b1e8b64a4c0e549a_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:c18a1c50a4fc7081c6564d1c4ed4904212b7939a4f1f46afef0a36dc1d76f38e_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:33367b9fdb3addce3302ad35bc10423505fefe3dd27b8b9013b26d66caac2a6c_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:72cbdb061cbcd295be5e66a0eabb409af16ade7f0aa12b04c2d7327e9e1a24ba_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:d0379f9da8cbb5514394a4550ff0d79f90fa691fcced5806296479c7b63353da_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:e99d1d877bd7335736cbaeb4db5b9904369a1d07f6df332c38ad79ff1256b67b_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:06285611aef2528fc92c5cebb66ff4c74fe44d457f43cf9ec2f4a98c3c68d25e_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:25e0f4153eb5bc6fbc6b389d5adc81bfde103070ef58317c3c25ce4144a628d3_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:acd3c0369c18cbfa63a5972ed1721f93f1fcb456963ff855dea2c295baf1cdb8_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:d086075db52f4476aa64d7e2680baa01e99da246275fa9cae0ba4a74de63c7f3_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:07d89c1b524d1451051feb865bc716da2197add90fa0c58c4cf4a82975ec846c_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:6582e647d7dd604e25977ec1579969aa1fcb29ead1a0ea65833531d633bbdd2b_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:75e3aec03dffbd0f40f88a08ff5e0319f4515d73f0bcfae28b5fa526b494afc4_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:f0079e8ae53d84223aea2d3186e7bc6b525b7c03d307cde50cfb9f1bbc18712b_arm64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2491278"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the vscode-java extension, which provides Java language support for Visual Studio Code. The extension incorrectly trusts all Markdown content in JavaDoc hovers, allowing a malicious Java file to include hidden commands. If a user clicks a specially crafted link within a JavaDoc hover popup, an attacker can execute arbitrary VS Code commands, which can lead to full system compromise in trusted workspaces.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "vscode-java: vscode: Command Injection vulnerability in the JavaDoc hover provider of the vscode-java extension",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "The Red Hat Product Security team has assessed the severity of this vulnerability as Important, given that it requires a user to open a malicious Java source file and interact with a hover popup. Successful exploitation allows an attacker to execute arbitrary commands within the context of the VS Code editor and potentially the underlying operating system. The vulnerability\u0027s root cause is the over-trusting of Markdown content returned by the Java language server, which fails to isolate extension-generated trusted links from attacker-controlled JavaDoc content.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2af86b409540513f6da1afa83110a5cafe8778d2ec16332faa31c964bd5f43f7_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2f3bec76a833a72c7dfa93ed55e55e80e2621c154e5a2f156deaf78d7c6b97b4_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:81a2385be30079500f13f97a18607aa685abd61265bf8fa78bc6ce126341be50_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:fdc8f64f3b82b200a5e31b01b8612069f1aa897014085c1de755394552a1a70a_amd64"
],
"known_not_affected": [
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:1384e5ba2b7d23119a49d8713826f4c65668bca310589ac7abd0c0d41c7e4c90_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:7f58528b1da9146aa55917324fdf2b375794742b34e5d10ff57f713af60746cd_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:844c3b1499b00aeadfc561642e53792ad80f535efd53b35793ba08b0f26c6d61_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:e1019c30e1d84e66d775d0d6fc7d051803dcbe44823fb2a1914807be39c79dae_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:8c9a7ebf430b9f4ca200c6c70b049e8456cf88fd8bf0871b42d65e8dc786d451_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:926d965e6fd12ec0d758270fb4c90bbdc1a05e60cc4c895cf9b671a296c9d867_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:e8e807451e3c5d8d0a8575e1280d7125a4ece51547a7b4a5cd247837662cedad_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:f2a24aa01cbe0d926d4aefe3b12eba21eb5ec7f87276e572a6814c727228624c_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:45cc0d783d1e7874ac73dfbdfe7e03c63b227ab3c4f1e15a0a2f5c97956a76d9_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:6f3eb26734e89375c3e1fb7ac366e12dc0d41bac8f07de9210c7e9845a01eec1_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:768c45fa9f35d98dfe5cfe1ea12f552402bf68ac6e1f828b14310ef59ce57c40_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:b5f1bf30495f6be97c696cf7f90768629cee96f8d106f745bf95fdefddc99592_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:137ffbb95d463d95da6c350600d968f3cd0e9873bf2e7c6edf952ae3229e9e2b_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:1cccdfd7e90877c27c6d8caea4f1e8ad89bb97c83d97ddf570d4f4ee116f1986_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:71657b82894cfd9e350746f48965e148868a675b9a20dcb7f94a6bc7a5b16ea5_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:881e405e32821ef10cf992c7a633281c1dc45df721fe909048df1689472000ce_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:6c85b42ede0f4745ed558bcb03d033c49f56cef17a70c12e5308066124cac6e3_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:091529a93e258a612fd4a98222e6a370ee10b4e97efa791b50f79a2670163d01_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0e8958a22f6771ddfe32b34027c69dbbef65d980c7e465a79d4202d2627994ad_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:5a8b0203ff083113e8b30a123ab30c4bad571f57fb59c1e7e01807b92552504e_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:89bf6a32a0935cacadbc6d23566dce6ca741e404d58c11050638c7b8e868028b_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:077cc953354ea2edd85569a622f97c15d44163d68234e7a9fdee899d25c19cdb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:66285f866090e1bfbedacd592e9d5ea9f2a30b88aa03bc86bc790d6b98a929a4_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:8c80054171d5063457df4bd074674b1824783a101dacb6137da227080aff957c_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:b0f15904251c6665961eef9c944d00f17499f7219351fe213fe7935f62fbf7ac_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:62476ac2fb0096caa9b181f523cc3573ccffe70be1433f08d1d0255b6d3a0640_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:6f632bc9829880a44e2e94084284b52683b4a01dc3315043b0aa32eb344b16cb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:aa3d1cf7853bfe8307efb01f714585f378d1d3d4ed5de7c8808a72e4aeecd4f3_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:bf1d4b2b1ef03e65be59699ce3233a75a34e1777abc182984c7a8efa698a936e_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:141f17d12c748c7ab9e94cfd9db7e2492d3063e7478249d6430ac0d8fcfb8875_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:5909184fe3d37eb45ba3bf55d7b708d818f2a5abfc2949c4a7081a5cd30cea4f_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:6217f0bb4937fa0e0fc0a5c86456fdc1992e169dfedc3d11d5165cef575d4d53_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:d55a55a36a23e7deb83718bd5dcc19b083b84d441add72ea7f4e28935e4717e3_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:0f8e1171f278395f3c72e4d9d3c0492bed15b678963fb2b6182bd65343b85a2e_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:823bb59b1c7d01557c29f9f1e4a4ee39814c38d826b06c3c9de4b8d179078419_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:93c7e9b321c7e9aa4a412a993a6b20412e24772832cc0dd23bbb17aa25f15487_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:9e50b45f81fedab27e896f04b80bacaa01d8370ff5679147f95ad79b61972d83_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:8f145d4e336bd77fcc94f0845f9ebf94563ffd96d56794d96a665c11241df152_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:981917806c7faf31156241cc85577cf375ee566f78adaeadc096d0ba8482b835_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:af3ed91687500d64e2348cca4877c43f73211b8fbd132e7767c3521763185348_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:c05020e5ee5bddc62e38493cd16b6e4ffde7c2248a00d710f32b90a6ee12ceeb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:856b9088dbda4e7374daf232602f4bb90b05ad1be1df46d6e363a002f549f4de_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:a107ae2f7b140f2fb2243f33c378228c2f164cfd2d23f57e63f6c424fd400929_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:e21de356b7d879800a96f6c5aeee6bc59a3ed9c58d36503f7089625ce887bb25_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:fcaf6d60d682cf51866948ea3b4846c2993e2801adb69dc745ffa832318f515c_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:11f005939e15d63057bf2f0a988b6baebc275d3e752e9f7696d0f7f5266fd5d6_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:4b4c98be96a932d508fad769eff61bff2a44e13baa60b22b6c543f4a11eb71c2_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:6c87453ffe89e8be752ee40c8a9ccf6894c83be703f13901b1e8b64a4c0e549a_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:c18a1c50a4fc7081c6564d1c4ed4904212b7939a4f1f46afef0a36dc1d76f38e_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:33367b9fdb3addce3302ad35bc10423505fefe3dd27b8b9013b26d66caac2a6c_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:72cbdb061cbcd295be5e66a0eabb409af16ade7f0aa12b04c2d7327e9e1a24ba_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:d0379f9da8cbb5514394a4550ff0d79f90fa691fcced5806296479c7b63353da_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:e99d1d877bd7335736cbaeb4db5b9904369a1d07f6df332c38ad79ff1256b67b_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:06285611aef2528fc92c5cebb66ff4c74fe44d457f43cf9ec2f4a98c3c68d25e_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:25e0f4153eb5bc6fbc6b389d5adc81bfde103070ef58317c3c25ce4144a628d3_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:acd3c0369c18cbfa63a5972ed1721f93f1fcb456963ff855dea2c295baf1cdb8_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:d086075db52f4476aa64d7e2680baa01e99da246275fa9cae0ba4a74de63c7f3_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:07d89c1b524d1451051feb865bc716da2197add90fa0c58c4cf4a82975ec846c_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:6582e647d7dd604e25977ec1579969aa1fcb29ead1a0ea65833531d633bbdd2b_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:75e3aec03dffbd0f40f88a08ff5e0319f4515d73f0bcfae28b5fa526b494afc4_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:f0079e8ae53d84223aea2d3186e7bc6b525b7c03d307cde50cfb9f1bbc18712b_arm64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-12856"
},
{
"category": "external",
"summary": "RHBZ#2491278",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2491278"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-12856",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-12856"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-12856",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-12856"
},
{
"category": "external",
"summary": "https://github.com/redhat-developer/vscode-java/security/advisories/GHSA-7qv8-6qrw-3crv",
"url": "https://github.com/redhat-developer/vscode-java/security/advisories/GHSA-7qv8-6qrw-3crv"
}
],
"release_date": "2026-06-29T12:25:07.165000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T17:12:17+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\nFor details on how to apply this update, refer to:\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2af86b409540513f6da1afa83110a5cafe8778d2ec16332faa31c964bd5f43f7_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2f3bec76a833a72c7dfa93ed55e55e80e2621c154e5a2f156deaf78d7c6b97b4_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:81a2385be30079500f13f97a18607aa685abd61265bf8fa78bc6ce126341be50_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:fdc8f64f3b82b200a5e31b01b8612069f1aa897014085c1de755394552a1a70a_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36820"
},
{
"category": "workaround",
"details": "To mitigate this issue, users should avoid opening or interacting with untrusted Java projects or files within Red Hat OpenShift Dev Spaces. Exercise caution and refrain from clicking on unfamiliar links presented in JavaDoc hover popups, particularly when working with code from unverified sources. Disabling the `vscode-java` extension when not actively engaged in Java development can further reduce exposure, though this will impact Java-related functionality.",
"product_ids": [
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:1384e5ba2b7d23119a49d8713826f4c65668bca310589ac7abd0c0d41c7e4c90_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:7f58528b1da9146aa55917324fdf2b375794742b34e5d10ff57f713af60746cd_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:844c3b1499b00aeadfc561642e53792ad80f535efd53b35793ba08b0f26c6d61_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:e1019c30e1d84e66d775d0d6fc7d051803dcbe44823fb2a1914807be39c79dae_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:8c9a7ebf430b9f4ca200c6c70b049e8456cf88fd8bf0871b42d65e8dc786d451_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:926d965e6fd12ec0d758270fb4c90bbdc1a05e60cc4c895cf9b671a296c9d867_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:e8e807451e3c5d8d0a8575e1280d7125a4ece51547a7b4a5cd247837662cedad_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:f2a24aa01cbe0d926d4aefe3b12eba21eb5ec7f87276e572a6814c727228624c_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:45cc0d783d1e7874ac73dfbdfe7e03c63b227ab3c4f1e15a0a2f5c97956a76d9_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:6f3eb26734e89375c3e1fb7ac366e12dc0d41bac8f07de9210c7e9845a01eec1_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:768c45fa9f35d98dfe5cfe1ea12f552402bf68ac6e1f828b14310ef59ce57c40_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:b5f1bf30495f6be97c696cf7f90768629cee96f8d106f745bf95fdefddc99592_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:137ffbb95d463d95da6c350600d968f3cd0e9873bf2e7c6edf952ae3229e9e2b_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:1cccdfd7e90877c27c6d8caea4f1e8ad89bb97c83d97ddf570d4f4ee116f1986_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:71657b82894cfd9e350746f48965e148868a675b9a20dcb7f94a6bc7a5b16ea5_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:881e405e32821ef10cf992c7a633281c1dc45df721fe909048df1689472000ce_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:6c85b42ede0f4745ed558bcb03d033c49f56cef17a70c12e5308066124cac6e3_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:091529a93e258a612fd4a98222e6a370ee10b4e97efa791b50f79a2670163d01_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0e8958a22f6771ddfe32b34027c69dbbef65d980c7e465a79d4202d2627994ad_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:5a8b0203ff083113e8b30a123ab30c4bad571f57fb59c1e7e01807b92552504e_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:89bf6a32a0935cacadbc6d23566dce6ca741e404d58c11050638c7b8e868028b_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:077cc953354ea2edd85569a622f97c15d44163d68234e7a9fdee899d25c19cdb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:66285f866090e1bfbedacd592e9d5ea9f2a30b88aa03bc86bc790d6b98a929a4_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:8c80054171d5063457df4bd074674b1824783a101dacb6137da227080aff957c_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:b0f15904251c6665961eef9c944d00f17499f7219351fe213fe7935f62fbf7ac_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:62476ac2fb0096caa9b181f523cc3573ccffe70be1433f08d1d0255b6d3a0640_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:6f632bc9829880a44e2e94084284b52683b4a01dc3315043b0aa32eb344b16cb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:aa3d1cf7853bfe8307efb01f714585f378d1d3d4ed5de7c8808a72e4aeecd4f3_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:bf1d4b2b1ef03e65be59699ce3233a75a34e1777abc182984c7a8efa698a936e_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:141f17d12c748c7ab9e94cfd9db7e2492d3063e7478249d6430ac0d8fcfb8875_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:5909184fe3d37eb45ba3bf55d7b708d818f2a5abfc2949c4a7081a5cd30cea4f_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:6217f0bb4937fa0e0fc0a5c86456fdc1992e169dfedc3d11d5165cef575d4d53_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:d55a55a36a23e7deb83718bd5dcc19b083b84d441add72ea7f4e28935e4717e3_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:0f8e1171f278395f3c72e4d9d3c0492bed15b678963fb2b6182bd65343b85a2e_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:823bb59b1c7d01557c29f9f1e4a4ee39814c38d826b06c3c9de4b8d179078419_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:93c7e9b321c7e9aa4a412a993a6b20412e24772832cc0dd23bbb17aa25f15487_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:9e50b45f81fedab27e896f04b80bacaa01d8370ff5679147f95ad79b61972d83_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:8f145d4e336bd77fcc94f0845f9ebf94563ffd96d56794d96a665c11241df152_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:981917806c7faf31156241cc85577cf375ee566f78adaeadc096d0ba8482b835_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:af3ed91687500d64e2348cca4877c43f73211b8fbd132e7767c3521763185348_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:c05020e5ee5bddc62e38493cd16b6e4ffde7c2248a00d710f32b90a6ee12ceeb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2af86b409540513f6da1afa83110a5cafe8778d2ec16332faa31c964bd5f43f7_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2f3bec76a833a72c7dfa93ed55e55e80e2621c154e5a2f156deaf78d7c6b97b4_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:81a2385be30079500f13f97a18607aa685abd61265bf8fa78bc6ce126341be50_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:fdc8f64f3b82b200a5e31b01b8612069f1aa897014085c1de755394552a1a70a_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:856b9088dbda4e7374daf232602f4bb90b05ad1be1df46d6e363a002f549f4de_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:a107ae2f7b140f2fb2243f33c378228c2f164cfd2d23f57e63f6c424fd400929_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:e21de356b7d879800a96f6c5aeee6bc59a3ed9c58d36503f7089625ce887bb25_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:fcaf6d60d682cf51866948ea3b4846c2993e2801adb69dc745ffa832318f515c_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:11f005939e15d63057bf2f0a988b6baebc275d3e752e9f7696d0f7f5266fd5d6_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:4b4c98be96a932d508fad769eff61bff2a44e13baa60b22b6c543f4a11eb71c2_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:6c87453ffe89e8be752ee40c8a9ccf6894c83be703f13901b1e8b64a4c0e549a_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:c18a1c50a4fc7081c6564d1c4ed4904212b7939a4f1f46afef0a36dc1d76f38e_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:33367b9fdb3addce3302ad35bc10423505fefe3dd27b8b9013b26d66caac2a6c_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:72cbdb061cbcd295be5e66a0eabb409af16ade7f0aa12b04c2d7327e9e1a24ba_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:d0379f9da8cbb5514394a4550ff0d79f90fa691fcced5806296479c7b63353da_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:e99d1d877bd7335736cbaeb4db5b9904369a1d07f6df332c38ad79ff1256b67b_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:06285611aef2528fc92c5cebb66ff4c74fe44d457f43cf9ec2f4a98c3c68d25e_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:25e0f4153eb5bc6fbc6b389d5adc81bfde103070ef58317c3c25ce4144a628d3_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:acd3c0369c18cbfa63a5972ed1721f93f1fcb456963ff855dea2c295baf1cdb8_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:d086075db52f4476aa64d7e2680baa01e99da246275fa9cae0ba4a74de63c7f3_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:07d89c1b524d1451051feb865bc716da2197add90fa0c58c4cf4a82975ec846c_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:6582e647d7dd604e25977ec1579969aa1fcb29ead1a0ea65833531d633bbdd2b_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:75e3aec03dffbd0f40f88a08ff5e0319f4515d73f0bcfae28b5fa526b494afc4_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:f0079e8ae53d84223aea2d3186e7bc6b525b7c03d307cde50cfb9f1bbc18712b_arm64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:1384e5ba2b7d23119a49d8713826f4c65668bca310589ac7abd0c0d41c7e4c90_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:7f58528b1da9146aa55917324fdf2b375794742b34e5d10ff57f713af60746cd_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:844c3b1499b00aeadfc561642e53792ad80f535efd53b35793ba08b0f26c6d61_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:e1019c30e1d84e66d775d0d6fc7d051803dcbe44823fb2a1914807be39c79dae_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:8c9a7ebf430b9f4ca200c6c70b049e8456cf88fd8bf0871b42d65e8dc786d451_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:926d965e6fd12ec0d758270fb4c90bbdc1a05e60cc4c895cf9b671a296c9d867_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:e8e807451e3c5d8d0a8575e1280d7125a4ece51547a7b4a5cd247837662cedad_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:f2a24aa01cbe0d926d4aefe3b12eba21eb5ec7f87276e572a6814c727228624c_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:45cc0d783d1e7874ac73dfbdfe7e03c63b227ab3c4f1e15a0a2f5c97956a76d9_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:6f3eb26734e89375c3e1fb7ac366e12dc0d41bac8f07de9210c7e9845a01eec1_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:768c45fa9f35d98dfe5cfe1ea12f552402bf68ac6e1f828b14310ef59ce57c40_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:b5f1bf30495f6be97c696cf7f90768629cee96f8d106f745bf95fdefddc99592_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:137ffbb95d463d95da6c350600d968f3cd0e9873bf2e7c6edf952ae3229e9e2b_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:1cccdfd7e90877c27c6d8caea4f1e8ad89bb97c83d97ddf570d4f4ee116f1986_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:71657b82894cfd9e350746f48965e148868a675b9a20dcb7f94a6bc7a5b16ea5_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:881e405e32821ef10cf992c7a633281c1dc45df721fe909048df1689472000ce_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:6c85b42ede0f4745ed558bcb03d033c49f56cef17a70c12e5308066124cac6e3_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:091529a93e258a612fd4a98222e6a370ee10b4e97efa791b50f79a2670163d01_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0e8958a22f6771ddfe32b34027c69dbbef65d980c7e465a79d4202d2627994ad_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:5a8b0203ff083113e8b30a123ab30c4bad571f57fb59c1e7e01807b92552504e_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:89bf6a32a0935cacadbc6d23566dce6ca741e404d58c11050638c7b8e868028b_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:077cc953354ea2edd85569a622f97c15d44163d68234e7a9fdee899d25c19cdb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:66285f866090e1bfbedacd592e9d5ea9f2a30b88aa03bc86bc790d6b98a929a4_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:8c80054171d5063457df4bd074674b1824783a101dacb6137da227080aff957c_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:b0f15904251c6665961eef9c944d00f17499f7219351fe213fe7935f62fbf7ac_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:62476ac2fb0096caa9b181f523cc3573ccffe70be1433f08d1d0255b6d3a0640_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:6f632bc9829880a44e2e94084284b52683b4a01dc3315043b0aa32eb344b16cb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:aa3d1cf7853bfe8307efb01f714585f378d1d3d4ed5de7c8808a72e4aeecd4f3_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:bf1d4b2b1ef03e65be59699ce3233a75a34e1777abc182984c7a8efa698a936e_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:141f17d12c748c7ab9e94cfd9db7e2492d3063e7478249d6430ac0d8fcfb8875_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:5909184fe3d37eb45ba3bf55d7b708d818f2a5abfc2949c4a7081a5cd30cea4f_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:6217f0bb4937fa0e0fc0a5c86456fdc1992e169dfedc3d11d5165cef575d4d53_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:d55a55a36a23e7deb83718bd5dcc19b083b84d441add72ea7f4e28935e4717e3_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:0f8e1171f278395f3c72e4d9d3c0492bed15b678963fb2b6182bd65343b85a2e_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:823bb59b1c7d01557c29f9f1e4a4ee39814c38d826b06c3c9de4b8d179078419_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:93c7e9b321c7e9aa4a412a993a6b20412e24772832cc0dd23bbb17aa25f15487_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:9e50b45f81fedab27e896f04b80bacaa01d8370ff5679147f95ad79b61972d83_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:8f145d4e336bd77fcc94f0845f9ebf94563ffd96d56794d96a665c11241df152_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:981917806c7faf31156241cc85577cf375ee566f78adaeadc096d0ba8482b835_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:af3ed91687500d64e2348cca4877c43f73211b8fbd132e7767c3521763185348_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:c05020e5ee5bddc62e38493cd16b6e4ffde7c2248a00d710f32b90a6ee12ceeb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2af86b409540513f6da1afa83110a5cafe8778d2ec16332faa31c964bd5f43f7_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2f3bec76a833a72c7dfa93ed55e55e80e2621c154e5a2f156deaf78d7c6b97b4_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:81a2385be30079500f13f97a18607aa685abd61265bf8fa78bc6ce126341be50_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:fdc8f64f3b82b200a5e31b01b8612069f1aa897014085c1de755394552a1a70a_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:856b9088dbda4e7374daf232602f4bb90b05ad1be1df46d6e363a002f549f4de_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:a107ae2f7b140f2fb2243f33c378228c2f164cfd2d23f57e63f6c424fd400929_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:e21de356b7d879800a96f6c5aeee6bc59a3ed9c58d36503f7089625ce887bb25_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:fcaf6d60d682cf51866948ea3b4846c2993e2801adb69dc745ffa832318f515c_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:11f005939e15d63057bf2f0a988b6baebc275d3e752e9f7696d0f7f5266fd5d6_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:4b4c98be96a932d508fad769eff61bff2a44e13baa60b22b6c543f4a11eb71c2_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:6c87453ffe89e8be752ee40c8a9ccf6894c83be703f13901b1e8b64a4c0e549a_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:c18a1c50a4fc7081c6564d1c4ed4904212b7939a4f1f46afef0a36dc1d76f38e_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:33367b9fdb3addce3302ad35bc10423505fefe3dd27b8b9013b26d66caac2a6c_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:72cbdb061cbcd295be5e66a0eabb409af16ade7f0aa12b04c2d7327e9e1a24ba_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:d0379f9da8cbb5514394a4550ff0d79f90fa691fcced5806296479c7b63353da_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:e99d1d877bd7335736cbaeb4db5b9904369a1d07f6df332c38ad79ff1256b67b_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:06285611aef2528fc92c5cebb66ff4c74fe44d457f43cf9ec2f4a98c3c68d25e_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:25e0f4153eb5bc6fbc6b389d5adc81bfde103070ef58317c3c25ce4144a628d3_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:acd3c0369c18cbfa63a5972ed1721f93f1fcb456963ff855dea2c295baf1cdb8_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:d086075db52f4476aa64d7e2680baa01e99da246275fa9cae0ba4a74de63c7f3_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:07d89c1b524d1451051feb865bc716da2197add90fa0c58c4cf4a82975ec846c_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:6582e647d7dd604e25977ec1579969aa1fcb29ead1a0ea65833531d633bbdd2b_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:75e3aec03dffbd0f40f88a08ff5e0319f4515d73f0bcfae28b5fa526b494afc4_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:f0079e8ae53d84223aea2d3186e7bc6b525b7c03d307cde50cfb9f1bbc18712b_arm64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "vscode-java: vscode: Command Injection vulnerability in the JavaDoc hover provider of the vscode-java extension"
},
{
"cve": "CVE-2026-34986",
"cwe": {
"id": "CWE-131",
"name": "Incorrect Calculation of Buffer Size"
},
"discovery_date": "2026-04-06T17:01:34.639203+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:1384e5ba2b7d23119a49d8713826f4c65668bca310589ac7abd0c0d41c7e4c90_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:7f58528b1da9146aa55917324fdf2b375794742b34e5d10ff57f713af60746cd_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:844c3b1499b00aeadfc561642e53792ad80f535efd53b35793ba08b0f26c6d61_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:e1019c30e1d84e66d775d0d6fc7d051803dcbe44823fb2a1914807be39c79dae_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:8c9a7ebf430b9f4ca200c6c70b049e8456cf88fd8bf0871b42d65e8dc786d451_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:926d965e6fd12ec0d758270fb4c90bbdc1a05e60cc4c895cf9b671a296c9d867_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:e8e807451e3c5d8d0a8575e1280d7125a4ece51547a7b4a5cd247837662cedad_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:f2a24aa01cbe0d926d4aefe3b12eba21eb5ec7f87276e572a6814c727228624c_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:45cc0d783d1e7874ac73dfbdfe7e03c63b227ab3c4f1e15a0a2f5c97956a76d9_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:6f3eb26734e89375c3e1fb7ac366e12dc0d41bac8f07de9210c7e9845a01eec1_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:768c45fa9f35d98dfe5cfe1ea12f552402bf68ac6e1f828b14310ef59ce57c40_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:b5f1bf30495f6be97c696cf7f90768629cee96f8d106f745bf95fdefddc99592_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:137ffbb95d463d95da6c350600d968f3cd0e9873bf2e7c6edf952ae3229e9e2b_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:1cccdfd7e90877c27c6d8caea4f1e8ad89bb97c83d97ddf570d4f4ee116f1986_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:71657b82894cfd9e350746f48965e148868a675b9a20dcb7f94a6bc7a5b16ea5_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:881e405e32821ef10cf992c7a633281c1dc45df721fe909048df1689472000ce_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:6c85b42ede0f4745ed558bcb03d033c49f56cef17a70c12e5308066124cac6e3_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:091529a93e258a612fd4a98222e6a370ee10b4e97efa791b50f79a2670163d01_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0e8958a22f6771ddfe32b34027c69dbbef65d980c7e465a79d4202d2627994ad_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:5a8b0203ff083113e8b30a123ab30c4bad571f57fb59c1e7e01807b92552504e_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:89bf6a32a0935cacadbc6d23566dce6ca741e404d58c11050638c7b8e868028b_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:077cc953354ea2edd85569a622f97c15d44163d68234e7a9fdee899d25c19cdb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:66285f866090e1bfbedacd592e9d5ea9f2a30b88aa03bc86bc790d6b98a929a4_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:8c80054171d5063457df4bd074674b1824783a101dacb6137da227080aff957c_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:b0f15904251c6665961eef9c944d00f17499f7219351fe213fe7935f62fbf7ac_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:62476ac2fb0096caa9b181f523cc3573ccffe70be1433f08d1d0255b6d3a0640_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:6f632bc9829880a44e2e94084284b52683b4a01dc3315043b0aa32eb344b16cb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:aa3d1cf7853bfe8307efb01f714585f378d1d3d4ed5de7c8808a72e4aeecd4f3_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:bf1d4b2b1ef03e65be59699ce3233a75a34e1777abc182984c7a8efa698a936e_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:141f17d12c748c7ab9e94cfd9db7e2492d3063e7478249d6430ac0d8fcfb8875_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:5909184fe3d37eb45ba3bf55d7b708d818f2a5abfc2949c4a7081a5cd30cea4f_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:6217f0bb4937fa0e0fc0a5c86456fdc1992e169dfedc3d11d5165cef575d4d53_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:d55a55a36a23e7deb83718bd5dcc19b083b84d441add72ea7f4e28935e4717e3_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:0f8e1171f278395f3c72e4d9d3c0492bed15b678963fb2b6182bd65343b85a2e_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:823bb59b1c7d01557c29f9f1e4a4ee39814c38d826b06c3c9de4b8d179078419_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:93c7e9b321c7e9aa4a412a993a6b20412e24772832cc0dd23bbb17aa25f15487_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:9e50b45f81fedab27e896f04b80bacaa01d8370ff5679147f95ad79b61972d83_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:8f145d4e336bd77fcc94f0845f9ebf94563ffd96d56794d96a665c11241df152_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:981917806c7faf31156241cc85577cf375ee566f78adaeadc096d0ba8482b835_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:af3ed91687500d64e2348cca4877c43f73211b8fbd132e7767c3521763185348_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:c05020e5ee5bddc62e38493cd16b6e4ffde7c2248a00d710f32b90a6ee12ceeb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2af86b409540513f6da1afa83110a5cafe8778d2ec16332faa31c964bd5f43f7_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2f3bec76a833a72c7dfa93ed55e55e80e2621c154e5a2f156deaf78d7c6b97b4_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:81a2385be30079500f13f97a18607aa685abd61265bf8fa78bc6ce126341be50_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:fdc8f64f3b82b200a5e31b01b8612069f1aa897014085c1de755394552a1a70a_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:856b9088dbda4e7374daf232602f4bb90b05ad1be1df46d6e363a002f549f4de_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:a107ae2f7b140f2fb2243f33c378228c2f164cfd2d23f57e63f6c424fd400929_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:e21de356b7d879800a96f6c5aeee6bc59a3ed9c58d36503f7089625ce887bb25_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:fcaf6d60d682cf51866948ea3b4846c2993e2801adb69dc745ffa832318f515c_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:11f005939e15d63057bf2f0a988b6baebc275d3e752e9f7696d0f7f5266fd5d6_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:4b4c98be96a932d508fad769eff61bff2a44e13baa60b22b6c543f4a11eb71c2_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:6c87453ffe89e8be752ee40c8a9ccf6894c83be703f13901b1e8b64a4c0e549a_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:c18a1c50a4fc7081c6564d1c4ed4904212b7939a4f1f46afef0a36dc1d76f38e_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:06285611aef2528fc92c5cebb66ff4c74fe44d457f43cf9ec2f4a98c3c68d25e_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:25e0f4153eb5bc6fbc6b389d5adc81bfde103070ef58317c3c25ce4144a628d3_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:acd3c0369c18cbfa63a5972ed1721f93f1fcb456963ff855dea2c295baf1cdb8_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:d086075db52f4476aa64d7e2680baa01e99da246275fa9cae0ba4a74de63c7f3_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:07d89c1b524d1451051feb865bc716da2197add90fa0c58c4cf4a82975ec846c_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:6582e647d7dd604e25977ec1579969aa1fcb29ead1a0ea65833531d633bbdd2b_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:75e3aec03dffbd0f40f88a08ff5e0319f4515d73f0bcfae28b5fa526b494afc4_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:f0079e8ae53d84223aea2d3186e7bc6b525b7c03d307cde50cfb9f1bbc18712b_arm64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2455470"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Go JOSE, a library for handling JSON Web Encryption (JWE) objects. A remote attacker could exploit this vulnerability by providing a specially crafted JWE object. When decrypting such an object, if a key wrapping algorithm is specified but the encrypted key field is empty, the application can crash. This leads to a denial of service (DoS), making the affected service unavailable to legitimate users.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "github.com/go-jose/go-jose/v3: github.com/go-jose/go-jose/v4: Go JOSE: Denial of Service via crafted JSON Web Encryption (JWE) object",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:33367b9fdb3addce3302ad35bc10423505fefe3dd27b8b9013b26d66caac2a6c_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:72cbdb061cbcd295be5e66a0eabb409af16ade7f0aa12b04c2d7327e9e1a24ba_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:d0379f9da8cbb5514394a4550ff0d79f90fa691fcced5806296479c7b63353da_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:e99d1d877bd7335736cbaeb4db5b9904369a1d07f6df332c38ad79ff1256b67b_s390x"
],
"known_not_affected": [
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:1384e5ba2b7d23119a49d8713826f4c65668bca310589ac7abd0c0d41c7e4c90_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:7f58528b1da9146aa55917324fdf2b375794742b34e5d10ff57f713af60746cd_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:844c3b1499b00aeadfc561642e53792ad80f535efd53b35793ba08b0f26c6d61_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:e1019c30e1d84e66d775d0d6fc7d051803dcbe44823fb2a1914807be39c79dae_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:8c9a7ebf430b9f4ca200c6c70b049e8456cf88fd8bf0871b42d65e8dc786d451_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:926d965e6fd12ec0d758270fb4c90bbdc1a05e60cc4c895cf9b671a296c9d867_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:e8e807451e3c5d8d0a8575e1280d7125a4ece51547a7b4a5cd247837662cedad_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:f2a24aa01cbe0d926d4aefe3b12eba21eb5ec7f87276e572a6814c727228624c_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:45cc0d783d1e7874ac73dfbdfe7e03c63b227ab3c4f1e15a0a2f5c97956a76d9_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:6f3eb26734e89375c3e1fb7ac366e12dc0d41bac8f07de9210c7e9845a01eec1_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:768c45fa9f35d98dfe5cfe1ea12f552402bf68ac6e1f828b14310ef59ce57c40_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:b5f1bf30495f6be97c696cf7f90768629cee96f8d106f745bf95fdefddc99592_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:137ffbb95d463d95da6c350600d968f3cd0e9873bf2e7c6edf952ae3229e9e2b_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:1cccdfd7e90877c27c6d8caea4f1e8ad89bb97c83d97ddf570d4f4ee116f1986_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:71657b82894cfd9e350746f48965e148868a675b9a20dcb7f94a6bc7a5b16ea5_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:881e405e32821ef10cf992c7a633281c1dc45df721fe909048df1689472000ce_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:6c85b42ede0f4745ed558bcb03d033c49f56cef17a70c12e5308066124cac6e3_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:091529a93e258a612fd4a98222e6a370ee10b4e97efa791b50f79a2670163d01_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0e8958a22f6771ddfe32b34027c69dbbef65d980c7e465a79d4202d2627994ad_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:5a8b0203ff083113e8b30a123ab30c4bad571f57fb59c1e7e01807b92552504e_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:89bf6a32a0935cacadbc6d23566dce6ca741e404d58c11050638c7b8e868028b_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:077cc953354ea2edd85569a622f97c15d44163d68234e7a9fdee899d25c19cdb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:66285f866090e1bfbedacd592e9d5ea9f2a30b88aa03bc86bc790d6b98a929a4_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:8c80054171d5063457df4bd074674b1824783a101dacb6137da227080aff957c_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:b0f15904251c6665961eef9c944d00f17499f7219351fe213fe7935f62fbf7ac_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:62476ac2fb0096caa9b181f523cc3573ccffe70be1433f08d1d0255b6d3a0640_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:6f632bc9829880a44e2e94084284b52683b4a01dc3315043b0aa32eb344b16cb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:aa3d1cf7853bfe8307efb01f714585f378d1d3d4ed5de7c8808a72e4aeecd4f3_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:bf1d4b2b1ef03e65be59699ce3233a75a34e1777abc182984c7a8efa698a936e_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:141f17d12c748c7ab9e94cfd9db7e2492d3063e7478249d6430ac0d8fcfb8875_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:5909184fe3d37eb45ba3bf55d7b708d818f2a5abfc2949c4a7081a5cd30cea4f_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:6217f0bb4937fa0e0fc0a5c86456fdc1992e169dfedc3d11d5165cef575d4d53_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:d55a55a36a23e7deb83718bd5dcc19b083b84d441add72ea7f4e28935e4717e3_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:0f8e1171f278395f3c72e4d9d3c0492bed15b678963fb2b6182bd65343b85a2e_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:823bb59b1c7d01557c29f9f1e4a4ee39814c38d826b06c3c9de4b8d179078419_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:93c7e9b321c7e9aa4a412a993a6b20412e24772832cc0dd23bbb17aa25f15487_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:9e50b45f81fedab27e896f04b80bacaa01d8370ff5679147f95ad79b61972d83_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:8f145d4e336bd77fcc94f0845f9ebf94563ffd96d56794d96a665c11241df152_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:981917806c7faf31156241cc85577cf375ee566f78adaeadc096d0ba8482b835_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:af3ed91687500d64e2348cca4877c43f73211b8fbd132e7767c3521763185348_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:c05020e5ee5bddc62e38493cd16b6e4ffde7c2248a00d710f32b90a6ee12ceeb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2af86b409540513f6da1afa83110a5cafe8778d2ec16332faa31c964bd5f43f7_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2f3bec76a833a72c7dfa93ed55e55e80e2621c154e5a2f156deaf78d7c6b97b4_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:81a2385be30079500f13f97a18607aa685abd61265bf8fa78bc6ce126341be50_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:fdc8f64f3b82b200a5e31b01b8612069f1aa897014085c1de755394552a1a70a_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:856b9088dbda4e7374daf232602f4bb90b05ad1be1df46d6e363a002f549f4de_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:a107ae2f7b140f2fb2243f33c378228c2f164cfd2d23f57e63f6c424fd400929_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:e21de356b7d879800a96f6c5aeee6bc59a3ed9c58d36503f7089625ce887bb25_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:fcaf6d60d682cf51866948ea3b4846c2993e2801adb69dc745ffa832318f515c_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:11f005939e15d63057bf2f0a988b6baebc275d3e752e9f7696d0f7f5266fd5d6_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:4b4c98be96a932d508fad769eff61bff2a44e13baa60b22b6c543f4a11eb71c2_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:6c87453ffe89e8be752ee40c8a9ccf6894c83be703f13901b1e8b64a4c0e549a_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:c18a1c50a4fc7081c6564d1c4ed4904212b7939a4f1f46afef0a36dc1d76f38e_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:06285611aef2528fc92c5cebb66ff4c74fe44d457f43cf9ec2f4a98c3c68d25e_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:25e0f4153eb5bc6fbc6b389d5adc81bfde103070ef58317c3c25ce4144a628d3_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:acd3c0369c18cbfa63a5972ed1721f93f1fcb456963ff855dea2c295baf1cdb8_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:d086075db52f4476aa64d7e2680baa01e99da246275fa9cae0ba4a74de63c7f3_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:07d89c1b524d1451051feb865bc716da2197add90fa0c58c4cf4a82975ec846c_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:6582e647d7dd604e25977ec1579969aa1fcb29ead1a0ea65833531d633bbdd2b_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:75e3aec03dffbd0f40f88a08ff5e0319f4515d73f0bcfae28b5fa526b494afc4_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:f0079e8ae53d84223aea2d3186e7bc6b525b7c03d307cde50cfb9f1bbc18712b_arm64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-34986"
},
{
"category": "external",
"summary": "RHBZ#2455470",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2455470"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-34986",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-34986"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-34986",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-34986"
},
{
"category": "external",
"summary": "https://github.com/go-jose/go-jose/security/advisories/GHSA-78h2-9frx-2jm8",
"url": "https://github.com/go-jose/go-jose/security/advisories/GHSA-78h2-9frx-2jm8"
},
{
"category": "external",
"summary": "https://pkg.go.dev/github.com/go-jose/go-jose/v4#pkg-constants",
"url": "https://pkg.go.dev/github.com/go-jose/go-jose/v4#pkg-constants"
}
],
"release_date": "2026-04-06T16:22:45.353000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T17:12:17+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\nFor details on how to apply this update, refer to:\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:33367b9fdb3addce3302ad35bc10423505fefe3dd27b8b9013b26d66caac2a6c_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:72cbdb061cbcd295be5e66a0eabb409af16ade7f0aa12b04c2d7327e9e1a24ba_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:d0379f9da8cbb5514394a4550ff0d79f90fa691fcced5806296479c7b63353da_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:e99d1d877bd7335736cbaeb4db5b9904369a1d07f6df332c38ad79ff1256b67b_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36820"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:1384e5ba2b7d23119a49d8713826f4c65668bca310589ac7abd0c0d41c7e4c90_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:7f58528b1da9146aa55917324fdf2b375794742b34e5d10ff57f713af60746cd_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:844c3b1499b00aeadfc561642e53792ad80f535efd53b35793ba08b0f26c6d61_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:e1019c30e1d84e66d775d0d6fc7d051803dcbe44823fb2a1914807be39c79dae_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:8c9a7ebf430b9f4ca200c6c70b049e8456cf88fd8bf0871b42d65e8dc786d451_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:926d965e6fd12ec0d758270fb4c90bbdc1a05e60cc4c895cf9b671a296c9d867_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:e8e807451e3c5d8d0a8575e1280d7125a4ece51547a7b4a5cd247837662cedad_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:f2a24aa01cbe0d926d4aefe3b12eba21eb5ec7f87276e572a6814c727228624c_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:45cc0d783d1e7874ac73dfbdfe7e03c63b227ab3c4f1e15a0a2f5c97956a76d9_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:6f3eb26734e89375c3e1fb7ac366e12dc0d41bac8f07de9210c7e9845a01eec1_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:768c45fa9f35d98dfe5cfe1ea12f552402bf68ac6e1f828b14310ef59ce57c40_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:b5f1bf30495f6be97c696cf7f90768629cee96f8d106f745bf95fdefddc99592_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:137ffbb95d463d95da6c350600d968f3cd0e9873bf2e7c6edf952ae3229e9e2b_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:1cccdfd7e90877c27c6d8caea4f1e8ad89bb97c83d97ddf570d4f4ee116f1986_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:71657b82894cfd9e350746f48965e148868a675b9a20dcb7f94a6bc7a5b16ea5_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:881e405e32821ef10cf992c7a633281c1dc45df721fe909048df1689472000ce_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:6c85b42ede0f4745ed558bcb03d033c49f56cef17a70c12e5308066124cac6e3_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:091529a93e258a612fd4a98222e6a370ee10b4e97efa791b50f79a2670163d01_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0e8958a22f6771ddfe32b34027c69dbbef65d980c7e465a79d4202d2627994ad_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:5a8b0203ff083113e8b30a123ab30c4bad571f57fb59c1e7e01807b92552504e_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:89bf6a32a0935cacadbc6d23566dce6ca741e404d58c11050638c7b8e868028b_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:077cc953354ea2edd85569a622f97c15d44163d68234e7a9fdee899d25c19cdb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:66285f866090e1bfbedacd592e9d5ea9f2a30b88aa03bc86bc790d6b98a929a4_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:8c80054171d5063457df4bd074674b1824783a101dacb6137da227080aff957c_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:b0f15904251c6665961eef9c944d00f17499f7219351fe213fe7935f62fbf7ac_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:62476ac2fb0096caa9b181f523cc3573ccffe70be1433f08d1d0255b6d3a0640_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:6f632bc9829880a44e2e94084284b52683b4a01dc3315043b0aa32eb344b16cb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:aa3d1cf7853bfe8307efb01f714585f378d1d3d4ed5de7c8808a72e4aeecd4f3_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:bf1d4b2b1ef03e65be59699ce3233a75a34e1777abc182984c7a8efa698a936e_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:141f17d12c748c7ab9e94cfd9db7e2492d3063e7478249d6430ac0d8fcfb8875_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:5909184fe3d37eb45ba3bf55d7b708d818f2a5abfc2949c4a7081a5cd30cea4f_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:6217f0bb4937fa0e0fc0a5c86456fdc1992e169dfedc3d11d5165cef575d4d53_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:d55a55a36a23e7deb83718bd5dcc19b083b84d441add72ea7f4e28935e4717e3_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:0f8e1171f278395f3c72e4d9d3c0492bed15b678963fb2b6182bd65343b85a2e_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:823bb59b1c7d01557c29f9f1e4a4ee39814c38d826b06c3c9de4b8d179078419_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:93c7e9b321c7e9aa4a412a993a6b20412e24772832cc0dd23bbb17aa25f15487_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:9e50b45f81fedab27e896f04b80bacaa01d8370ff5679147f95ad79b61972d83_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:8f145d4e336bd77fcc94f0845f9ebf94563ffd96d56794d96a665c11241df152_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:981917806c7faf31156241cc85577cf375ee566f78adaeadc096d0ba8482b835_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:af3ed91687500d64e2348cca4877c43f73211b8fbd132e7767c3521763185348_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:c05020e5ee5bddc62e38493cd16b6e4ffde7c2248a00d710f32b90a6ee12ceeb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2af86b409540513f6da1afa83110a5cafe8778d2ec16332faa31c964bd5f43f7_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2f3bec76a833a72c7dfa93ed55e55e80e2621c154e5a2f156deaf78d7c6b97b4_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:81a2385be30079500f13f97a18607aa685abd61265bf8fa78bc6ce126341be50_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:fdc8f64f3b82b200a5e31b01b8612069f1aa897014085c1de755394552a1a70a_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:856b9088dbda4e7374daf232602f4bb90b05ad1be1df46d6e363a002f549f4de_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:a107ae2f7b140f2fb2243f33c378228c2f164cfd2d23f57e63f6c424fd400929_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:e21de356b7d879800a96f6c5aeee6bc59a3ed9c58d36503f7089625ce887bb25_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:fcaf6d60d682cf51866948ea3b4846c2993e2801adb69dc745ffa832318f515c_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:11f005939e15d63057bf2f0a988b6baebc275d3e752e9f7696d0f7f5266fd5d6_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:4b4c98be96a932d508fad769eff61bff2a44e13baa60b22b6c543f4a11eb71c2_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:6c87453ffe89e8be752ee40c8a9ccf6894c83be703f13901b1e8b64a4c0e549a_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:c18a1c50a4fc7081c6564d1c4ed4904212b7939a4f1f46afef0a36dc1d76f38e_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:33367b9fdb3addce3302ad35bc10423505fefe3dd27b8b9013b26d66caac2a6c_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:72cbdb061cbcd295be5e66a0eabb409af16ade7f0aa12b04c2d7327e9e1a24ba_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:d0379f9da8cbb5514394a4550ff0d79f90fa691fcced5806296479c7b63353da_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:e99d1d877bd7335736cbaeb4db5b9904369a1d07f6df332c38ad79ff1256b67b_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:06285611aef2528fc92c5cebb66ff4c74fe44d457f43cf9ec2f4a98c3c68d25e_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:25e0f4153eb5bc6fbc6b389d5adc81bfde103070ef58317c3c25ce4144a628d3_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:acd3c0369c18cbfa63a5972ed1721f93f1fcb456963ff855dea2c295baf1cdb8_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:d086075db52f4476aa64d7e2680baa01e99da246275fa9cae0ba4a74de63c7f3_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:07d89c1b524d1451051feb865bc716da2197add90fa0c58c4cf4a82975ec846c_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:6582e647d7dd604e25977ec1579969aa1fcb29ead1a0ea65833531d633bbdd2b_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:75e3aec03dffbd0f40f88a08ff5e0319f4515d73f0bcfae28b5fa526b494afc4_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:f0079e8ae53d84223aea2d3186e7bc6b525b7c03d307cde50cfb9f1bbc18712b_arm64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:1384e5ba2b7d23119a49d8713826f4c65668bca310589ac7abd0c0d41c7e4c90_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:7f58528b1da9146aa55917324fdf2b375794742b34e5d10ff57f713af60746cd_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:844c3b1499b00aeadfc561642e53792ad80f535efd53b35793ba08b0f26c6d61_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:e1019c30e1d84e66d775d0d6fc7d051803dcbe44823fb2a1914807be39c79dae_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:8c9a7ebf430b9f4ca200c6c70b049e8456cf88fd8bf0871b42d65e8dc786d451_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:926d965e6fd12ec0d758270fb4c90bbdc1a05e60cc4c895cf9b671a296c9d867_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:e8e807451e3c5d8d0a8575e1280d7125a4ece51547a7b4a5cd247837662cedad_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:f2a24aa01cbe0d926d4aefe3b12eba21eb5ec7f87276e572a6814c727228624c_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:45cc0d783d1e7874ac73dfbdfe7e03c63b227ab3c4f1e15a0a2f5c97956a76d9_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:6f3eb26734e89375c3e1fb7ac366e12dc0d41bac8f07de9210c7e9845a01eec1_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:768c45fa9f35d98dfe5cfe1ea12f552402bf68ac6e1f828b14310ef59ce57c40_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:b5f1bf30495f6be97c696cf7f90768629cee96f8d106f745bf95fdefddc99592_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:137ffbb95d463d95da6c350600d968f3cd0e9873bf2e7c6edf952ae3229e9e2b_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:1cccdfd7e90877c27c6d8caea4f1e8ad89bb97c83d97ddf570d4f4ee116f1986_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:71657b82894cfd9e350746f48965e148868a675b9a20dcb7f94a6bc7a5b16ea5_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:881e405e32821ef10cf992c7a633281c1dc45df721fe909048df1689472000ce_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:6c85b42ede0f4745ed558bcb03d033c49f56cef17a70c12e5308066124cac6e3_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:091529a93e258a612fd4a98222e6a370ee10b4e97efa791b50f79a2670163d01_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0e8958a22f6771ddfe32b34027c69dbbef65d980c7e465a79d4202d2627994ad_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:5a8b0203ff083113e8b30a123ab30c4bad571f57fb59c1e7e01807b92552504e_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:89bf6a32a0935cacadbc6d23566dce6ca741e404d58c11050638c7b8e868028b_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:077cc953354ea2edd85569a622f97c15d44163d68234e7a9fdee899d25c19cdb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:66285f866090e1bfbedacd592e9d5ea9f2a30b88aa03bc86bc790d6b98a929a4_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:8c80054171d5063457df4bd074674b1824783a101dacb6137da227080aff957c_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:b0f15904251c6665961eef9c944d00f17499f7219351fe213fe7935f62fbf7ac_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:62476ac2fb0096caa9b181f523cc3573ccffe70be1433f08d1d0255b6d3a0640_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:6f632bc9829880a44e2e94084284b52683b4a01dc3315043b0aa32eb344b16cb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:aa3d1cf7853bfe8307efb01f714585f378d1d3d4ed5de7c8808a72e4aeecd4f3_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:bf1d4b2b1ef03e65be59699ce3233a75a34e1777abc182984c7a8efa698a936e_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:141f17d12c748c7ab9e94cfd9db7e2492d3063e7478249d6430ac0d8fcfb8875_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:5909184fe3d37eb45ba3bf55d7b708d818f2a5abfc2949c4a7081a5cd30cea4f_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:6217f0bb4937fa0e0fc0a5c86456fdc1992e169dfedc3d11d5165cef575d4d53_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:d55a55a36a23e7deb83718bd5dcc19b083b84d441add72ea7f4e28935e4717e3_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:0f8e1171f278395f3c72e4d9d3c0492bed15b678963fb2b6182bd65343b85a2e_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:823bb59b1c7d01557c29f9f1e4a4ee39814c38d826b06c3c9de4b8d179078419_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:93c7e9b321c7e9aa4a412a993a6b20412e24772832cc0dd23bbb17aa25f15487_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:9e50b45f81fedab27e896f04b80bacaa01d8370ff5679147f95ad79b61972d83_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:8f145d4e336bd77fcc94f0845f9ebf94563ffd96d56794d96a665c11241df152_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:981917806c7faf31156241cc85577cf375ee566f78adaeadc096d0ba8482b835_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:af3ed91687500d64e2348cca4877c43f73211b8fbd132e7767c3521763185348_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:c05020e5ee5bddc62e38493cd16b6e4ffde7c2248a00d710f32b90a6ee12ceeb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2af86b409540513f6da1afa83110a5cafe8778d2ec16332faa31c964bd5f43f7_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2f3bec76a833a72c7dfa93ed55e55e80e2621c154e5a2f156deaf78d7c6b97b4_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:81a2385be30079500f13f97a18607aa685abd61265bf8fa78bc6ce126341be50_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:fdc8f64f3b82b200a5e31b01b8612069f1aa897014085c1de755394552a1a70a_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:856b9088dbda4e7374daf232602f4bb90b05ad1be1df46d6e363a002f549f4de_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:a107ae2f7b140f2fb2243f33c378228c2f164cfd2d23f57e63f6c424fd400929_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:e21de356b7d879800a96f6c5aeee6bc59a3ed9c58d36503f7089625ce887bb25_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:fcaf6d60d682cf51866948ea3b4846c2993e2801adb69dc745ffa832318f515c_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:11f005939e15d63057bf2f0a988b6baebc275d3e752e9f7696d0f7f5266fd5d6_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:4b4c98be96a932d508fad769eff61bff2a44e13baa60b22b6c543f4a11eb71c2_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:6c87453ffe89e8be752ee40c8a9ccf6894c83be703f13901b1e8b64a4c0e549a_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:c18a1c50a4fc7081c6564d1c4ed4904212b7939a4f1f46afef0a36dc1d76f38e_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:33367b9fdb3addce3302ad35bc10423505fefe3dd27b8b9013b26d66caac2a6c_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:72cbdb061cbcd295be5e66a0eabb409af16ade7f0aa12b04c2d7327e9e1a24ba_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:d0379f9da8cbb5514394a4550ff0d79f90fa691fcced5806296479c7b63353da_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:e99d1d877bd7335736cbaeb4db5b9904369a1d07f6df332c38ad79ff1256b67b_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:06285611aef2528fc92c5cebb66ff4c74fe44d457f43cf9ec2f4a98c3c68d25e_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:25e0f4153eb5bc6fbc6b389d5adc81bfde103070ef58317c3c25ce4144a628d3_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:acd3c0369c18cbfa63a5972ed1721f93f1fcb456963ff855dea2c295baf1cdb8_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:d086075db52f4476aa64d7e2680baa01e99da246275fa9cae0ba4a74de63c7f3_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:07d89c1b524d1451051feb865bc716da2197add90fa0c58c4cf4a82975ec846c_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:6582e647d7dd604e25977ec1579969aa1fcb29ead1a0ea65833531d633bbdd2b_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:75e3aec03dffbd0f40f88a08ff5e0319f4515d73f0bcfae28b5fa526b494afc4_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:f0079e8ae53d84223aea2d3186e7bc6b525b7c03d307cde50cfb9f1bbc18712b_arm64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "github.com/go-jose/go-jose/v3: github.com/go-jose/go-jose/v4: Go JOSE: Denial of Service via crafted JSON Web Encryption (JWE) object"
},
{
"cve": "CVE-2026-39821",
"cwe": {
"id": "CWE-1289",
"name": "Improper Validation of Unsafe Equivalence in Input"
},
"discovery_date": "2026-05-22T16:00:52.844126+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:1384e5ba2b7d23119a49d8713826f4c65668bca310589ac7abd0c0d41c7e4c90_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:7f58528b1da9146aa55917324fdf2b375794742b34e5d10ff57f713af60746cd_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:844c3b1499b00aeadfc561642e53792ad80f535efd53b35793ba08b0f26c6d61_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:e1019c30e1d84e66d775d0d6fc7d051803dcbe44823fb2a1914807be39c79dae_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:8c9a7ebf430b9f4ca200c6c70b049e8456cf88fd8bf0871b42d65e8dc786d451_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:926d965e6fd12ec0d758270fb4c90bbdc1a05e60cc4c895cf9b671a296c9d867_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:e8e807451e3c5d8d0a8575e1280d7125a4ece51547a7b4a5cd247837662cedad_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:f2a24aa01cbe0d926d4aefe3b12eba21eb5ec7f87276e572a6814c727228624c_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:45cc0d783d1e7874ac73dfbdfe7e03c63b227ab3c4f1e15a0a2f5c97956a76d9_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:6f3eb26734e89375c3e1fb7ac366e12dc0d41bac8f07de9210c7e9845a01eec1_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:768c45fa9f35d98dfe5cfe1ea12f552402bf68ac6e1f828b14310ef59ce57c40_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:b5f1bf30495f6be97c696cf7f90768629cee96f8d106f745bf95fdefddc99592_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:137ffbb95d463d95da6c350600d968f3cd0e9873bf2e7c6edf952ae3229e9e2b_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:1cccdfd7e90877c27c6d8caea4f1e8ad89bb97c83d97ddf570d4f4ee116f1986_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:71657b82894cfd9e350746f48965e148868a675b9a20dcb7f94a6bc7a5b16ea5_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:881e405e32821ef10cf992c7a633281c1dc45df721fe909048df1689472000ce_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:6c85b42ede0f4745ed558bcb03d033c49f56cef17a70c12e5308066124cac6e3_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:091529a93e258a612fd4a98222e6a370ee10b4e97efa791b50f79a2670163d01_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0e8958a22f6771ddfe32b34027c69dbbef65d980c7e465a79d4202d2627994ad_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:5a8b0203ff083113e8b30a123ab30c4bad571f57fb59c1e7e01807b92552504e_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:89bf6a32a0935cacadbc6d23566dce6ca741e404d58c11050638c7b8e868028b_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:077cc953354ea2edd85569a622f97c15d44163d68234e7a9fdee899d25c19cdb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:66285f866090e1bfbedacd592e9d5ea9f2a30b88aa03bc86bc790d6b98a929a4_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:8c80054171d5063457df4bd074674b1824783a101dacb6137da227080aff957c_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:b0f15904251c6665961eef9c944d00f17499f7219351fe213fe7935f62fbf7ac_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:62476ac2fb0096caa9b181f523cc3573ccffe70be1433f08d1d0255b6d3a0640_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:6f632bc9829880a44e2e94084284b52683b4a01dc3315043b0aa32eb344b16cb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:aa3d1cf7853bfe8307efb01f714585f378d1d3d4ed5de7c8808a72e4aeecd4f3_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:bf1d4b2b1ef03e65be59699ce3233a75a34e1777abc182984c7a8efa698a936e_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:141f17d12c748c7ab9e94cfd9db7e2492d3063e7478249d6430ac0d8fcfb8875_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:5909184fe3d37eb45ba3bf55d7b708d818f2a5abfc2949c4a7081a5cd30cea4f_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:6217f0bb4937fa0e0fc0a5c86456fdc1992e169dfedc3d11d5165cef575d4d53_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:d55a55a36a23e7deb83718bd5dcc19b083b84d441add72ea7f4e28935e4717e3_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:0f8e1171f278395f3c72e4d9d3c0492bed15b678963fb2b6182bd65343b85a2e_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:823bb59b1c7d01557c29f9f1e4a4ee39814c38d826b06c3c9de4b8d179078419_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:93c7e9b321c7e9aa4a412a993a6b20412e24772832cc0dd23bbb17aa25f15487_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:9e50b45f81fedab27e896f04b80bacaa01d8370ff5679147f95ad79b61972d83_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:8f145d4e336bd77fcc94f0845f9ebf94563ffd96d56794d96a665c11241df152_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:981917806c7faf31156241cc85577cf375ee566f78adaeadc096d0ba8482b835_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:af3ed91687500d64e2348cca4877c43f73211b8fbd132e7767c3521763185348_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:c05020e5ee5bddc62e38493cd16b6e4ffde7c2248a00d710f32b90a6ee12ceeb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2af86b409540513f6da1afa83110a5cafe8778d2ec16332faa31c964bd5f43f7_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2f3bec76a833a72c7dfa93ed55e55e80e2621c154e5a2f156deaf78d7c6b97b4_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:81a2385be30079500f13f97a18607aa685abd61265bf8fa78bc6ce126341be50_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:fdc8f64f3b82b200a5e31b01b8612069f1aa897014085c1de755394552a1a70a_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:856b9088dbda4e7374daf232602f4bb90b05ad1be1df46d6e363a002f549f4de_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:a107ae2f7b140f2fb2243f33c378228c2f164cfd2d23f57e63f6c424fd400929_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:e21de356b7d879800a96f6c5aeee6bc59a3ed9c58d36503f7089625ce887bb25_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:fcaf6d60d682cf51866948ea3b4846c2993e2801adb69dc745ffa832318f515c_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:11f005939e15d63057bf2f0a988b6baebc275d3e752e9f7696d0f7f5266fd5d6_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:4b4c98be96a932d508fad769eff61bff2a44e13baa60b22b6c543f4a11eb71c2_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:6c87453ffe89e8be752ee40c8a9ccf6894c83be703f13901b1e8b64a4c0e549a_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:c18a1c50a4fc7081c6564d1c4ed4904212b7939a4f1f46afef0a36dc1d76f38e_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:33367b9fdb3addce3302ad35bc10423505fefe3dd27b8b9013b26d66caac2a6c_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:72cbdb061cbcd295be5e66a0eabb409af16ade7f0aa12b04c2d7327e9e1a24ba_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:d0379f9da8cbb5514394a4550ff0d79f90fa691fcced5806296479c7b63353da_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:e99d1d877bd7335736cbaeb4db5b9904369a1d07f6df332c38ad79ff1256b67b_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:06285611aef2528fc92c5cebb66ff4c74fe44d457f43cf9ec2f4a98c3c68d25e_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:25e0f4153eb5bc6fbc6b389d5adc81bfde103070ef58317c3c25ce4144a628d3_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:acd3c0369c18cbfa63a5972ed1721f93f1fcb456963ff855dea2c295baf1cdb8_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:d086075db52f4476aa64d7e2680baa01e99da246275fa9cae0ba4a74de63c7f3_s390x"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2480756"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in golang.org/x/net/idna. ToASCII and ToUnicode incorrectly accept Punycode-encoded labels that decode to an ASCII-only hostname (for example, xn--example-.com returns example.com instead of an error). Applications that validate the ASCII form then convert to Unicode may grant access to a restricted hostname the ASCII check would have rejected.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang.org/x/net/idna: golang: golang.org/x/net/idna: Privilege escalation via incorrect Punycode label processing",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "golang.org/x/net/idna is vulnerable to privilege escalation through incorrect Punycode label handling in ToASCII and ToUnicode. An attacker who can supply a Punycode hostname that passes an ASCII-only authorization check may have it normalized to a restricted ASCII name the application intended to block. Red Hat exposure is broad across products shipping the Go toolchain or bundling golang.org/x/net, including RHEL and RHEL-AI golang RPMs, hummingbird Go runtimes, OpenShift and ODF container builds, and Ceph/OpenShift components compiled against affected x/net versions.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:07d89c1b524d1451051feb865bc716da2197add90fa0c58c4cf4a82975ec846c_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:6582e647d7dd604e25977ec1579969aa1fcb29ead1a0ea65833531d633bbdd2b_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:75e3aec03dffbd0f40f88a08ff5e0319f4515d73f0bcfae28b5fa526b494afc4_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:f0079e8ae53d84223aea2d3186e7bc6b525b7c03d307cde50cfb9f1bbc18712b_arm64"
],
"known_not_affected": [
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:1384e5ba2b7d23119a49d8713826f4c65668bca310589ac7abd0c0d41c7e4c90_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:7f58528b1da9146aa55917324fdf2b375794742b34e5d10ff57f713af60746cd_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:844c3b1499b00aeadfc561642e53792ad80f535efd53b35793ba08b0f26c6d61_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:e1019c30e1d84e66d775d0d6fc7d051803dcbe44823fb2a1914807be39c79dae_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:8c9a7ebf430b9f4ca200c6c70b049e8456cf88fd8bf0871b42d65e8dc786d451_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:926d965e6fd12ec0d758270fb4c90bbdc1a05e60cc4c895cf9b671a296c9d867_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:e8e807451e3c5d8d0a8575e1280d7125a4ece51547a7b4a5cd247837662cedad_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:f2a24aa01cbe0d926d4aefe3b12eba21eb5ec7f87276e572a6814c727228624c_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:45cc0d783d1e7874ac73dfbdfe7e03c63b227ab3c4f1e15a0a2f5c97956a76d9_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:6f3eb26734e89375c3e1fb7ac366e12dc0d41bac8f07de9210c7e9845a01eec1_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:768c45fa9f35d98dfe5cfe1ea12f552402bf68ac6e1f828b14310ef59ce57c40_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:b5f1bf30495f6be97c696cf7f90768629cee96f8d106f745bf95fdefddc99592_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:137ffbb95d463d95da6c350600d968f3cd0e9873bf2e7c6edf952ae3229e9e2b_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:1cccdfd7e90877c27c6d8caea4f1e8ad89bb97c83d97ddf570d4f4ee116f1986_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:71657b82894cfd9e350746f48965e148868a675b9a20dcb7f94a6bc7a5b16ea5_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:881e405e32821ef10cf992c7a633281c1dc45df721fe909048df1689472000ce_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:6c85b42ede0f4745ed558bcb03d033c49f56cef17a70c12e5308066124cac6e3_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:091529a93e258a612fd4a98222e6a370ee10b4e97efa791b50f79a2670163d01_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0e8958a22f6771ddfe32b34027c69dbbef65d980c7e465a79d4202d2627994ad_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:5a8b0203ff083113e8b30a123ab30c4bad571f57fb59c1e7e01807b92552504e_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:89bf6a32a0935cacadbc6d23566dce6ca741e404d58c11050638c7b8e868028b_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:077cc953354ea2edd85569a622f97c15d44163d68234e7a9fdee899d25c19cdb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:66285f866090e1bfbedacd592e9d5ea9f2a30b88aa03bc86bc790d6b98a929a4_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:8c80054171d5063457df4bd074674b1824783a101dacb6137da227080aff957c_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:b0f15904251c6665961eef9c944d00f17499f7219351fe213fe7935f62fbf7ac_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:62476ac2fb0096caa9b181f523cc3573ccffe70be1433f08d1d0255b6d3a0640_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:6f632bc9829880a44e2e94084284b52683b4a01dc3315043b0aa32eb344b16cb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:aa3d1cf7853bfe8307efb01f714585f378d1d3d4ed5de7c8808a72e4aeecd4f3_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:bf1d4b2b1ef03e65be59699ce3233a75a34e1777abc182984c7a8efa698a936e_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:141f17d12c748c7ab9e94cfd9db7e2492d3063e7478249d6430ac0d8fcfb8875_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:5909184fe3d37eb45ba3bf55d7b708d818f2a5abfc2949c4a7081a5cd30cea4f_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:6217f0bb4937fa0e0fc0a5c86456fdc1992e169dfedc3d11d5165cef575d4d53_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:d55a55a36a23e7deb83718bd5dcc19b083b84d441add72ea7f4e28935e4717e3_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:0f8e1171f278395f3c72e4d9d3c0492bed15b678963fb2b6182bd65343b85a2e_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:823bb59b1c7d01557c29f9f1e4a4ee39814c38d826b06c3c9de4b8d179078419_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:93c7e9b321c7e9aa4a412a993a6b20412e24772832cc0dd23bbb17aa25f15487_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:9e50b45f81fedab27e896f04b80bacaa01d8370ff5679147f95ad79b61972d83_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:8f145d4e336bd77fcc94f0845f9ebf94563ffd96d56794d96a665c11241df152_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:981917806c7faf31156241cc85577cf375ee566f78adaeadc096d0ba8482b835_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:af3ed91687500d64e2348cca4877c43f73211b8fbd132e7767c3521763185348_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:c05020e5ee5bddc62e38493cd16b6e4ffde7c2248a00d710f32b90a6ee12ceeb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2af86b409540513f6da1afa83110a5cafe8778d2ec16332faa31c964bd5f43f7_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2f3bec76a833a72c7dfa93ed55e55e80e2621c154e5a2f156deaf78d7c6b97b4_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:81a2385be30079500f13f97a18607aa685abd61265bf8fa78bc6ce126341be50_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:fdc8f64f3b82b200a5e31b01b8612069f1aa897014085c1de755394552a1a70a_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:856b9088dbda4e7374daf232602f4bb90b05ad1be1df46d6e363a002f549f4de_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:a107ae2f7b140f2fb2243f33c378228c2f164cfd2d23f57e63f6c424fd400929_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:e21de356b7d879800a96f6c5aeee6bc59a3ed9c58d36503f7089625ce887bb25_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:fcaf6d60d682cf51866948ea3b4846c2993e2801adb69dc745ffa832318f515c_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:11f005939e15d63057bf2f0a988b6baebc275d3e752e9f7696d0f7f5266fd5d6_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:4b4c98be96a932d508fad769eff61bff2a44e13baa60b22b6c543f4a11eb71c2_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:6c87453ffe89e8be752ee40c8a9ccf6894c83be703f13901b1e8b64a4c0e549a_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:c18a1c50a4fc7081c6564d1c4ed4904212b7939a4f1f46afef0a36dc1d76f38e_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:33367b9fdb3addce3302ad35bc10423505fefe3dd27b8b9013b26d66caac2a6c_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:72cbdb061cbcd295be5e66a0eabb409af16ade7f0aa12b04c2d7327e9e1a24ba_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:d0379f9da8cbb5514394a4550ff0d79f90fa691fcced5806296479c7b63353da_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:e99d1d877bd7335736cbaeb4db5b9904369a1d07f6df332c38ad79ff1256b67b_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:06285611aef2528fc92c5cebb66ff4c74fe44d457f43cf9ec2f4a98c3c68d25e_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:25e0f4153eb5bc6fbc6b389d5adc81bfde103070ef58317c3c25ce4144a628d3_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:acd3c0369c18cbfa63a5972ed1721f93f1fcb456963ff855dea2c295baf1cdb8_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:d086075db52f4476aa64d7e2680baa01e99da246275fa9cae0ba4a74de63c7f3_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-39821"
},
{
"category": "external",
"summary": "RHBZ#2480756",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2480756"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-39821",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-39821"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-39821",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-39821"
},
{
"category": "external",
"summary": "https://go.dev/cl/767220",
"url": "https://go.dev/cl/767220"
},
{
"category": "external",
"summary": "https://go.dev/issue/78760",
"url": "https://go.dev/issue/78760"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/iI-mYSI0lu8",
"url": "https://groups.google.com/g/golang-announce/c/iI-mYSI0lu8"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-5026",
"url": "https://pkg.go.dev/vuln/GO-2026-5026"
}
],
"release_date": "2026-05-22T15:01:21.462000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T17:12:17+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\nFor details on how to apply this update, refer to:\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:07d89c1b524d1451051feb865bc716da2197add90fa0c58c4cf4a82975ec846c_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:6582e647d7dd604e25977ec1579969aa1fcb29ead1a0ea65833531d633bbdd2b_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:75e3aec03dffbd0f40f88a08ff5e0319f4515d73f0bcfae28b5fa526b494afc4_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:f0079e8ae53d84223aea2d3186e7bc6b525b7c03d307cde50cfb9f1bbc18712b_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36820"
},
{
"category": "workaround",
"details": "Upgrade to a fixed golang.org/x/net release that includes the idna correction, via updated golang or dependent package rebuilds.",
"product_ids": [
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:1384e5ba2b7d23119a49d8713826f4c65668bca310589ac7abd0c0d41c7e4c90_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:7f58528b1da9146aa55917324fdf2b375794742b34e5d10ff57f713af60746cd_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:844c3b1499b00aeadfc561642e53792ad80f535efd53b35793ba08b0f26c6d61_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:e1019c30e1d84e66d775d0d6fc7d051803dcbe44823fb2a1914807be39c79dae_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:8c9a7ebf430b9f4ca200c6c70b049e8456cf88fd8bf0871b42d65e8dc786d451_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:926d965e6fd12ec0d758270fb4c90bbdc1a05e60cc4c895cf9b671a296c9d867_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:e8e807451e3c5d8d0a8575e1280d7125a4ece51547a7b4a5cd247837662cedad_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:f2a24aa01cbe0d926d4aefe3b12eba21eb5ec7f87276e572a6814c727228624c_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:45cc0d783d1e7874ac73dfbdfe7e03c63b227ab3c4f1e15a0a2f5c97956a76d9_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:6f3eb26734e89375c3e1fb7ac366e12dc0d41bac8f07de9210c7e9845a01eec1_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:768c45fa9f35d98dfe5cfe1ea12f552402bf68ac6e1f828b14310ef59ce57c40_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:b5f1bf30495f6be97c696cf7f90768629cee96f8d106f745bf95fdefddc99592_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:137ffbb95d463d95da6c350600d968f3cd0e9873bf2e7c6edf952ae3229e9e2b_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:1cccdfd7e90877c27c6d8caea4f1e8ad89bb97c83d97ddf570d4f4ee116f1986_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:71657b82894cfd9e350746f48965e148868a675b9a20dcb7f94a6bc7a5b16ea5_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:881e405e32821ef10cf992c7a633281c1dc45df721fe909048df1689472000ce_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:6c85b42ede0f4745ed558bcb03d033c49f56cef17a70c12e5308066124cac6e3_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:091529a93e258a612fd4a98222e6a370ee10b4e97efa791b50f79a2670163d01_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0e8958a22f6771ddfe32b34027c69dbbef65d980c7e465a79d4202d2627994ad_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:5a8b0203ff083113e8b30a123ab30c4bad571f57fb59c1e7e01807b92552504e_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:89bf6a32a0935cacadbc6d23566dce6ca741e404d58c11050638c7b8e868028b_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:077cc953354ea2edd85569a622f97c15d44163d68234e7a9fdee899d25c19cdb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:66285f866090e1bfbedacd592e9d5ea9f2a30b88aa03bc86bc790d6b98a929a4_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:8c80054171d5063457df4bd074674b1824783a101dacb6137da227080aff957c_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:b0f15904251c6665961eef9c944d00f17499f7219351fe213fe7935f62fbf7ac_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:62476ac2fb0096caa9b181f523cc3573ccffe70be1433f08d1d0255b6d3a0640_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:6f632bc9829880a44e2e94084284b52683b4a01dc3315043b0aa32eb344b16cb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:aa3d1cf7853bfe8307efb01f714585f378d1d3d4ed5de7c8808a72e4aeecd4f3_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:bf1d4b2b1ef03e65be59699ce3233a75a34e1777abc182984c7a8efa698a936e_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:141f17d12c748c7ab9e94cfd9db7e2492d3063e7478249d6430ac0d8fcfb8875_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:5909184fe3d37eb45ba3bf55d7b708d818f2a5abfc2949c4a7081a5cd30cea4f_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:6217f0bb4937fa0e0fc0a5c86456fdc1992e169dfedc3d11d5165cef575d4d53_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:d55a55a36a23e7deb83718bd5dcc19b083b84d441add72ea7f4e28935e4717e3_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:0f8e1171f278395f3c72e4d9d3c0492bed15b678963fb2b6182bd65343b85a2e_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:823bb59b1c7d01557c29f9f1e4a4ee39814c38d826b06c3c9de4b8d179078419_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:93c7e9b321c7e9aa4a412a993a6b20412e24772832cc0dd23bbb17aa25f15487_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:9e50b45f81fedab27e896f04b80bacaa01d8370ff5679147f95ad79b61972d83_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:8f145d4e336bd77fcc94f0845f9ebf94563ffd96d56794d96a665c11241df152_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:981917806c7faf31156241cc85577cf375ee566f78adaeadc096d0ba8482b835_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:af3ed91687500d64e2348cca4877c43f73211b8fbd132e7767c3521763185348_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:c05020e5ee5bddc62e38493cd16b6e4ffde7c2248a00d710f32b90a6ee12ceeb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2af86b409540513f6da1afa83110a5cafe8778d2ec16332faa31c964bd5f43f7_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2f3bec76a833a72c7dfa93ed55e55e80e2621c154e5a2f156deaf78d7c6b97b4_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:81a2385be30079500f13f97a18607aa685abd61265bf8fa78bc6ce126341be50_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:fdc8f64f3b82b200a5e31b01b8612069f1aa897014085c1de755394552a1a70a_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:856b9088dbda4e7374daf232602f4bb90b05ad1be1df46d6e363a002f549f4de_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:a107ae2f7b140f2fb2243f33c378228c2f164cfd2d23f57e63f6c424fd400929_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:e21de356b7d879800a96f6c5aeee6bc59a3ed9c58d36503f7089625ce887bb25_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:fcaf6d60d682cf51866948ea3b4846c2993e2801adb69dc745ffa832318f515c_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:11f005939e15d63057bf2f0a988b6baebc275d3e752e9f7696d0f7f5266fd5d6_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:4b4c98be96a932d508fad769eff61bff2a44e13baa60b22b6c543f4a11eb71c2_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:6c87453ffe89e8be752ee40c8a9ccf6894c83be703f13901b1e8b64a4c0e549a_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:c18a1c50a4fc7081c6564d1c4ed4904212b7939a4f1f46afef0a36dc1d76f38e_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:33367b9fdb3addce3302ad35bc10423505fefe3dd27b8b9013b26d66caac2a6c_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:72cbdb061cbcd295be5e66a0eabb409af16ade7f0aa12b04c2d7327e9e1a24ba_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:d0379f9da8cbb5514394a4550ff0d79f90fa691fcced5806296479c7b63353da_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:e99d1d877bd7335736cbaeb4db5b9904369a1d07f6df332c38ad79ff1256b67b_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:06285611aef2528fc92c5cebb66ff4c74fe44d457f43cf9ec2f4a98c3c68d25e_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:25e0f4153eb5bc6fbc6b389d5adc81bfde103070ef58317c3c25ce4144a628d3_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:acd3c0369c18cbfa63a5972ed1721f93f1fcb456963ff855dea2c295baf1cdb8_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:d086075db52f4476aa64d7e2680baa01e99da246275fa9cae0ba4a74de63c7f3_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:07d89c1b524d1451051feb865bc716da2197add90fa0c58c4cf4a82975ec846c_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:6582e647d7dd604e25977ec1579969aa1fcb29ead1a0ea65833531d633bbdd2b_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:75e3aec03dffbd0f40f88a08ff5e0319f4515d73f0bcfae28b5fa526b494afc4_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:f0079e8ae53d84223aea2d3186e7bc6b525b7c03d307cde50cfb9f1bbc18712b_arm64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 8.2,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:1384e5ba2b7d23119a49d8713826f4c65668bca310589ac7abd0c0d41c7e4c90_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:7f58528b1da9146aa55917324fdf2b375794742b34e5d10ff57f713af60746cd_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:844c3b1499b00aeadfc561642e53792ad80f535efd53b35793ba08b0f26c6d61_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:e1019c30e1d84e66d775d0d6fc7d051803dcbe44823fb2a1914807be39c79dae_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:8c9a7ebf430b9f4ca200c6c70b049e8456cf88fd8bf0871b42d65e8dc786d451_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:926d965e6fd12ec0d758270fb4c90bbdc1a05e60cc4c895cf9b671a296c9d867_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:e8e807451e3c5d8d0a8575e1280d7125a4ece51547a7b4a5cd247837662cedad_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:f2a24aa01cbe0d926d4aefe3b12eba21eb5ec7f87276e572a6814c727228624c_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:45cc0d783d1e7874ac73dfbdfe7e03c63b227ab3c4f1e15a0a2f5c97956a76d9_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:6f3eb26734e89375c3e1fb7ac366e12dc0d41bac8f07de9210c7e9845a01eec1_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:768c45fa9f35d98dfe5cfe1ea12f552402bf68ac6e1f828b14310ef59ce57c40_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:b5f1bf30495f6be97c696cf7f90768629cee96f8d106f745bf95fdefddc99592_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:137ffbb95d463d95da6c350600d968f3cd0e9873bf2e7c6edf952ae3229e9e2b_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:1cccdfd7e90877c27c6d8caea4f1e8ad89bb97c83d97ddf570d4f4ee116f1986_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:71657b82894cfd9e350746f48965e148868a675b9a20dcb7f94a6bc7a5b16ea5_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:881e405e32821ef10cf992c7a633281c1dc45df721fe909048df1689472000ce_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:6c85b42ede0f4745ed558bcb03d033c49f56cef17a70c12e5308066124cac6e3_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:091529a93e258a612fd4a98222e6a370ee10b4e97efa791b50f79a2670163d01_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0e8958a22f6771ddfe32b34027c69dbbef65d980c7e465a79d4202d2627994ad_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:5a8b0203ff083113e8b30a123ab30c4bad571f57fb59c1e7e01807b92552504e_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:89bf6a32a0935cacadbc6d23566dce6ca741e404d58c11050638c7b8e868028b_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:077cc953354ea2edd85569a622f97c15d44163d68234e7a9fdee899d25c19cdb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:66285f866090e1bfbedacd592e9d5ea9f2a30b88aa03bc86bc790d6b98a929a4_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:8c80054171d5063457df4bd074674b1824783a101dacb6137da227080aff957c_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:b0f15904251c6665961eef9c944d00f17499f7219351fe213fe7935f62fbf7ac_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:62476ac2fb0096caa9b181f523cc3573ccffe70be1433f08d1d0255b6d3a0640_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:6f632bc9829880a44e2e94084284b52683b4a01dc3315043b0aa32eb344b16cb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:aa3d1cf7853bfe8307efb01f714585f378d1d3d4ed5de7c8808a72e4aeecd4f3_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:bf1d4b2b1ef03e65be59699ce3233a75a34e1777abc182984c7a8efa698a936e_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:141f17d12c748c7ab9e94cfd9db7e2492d3063e7478249d6430ac0d8fcfb8875_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:5909184fe3d37eb45ba3bf55d7b708d818f2a5abfc2949c4a7081a5cd30cea4f_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:6217f0bb4937fa0e0fc0a5c86456fdc1992e169dfedc3d11d5165cef575d4d53_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:d55a55a36a23e7deb83718bd5dcc19b083b84d441add72ea7f4e28935e4717e3_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:0f8e1171f278395f3c72e4d9d3c0492bed15b678963fb2b6182bd65343b85a2e_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:823bb59b1c7d01557c29f9f1e4a4ee39814c38d826b06c3c9de4b8d179078419_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:93c7e9b321c7e9aa4a412a993a6b20412e24772832cc0dd23bbb17aa25f15487_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:9e50b45f81fedab27e896f04b80bacaa01d8370ff5679147f95ad79b61972d83_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:8f145d4e336bd77fcc94f0845f9ebf94563ffd96d56794d96a665c11241df152_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:981917806c7faf31156241cc85577cf375ee566f78adaeadc096d0ba8482b835_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:af3ed91687500d64e2348cca4877c43f73211b8fbd132e7767c3521763185348_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:c05020e5ee5bddc62e38493cd16b6e4ffde7c2248a00d710f32b90a6ee12ceeb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2af86b409540513f6da1afa83110a5cafe8778d2ec16332faa31c964bd5f43f7_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2f3bec76a833a72c7dfa93ed55e55e80e2621c154e5a2f156deaf78d7c6b97b4_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:81a2385be30079500f13f97a18607aa685abd61265bf8fa78bc6ce126341be50_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:fdc8f64f3b82b200a5e31b01b8612069f1aa897014085c1de755394552a1a70a_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:856b9088dbda4e7374daf232602f4bb90b05ad1be1df46d6e363a002f549f4de_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:a107ae2f7b140f2fb2243f33c378228c2f164cfd2d23f57e63f6c424fd400929_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:e21de356b7d879800a96f6c5aeee6bc59a3ed9c58d36503f7089625ce887bb25_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:fcaf6d60d682cf51866948ea3b4846c2993e2801adb69dc745ffa832318f515c_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:11f005939e15d63057bf2f0a988b6baebc275d3e752e9f7696d0f7f5266fd5d6_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:4b4c98be96a932d508fad769eff61bff2a44e13baa60b22b6c543f4a11eb71c2_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:6c87453ffe89e8be752ee40c8a9ccf6894c83be703f13901b1e8b64a4c0e549a_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:c18a1c50a4fc7081c6564d1c4ed4904212b7939a4f1f46afef0a36dc1d76f38e_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:33367b9fdb3addce3302ad35bc10423505fefe3dd27b8b9013b26d66caac2a6c_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:72cbdb061cbcd295be5e66a0eabb409af16ade7f0aa12b04c2d7327e9e1a24ba_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:d0379f9da8cbb5514394a4550ff0d79f90fa691fcced5806296479c7b63353da_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:e99d1d877bd7335736cbaeb4db5b9904369a1d07f6df332c38ad79ff1256b67b_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:06285611aef2528fc92c5cebb66ff4c74fe44d457f43cf9ec2f4a98c3c68d25e_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:25e0f4153eb5bc6fbc6b389d5adc81bfde103070ef58317c3c25ce4144a628d3_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:acd3c0369c18cbfa63a5972ed1721f93f1fcb456963ff855dea2c295baf1cdb8_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:d086075db52f4476aa64d7e2680baa01e99da246275fa9cae0ba4a74de63c7f3_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:07d89c1b524d1451051feb865bc716da2197add90fa0c58c4cf4a82975ec846c_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:6582e647d7dd604e25977ec1579969aa1fcb29ead1a0ea65833531d633bbdd2b_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:75e3aec03dffbd0f40f88a08ff5e0319f4515d73f0bcfae28b5fa526b494afc4_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:f0079e8ae53d84223aea2d3186e7bc6b525b7c03d307cde50cfb9f1bbc18712b_arm64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang.org/x/net/idna: golang: golang.org/x/net/idna: Privilege escalation via incorrect Punycode label processing"
},
{
"cve": "CVE-2026-39829",
"cwe": {
"id": "CWE-1284",
"name": "Improper Validation of Specified Quantity in Input"
},
"discovery_date": "2026-05-22T04:01:30.092249+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:1384e5ba2b7d23119a49d8713826f4c65668bca310589ac7abd0c0d41c7e4c90_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:7f58528b1da9146aa55917324fdf2b375794742b34e5d10ff57f713af60746cd_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:844c3b1499b00aeadfc561642e53792ad80f535efd53b35793ba08b0f26c6d61_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:e1019c30e1d84e66d775d0d6fc7d051803dcbe44823fb2a1914807be39c79dae_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:8c9a7ebf430b9f4ca200c6c70b049e8456cf88fd8bf0871b42d65e8dc786d451_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:926d965e6fd12ec0d758270fb4c90bbdc1a05e60cc4c895cf9b671a296c9d867_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:e8e807451e3c5d8d0a8575e1280d7125a4ece51547a7b4a5cd247837662cedad_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:f2a24aa01cbe0d926d4aefe3b12eba21eb5ec7f87276e572a6814c727228624c_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:45cc0d783d1e7874ac73dfbdfe7e03c63b227ab3c4f1e15a0a2f5c97956a76d9_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:6f3eb26734e89375c3e1fb7ac366e12dc0d41bac8f07de9210c7e9845a01eec1_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:768c45fa9f35d98dfe5cfe1ea12f552402bf68ac6e1f828b14310ef59ce57c40_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:b5f1bf30495f6be97c696cf7f90768629cee96f8d106f745bf95fdefddc99592_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:137ffbb95d463d95da6c350600d968f3cd0e9873bf2e7c6edf952ae3229e9e2b_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:1cccdfd7e90877c27c6d8caea4f1e8ad89bb97c83d97ddf570d4f4ee116f1986_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:71657b82894cfd9e350746f48965e148868a675b9a20dcb7f94a6bc7a5b16ea5_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:881e405e32821ef10cf992c7a633281c1dc45df721fe909048df1689472000ce_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:6c85b42ede0f4745ed558bcb03d033c49f56cef17a70c12e5308066124cac6e3_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:091529a93e258a612fd4a98222e6a370ee10b4e97efa791b50f79a2670163d01_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0e8958a22f6771ddfe32b34027c69dbbef65d980c7e465a79d4202d2627994ad_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:5a8b0203ff083113e8b30a123ab30c4bad571f57fb59c1e7e01807b92552504e_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:89bf6a32a0935cacadbc6d23566dce6ca741e404d58c11050638c7b8e868028b_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:077cc953354ea2edd85569a622f97c15d44163d68234e7a9fdee899d25c19cdb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:66285f866090e1bfbedacd592e9d5ea9f2a30b88aa03bc86bc790d6b98a929a4_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:8c80054171d5063457df4bd074674b1824783a101dacb6137da227080aff957c_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:b0f15904251c6665961eef9c944d00f17499f7219351fe213fe7935f62fbf7ac_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:62476ac2fb0096caa9b181f523cc3573ccffe70be1433f08d1d0255b6d3a0640_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:6f632bc9829880a44e2e94084284b52683b4a01dc3315043b0aa32eb344b16cb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:aa3d1cf7853bfe8307efb01f714585f378d1d3d4ed5de7c8808a72e4aeecd4f3_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:bf1d4b2b1ef03e65be59699ce3233a75a34e1777abc182984c7a8efa698a936e_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:141f17d12c748c7ab9e94cfd9db7e2492d3063e7478249d6430ac0d8fcfb8875_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:5909184fe3d37eb45ba3bf55d7b708d818f2a5abfc2949c4a7081a5cd30cea4f_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:6217f0bb4937fa0e0fc0a5c86456fdc1992e169dfedc3d11d5165cef575d4d53_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:d55a55a36a23e7deb83718bd5dcc19b083b84d441add72ea7f4e28935e4717e3_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:0f8e1171f278395f3c72e4d9d3c0492bed15b678963fb2b6182bd65343b85a2e_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:823bb59b1c7d01557c29f9f1e4a4ee39814c38d826b06c3c9de4b8d179078419_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:93c7e9b321c7e9aa4a412a993a6b20412e24772832cc0dd23bbb17aa25f15487_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:9e50b45f81fedab27e896f04b80bacaa01d8370ff5679147f95ad79b61972d83_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:8f145d4e336bd77fcc94f0845f9ebf94563ffd96d56794d96a665c11241df152_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:981917806c7faf31156241cc85577cf375ee566f78adaeadc096d0ba8482b835_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:af3ed91687500d64e2348cca4877c43f73211b8fbd132e7767c3521763185348_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:c05020e5ee5bddc62e38493cd16b6e4ffde7c2248a00d710f32b90a6ee12ceeb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2af86b409540513f6da1afa83110a5cafe8778d2ec16332faa31c964bd5f43f7_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2f3bec76a833a72c7dfa93ed55e55e80e2621c154e5a2f156deaf78d7c6b97b4_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:81a2385be30079500f13f97a18607aa685abd61265bf8fa78bc6ce126341be50_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:fdc8f64f3b82b200a5e31b01b8612069f1aa897014085c1de755394552a1a70a_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:856b9088dbda4e7374daf232602f4bb90b05ad1be1df46d6e363a002f549f4de_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:a107ae2f7b140f2fb2243f33c378228c2f164cfd2d23f57e63f6c424fd400929_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:e21de356b7d879800a96f6c5aeee6bc59a3ed9c58d36503f7089625ce887bb25_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:fcaf6d60d682cf51866948ea3b4846c2993e2801adb69dc745ffa832318f515c_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:33367b9fdb3addce3302ad35bc10423505fefe3dd27b8b9013b26d66caac2a6c_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:72cbdb061cbcd295be5e66a0eabb409af16ade7f0aa12b04c2d7327e9e1a24ba_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:d0379f9da8cbb5514394a4550ff0d79f90fa691fcced5806296479c7b63353da_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:e99d1d877bd7335736cbaeb4db5b9904369a1d07f6df332c38ad79ff1256b67b_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:06285611aef2528fc92c5cebb66ff4c74fe44d457f43cf9ec2f4a98c3c68d25e_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:25e0f4153eb5bc6fbc6b389d5adc81bfde103070ef58317c3c25ce4144a628d3_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:acd3c0369c18cbfa63a5972ed1721f93f1fcb456963ff855dea2c295baf1cdb8_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:d086075db52f4476aa64d7e2680baa01e99da246275fa9cae0ba4a74de63c7f3_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:07d89c1b524d1451051feb865bc716da2197add90fa0c58c4cf4a82975ec846c_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:6582e647d7dd604e25977ec1579969aa1fcb29ead1a0ea65833531d633bbdd2b_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:75e3aec03dffbd0f40f88a08ff5e0319f4515d73f0bcfae28b5fa526b494afc4_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:f0079e8ae53d84223aea2d3186e7bc6b525b7c03d307cde50cfb9f1bbc18712b_arm64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2480681"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in golang.org/x/crypto/ssh. The RSA and DSA public key parsers in the affected component did not enforce size limits on key parameters. This vulnerability allows an unauthenticated client to provide a crafted public key with an excessively large modulus or DSA parameter during public key authentication. Successful exploitation could lead to a denial of service (DoS) due to prolonged CPU consumption during signature verification.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang.org/x/crypto/ssh: golang.org/x/crypto/ssh: Denial of Service via crafted public key with excessive parameters",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability in golang.org/x/crypto/ssh is rated as Important. An unauthenticated remote attacker could trigger a denial of service by providing a specially crafted public key with excessively large parameters during SSH public key authentication. This could lead to prolonged CPU consumption on the server, impacting service availability.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:11f005939e15d63057bf2f0a988b6baebc275d3e752e9f7696d0f7f5266fd5d6_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:4b4c98be96a932d508fad769eff61bff2a44e13baa60b22b6c543f4a11eb71c2_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:6c87453ffe89e8be752ee40c8a9ccf6894c83be703f13901b1e8b64a4c0e549a_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:c18a1c50a4fc7081c6564d1c4ed4904212b7939a4f1f46afef0a36dc1d76f38e_arm64"
],
"known_not_affected": [
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:1384e5ba2b7d23119a49d8713826f4c65668bca310589ac7abd0c0d41c7e4c90_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:7f58528b1da9146aa55917324fdf2b375794742b34e5d10ff57f713af60746cd_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:844c3b1499b00aeadfc561642e53792ad80f535efd53b35793ba08b0f26c6d61_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:e1019c30e1d84e66d775d0d6fc7d051803dcbe44823fb2a1914807be39c79dae_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:8c9a7ebf430b9f4ca200c6c70b049e8456cf88fd8bf0871b42d65e8dc786d451_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:926d965e6fd12ec0d758270fb4c90bbdc1a05e60cc4c895cf9b671a296c9d867_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:e8e807451e3c5d8d0a8575e1280d7125a4ece51547a7b4a5cd247837662cedad_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:f2a24aa01cbe0d926d4aefe3b12eba21eb5ec7f87276e572a6814c727228624c_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:45cc0d783d1e7874ac73dfbdfe7e03c63b227ab3c4f1e15a0a2f5c97956a76d9_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:6f3eb26734e89375c3e1fb7ac366e12dc0d41bac8f07de9210c7e9845a01eec1_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:768c45fa9f35d98dfe5cfe1ea12f552402bf68ac6e1f828b14310ef59ce57c40_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:b5f1bf30495f6be97c696cf7f90768629cee96f8d106f745bf95fdefddc99592_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:137ffbb95d463d95da6c350600d968f3cd0e9873bf2e7c6edf952ae3229e9e2b_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:1cccdfd7e90877c27c6d8caea4f1e8ad89bb97c83d97ddf570d4f4ee116f1986_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:71657b82894cfd9e350746f48965e148868a675b9a20dcb7f94a6bc7a5b16ea5_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:881e405e32821ef10cf992c7a633281c1dc45df721fe909048df1689472000ce_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:6c85b42ede0f4745ed558bcb03d033c49f56cef17a70c12e5308066124cac6e3_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:091529a93e258a612fd4a98222e6a370ee10b4e97efa791b50f79a2670163d01_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0e8958a22f6771ddfe32b34027c69dbbef65d980c7e465a79d4202d2627994ad_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:5a8b0203ff083113e8b30a123ab30c4bad571f57fb59c1e7e01807b92552504e_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:89bf6a32a0935cacadbc6d23566dce6ca741e404d58c11050638c7b8e868028b_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:077cc953354ea2edd85569a622f97c15d44163d68234e7a9fdee899d25c19cdb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:66285f866090e1bfbedacd592e9d5ea9f2a30b88aa03bc86bc790d6b98a929a4_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:8c80054171d5063457df4bd074674b1824783a101dacb6137da227080aff957c_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:b0f15904251c6665961eef9c944d00f17499f7219351fe213fe7935f62fbf7ac_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:62476ac2fb0096caa9b181f523cc3573ccffe70be1433f08d1d0255b6d3a0640_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:6f632bc9829880a44e2e94084284b52683b4a01dc3315043b0aa32eb344b16cb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:aa3d1cf7853bfe8307efb01f714585f378d1d3d4ed5de7c8808a72e4aeecd4f3_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:bf1d4b2b1ef03e65be59699ce3233a75a34e1777abc182984c7a8efa698a936e_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:141f17d12c748c7ab9e94cfd9db7e2492d3063e7478249d6430ac0d8fcfb8875_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:5909184fe3d37eb45ba3bf55d7b708d818f2a5abfc2949c4a7081a5cd30cea4f_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:6217f0bb4937fa0e0fc0a5c86456fdc1992e169dfedc3d11d5165cef575d4d53_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:d55a55a36a23e7deb83718bd5dcc19b083b84d441add72ea7f4e28935e4717e3_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:0f8e1171f278395f3c72e4d9d3c0492bed15b678963fb2b6182bd65343b85a2e_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:823bb59b1c7d01557c29f9f1e4a4ee39814c38d826b06c3c9de4b8d179078419_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:93c7e9b321c7e9aa4a412a993a6b20412e24772832cc0dd23bbb17aa25f15487_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:9e50b45f81fedab27e896f04b80bacaa01d8370ff5679147f95ad79b61972d83_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:8f145d4e336bd77fcc94f0845f9ebf94563ffd96d56794d96a665c11241df152_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:981917806c7faf31156241cc85577cf375ee566f78adaeadc096d0ba8482b835_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:af3ed91687500d64e2348cca4877c43f73211b8fbd132e7767c3521763185348_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:c05020e5ee5bddc62e38493cd16b6e4ffde7c2248a00d710f32b90a6ee12ceeb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2af86b409540513f6da1afa83110a5cafe8778d2ec16332faa31c964bd5f43f7_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2f3bec76a833a72c7dfa93ed55e55e80e2621c154e5a2f156deaf78d7c6b97b4_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:81a2385be30079500f13f97a18607aa685abd61265bf8fa78bc6ce126341be50_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:fdc8f64f3b82b200a5e31b01b8612069f1aa897014085c1de755394552a1a70a_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:856b9088dbda4e7374daf232602f4bb90b05ad1be1df46d6e363a002f549f4de_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:a107ae2f7b140f2fb2243f33c378228c2f164cfd2d23f57e63f6c424fd400929_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:e21de356b7d879800a96f6c5aeee6bc59a3ed9c58d36503f7089625ce887bb25_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:fcaf6d60d682cf51866948ea3b4846c2993e2801adb69dc745ffa832318f515c_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:33367b9fdb3addce3302ad35bc10423505fefe3dd27b8b9013b26d66caac2a6c_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:72cbdb061cbcd295be5e66a0eabb409af16ade7f0aa12b04c2d7327e9e1a24ba_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:d0379f9da8cbb5514394a4550ff0d79f90fa691fcced5806296479c7b63353da_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:e99d1d877bd7335736cbaeb4db5b9904369a1d07f6df332c38ad79ff1256b67b_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:06285611aef2528fc92c5cebb66ff4c74fe44d457f43cf9ec2f4a98c3c68d25e_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:25e0f4153eb5bc6fbc6b389d5adc81bfde103070ef58317c3c25ce4144a628d3_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:acd3c0369c18cbfa63a5972ed1721f93f1fcb456963ff855dea2c295baf1cdb8_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:d086075db52f4476aa64d7e2680baa01e99da246275fa9cae0ba4a74de63c7f3_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:07d89c1b524d1451051feb865bc716da2197add90fa0c58c4cf4a82975ec846c_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:6582e647d7dd604e25977ec1579969aa1fcb29ead1a0ea65833531d633bbdd2b_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:75e3aec03dffbd0f40f88a08ff5e0319f4515d73f0bcfae28b5fa526b494afc4_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:f0079e8ae53d84223aea2d3186e7bc6b525b7c03d307cde50cfb9f1bbc18712b_arm64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-39829"
},
{
"category": "external",
"summary": "RHBZ#2480681",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2480681"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-39829",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-39829"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-39829",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-39829"
},
{
"category": "external",
"summary": "https://go.dev/cl/781641",
"url": "https://go.dev/cl/781641"
},
{
"category": "external",
"summary": "https://go.dev/cl/781661",
"url": "https://go.dev/cl/781661"
},
{
"category": "external",
"summary": "https://go.dev/issue/79565",
"url": "https://go.dev/issue/79565"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/a082jnz-LvI",
"url": "https://groups.google.com/g/golang-announce/c/a082jnz-LvI"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-5018",
"url": "https://pkg.go.dev/vuln/GO-2026-5018"
}
],
"release_date": "2026-05-22T02:31:27.324000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T17:12:17+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\nFor details on how to apply this update, refer to:\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:11f005939e15d63057bf2f0a988b6baebc275d3e752e9f7696d0f7f5266fd5d6_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:4b4c98be96a932d508fad769eff61bff2a44e13baa60b22b6c543f4a11eb71c2_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:6c87453ffe89e8be752ee40c8a9ccf6894c83be703f13901b1e8b64a4c0e549a_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:c18a1c50a4fc7081c6564d1c4ed4904212b7939a4f1f46afef0a36dc1d76f38e_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36820"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability.",
"product_ids": [
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:1384e5ba2b7d23119a49d8713826f4c65668bca310589ac7abd0c0d41c7e4c90_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:7f58528b1da9146aa55917324fdf2b375794742b34e5d10ff57f713af60746cd_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:844c3b1499b00aeadfc561642e53792ad80f535efd53b35793ba08b0f26c6d61_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:e1019c30e1d84e66d775d0d6fc7d051803dcbe44823fb2a1914807be39c79dae_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:8c9a7ebf430b9f4ca200c6c70b049e8456cf88fd8bf0871b42d65e8dc786d451_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:926d965e6fd12ec0d758270fb4c90bbdc1a05e60cc4c895cf9b671a296c9d867_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:e8e807451e3c5d8d0a8575e1280d7125a4ece51547a7b4a5cd247837662cedad_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:f2a24aa01cbe0d926d4aefe3b12eba21eb5ec7f87276e572a6814c727228624c_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:45cc0d783d1e7874ac73dfbdfe7e03c63b227ab3c4f1e15a0a2f5c97956a76d9_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:6f3eb26734e89375c3e1fb7ac366e12dc0d41bac8f07de9210c7e9845a01eec1_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:768c45fa9f35d98dfe5cfe1ea12f552402bf68ac6e1f828b14310ef59ce57c40_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:b5f1bf30495f6be97c696cf7f90768629cee96f8d106f745bf95fdefddc99592_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:137ffbb95d463d95da6c350600d968f3cd0e9873bf2e7c6edf952ae3229e9e2b_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:1cccdfd7e90877c27c6d8caea4f1e8ad89bb97c83d97ddf570d4f4ee116f1986_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:71657b82894cfd9e350746f48965e148868a675b9a20dcb7f94a6bc7a5b16ea5_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:881e405e32821ef10cf992c7a633281c1dc45df721fe909048df1689472000ce_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:6c85b42ede0f4745ed558bcb03d033c49f56cef17a70c12e5308066124cac6e3_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:091529a93e258a612fd4a98222e6a370ee10b4e97efa791b50f79a2670163d01_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0e8958a22f6771ddfe32b34027c69dbbef65d980c7e465a79d4202d2627994ad_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:5a8b0203ff083113e8b30a123ab30c4bad571f57fb59c1e7e01807b92552504e_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:89bf6a32a0935cacadbc6d23566dce6ca741e404d58c11050638c7b8e868028b_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:077cc953354ea2edd85569a622f97c15d44163d68234e7a9fdee899d25c19cdb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:66285f866090e1bfbedacd592e9d5ea9f2a30b88aa03bc86bc790d6b98a929a4_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:8c80054171d5063457df4bd074674b1824783a101dacb6137da227080aff957c_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:b0f15904251c6665961eef9c944d00f17499f7219351fe213fe7935f62fbf7ac_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:62476ac2fb0096caa9b181f523cc3573ccffe70be1433f08d1d0255b6d3a0640_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:6f632bc9829880a44e2e94084284b52683b4a01dc3315043b0aa32eb344b16cb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:aa3d1cf7853bfe8307efb01f714585f378d1d3d4ed5de7c8808a72e4aeecd4f3_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:bf1d4b2b1ef03e65be59699ce3233a75a34e1777abc182984c7a8efa698a936e_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:141f17d12c748c7ab9e94cfd9db7e2492d3063e7478249d6430ac0d8fcfb8875_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:5909184fe3d37eb45ba3bf55d7b708d818f2a5abfc2949c4a7081a5cd30cea4f_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:6217f0bb4937fa0e0fc0a5c86456fdc1992e169dfedc3d11d5165cef575d4d53_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:d55a55a36a23e7deb83718bd5dcc19b083b84d441add72ea7f4e28935e4717e3_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:0f8e1171f278395f3c72e4d9d3c0492bed15b678963fb2b6182bd65343b85a2e_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:823bb59b1c7d01557c29f9f1e4a4ee39814c38d826b06c3c9de4b8d179078419_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:93c7e9b321c7e9aa4a412a993a6b20412e24772832cc0dd23bbb17aa25f15487_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:9e50b45f81fedab27e896f04b80bacaa01d8370ff5679147f95ad79b61972d83_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:8f145d4e336bd77fcc94f0845f9ebf94563ffd96d56794d96a665c11241df152_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:981917806c7faf31156241cc85577cf375ee566f78adaeadc096d0ba8482b835_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:af3ed91687500d64e2348cca4877c43f73211b8fbd132e7767c3521763185348_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:c05020e5ee5bddc62e38493cd16b6e4ffde7c2248a00d710f32b90a6ee12ceeb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2af86b409540513f6da1afa83110a5cafe8778d2ec16332faa31c964bd5f43f7_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2f3bec76a833a72c7dfa93ed55e55e80e2621c154e5a2f156deaf78d7c6b97b4_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:81a2385be30079500f13f97a18607aa685abd61265bf8fa78bc6ce126341be50_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:fdc8f64f3b82b200a5e31b01b8612069f1aa897014085c1de755394552a1a70a_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:856b9088dbda4e7374daf232602f4bb90b05ad1be1df46d6e363a002f549f4de_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:a107ae2f7b140f2fb2243f33c378228c2f164cfd2d23f57e63f6c424fd400929_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:e21de356b7d879800a96f6c5aeee6bc59a3ed9c58d36503f7089625ce887bb25_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:fcaf6d60d682cf51866948ea3b4846c2993e2801adb69dc745ffa832318f515c_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:11f005939e15d63057bf2f0a988b6baebc275d3e752e9f7696d0f7f5266fd5d6_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:4b4c98be96a932d508fad769eff61bff2a44e13baa60b22b6c543f4a11eb71c2_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:6c87453ffe89e8be752ee40c8a9ccf6894c83be703f13901b1e8b64a4c0e549a_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:c18a1c50a4fc7081c6564d1c4ed4904212b7939a4f1f46afef0a36dc1d76f38e_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:33367b9fdb3addce3302ad35bc10423505fefe3dd27b8b9013b26d66caac2a6c_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:72cbdb061cbcd295be5e66a0eabb409af16ade7f0aa12b04c2d7327e9e1a24ba_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:d0379f9da8cbb5514394a4550ff0d79f90fa691fcced5806296479c7b63353da_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:e99d1d877bd7335736cbaeb4db5b9904369a1d07f6df332c38ad79ff1256b67b_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:06285611aef2528fc92c5cebb66ff4c74fe44d457f43cf9ec2f4a98c3c68d25e_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:25e0f4153eb5bc6fbc6b389d5adc81bfde103070ef58317c3c25ce4144a628d3_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:acd3c0369c18cbfa63a5972ed1721f93f1fcb456963ff855dea2c295baf1cdb8_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:d086075db52f4476aa64d7e2680baa01e99da246275fa9cae0ba4a74de63c7f3_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:07d89c1b524d1451051feb865bc716da2197add90fa0c58c4cf4a82975ec846c_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:6582e647d7dd604e25977ec1579969aa1fcb29ead1a0ea65833531d633bbdd2b_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:75e3aec03dffbd0f40f88a08ff5e0319f4515d73f0bcfae28b5fa526b494afc4_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:f0079e8ae53d84223aea2d3186e7bc6b525b7c03d307cde50cfb9f1bbc18712b_arm64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:1384e5ba2b7d23119a49d8713826f4c65668bca310589ac7abd0c0d41c7e4c90_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:7f58528b1da9146aa55917324fdf2b375794742b34e5d10ff57f713af60746cd_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:844c3b1499b00aeadfc561642e53792ad80f535efd53b35793ba08b0f26c6d61_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:e1019c30e1d84e66d775d0d6fc7d051803dcbe44823fb2a1914807be39c79dae_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:8c9a7ebf430b9f4ca200c6c70b049e8456cf88fd8bf0871b42d65e8dc786d451_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:926d965e6fd12ec0d758270fb4c90bbdc1a05e60cc4c895cf9b671a296c9d867_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:e8e807451e3c5d8d0a8575e1280d7125a4ece51547a7b4a5cd247837662cedad_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:f2a24aa01cbe0d926d4aefe3b12eba21eb5ec7f87276e572a6814c727228624c_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:45cc0d783d1e7874ac73dfbdfe7e03c63b227ab3c4f1e15a0a2f5c97956a76d9_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:6f3eb26734e89375c3e1fb7ac366e12dc0d41bac8f07de9210c7e9845a01eec1_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:768c45fa9f35d98dfe5cfe1ea12f552402bf68ac6e1f828b14310ef59ce57c40_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:b5f1bf30495f6be97c696cf7f90768629cee96f8d106f745bf95fdefddc99592_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:137ffbb95d463d95da6c350600d968f3cd0e9873bf2e7c6edf952ae3229e9e2b_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:1cccdfd7e90877c27c6d8caea4f1e8ad89bb97c83d97ddf570d4f4ee116f1986_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:71657b82894cfd9e350746f48965e148868a675b9a20dcb7f94a6bc7a5b16ea5_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:881e405e32821ef10cf992c7a633281c1dc45df721fe909048df1689472000ce_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:6c85b42ede0f4745ed558bcb03d033c49f56cef17a70c12e5308066124cac6e3_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:091529a93e258a612fd4a98222e6a370ee10b4e97efa791b50f79a2670163d01_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0e8958a22f6771ddfe32b34027c69dbbef65d980c7e465a79d4202d2627994ad_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:5a8b0203ff083113e8b30a123ab30c4bad571f57fb59c1e7e01807b92552504e_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:89bf6a32a0935cacadbc6d23566dce6ca741e404d58c11050638c7b8e868028b_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:077cc953354ea2edd85569a622f97c15d44163d68234e7a9fdee899d25c19cdb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:66285f866090e1bfbedacd592e9d5ea9f2a30b88aa03bc86bc790d6b98a929a4_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:8c80054171d5063457df4bd074674b1824783a101dacb6137da227080aff957c_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:b0f15904251c6665961eef9c944d00f17499f7219351fe213fe7935f62fbf7ac_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:62476ac2fb0096caa9b181f523cc3573ccffe70be1433f08d1d0255b6d3a0640_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:6f632bc9829880a44e2e94084284b52683b4a01dc3315043b0aa32eb344b16cb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:aa3d1cf7853bfe8307efb01f714585f378d1d3d4ed5de7c8808a72e4aeecd4f3_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:bf1d4b2b1ef03e65be59699ce3233a75a34e1777abc182984c7a8efa698a936e_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:141f17d12c748c7ab9e94cfd9db7e2492d3063e7478249d6430ac0d8fcfb8875_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:5909184fe3d37eb45ba3bf55d7b708d818f2a5abfc2949c4a7081a5cd30cea4f_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:6217f0bb4937fa0e0fc0a5c86456fdc1992e169dfedc3d11d5165cef575d4d53_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:d55a55a36a23e7deb83718bd5dcc19b083b84d441add72ea7f4e28935e4717e3_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:0f8e1171f278395f3c72e4d9d3c0492bed15b678963fb2b6182bd65343b85a2e_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:823bb59b1c7d01557c29f9f1e4a4ee39814c38d826b06c3c9de4b8d179078419_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:93c7e9b321c7e9aa4a412a993a6b20412e24772832cc0dd23bbb17aa25f15487_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:9e50b45f81fedab27e896f04b80bacaa01d8370ff5679147f95ad79b61972d83_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:8f145d4e336bd77fcc94f0845f9ebf94563ffd96d56794d96a665c11241df152_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:981917806c7faf31156241cc85577cf375ee566f78adaeadc096d0ba8482b835_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:af3ed91687500d64e2348cca4877c43f73211b8fbd132e7767c3521763185348_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:c05020e5ee5bddc62e38493cd16b6e4ffde7c2248a00d710f32b90a6ee12ceeb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2af86b409540513f6da1afa83110a5cafe8778d2ec16332faa31c964bd5f43f7_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2f3bec76a833a72c7dfa93ed55e55e80e2621c154e5a2f156deaf78d7c6b97b4_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:81a2385be30079500f13f97a18607aa685abd61265bf8fa78bc6ce126341be50_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:fdc8f64f3b82b200a5e31b01b8612069f1aa897014085c1de755394552a1a70a_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:856b9088dbda4e7374daf232602f4bb90b05ad1be1df46d6e363a002f549f4de_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:a107ae2f7b140f2fb2243f33c378228c2f164cfd2d23f57e63f6c424fd400929_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:e21de356b7d879800a96f6c5aeee6bc59a3ed9c58d36503f7089625ce887bb25_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:fcaf6d60d682cf51866948ea3b4846c2993e2801adb69dc745ffa832318f515c_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:11f005939e15d63057bf2f0a988b6baebc275d3e752e9f7696d0f7f5266fd5d6_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:4b4c98be96a932d508fad769eff61bff2a44e13baa60b22b6c543f4a11eb71c2_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:6c87453ffe89e8be752ee40c8a9ccf6894c83be703f13901b1e8b64a4c0e549a_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:c18a1c50a4fc7081c6564d1c4ed4904212b7939a4f1f46afef0a36dc1d76f38e_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:33367b9fdb3addce3302ad35bc10423505fefe3dd27b8b9013b26d66caac2a6c_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:72cbdb061cbcd295be5e66a0eabb409af16ade7f0aa12b04c2d7327e9e1a24ba_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:d0379f9da8cbb5514394a4550ff0d79f90fa691fcced5806296479c7b63353da_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:e99d1d877bd7335736cbaeb4db5b9904369a1d07f6df332c38ad79ff1256b67b_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:06285611aef2528fc92c5cebb66ff4c74fe44d457f43cf9ec2f4a98c3c68d25e_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:25e0f4153eb5bc6fbc6b389d5adc81bfde103070ef58317c3c25ce4144a628d3_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:acd3c0369c18cbfa63a5972ed1721f93f1fcb456963ff855dea2c295baf1cdb8_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:d086075db52f4476aa64d7e2680baa01e99da246275fa9cae0ba4a74de63c7f3_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:07d89c1b524d1451051feb865bc716da2197add90fa0c58c4cf4a82975ec846c_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:6582e647d7dd604e25977ec1579969aa1fcb29ead1a0ea65833531d633bbdd2b_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:75e3aec03dffbd0f40f88a08ff5e0319f4515d73f0bcfae28b5fa526b494afc4_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:f0079e8ae53d84223aea2d3186e7bc6b525b7c03d307cde50cfb9f1bbc18712b_arm64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang.org/x/crypto/ssh: golang.org/x/crypto/ssh: Denial of Service via crafted public key with excessive parameters"
},
{
"cve": "CVE-2026-42338",
"cwe": {
"id": "CWE-79",
"name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
},
"discovery_date": "2026-05-12T21:01:14.436876+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:8c9a7ebf430b9f4ca200c6c70b049e8456cf88fd8bf0871b42d65e8dc786d451_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:926d965e6fd12ec0d758270fb4c90bbdc1a05e60cc4c895cf9b671a296c9d867_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:e8e807451e3c5d8d0a8575e1280d7125a4ece51547a7b4a5cd247837662cedad_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:f2a24aa01cbe0d926d4aefe3b12eba21eb5ec7f87276e572a6814c727228624c_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:45cc0d783d1e7874ac73dfbdfe7e03c63b227ab3c4f1e15a0a2f5c97956a76d9_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:6f3eb26734e89375c3e1fb7ac366e12dc0d41bac8f07de9210c7e9845a01eec1_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:768c45fa9f35d98dfe5cfe1ea12f552402bf68ac6e1f828b14310ef59ce57c40_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:b5f1bf30495f6be97c696cf7f90768629cee96f8d106f745bf95fdefddc99592_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:6c85b42ede0f4745ed558bcb03d033c49f56cef17a70c12e5308066124cac6e3_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:091529a93e258a612fd4a98222e6a370ee10b4e97efa791b50f79a2670163d01_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0e8958a22f6771ddfe32b34027c69dbbef65d980c7e465a79d4202d2627994ad_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:5a8b0203ff083113e8b30a123ab30c4bad571f57fb59c1e7e01807b92552504e_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:89bf6a32a0935cacadbc6d23566dce6ca741e404d58c11050638c7b8e868028b_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:077cc953354ea2edd85569a622f97c15d44163d68234e7a9fdee899d25c19cdb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:66285f866090e1bfbedacd592e9d5ea9f2a30b88aa03bc86bc790d6b98a929a4_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:8c80054171d5063457df4bd074674b1824783a101dacb6137da227080aff957c_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:b0f15904251c6665961eef9c944d00f17499f7219351fe213fe7935f62fbf7ac_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:62476ac2fb0096caa9b181f523cc3573ccffe70be1433f08d1d0255b6d3a0640_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:6f632bc9829880a44e2e94084284b52683b4a01dc3315043b0aa32eb344b16cb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:aa3d1cf7853bfe8307efb01f714585f378d1d3d4ed5de7c8808a72e4aeecd4f3_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:bf1d4b2b1ef03e65be59699ce3233a75a34e1777abc182984c7a8efa698a936e_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:141f17d12c748c7ab9e94cfd9db7e2492d3063e7478249d6430ac0d8fcfb8875_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:5909184fe3d37eb45ba3bf55d7b708d818f2a5abfc2949c4a7081a5cd30cea4f_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:6217f0bb4937fa0e0fc0a5c86456fdc1992e169dfedc3d11d5165cef575d4d53_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:d55a55a36a23e7deb83718bd5dcc19b083b84d441add72ea7f4e28935e4717e3_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:0f8e1171f278395f3c72e4d9d3c0492bed15b678963fb2b6182bd65343b85a2e_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:823bb59b1c7d01557c29f9f1e4a4ee39814c38d826b06c3c9de4b8d179078419_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:93c7e9b321c7e9aa4a412a993a6b20412e24772832cc0dd23bbb17aa25f15487_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:9e50b45f81fedab27e896f04b80bacaa01d8370ff5679147f95ad79b61972d83_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:8f145d4e336bd77fcc94f0845f9ebf94563ffd96d56794d96a665c11241df152_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:981917806c7faf31156241cc85577cf375ee566f78adaeadc096d0ba8482b835_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:af3ed91687500d64e2348cca4877c43f73211b8fbd132e7767c3521763185348_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:c05020e5ee5bddc62e38493cd16b6e4ffde7c2248a00d710f32b90a6ee12ceeb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2af86b409540513f6da1afa83110a5cafe8778d2ec16332faa31c964bd5f43f7_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2f3bec76a833a72c7dfa93ed55e55e80e2621c154e5a2f156deaf78d7c6b97b4_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:81a2385be30079500f13f97a18607aa685abd61265bf8fa78bc6ce126341be50_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:fdc8f64f3b82b200a5e31b01b8612069f1aa897014085c1de755394552a1a70a_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:856b9088dbda4e7374daf232602f4bb90b05ad1be1df46d6e363a002f549f4de_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:a107ae2f7b140f2fb2243f33c378228c2f164cfd2d23f57e63f6c424fd400929_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:e21de356b7d879800a96f6c5aeee6bc59a3ed9c58d36503f7089625ce887bb25_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:fcaf6d60d682cf51866948ea3b4846c2993e2801adb69dc745ffa832318f515c_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:11f005939e15d63057bf2f0a988b6baebc275d3e752e9f7696d0f7f5266fd5d6_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:4b4c98be96a932d508fad769eff61bff2a44e13baa60b22b6c543f4a11eb71c2_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:6c87453ffe89e8be752ee40c8a9ccf6894c83be703f13901b1e8b64a4c0e549a_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:c18a1c50a4fc7081c6564d1c4ed4904212b7939a4f1f46afef0a36dc1d76f38e_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:33367b9fdb3addce3302ad35bc10423505fefe3dd27b8b9013b26d66caac2a6c_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:72cbdb061cbcd295be5e66a0eabb409af16ade7f0aa12b04c2d7327e9e1a24ba_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:d0379f9da8cbb5514394a4550ff0d79f90fa691fcced5806296479c7b63353da_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:e99d1d877bd7335736cbaeb4db5b9904369a1d07f6df332c38ad79ff1256b67b_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:06285611aef2528fc92c5cebb66ff4c74fe44d457f43cf9ec2f4a98c3c68d25e_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:25e0f4153eb5bc6fbc6b389d5adc81bfde103070ef58317c3c25ce4144a628d3_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:acd3c0369c18cbfa63a5972ed1721f93f1fcb456963ff855dea2c295baf1cdb8_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:d086075db52f4476aa64d7e2680baa01e99da246275fa9cae0ba4a74de63c7f3_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:07d89c1b524d1451051feb865bc716da2197add90fa0c58c4cf4a82975ec846c_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:6582e647d7dd604e25977ec1579969aa1fcb29ead1a0ea65833531d633bbdd2b_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:75e3aec03dffbd0f40f88a08ff5e0319f4515d73f0bcfae28b5fa526b494afc4_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:f0079e8ae53d84223aea2d3186e7bc6b525b7c03d307cde50cfb9f1bbc18712b_arm64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2476810"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in ip-address, a JavaScript library for parsing and manipulating IPv4 and IPv6 addresses. This vulnerability allows a remote attacker to perform cross-site scripting (XSS) by providing untrusted input to the Address6 constructor. When an application renders the output of Address6.group(), Address6.link(), or the AddressError.parseMessage as HTML without proper escaping, the attacker-controlled content can be executed in the user\u0027s browser.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "ip-address: ip-address: Cross-site scripting via improper HTML escaping of untrusted input",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability in the `ip-address` JavaScript library is rated as Important. It allows for cross-site scripting (XSS) when an application processes untrusted input through the `Address6` constructor and subsequently renders the unescaped output of methods like `Address6.group()`, `Address6.link()`, or `AddressError.parseMessage` directly as HTML. While the library itself is affected, exploitation is contingent on specific application-level rendering practices that may not be common in Red Hat products.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:1384e5ba2b7d23119a49d8713826f4c65668bca310589ac7abd0c0d41c7e4c90_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:7f58528b1da9146aa55917324fdf2b375794742b34e5d10ff57f713af60746cd_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:844c3b1499b00aeadfc561642e53792ad80f535efd53b35793ba08b0f26c6d61_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:e1019c30e1d84e66d775d0d6fc7d051803dcbe44823fb2a1914807be39c79dae_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:137ffbb95d463d95da6c350600d968f3cd0e9873bf2e7c6edf952ae3229e9e2b_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:1cccdfd7e90877c27c6d8caea4f1e8ad89bb97c83d97ddf570d4f4ee116f1986_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:71657b82894cfd9e350746f48965e148868a675b9a20dcb7f94a6bc7a5b16ea5_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:881e405e32821ef10cf992c7a633281c1dc45df721fe909048df1689472000ce_ppc64le"
],
"known_not_affected": [
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:8c9a7ebf430b9f4ca200c6c70b049e8456cf88fd8bf0871b42d65e8dc786d451_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:926d965e6fd12ec0d758270fb4c90bbdc1a05e60cc4c895cf9b671a296c9d867_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:e8e807451e3c5d8d0a8575e1280d7125a4ece51547a7b4a5cd247837662cedad_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:f2a24aa01cbe0d926d4aefe3b12eba21eb5ec7f87276e572a6814c727228624c_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:45cc0d783d1e7874ac73dfbdfe7e03c63b227ab3c4f1e15a0a2f5c97956a76d9_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:6f3eb26734e89375c3e1fb7ac366e12dc0d41bac8f07de9210c7e9845a01eec1_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:768c45fa9f35d98dfe5cfe1ea12f552402bf68ac6e1f828b14310ef59ce57c40_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:b5f1bf30495f6be97c696cf7f90768629cee96f8d106f745bf95fdefddc99592_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:6c85b42ede0f4745ed558bcb03d033c49f56cef17a70c12e5308066124cac6e3_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:091529a93e258a612fd4a98222e6a370ee10b4e97efa791b50f79a2670163d01_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0e8958a22f6771ddfe32b34027c69dbbef65d980c7e465a79d4202d2627994ad_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:5a8b0203ff083113e8b30a123ab30c4bad571f57fb59c1e7e01807b92552504e_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:89bf6a32a0935cacadbc6d23566dce6ca741e404d58c11050638c7b8e868028b_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:077cc953354ea2edd85569a622f97c15d44163d68234e7a9fdee899d25c19cdb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:66285f866090e1bfbedacd592e9d5ea9f2a30b88aa03bc86bc790d6b98a929a4_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:8c80054171d5063457df4bd074674b1824783a101dacb6137da227080aff957c_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:b0f15904251c6665961eef9c944d00f17499f7219351fe213fe7935f62fbf7ac_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:62476ac2fb0096caa9b181f523cc3573ccffe70be1433f08d1d0255b6d3a0640_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:6f632bc9829880a44e2e94084284b52683b4a01dc3315043b0aa32eb344b16cb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:aa3d1cf7853bfe8307efb01f714585f378d1d3d4ed5de7c8808a72e4aeecd4f3_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:bf1d4b2b1ef03e65be59699ce3233a75a34e1777abc182984c7a8efa698a936e_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:141f17d12c748c7ab9e94cfd9db7e2492d3063e7478249d6430ac0d8fcfb8875_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:5909184fe3d37eb45ba3bf55d7b708d818f2a5abfc2949c4a7081a5cd30cea4f_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:6217f0bb4937fa0e0fc0a5c86456fdc1992e169dfedc3d11d5165cef575d4d53_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:d55a55a36a23e7deb83718bd5dcc19b083b84d441add72ea7f4e28935e4717e3_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:0f8e1171f278395f3c72e4d9d3c0492bed15b678963fb2b6182bd65343b85a2e_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:823bb59b1c7d01557c29f9f1e4a4ee39814c38d826b06c3c9de4b8d179078419_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:93c7e9b321c7e9aa4a412a993a6b20412e24772832cc0dd23bbb17aa25f15487_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:9e50b45f81fedab27e896f04b80bacaa01d8370ff5679147f95ad79b61972d83_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:8f145d4e336bd77fcc94f0845f9ebf94563ffd96d56794d96a665c11241df152_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:981917806c7faf31156241cc85577cf375ee566f78adaeadc096d0ba8482b835_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:af3ed91687500d64e2348cca4877c43f73211b8fbd132e7767c3521763185348_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:c05020e5ee5bddc62e38493cd16b6e4ffde7c2248a00d710f32b90a6ee12ceeb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2af86b409540513f6da1afa83110a5cafe8778d2ec16332faa31c964bd5f43f7_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2f3bec76a833a72c7dfa93ed55e55e80e2621c154e5a2f156deaf78d7c6b97b4_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:81a2385be30079500f13f97a18607aa685abd61265bf8fa78bc6ce126341be50_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:fdc8f64f3b82b200a5e31b01b8612069f1aa897014085c1de755394552a1a70a_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:856b9088dbda4e7374daf232602f4bb90b05ad1be1df46d6e363a002f549f4de_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:a107ae2f7b140f2fb2243f33c378228c2f164cfd2d23f57e63f6c424fd400929_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:e21de356b7d879800a96f6c5aeee6bc59a3ed9c58d36503f7089625ce887bb25_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:fcaf6d60d682cf51866948ea3b4846c2993e2801adb69dc745ffa832318f515c_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:11f005939e15d63057bf2f0a988b6baebc275d3e752e9f7696d0f7f5266fd5d6_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:4b4c98be96a932d508fad769eff61bff2a44e13baa60b22b6c543f4a11eb71c2_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:6c87453ffe89e8be752ee40c8a9ccf6894c83be703f13901b1e8b64a4c0e549a_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:c18a1c50a4fc7081c6564d1c4ed4904212b7939a4f1f46afef0a36dc1d76f38e_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:33367b9fdb3addce3302ad35bc10423505fefe3dd27b8b9013b26d66caac2a6c_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:72cbdb061cbcd295be5e66a0eabb409af16ade7f0aa12b04c2d7327e9e1a24ba_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:d0379f9da8cbb5514394a4550ff0d79f90fa691fcced5806296479c7b63353da_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:e99d1d877bd7335736cbaeb4db5b9904369a1d07f6df332c38ad79ff1256b67b_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:06285611aef2528fc92c5cebb66ff4c74fe44d457f43cf9ec2f4a98c3c68d25e_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:25e0f4153eb5bc6fbc6b389d5adc81bfde103070ef58317c3c25ce4144a628d3_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:acd3c0369c18cbfa63a5972ed1721f93f1fcb456963ff855dea2c295baf1cdb8_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:d086075db52f4476aa64d7e2680baa01e99da246275fa9cae0ba4a74de63c7f3_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:07d89c1b524d1451051feb865bc716da2197add90fa0c58c4cf4a82975ec846c_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:6582e647d7dd604e25977ec1579969aa1fcb29ead1a0ea65833531d633bbdd2b_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:75e3aec03dffbd0f40f88a08ff5e0319f4515d73f0bcfae28b5fa526b494afc4_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:f0079e8ae53d84223aea2d3186e7bc6b525b7c03d307cde50cfb9f1bbc18712b_arm64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-42338"
},
{
"category": "external",
"summary": "RHBZ#2476810",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2476810"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-42338",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-42338"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-42338",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-42338"
},
{
"category": "external",
"summary": "https://github.com/beaugunderson/ip-address/security/advisories/GHSA-v2v4-37r5-5v8g",
"url": "https://github.com/beaugunderson/ip-address/security/advisories/GHSA-v2v4-37r5-5v8g"
}
],
"release_date": "2026-05-12T19:43:16.470000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T17:12:17+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\nFor details on how to apply this update, refer to:\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:1384e5ba2b7d23119a49d8713826f4c65668bca310589ac7abd0c0d41c7e4c90_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:7f58528b1da9146aa55917324fdf2b375794742b34e5d10ff57f713af60746cd_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:844c3b1499b00aeadfc561642e53792ad80f535efd53b35793ba08b0f26c6d61_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:e1019c30e1d84e66d775d0d6fc7d051803dcbe44823fb2a1914807be39c79dae_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:137ffbb95d463d95da6c350600d968f3cd0e9873bf2e7c6edf952ae3229e9e2b_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:1cccdfd7e90877c27c6d8caea4f1e8ad89bb97c83d97ddf570d4f4ee116f1986_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:71657b82894cfd9e350746f48965e148868a675b9a20dcb7f94a6bc7a5b16ea5_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:881e405e32821ef10cf992c7a633281c1dc45df721fe909048df1689472000ce_ppc64le"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36820"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability.",
"product_ids": [
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:1384e5ba2b7d23119a49d8713826f4c65668bca310589ac7abd0c0d41c7e4c90_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:7f58528b1da9146aa55917324fdf2b375794742b34e5d10ff57f713af60746cd_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:844c3b1499b00aeadfc561642e53792ad80f535efd53b35793ba08b0f26c6d61_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:e1019c30e1d84e66d775d0d6fc7d051803dcbe44823fb2a1914807be39c79dae_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:8c9a7ebf430b9f4ca200c6c70b049e8456cf88fd8bf0871b42d65e8dc786d451_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:926d965e6fd12ec0d758270fb4c90bbdc1a05e60cc4c895cf9b671a296c9d867_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:e8e807451e3c5d8d0a8575e1280d7125a4ece51547a7b4a5cd247837662cedad_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:f2a24aa01cbe0d926d4aefe3b12eba21eb5ec7f87276e572a6814c727228624c_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:45cc0d783d1e7874ac73dfbdfe7e03c63b227ab3c4f1e15a0a2f5c97956a76d9_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:6f3eb26734e89375c3e1fb7ac366e12dc0d41bac8f07de9210c7e9845a01eec1_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:768c45fa9f35d98dfe5cfe1ea12f552402bf68ac6e1f828b14310ef59ce57c40_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:b5f1bf30495f6be97c696cf7f90768629cee96f8d106f745bf95fdefddc99592_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:137ffbb95d463d95da6c350600d968f3cd0e9873bf2e7c6edf952ae3229e9e2b_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:1cccdfd7e90877c27c6d8caea4f1e8ad89bb97c83d97ddf570d4f4ee116f1986_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:71657b82894cfd9e350746f48965e148868a675b9a20dcb7f94a6bc7a5b16ea5_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:881e405e32821ef10cf992c7a633281c1dc45df721fe909048df1689472000ce_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:6c85b42ede0f4745ed558bcb03d033c49f56cef17a70c12e5308066124cac6e3_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:091529a93e258a612fd4a98222e6a370ee10b4e97efa791b50f79a2670163d01_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0e8958a22f6771ddfe32b34027c69dbbef65d980c7e465a79d4202d2627994ad_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:5a8b0203ff083113e8b30a123ab30c4bad571f57fb59c1e7e01807b92552504e_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:89bf6a32a0935cacadbc6d23566dce6ca741e404d58c11050638c7b8e868028b_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:077cc953354ea2edd85569a622f97c15d44163d68234e7a9fdee899d25c19cdb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:66285f866090e1bfbedacd592e9d5ea9f2a30b88aa03bc86bc790d6b98a929a4_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:8c80054171d5063457df4bd074674b1824783a101dacb6137da227080aff957c_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:b0f15904251c6665961eef9c944d00f17499f7219351fe213fe7935f62fbf7ac_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:62476ac2fb0096caa9b181f523cc3573ccffe70be1433f08d1d0255b6d3a0640_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:6f632bc9829880a44e2e94084284b52683b4a01dc3315043b0aa32eb344b16cb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:aa3d1cf7853bfe8307efb01f714585f378d1d3d4ed5de7c8808a72e4aeecd4f3_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:bf1d4b2b1ef03e65be59699ce3233a75a34e1777abc182984c7a8efa698a936e_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:141f17d12c748c7ab9e94cfd9db7e2492d3063e7478249d6430ac0d8fcfb8875_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:5909184fe3d37eb45ba3bf55d7b708d818f2a5abfc2949c4a7081a5cd30cea4f_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:6217f0bb4937fa0e0fc0a5c86456fdc1992e169dfedc3d11d5165cef575d4d53_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:d55a55a36a23e7deb83718bd5dcc19b083b84d441add72ea7f4e28935e4717e3_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:0f8e1171f278395f3c72e4d9d3c0492bed15b678963fb2b6182bd65343b85a2e_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:823bb59b1c7d01557c29f9f1e4a4ee39814c38d826b06c3c9de4b8d179078419_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:93c7e9b321c7e9aa4a412a993a6b20412e24772832cc0dd23bbb17aa25f15487_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:9e50b45f81fedab27e896f04b80bacaa01d8370ff5679147f95ad79b61972d83_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:8f145d4e336bd77fcc94f0845f9ebf94563ffd96d56794d96a665c11241df152_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:981917806c7faf31156241cc85577cf375ee566f78adaeadc096d0ba8482b835_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:af3ed91687500d64e2348cca4877c43f73211b8fbd132e7767c3521763185348_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:c05020e5ee5bddc62e38493cd16b6e4ffde7c2248a00d710f32b90a6ee12ceeb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2af86b409540513f6da1afa83110a5cafe8778d2ec16332faa31c964bd5f43f7_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2f3bec76a833a72c7dfa93ed55e55e80e2621c154e5a2f156deaf78d7c6b97b4_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:81a2385be30079500f13f97a18607aa685abd61265bf8fa78bc6ce126341be50_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:fdc8f64f3b82b200a5e31b01b8612069f1aa897014085c1de755394552a1a70a_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:856b9088dbda4e7374daf232602f4bb90b05ad1be1df46d6e363a002f549f4de_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:a107ae2f7b140f2fb2243f33c378228c2f164cfd2d23f57e63f6c424fd400929_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:e21de356b7d879800a96f6c5aeee6bc59a3ed9c58d36503f7089625ce887bb25_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:fcaf6d60d682cf51866948ea3b4846c2993e2801adb69dc745ffa832318f515c_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:11f005939e15d63057bf2f0a988b6baebc275d3e752e9f7696d0f7f5266fd5d6_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:4b4c98be96a932d508fad769eff61bff2a44e13baa60b22b6c543f4a11eb71c2_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:6c87453ffe89e8be752ee40c8a9ccf6894c83be703f13901b1e8b64a4c0e549a_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:c18a1c50a4fc7081c6564d1c4ed4904212b7939a4f1f46afef0a36dc1d76f38e_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:33367b9fdb3addce3302ad35bc10423505fefe3dd27b8b9013b26d66caac2a6c_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:72cbdb061cbcd295be5e66a0eabb409af16ade7f0aa12b04c2d7327e9e1a24ba_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:d0379f9da8cbb5514394a4550ff0d79f90fa691fcced5806296479c7b63353da_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:e99d1d877bd7335736cbaeb4db5b9904369a1d07f6df332c38ad79ff1256b67b_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:06285611aef2528fc92c5cebb66ff4c74fe44d457f43cf9ec2f4a98c3c68d25e_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:25e0f4153eb5bc6fbc6b389d5adc81bfde103070ef58317c3c25ce4144a628d3_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:acd3c0369c18cbfa63a5972ed1721f93f1fcb456963ff855dea2c295baf1cdb8_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:d086075db52f4476aa64d7e2680baa01e99da246275fa9cae0ba4a74de63c7f3_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:07d89c1b524d1451051feb865bc716da2197add90fa0c58c4cf4a82975ec846c_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:6582e647d7dd604e25977ec1579969aa1fcb29ead1a0ea65833531d633bbdd2b_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:75e3aec03dffbd0f40f88a08ff5e0319f4515d73f0bcfae28b5fa526b494afc4_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:f0079e8ae53d84223aea2d3186e7bc6b525b7c03d307cde50cfb9f1bbc18712b_arm64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 8.1,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:1384e5ba2b7d23119a49d8713826f4c65668bca310589ac7abd0c0d41c7e4c90_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:7f58528b1da9146aa55917324fdf2b375794742b34e5d10ff57f713af60746cd_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:844c3b1499b00aeadfc561642e53792ad80f535efd53b35793ba08b0f26c6d61_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:e1019c30e1d84e66d775d0d6fc7d051803dcbe44823fb2a1914807be39c79dae_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:8c9a7ebf430b9f4ca200c6c70b049e8456cf88fd8bf0871b42d65e8dc786d451_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:926d965e6fd12ec0d758270fb4c90bbdc1a05e60cc4c895cf9b671a296c9d867_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:e8e807451e3c5d8d0a8575e1280d7125a4ece51547a7b4a5cd247837662cedad_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:f2a24aa01cbe0d926d4aefe3b12eba21eb5ec7f87276e572a6814c727228624c_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:45cc0d783d1e7874ac73dfbdfe7e03c63b227ab3c4f1e15a0a2f5c97956a76d9_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:6f3eb26734e89375c3e1fb7ac366e12dc0d41bac8f07de9210c7e9845a01eec1_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:768c45fa9f35d98dfe5cfe1ea12f552402bf68ac6e1f828b14310ef59ce57c40_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:b5f1bf30495f6be97c696cf7f90768629cee96f8d106f745bf95fdefddc99592_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:137ffbb95d463d95da6c350600d968f3cd0e9873bf2e7c6edf952ae3229e9e2b_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:1cccdfd7e90877c27c6d8caea4f1e8ad89bb97c83d97ddf570d4f4ee116f1986_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:71657b82894cfd9e350746f48965e148868a675b9a20dcb7f94a6bc7a5b16ea5_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:881e405e32821ef10cf992c7a633281c1dc45df721fe909048df1689472000ce_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:6c85b42ede0f4745ed558bcb03d033c49f56cef17a70c12e5308066124cac6e3_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:091529a93e258a612fd4a98222e6a370ee10b4e97efa791b50f79a2670163d01_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0e8958a22f6771ddfe32b34027c69dbbef65d980c7e465a79d4202d2627994ad_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:5a8b0203ff083113e8b30a123ab30c4bad571f57fb59c1e7e01807b92552504e_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:89bf6a32a0935cacadbc6d23566dce6ca741e404d58c11050638c7b8e868028b_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:077cc953354ea2edd85569a622f97c15d44163d68234e7a9fdee899d25c19cdb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:66285f866090e1bfbedacd592e9d5ea9f2a30b88aa03bc86bc790d6b98a929a4_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:8c80054171d5063457df4bd074674b1824783a101dacb6137da227080aff957c_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:b0f15904251c6665961eef9c944d00f17499f7219351fe213fe7935f62fbf7ac_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:62476ac2fb0096caa9b181f523cc3573ccffe70be1433f08d1d0255b6d3a0640_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:6f632bc9829880a44e2e94084284b52683b4a01dc3315043b0aa32eb344b16cb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:aa3d1cf7853bfe8307efb01f714585f378d1d3d4ed5de7c8808a72e4aeecd4f3_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:bf1d4b2b1ef03e65be59699ce3233a75a34e1777abc182984c7a8efa698a936e_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:141f17d12c748c7ab9e94cfd9db7e2492d3063e7478249d6430ac0d8fcfb8875_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:5909184fe3d37eb45ba3bf55d7b708d818f2a5abfc2949c4a7081a5cd30cea4f_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:6217f0bb4937fa0e0fc0a5c86456fdc1992e169dfedc3d11d5165cef575d4d53_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:d55a55a36a23e7deb83718bd5dcc19b083b84d441add72ea7f4e28935e4717e3_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:0f8e1171f278395f3c72e4d9d3c0492bed15b678963fb2b6182bd65343b85a2e_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:823bb59b1c7d01557c29f9f1e4a4ee39814c38d826b06c3c9de4b8d179078419_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:93c7e9b321c7e9aa4a412a993a6b20412e24772832cc0dd23bbb17aa25f15487_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:9e50b45f81fedab27e896f04b80bacaa01d8370ff5679147f95ad79b61972d83_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:8f145d4e336bd77fcc94f0845f9ebf94563ffd96d56794d96a665c11241df152_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:981917806c7faf31156241cc85577cf375ee566f78adaeadc096d0ba8482b835_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:af3ed91687500d64e2348cca4877c43f73211b8fbd132e7767c3521763185348_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:c05020e5ee5bddc62e38493cd16b6e4ffde7c2248a00d710f32b90a6ee12ceeb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2af86b409540513f6da1afa83110a5cafe8778d2ec16332faa31c964bd5f43f7_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2f3bec76a833a72c7dfa93ed55e55e80e2621c154e5a2f156deaf78d7c6b97b4_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:81a2385be30079500f13f97a18607aa685abd61265bf8fa78bc6ce126341be50_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:fdc8f64f3b82b200a5e31b01b8612069f1aa897014085c1de755394552a1a70a_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:856b9088dbda4e7374daf232602f4bb90b05ad1be1df46d6e363a002f549f4de_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:a107ae2f7b140f2fb2243f33c378228c2f164cfd2d23f57e63f6c424fd400929_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:e21de356b7d879800a96f6c5aeee6bc59a3ed9c58d36503f7089625ce887bb25_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:fcaf6d60d682cf51866948ea3b4846c2993e2801adb69dc745ffa832318f515c_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:11f005939e15d63057bf2f0a988b6baebc275d3e752e9f7696d0f7f5266fd5d6_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:4b4c98be96a932d508fad769eff61bff2a44e13baa60b22b6c543f4a11eb71c2_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:6c87453ffe89e8be752ee40c8a9ccf6894c83be703f13901b1e8b64a4c0e549a_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:c18a1c50a4fc7081c6564d1c4ed4904212b7939a4f1f46afef0a36dc1d76f38e_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:33367b9fdb3addce3302ad35bc10423505fefe3dd27b8b9013b26d66caac2a6c_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:72cbdb061cbcd295be5e66a0eabb409af16ade7f0aa12b04c2d7327e9e1a24ba_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:d0379f9da8cbb5514394a4550ff0d79f90fa691fcced5806296479c7b63353da_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:e99d1d877bd7335736cbaeb4db5b9904369a1d07f6df332c38ad79ff1256b67b_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:06285611aef2528fc92c5cebb66ff4c74fe44d457f43cf9ec2f4a98c3c68d25e_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:25e0f4153eb5bc6fbc6b389d5adc81bfde103070ef58317c3c25ce4144a628d3_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:acd3c0369c18cbfa63a5972ed1721f93f1fcb456963ff855dea2c295baf1cdb8_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:d086075db52f4476aa64d7e2680baa01e99da246275fa9cae0ba4a74de63c7f3_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:07d89c1b524d1451051feb865bc716da2197add90fa0c58c4cf4a82975ec846c_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:6582e647d7dd604e25977ec1579969aa1fcb29ead1a0ea65833531d633bbdd2b_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:75e3aec03dffbd0f40f88a08ff5e0319f4515d73f0bcfae28b5fa526b494afc4_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:f0079e8ae53d84223aea2d3186e7bc6b525b7c03d307cde50cfb9f1bbc18712b_arm64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "ip-address: ip-address: Cross-site scripting via improper HTML escaping of untrusted input"
},
{
"cve": "CVE-2026-42578",
"cwe": {
"id": "CWE-93",
"name": "Improper Neutralization of CRLF Sequences (\u0027CRLF Injection\u0027)"
},
"discovery_date": "2026-05-13T19:02:00.826936+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:1384e5ba2b7d23119a49d8713826f4c65668bca310589ac7abd0c0d41c7e4c90_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:7f58528b1da9146aa55917324fdf2b375794742b34e5d10ff57f713af60746cd_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:844c3b1499b00aeadfc561642e53792ad80f535efd53b35793ba08b0f26c6d61_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:e1019c30e1d84e66d775d0d6fc7d051803dcbe44823fb2a1914807be39c79dae_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:8c9a7ebf430b9f4ca200c6c70b049e8456cf88fd8bf0871b42d65e8dc786d451_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:926d965e6fd12ec0d758270fb4c90bbdc1a05e60cc4c895cf9b671a296c9d867_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:e8e807451e3c5d8d0a8575e1280d7125a4ece51547a7b4a5cd247837662cedad_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:f2a24aa01cbe0d926d4aefe3b12eba21eb5ec7f87276e572a6814c727228624c_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:45cc0d783d1e7874ac73dfbdfe7e03c63b227ab3c4f1e15a0a2f5c97956a76d9_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:6f3eb26734e89375c3e1fb7ac366e12dc0d41bac8f07de9210c7e9845a01eec1_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:768c45fa9f35d98dfe5cfe1ea12f552402bf68ac6e1f828b14310ef59ce57c40_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:b5f1bf30495f6be97c696cf7f90768629cee96f8d106f745bf95fdefddc99592_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:137ffbb95d463d95da6c350600d968f3cd0e9873bf2e7c6edf952ae3229e9e2b_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:1cccdfd7e90877c27c6d8caea4f1e8ad89bb97c83d97ddf570d4f4ee116f1986_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:71657b82894cfd9e350746f48965e148868a675b9a20dcb7f94a6bc7a5b16ea5_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:881e405e32821ef10cf992c7a633281c1dc45df721fe909048df1689472000ce_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:6c85b42ede0f4745ed558bcb03d033c49f56cef17a70c12e5308066124cac6e3_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:091529a93e258a612fd4a98222e6a370ee10b4e97efa791b50f79a2670163d01_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0e8958a22f6771ddfe32b34027c69dbbef65d980c7e465a79d4202d2627994ad_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:5a8b0203ff083113e8b30a123ab30c4bad571f57fb59c1e7e01807b92552504e_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:89bf6a32a0935cacadbc6d23566dce6ca741e404d58c11050638c7b8e868028b_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:077cc953354ea2edd85569a622f97c15d44163d68234e7a9fdee899d25c19cdb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:66285f866090e1bfbedacd592e9d5ea9f2a30b88aa03bc86bc790d6b98a929a4_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:8c80054171d5063457df4bd074674b1824783a101dacb6137da227080aff957c_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:b0f15904251c6665961eef9c944d00f17499f7219351fe213fe7935f62fbf7ac_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:62476ac2fb0096caa9b181f523cc3573ccffe70be1433f08d1d0255b6d3a0640_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:6f632bc9829880a44e2e94084284b52683b4a01dc3315043b0aa32eb344b16cb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:aa3d1cf7853bfe8307efb01f714585f378d1d3d4ed5de7c8808a72e4aeecd4f3_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:bf1d4b2b1ef03e65be59699ce3233a75a34e1777abc182984c7a8efa698a936e_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:0f8e1171f278395f3c72e4d9d3c0492bed15b678963fb2b6182bd65343b85a2e_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:823bb59b1c7d01557c29f9f1e4a4ee39814c38d826b06c3c9de4b8d179078419_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:93c7e9b321c7e9aa4a412a993a6b20412e24772832cc0dd23bbb17aa25f15487_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:9e50b45f81fedab27e896f04b80bacaa01d8370ff5679147f95ad79b61972d83_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:8f145d4e336bd77fcc94f0845f9ebf94563ffd96d56794d96a665c11241df152_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:981917806c7faf31156241cc85577cf375ee566f78adaeadc096d0ba8482b835_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:af3ed91687500d64e2348cca4877c43f73211b8fbd132e7767c3521763185348_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:c05020e5ee5bddc62e38493cd16b6e4ffde7c2248a00d710f32b90a6ee12ceeb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2af86b409540513f6da1afa83110a5cafe8778d2ec16332faa31c964bd5f43f7_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2f3bec76a833a72c7dfa93ed55e55e80e2621c154e5a2f156deaf78d7c6b97b4_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:81a2385be30079500f13f97a18607aa685abd61265bf8fa78bc6ce126341be50_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:fdc8f64f3b82b200a5e31b01b8612069f1aa897014085c1de755394552a1a70a_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:856b9088dbda4e7374daf232602f4bb90b05ad1be1df46d6e363a002f549f4de_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:a107ae2f7b140f2fb2243f33c378228c2f164cfd2d23f57e63f6c424fd400929_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:e21de356b7d879800a96f6c5aeee6bc59a3ed9c58d36503f7089625ce887bb25_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:fcaf6d60d682cf51866948ea3b4846c2993e2801adb69dc745ffa832318f515c_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:11f005939e15d63057bf2f0a988b6baebc275d3e752e9f7696d0f7f5266fd5d6_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:4b4c98be96a932d508fad769eff61bff2a44e13baa60b22b6c543f4a11eb71c2_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:6c87453ffe89e8be752ee40c8a9ccf6894c83be703f13901b1e8b64a4c0e549a_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:c18a1c50a4fc7081c6564d1c4ed4904212b7939a4f1f46afef0a36dc1d76f38e_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:33367b9fdb3addce3302ad35bc10423505fefe3dd27b8b9013b26d66caac2a6c_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:72cbdb061cbcd295be5e66a0eabb409af16ade7f0aa12b04c2d7327e9e1a24ba_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:d0379f9da8cbb5514394a4550ff0d79f90fa691fcced5806296479c7b63353da_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:e99d1d877bd7335736cbaeb4db5b9904369a1d07f6df332c38ad79ff1256b67b_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:06285611aef2528fc92c5cebb66ff4c74fe44d457f43cf9ec2f4a98c3c68d25e_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:25e0f4153eb5bc6fbc6b389d5adc81bfde103070ef58317c3c25ce4144a628d3_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:acd3c0369c18cbfa63a5972ed1721f93f1fcb456963ff855dea2c295baf1cdb8_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:d086075db52f4476aa64d7e2680baa01e99da246275fa9cae0ba4a74de63c7f3_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:07d89c1b524d1451051feb865bc716da2197add90fa0c58c4cf4a82975ec846c_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:6582e647d7dd604e25977ec1579969aa1fcb29ead1a0ea65833531d633bbdd2b_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:75e3aec03dffbd0f40f88a08ff5e0319f4515d73f0bcfae28b5fa526b494afc4_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:f0079e8ae53d84223aea2d3186e7bc6b525b7c03d307cde50cfb9f1bbc18712b_arm64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2477226"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Netty. The HttpProxyHandler component, which handles HTTP CONNECT requests, does not properly validate user-provided outbound headers. This allows an attacker to inject arbitrary HTTP headers into the CONNECT request sent to the proxy server. This could lead to unexpected behavior or potential bypass of security controls on the proxy server.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "netty: io.netty/netty-handler-proxy: Netty: HTTP Header Injection via HttpProxyHandler Disabled Validation",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:141f17d12c748c7ab9e94cfd9db7e2492d3063e7478249d6430ac0d8fcfb8875_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:5909184fe3d37eb45ba3bf55d7b708d818f2a5abfc2949c4a7081a5cd30cea4f_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:6217f0bb4937fa0e0fc0a5c86456fdc1992e169dfedc3d11d5165cef575d4d53_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:d55a55a36a23e7deb83718bd5dcc19b083b84d441add72ea7f4e28935e4717e3_ppc64le"
],
"known_not_affected": [
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:1384e5ba2b7d23119a49d8713826f4c65668bca310589ac7abd0c0d41c7e4c90_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:7f58528b1da9146aa55917324fdf2b375794742b34e5d10ff57f713af60746cd_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:844c3b1499b00aeadfc561642e53792ad80f535efd53b35793ba08b0f26c6d61_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:e1019c30e1d84e66d775d0d6fc7d051803dcbe44823fb2a1914807be39c79dae_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:8c9a7ebf430b9f4ca200c6c70b049e8456cf88fd8bf0871b42d65e8dc786d451_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:926d965e6fd12ec0d758270fb4c90bbdc1a05e60cc4c895cf9b671a296c9d867_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:e8e807451e3c5d8d0a8575e1280d7125a4ece51547a7b4a5cd247837662cedad_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:f2a24aa01cbe0d926d4aefe3b12eba21eb5ec7f87276e572a6814c727228624c_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:45cc0d783d1e7874ac73dfbdfe7e03c63b227ab3c4f1e15a0a2f5c97956a76d9_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:6f3eb26734e89375c3e1fb7ac366e12dc0d41bac8f07de9210c7e9845a01eec1_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:768c45fa9f35d98dfe5cfe1ea12f552402bf68ac6e1f828b14310ef59ce57c40_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:b5f1bf30495f6be97c696cf7f90768629cee96f8d106f745bf95fdefddc99592_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:137ffbb95d463d95da6c350600d968f3cd0e9873bf2e7c6edf952ae3229e9e2b_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:1cccdfd7e90877c27c6d8caea4f1e8ad89bb97c83d97ddf570d4f4ee116f1986_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:71657b82894cfd9e350746f48965e148868a675b9a20dcb7f94a6bc7a5b16ea5_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:881e405e32821ef10cf992c7a633281c1dc45df721fe909048df1689472000ce_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:6c85b42ede0f4745ed558bcb03d033c49f56cef17a70c12e5308066124cac6e3_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:091529a93e258a612fd4a98222e6a370ee10b4e97efa791b50f79a2670163d01_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0e8958a22f6771ddfe32b34027c69dbbef65d980c7e465a79d4202d2627994ad_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:5a8b0203ff083113e8b30a123ab30c4bad571f57fb59c1e7e01807b92552504e_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:89bf6a32a0935cacadbc6d23566dce6ca741e404d58c11050638c7b8e868028b_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:077cc953354ea2edd85569a622f97c15d44163d68234e7a9fdee899d25c19cdb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:66285f866090e1bfbedacd592e9d5ea9f2a30b88aa03bc86bc790d6b98a929a4_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:8c80054171d5063457df4bd074674b1824783a101dacb6137da227080aff957c_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:b0f15904251c6665961eef9c944d00f17499f7219351fe213fe7935f62fbf7ac_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:62476ac2fb0096caa9b181f523cc3573ccffe70be1433f08d1d0255b6d3a0640_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:6f632bc9829880a44e2e94084284b52683b4a01dc3315043b0aa32eb344b16cb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:aa3d1cf7853bfe8307efb01f714585f378d1d3d4ed5de7c8808a72e4aeecd4f3_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:bf1d4b2b1ef03e65be59699ce3233a75a34e1777abc182984c7a8efa698a936e_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:0f8e1171f278395f3c72e4d9d3c0492bed15b678963fb2b6182bd65343b85a2e_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:823bb59b1c7d01557c29f9f1e4a4ee39814c38d826b06c3c9de4b8d179078419_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:93c7e9b321c7e9aa4a412a993a6b20412e24772832cc0dd23bbb17aa25f15487_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:9e50b45f81fedab27e896f04b80bacaa01d8370ff5679147f95ad79b61972d83_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:8f145d4e336bd77fcc94f0845f9ebf94563ffd96d56794d96a665c11241df152_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:981917806c7faf31156241cc85577cf375ee566f78adaeadc096d0ba8482b835_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:af3ed91687500d64e2348cca4877c43f73211b8fbd132e7767c3521763185348_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:c05020e5ee5bddc62e38493cd16b6e4ffde7c2248a00d710f32b90a6ee12ceeb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2af86b409540513f6da1afa83110a5cafe8778d2ec16332faa31c964bd5f43f7_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2f3bec76a833a72c7dfa93ed55e55e80e2621c154e5a2f156deaf78d7c6b97b4_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:81a2385be30079500f13f97a18607aa685abd61265bf8fa78bc6ce126341be50_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:fdc8f64f3b82b200a5e31b01b8612069f1aa897014085c1de755394552a1a70a_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:856b9088dbda4e7374daf232602f4bb90b05ad1be1df46d6e363a002f549f4de_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:a107ae2f7b140f2fb2243f33c378228c2f164cfd2d23f57e63f6c424fd400929_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:e21de356b7d879800a96f6c5aeee6bc59a3ed9c58d36503f7089625ce887bb25_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:fcaf6d60d682cf51866948ea3b4846c2993e2801adb69dc745ffa832318f515c_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:11f005939e15d63057bf2f0a988b6baebc275d3e752e9f7696d0f7f5266fd5d6_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:4b4c98be96a932d508fad769eff61bff2a44e13baa60b22b6c543f4a11eb71c2_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:6c87453ffe89e8be752ee40c8a9ccf6894c83be703f13901b1e8b64a4c0e549a_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:c18a1c50a4fc7081c6564d1c4ed4904212b7939a4f1f46afef0a36dc1d76f38e_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:33367b9fdb3addce3302ad35bc10423505fefe3dd27b8b9013b26d66caac2a6c_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:72cbdb061cbcd295be5e66a0eabb409af16ade7f0aa12b04c2d7327e9e1a24ba_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:d0379f9da8cbb5514394a4550ff0d79f90fa691fcced5806296479c7b63353da_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:e99d1d877bd7335736cbaeb4db5b9904369a1d07f6df332c38ad79ff1256b67b_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:06285611aef2528fc92c5cebb66ff4c74fe44d457f43cf9ec2f4a98c3c68d25e_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:25e0f4153eb5bc6fbc6b389d5adc81bfde103070ef58317c3c25ce4144a628d3_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:acd3c0369c18cbfa63a5972ed1721f93f1fcb456963ff855dea2c295baf1cdb8_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:d086075db52f4476aa64d7e2680baa01e99da246275fa9cae0ba4a74de63c7f3_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:07d89c1b524d1451051feb865bc716da2197add90fa0c58c4cf4a82975ec846c_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:6582e647d7dd604e25977ec1579969aa1fcb29ead1a0ea65833531d633bbdd2b_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:75e3aec03dffbd0f40f88a08ff5e0319f4515d73f0bcfae28b5fa526b494afc4_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:f0079e8ae53d84223aea2d3186e7bc6b525b7c03d307cde50cfb9f1bbc18712b_arm64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-42578"
},
{
"category": "external",
"summary": "RHBZ#2477226",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2477226"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-42578",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-42578"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-42578",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-42578"
},
{
"category": "external",
"summary": "https://github.com/netty/netty/security/advisories/GHSA-45q3-82m4-75jr",
"url": "https://github.com/netty/netty/security/advisories/GHSA-45q3-82m4-75jr"
}
],
"release_date": "2026-05-13T17:57:43.538000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T17:12:17+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\nFor details on how to apply this update, refer to:\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:141f17d12c748c7ab9e94cfd9db7e2492d3063e7478249d6430ac0d8fcfb8875_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:5909184fe3d37eb45ba3bf55d7b708d818f2a5abfc2949c4a7081a5cd30cea4f_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:6217f0bb4937fa0e0fc0a5c86456fdc1992e169dfedc3d11d5165cef575d4d53_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:d55a55a36a23e7deb83718bd5dcc19b083b84d441add72ea7f4e28935e4717e3_ppc64le"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36820"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:1384e5ba2b7d23119a49d8713826f4c65668bca310589ac7abd0c0d41c7e4c90_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:7f58528b1da9146aa55917324fdf2b375794742b34e5d10ff57f713af60746cd_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:844c3b1499b00aeadfc561642e53792ad80f535efd53b35793ba08b0f26c6d61_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:e1019c30e1d84e66d775d0d6fc7d051803dcbe44823fb2a1914807be39c79dae_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:8c9a7ebf430b9f4ca200c6c70b049e8456cf88fd8bf0871b42d65e8dc786d451_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:926d965e6fd12ec0d758270fb4c90bbdc1a05e60cc4c895cf9b671a296c9d867_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:e8e807451e3c5d8d0a8575e1280d7125a4ece51547a7b4a5cd247837662cedad_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:f2a24aa01cbe0d926d4aefe3b12eba21eb5ec7f87276e572a6814c727228624c_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:45cc0d783d1e7874ac73dfbdfe7e03c63b227ab3c4f1e15a0a2f5c97956a76d9_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:6f3eb26734e89375c3e1fb7ac366e12dc0d41bac8f07de9210c7e9845a01eec1_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:768c45fa9f35d98dfe5cfe1ea12f552402bf68ac6e1f828b14310ef59ce57c40_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:b5f1bf30495f6be97c696cf7f90768629cee96f8d106f745bf95fdefddc99592_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:137ffbb95d463d95da6c350600d968f3cd0e9873bf2e7c6edf952ae3229e9e2b_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:1cccdfd7e90877c27c6d8caea4f1e8ad89bb97c83d97ddf570d4f4ee116f1986_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:71657b82894cfd9e350746f48965e148868a675b9a20dcb7f94a6bc7a5b16ea5_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:881e405e32821ef10cf992c7a633281c1dc45df721fe909048df1689472000ce_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:6c85b42ede0f4745ed558bcb03d033c49f56cef17a70c12e5308066124cac6e3_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:091529a93e258a612fd4a98222e6a370ee10b4e97efa791b50f79a2670163d01_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0e8958a22f6771ddfe32b34027c69dbbef65d980c7e465a79d4202d2627994ad_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:5a8b0203ff083113e8b30a123ab30c4bad571f57fb59c1e7e01807b92552504e_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:89bf6a32a0935cacadbc6d23566dce6ca741e404d58c11050638c7b8e868028b_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:077cc953354ea2edd85569a622f97c15d44163d68234e7a9fdee899d25c19cdb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:66285f866090e1bfbedacd592e9d5ea9f2a30b88aa03bc86bc790d6b98a929a4_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:8c80054171d5063457df4bd074674b1824783a101dacb6137da227080aff957c_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:b0f15904251c6665961eef9c944d00f17499f7219351fe213fe7935f62fbf7ac_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:62476ac2fb0096caa9b181f523cc3573ccffe70be1433f08d1d0255b6d3a0640_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:6f632bc9829880a44e2e94084284b52683b4a01dc3315043b0aa32eb344b16cb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:aa3d1cf7853bfe8307efb01f714585f378d1d3d4ed5de7c8808a72e4aeecd4f3_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:bf1d4b2b1ef03e65be59699ce3233a75a34e1777abc182984c7a8efa698a936e_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:141f17d12c748c7ab9e94cfd9db7e2492d3063e7478249d6430ac0d8fcfb8875_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:5909184fe3d37eb45ba3bf55d7b708d818f2a5abfc2949c4a7081a5cd30cea4f_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:6217f0bb4937fa0e0fc0a5c86456fdc1992e169dfedc3d11d5165cef575d4d53_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:d55a55a36a23e7deb83718bd5dcc19b083b84d441add72ea7f4e28935e4717e3_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:0f8e1171f278395f3c72e4d9d3c0492bed15b678963fb2b6182bd65343b85a2e_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:823bb59b1c7d01557c29f9f1e4a4ee39814c38d826b06c3c9de4b8d179078419_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:93c7e9b321c7e9aa4a412a993a6b20412e24772832cc0dd23bbb17aa25f15487_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:9e50b45f81fedab27e896f04b80bacaa01d8370ff5679147f95ad79b61972d83_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:8f145d4e336bd77fcc94f0845f9ebf94563ffd96d56794d96a665c11241df152_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:981917806c7faf31156241cc85577cf375ee566f78adaeadc096d0ba8482b835_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:af3ed91687500d64e2348cca4877c43f73211b8fbd132e7767c3521763185348_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:c05020e5ee5bddc62e38493cd16b6e4ffde7c2248a00d710f32b90a6ee12ceeb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2af86b409540513f6da1afa83110a5cafe8778d2ec16332faa31c964bd5f43f7_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2f3bec76a833a72c7dfa93ed55e55e80e2621c154e5a2f156deaf78d7c6b97b4_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:81a2385be30079500f13f97a18607aa685abd61265bf8fa78bc6ce126341be50_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:fdc8f64f3b82b200a5e31b01b8612069f1aa897014085c1de755394552a1a70a_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:856b9088dbda4e7374daf232602f4bb90b05ad1be1df46d6e363a002f549f4de_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:a107ae2f7b140f2fb2243f33c378228c2f164cfd2d23f57e63f6c424fd400929_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:e21de356b7d879800a96f6c5aeee6bc59a3ed9c58d36503f7089625ce887bb25_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:fcaf6d60d682cf51866948ea3b4846c2993e2801adb69dc745ffa832318f515c_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:11f005939e15d63057bf2f0a988b6baebc275d3e752e9f7696d0f7f5266fd5d6_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:4b4c98be96a932d508fad769eff61bff2a44e13baa60b22b6c543f4a11eb71c2_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:6c87453ffe89e8be752ee40c8a9ccf6894c83be703f13901b1e8b64a4c0e549a_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:c18a1c50a4fc7081c6564d1c4ed4904212b7939a4f1f46afef0a36dc1d76f38e_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:33367b9fdb3addce3302ad35bc10423505fefe3dd27b8b9013b26d66caac2a6c_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:72cbdb061cbcd295be5e66a0eabb409af16ade7f0aa12b04c2d7327e9e1a24ba_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:d0379f9da8cbb5514394a4550ff0d79f90fa691fcced5806296479c7b63353da_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:e99d1d877bd7335736cbaeb4db5b9904369a1d07f6df332c38ad79ff1256b67b_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:06285611aef2528fc92c5cebb66ff4c74fe44d457f43cf9ec2f4a98c3c68d25e_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:25e0f4153eb5bc6fbc6b389d5adc81bfde103070ef58317c3c25ce4144a628d3_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:acd3c0369c18cbfa63a5972ed1721f93f1fcb456963ff855dea2c295baf1cdb8_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:d086075db52f4476aa64d7e2680baa01e99da246275fa9cae0ba4a74de63c7f3_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:07d89c1b524d1451051feb865bc716da2197add90fa0c58c4cf4a82975ec846c_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:6582e647d7dd604e25977ec1579969aa1fcb29ead1a0ea65833531d633bbdd2b_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:75e3aec03dffbd0f40f88a08ff5e0319f4515d73f0bcfae28b5fa526b494afc4_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:f0079e8ae53d84223aea2d3186e7bc6b525b7c03d307cde50cfb9f1bbc18712b_arm64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "netty: io.netty/netty-handler-proxy: Netty: HTTP Header Injection via HttpProxyHandler Disabled Validation"
},
{
"cve": "CVE-2026-42579",
"cwe": {
"id": "CWE-1286",
"name": "Improper Validation of Syntactic Correctness of Input"
},
"discovery_date": "2026-05-13T19:01:25.062732+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:1384e5ba2b7d23119a49d8713826f4c65668bca310589ac7abd0c0d41c7e4c90_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:7f58528b1da9146aa55917324fdf2b375794742b34e5d10ff57f713af60746cd_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:844c3b1499b00aeadfc561642e53792ad80f535efd53b35793ba08b0f26c6d61_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:e1019c30e1d84e66d775d0d6fc7d051803dcbe44823fb2a1914807be39c79dae_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:8c9a7ebf430b9f4ca200c6c70b049e8456cf88fd8bf0871b42d65e8dc786d451_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:926d965e6fd12ec0d758270fb4c90bbdc1a05e60cc4c895cf9b671a296c9d867_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:e8e807451e3c5d8d0a8575e1280d7125a4ece51547a7b4a5cd247837662cedad_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:f2a24aa01cbe0d926d4aefe3b12eba21eb5ec7f87276e572a6814c727228624c_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:45cc0d783d1e7874ac73dfbdfe7e03c63b227ab3c4f1e15a0a2f5c97956a76d9_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:6f3eb26734e89375c3e1fb7ac366e12dc0d41bac8f07de9210c7e9845a01eec1_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:768c45fa9f35d98dfe5cfe1ea12f552402bf68ac6e1f828b14310ef59ce57c40_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:b5f1bf30495f6be97c696cf7f90768629cee96f8d106f745bf95fdefddc99592_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:137ffbb95d463d95da6c350600d968f3cd0e9873bf2e7c6edf952ae3229e9e2b_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:1cccdfd7e90877c27c6d8caea4f1e8ad89bb97c83d97ddf570d4f4ee116f1986_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:71657b82894cfd9e350746f48965e148868a675b9a20dcb7f94a6bc7a5b16ea5_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:881e405e32821ef10cf992c7a633281c1dc45df721fe909048df1689472000ce_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:6c85b42ede0f4745ed558bcb03d033c49f56cef17a70c12e5308066124cac6e3_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:091529a93e258a612fd4a98222e6a370ee10b4e97efa791b50f79a2670163d01_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0e8958a22f6771ddfe32b34027c69dbbef65d980c7e465a79d4202d2627994ad_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:5a8b0203ff083113e8b30a123ab30c4bad571f57fb59c1e7e01807b92552504e_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:89bf6a32a0935cacadbc6d23566dce6ca741e404d58c11050638c7b8e868028b_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:077cc953354ea2edd85569a622f97c15d44163d68234e7a9fdee899d25c19cdb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:66285f866090e1bfbedacd592e9d5ea9f2a30b88aa03bc86bc790d6b98a929a4_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:8c80054171d5063457df4bd074674b1824783a101dacb6137da227080aff957c_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:b0f15904251c6665961eef9c944d00f17499f7219351fe213fe7935f62fbf7ac_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:62476ac2fb0096caa9b181f523cc3573ccffe70be1433f08d1d0255b6d3a0640_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:6f632bc9829880a44e2e94084284b52683b4a01dc3315043b0aa32eb344b16cb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:aa3d1cf7853bfe8307efb01f714585f378d1d3d4ed5de7c8808a72e4aeecd4f3_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:bf1d4b2b1ef03e65be59699ce3233a75a34e1777abc182984c7a8efa698a936e_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:0f8e1171f278395f3c72e4d9d3c0492bed15b678963fb2b6182bd65343b85a2e_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:823bb59b1c7d01557c29f9f1e4a4ee39814c38d826b06c3c9de4b8d179078419_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:93c7e9b321c7e9aa4a412a993a6b20412e24772832cc0dd23bbb17aa25f15487_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:9e50b45f81fedab27e896f04b80bacaa01d8370ff5679147f95ad79b61972d83_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:8f145d4e336bd77fcc94f0845f9ebf94563ffd96d56794d96a665c11241df152_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:981917806c7faf31156241cc85577cf375ee566f78adaeadc096d0ba8482b835_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:af3ed91687500d64e2348cca4877c43f73211b8fbd132e7767c3521763185348_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:c05020e5ee5bddc62e38493cd16b6e4ffde7c2248a00d710f32b90a6ee12ceeb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2af86b409540513f6da1afa83110a5cafe8778d2ec16332faa31c964bd5f43f7_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2f3bec76a833a72c7dfa93ed55e55e80e2621c154e5a2f156deaf78d7c6b97b4_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:81a2385be30079500f13f97a18607aa685abd61265bf8fa78bc6ce126341be50_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:fdc8f64f3b82b200a5e31b01b8612069f1aa897014085c1de755394552a1a70a_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:856b9088dbda4e7374daf232602f4bb90b05ad1be1df46d6e363a002f549f4de_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:a107ae2f7b140f2fb2243f33c378228c2f164cfd2d23f57e63f6c424fd400929_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:e21de356b7d879800a96f6c5aeee6bc59a3ed9c58d36503f7089625ce887bb25_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:fcaf6d60d682cf51866948ea3b4846c2993e2801adb69dc745ffa832318f515c_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:11f005939e15d63057bf2f0a988b6baebc275d3e752e9f7696d0f7f5266fd5d6_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:4b4c98be96a932d508fad769eff61bff2a44e13baa60b22b6c543f4a11eb71c2_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:6c87453ffe89e8be752ee40c8a9ccf6894c83be703f13901b1e8b64a4c0e549a_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:c18a1c50a4fc7081c6564d1c4ed4904212b7939a4f1f46afef0a36dc1d76f38e_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:33367b9fdb3addce3302ad35bc10423505fefe3dd27b8b9013b26d66caac2a6c_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:72cbdb061cbcd295be5e66a0eabb409af16ade7f0aa12b04c2d7327e9e1a24ba_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:d0379f9da8cbb5514394a4550ff0d79f90fa691fcced5806296479c7b63353da_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:e99d1d877bd7335736cbaeb4db5b9904369a1d07f6df332c38ad79ff1256b67b_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:06285611aef2528fc92c5cebb66ff4c74fe44d457f43cf9ec2f4a98c3c68d25e_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:25e0f4153eb5bc6fbc6b389d5adc81bfde103070ef58317c3c25ce4144a628d3_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:acd3c0369c18cbfa63a5972ed1721f93f1fcb456963ff855dea2c295baf1cdb8_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:d086075db52f4476aa64d7e2680baa01e99da246275fa9cae0ba4a74de63c7f3_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:07d89c1b524d1451051feb865bc716da2197add90fa0c58c4cf4a82975ec846c_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:6582e647d7dd604e25977ec1579969aa1fcb29ead1a0ea65833531d633bbdd2b_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:75e3aec03dffbd0f40f88a08ff5e0319f4515d73f0bcfae28b5fa526b494afc4_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:f0079e8ae53d84223aea2d3186e7bc6b525b7c03d307cde50cfb9f1bbc18712b_arm64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2477217"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Netty. Netty\u0027s DNS (Domain Name System) codec does not properly enforce domain name constraints as defined in RFC 1035 during both encoding and decoding processes. This vulnerability allows a remote attacker to exploit the decoder using malicious DNS responses or exploit the encoder through user-influenced hostnames, leading to a high integrity impact on the affected system.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "netty: Netty: High integrity impact due to improper DNS domain name constraint enforcement",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This is an Important integrity flaw in Netty\u0027s DNS codec. The vulnerability arises from insufficient enforcement of RFC 1035 domain name constraints during both encoding and decoding, allowing remote attackers to manipulate DNS responses or user-controlled hostnames. This could lead to a high integrity impact on affected Red Hat products that utilize the vulnerable Netty DNS codec.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:141f17d12c748c7ab9e94cfd9db7e2492d3063e7478249d6430ac0d8fcfb8875_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:5909184fe3d37eb45ba3bf55d7b708d818f2a5abfc2949c4a7081a5cd30cea4f_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:6217f0bb4937fa0e0fc0a5c86456fdc1992e169dfedc3d11d5165cef575d4d53_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:d55a55a36a23e7deb83718bd5dcc19b083b84d441add72ea7f4e28935e4717e3_ppc64le"
],
"known_not_affected": [
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:1384e5ba2b7d23119a49d8713826f4c65668bca310589ac7abd0c0d41c7e4c90_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:7f58528b1da9146aa55917324fdf2b375794742b34e5d10ff57f713af60746cd_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:844c3b1499b00aeadfc561642e53792ad80f535efd53b35793ba08b0f26c6d61_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:e1019c30e1d84e66d775d0d6fc7d051803dcbe44823fb2a1914807be39c79dae_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:8c9a7ebf430b9f4ca200c6c70b049e8456cf88fd8bf0871b42d65e8dc786d451_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:926d965e6fd12ec0d758270fb4c90bbdc1a05e60cc4c895cf9b671a296c9d867_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:e8e807451e3c5d8d0a8575e1280d7125a4ece51547a7b4a5cd247837662cedad_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:f2a24aa01cbe0d926d4aefe3b12eba21eb5ec7f87276e572a6814c727228624c_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:45cc0d783d1e7874ac73dfbdfe7e03c63b227ab3c4f1e15a0a2f5c97956a76d9_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:6f3eb26734e89375c3e1fb7ac366e12dc0d41bac8f07de9210c7e9845a01eec1_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:768c45fa9f35d98dfe5cfe1ea12f552402bf68ac6e1f828b14310ef59ce57c40_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:b5f1bf30495f6be97c696cf7f90768629cee96f8d106f745bf95fdefddc99592_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:137ffbb95d463d95da6c350600d968f3cd0e9873bf2e7c6edf952ae3229e9e2b_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:1cccdfd7e90877c27c6d8caea4f1e8ad89bb97c83d97ddf570d4f4ee116f1986_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:71657b82894cfd9e350746f48965e148868a675b9a20dcb7f94a6bc7a5b16ea5_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:881e405e32821ef10cf992c7a633281c1dc45df721fe909048df1689472000ce_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:6c85b42ede0f4745ed558bcb03d033c49f56cef17a70c12e5308066124cac6e3_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:091529a93e258a612fd4a98222e6a370ee10b4e97efa791b50f79a2670163d01_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0e8958a22f6771ddfe32b34027c69dbbef65d980c7e465a79d4202d2627994ad_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:5a8b0203ff083113e8b30a123ab30c4bad571f57fb59c1e7e01807b92552504e_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:89bf6a32a0935cacadbc6d23566dce6ca741e404d58c11050638c7b8e868028b_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:077cc953354ea2edd85569a622f97c15d44163d68234e7a9fdee899d25c19cdb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:66285f866090e1bfbedacd592e9d5ea9f2a30b88aa03bc86bc790d6b98a929a4_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:8c80054171d5063457df4bd074674b1824783a101dacb6137da227080aff957c_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:b0f15904251c6665961eef9c944d00f17499f7219351fe213fe7935f62fbf7ac_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:62476ac2fb0096caa9b181f523cc3573ccffe70be1433f08d1d0255b6d3a0640_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:6f632bc9829880a44e2e94084284b52683b4a01dc3315043b0aa32eb344b16cb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:aa3d1cf7853bfe8307efb01f714585f378d1d3d4ed5de7c8808a72e4aeecd4f3_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:bf1d4b2b1ef03e65be59699ce3233a75a34e1777abc182984c7a8efa698a936e_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:0f8e1171f278395f3c72e4d9d3c0492bed15b678963fb2b6182bd65343b85a2e_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:823bb59b1c7d01557c29f9f1e4a4ee39814c38d826b06c3c9de4b8d179078419_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:93c7e9b321c7e9aa4a412a993a6b20412e24772832cc0dd23bbb17aa25f15487_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:9e50b45f81fedab27e896f04b80bacaa01d8370ff5679147f95ad79b61972d83_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:8f145d4e336bd77fcc94f0845f9ebf94563ffd96d56794d96a665c11241df152_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:981917806c7faf31156241cc85577cf375ee566f78adaeadc096d0ba8482b835_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:af3ed91687500d64e2348cca4877c43f73211b8fbd132e7767c3521763185348_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:c05020e5ee5bddc62e38493cd16b6e4ffde7c2248a00d710f32b90a6ee12ceeb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2af86b409540513f6da1afa83110a5cafe8778d2ec16332faa31c964bd5f43f7_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2f3bec76a833a72c7dfa93ed55e55e80e2621c154e5a2f156deaf78d7c6b97b4_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:81a2385be30079500f13f97a18607aa685abd61265bf8fa78bc6ce126341be50_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:fdc8f64f3b82b200a5e31b01b8612069f1aa897014085c1de755394552a1a70a_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:856b9088dbda4e7374daf232602f4bb90b05ad1be1df46d6e363a002f549f4de_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:a107ae2f7b140f2fb2243f33c378228c2f164cfd2d23f57e63f6c424fd400929_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:e21de356b7d879800a96f6c5aeee6bc59a3ed9c58d36503f7089625ce887bb25_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:fcaf6d60d682cf51866948ea3b4846c2993e2801adb69dc745ffa832318f515c_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:11f005939e15d63057bf2f0a988b6baebc275d3e752e9f7696d0f7f5266fd5d6_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:4b4c98be96a932d508fad769eff61bff2a44e13baa60b22b6c543f4a11eb71c2_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:6c87453ffe89e8be752ee40c8a9ccf6894c83be703f13901b1e8b64a4c0e549a_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:c18a1c50a4fc7081c6564d1c4ed4904212b7939a4f1f46afef0a36dc1d76f38e_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:33367b9fdb3addce3302ad35bc10423505fefe3dd27b8b9013b26d66caac2a6c_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:72cbdb061cbcd295be5e66a0eabb409af16ade7f0aa12b04c2d7327e9e1a24ba_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:d0379f9da8cbb5514394a4550ff0d79f90fa691fcced5806296479c7b63353da_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:e99d1d877bd7335736cbaeb4db5b9904369a1d07f6df332c38ad79ff1256b67b_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:06285611aef2528fc92c5cebb66ff4c74fe44d457f43cf9ec2f4a98c3c68d25e_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:25e0f4153eb5bc6fbc6b389d5adc81bfde103070ef58317c3c25ce4144a628d3_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:acd3c0369c18cbfa63a5972ed1721f93f1fcb456963ff855dea2c295baf1cdb8_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:d086075db52f4476aa64d7e2680baa01e99da246275fa9cae0ba4a74de63c7f3_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:07d89c1b524d1451051feb865bc716da2197add90fa0c58c4cf4a82975ec846c_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:6582e647d7dd604e25977ec1579969aa1fcb29ead1a0ea65833531d633bbdd2b_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:75e3aec03dffbd0f40f88a08ff5e0319f4515d73f0bcfae28b5fa526b494afc4_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:f0079e8ae53d84223aea2d3186e7bc6b525b7c03d307cde50cfb9f1bbc18712b_arm64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-42579"
},
{
"category": "external",
"summary": "RHBZ#2477217",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2477217"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-42579",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-42579"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-42579",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-42579"
},
{
"category": "external",
"summary": "https://github.com/netty/netty/security/advisories/GHSA-cm33-6792-r9fm",
"url": "https://github.com/netty/netty/security/advisories/GHSA-cm33-6792-r9fm"
}
],
"release_date": "2026-05-13T18:01:52.500000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T17:12:17+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\nFor details on how to apply this update, refer to:\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:141f17d12c748c7ab9e94cfd9db7e2492d3063e7478249d6430ac0d8fcfb8875_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:5909184fe3d37eb45ba3bf55d7b708d818f2a5abfc2949c4a7081a5cd30cea4f_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:6217f0bb4937fa0e0fc0a5c86456fdc1992e169dfedc3d11d5165cef575d4d53_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:d55a55a36a23e7deb83718bd5dcc19b083b84d441add72ea7f4e28935e4717e3_ppc64le"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36820"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability.",
"product_ids": [
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:1384e5ba2b7d23119a49d8713826f4c65668bca310589ac7abd0c0d41c7e4c90_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:7f58528b1da9146aa55917324fdf2b375794742b34e5d10ff57f713af60746cd_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:844c3b1499b00aeadfc561642e53792ad80f535efd53b35793ba08b0f26c6d61_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:e1019c30e1d84e66d775d0d6fc7d051803dcbe44823fb2a1914807be39c79dae_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:8c9a7ebf430b9f4ca200c6c70b049e8456cf88fd8bf0871b42d65e8dc786d451_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:926d965e6fd12ec0d758270fb4c90bbdc1a05e60cc4c895cf9b671a296c9d867_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:e8e807451e3c5d8d0a8575e1280d7125a4ece51547a7b4a5cd247837662cedad_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:f2a24aa01cbe0d926d4aefe3b12eba21eb5ec7f87276e572a6814c727228624c_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:45cc0d783d1e7874ac73dfbdfe7e03c63b227ab3c4f1e15a0a2f5c97956a76d9_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:6f3eb26734e89375c3e1fb7ac366e12dc0d41bac8f07de9210c7e9845a01eec1_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:768c45fa9f35d98dfe5cfe1ea12f552402bf68ac6e1f828b14310ef59ce57c40_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:b5f1bf30495f6be97c696cf7f90768629cee96f8d106f745bf95fdefddc99592_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:137ffbb95d463d95da6c350600d968f3cd0e9873bf2e7c6edf952ae3229e9e2b_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:1cccdfd7e90877c27c6d8caea4f1e8ad89bb97c83d97ddf570d4f4ee116f1986_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:71657b82894cfd9e350746f48965e148868a675b9a20dcb7f94a6bc7a5b16ea5_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:881e405e32821ef10cf992c7a633281c1dc45df721fe909048df1689472000ce_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:6c85b42ede0f4745ed558bcb03d033c49f56cef17a70c12e5308066124cac6e3_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:091529a93e258a612fd4a98222e6a370ee10b4e97efa791b50f79a2670163d01_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0e8958a22f6771ddfe32b34027c69dbbef65d980c7e465a79d4202d2627994ad_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:5a8b0203ff083113e8b30a123ab30c4bad571f57fb59c1e7e01807b92552504e_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:89bf6a32a0935cacadbc6d23566dce6ca741e404d58c11050638c7b8e868028b_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:077cc953354ea2edd85569a622f97c15d44163d68234e7a9fdee899d25c19cdb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:66285f866090e1bfbedacd592e9d5ea9f2a30b88aa03bc86bc790d6b98a929a4_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:8c80054171d5063457df4bd074674b1824783a101dacb6137da227080aff957c_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:b0f15904251c6665961eef9c944d00f17499f7219351fe213fe7935f62fbf7ac_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:62476ac2fb0096caa9b181f523cc3573ccffe70be1433f08d1d0255b6d3a0640_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:6f632bc9829880a44e2e94084284b52683b4a01dc3315043b0aa32eb344b16cb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:aa3d1cf7853bfe8307efb01f714585f378d1d3d4ed5de7c8808a72e4aeecd4f3_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:bf1d4b2b1ef03e65be59699ce3233a75a34e1777abc182984c7a8efa698a936e_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:141f17d12c748c7ab9e94cfd9db7e2492d3063e7478249d6430ac0d8fcfb8875_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:5909184fe3d37eb45ba3bf55d7b708d818f2a5abfc2949c4a7081a5cd30cea4f_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:6217f0bb4937fa0e0fc0a5c86456fdc1992e169dfedc3d11d5165cef575d4d53_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:d55a55a36a23e7deb83718bd5dcc19b083b84d441add72ea7f4e28935e4717e3_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:0f8e1171f278395f3c72e4d9d3c0492bed15b678963fb2b6182bd65343b85a2e_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:823bb59b1c7d01557c29f9f1e4a4ee39814c38d826b06c3c9de4b8d179078419_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:93c7e9b321c7e9aa4a412a993a6b20412e24772832cc0dd23bbb17aa25f15487_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:9e50b45f81fedab27e896f04b80bacaa01d8370ff5679147f95ad79b61972d83_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:8f145d4e336bd77fcc94f0845f9ebf94563ffd96d56794d96a665c11241df152_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:981917806c7faf31156241cc85577cf375ee566f78adaeadc096d0ba8482b835_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:af3ed91687500d64e2348cca4877c43f73211b8fbd132e7767c3521763185348_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:c05020e5ee5bddc62e38493cd16b6e4ffde7c2248a00d710f32b90a6ee12ceeb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2af86b409540513f6da1afa83110a5cafe8778d2ec16332faa31c964bd5f43f7_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2f3bec76a833a72c7dfa93ed55e55e80e2621c154e5a2f156deaf78d7c6b97b4_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:81a2385be30079500f13f97a18607aa685abd61265bf8fa78bc6ce126341be50_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:fdc8f64f3b82b200a5e31b01b8612069f1aa897014085c1de755394552a1a70a_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:856b9088dbda4e7374daf232602f4bb90b05ad1be1df46d6e363a002f549f4de_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:a107ae2f7b140f2fb2243f33c378228c2f164cfd2d23f57e63f6c424fd400929_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:e21de356b7d879800a96f6c5aeee6bc59a3ed9c58d36503f7089625ce887bb25_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:fcaf6d60d682cf51866948ea3b4846c2993e2801adb69dc745ffa832318f515c_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:11f005939e15d63057bf2f0a988b6baebc275d3e752e9f7696d0f7f5266fd5d6_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:4b4c98be96a932d508fad769eff61bff2a44e13baa60b22b6c543f4a11eb71c2_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:6c87453ffe89e8be752ee40c8a9ccf6894c83be703f13901b1e8b64a4c0e549a_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:c18a1c50a4fc7081c6564d1c4ed4904212b7939a4f1f46afef0a36dc1d76f38e_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:33367b9fdb3addce3302ad35bc10423505fefe3dd27b8b9013b26d66caac2a6c_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:72cbdb061cbcd295be5e66a0eabb409af16ade7f0aa12b04c2d7327e9e1a24ba_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:d0379f9da8cbb5514394a4550ff0d79f90fa691fcced5806296479c7b63353da_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:e99d1d877bd7335736cbaeb4db5b9904369a1d07f6df332c38ad79ff1256b67b_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:06285611aef2528fc92c5cebb66ff4c74fe44d457f43cf9ec2f4a98c3c68d25e_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:25e0f4153eb5bc6fbc6b389d5adc81bfde103070ef58317c3c25ce4144a628d3_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:acd3c0369c18cbfa63a5972ed1721f93f1fcb456963ff855dea2c295baf1cdb8_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:d086075db52f4476aa64d7e2680baa01e99da246275fa9cae0ba4a74de63c7f3_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:07d89c1b524d1451051feb865bc716da2197add90fa0c58c4cf4a82975ec846c_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:6582e647d7dd604e25977ec1579969aa1fcb29ead1a0ea65833531d633bbdd2b_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:75e3aec03dffbd0f40f88a08ff5e0319f4515d73f0bcfae28b5fa526b494afc4_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:f0079e8ae53d84223aea2d3186e7bc6b525b7c03d307cde50cfb9f1bbc18712b_arm64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:1384e5ba2b7d23119a49d8713826f4c65668bca310589ac7abd0c0d41c7e4c90_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:7f58528b1da9146aa55917324fdf2b375794742b34e5d10ff57f713af60746cd_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:844c3b1499b00aeadfc561642e53792ad80f535efd53b35793ba08b0f26c6d61_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:e1019c30e1d84e66d775d0d6fc7d051803dcbe44823fb2a1914807be39c79dae_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:8c9a7ebf430b9f4ca200c6c70b049e8456cf88fd8bf0871b42d65e8dc786d451_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:926d965e6fd12ec0d758270fb4c90bbdc1a05e60cc4c895cf9b671a296c9d867_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:e8e807451e3c5d8d0a8575e1280d7125a4ece51547a7b4a5cd247837662cedad_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:f2a24aa01cbe0d926d4aefe3b12eba21eb5ec7f87276e572a6814c727228624c_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:45cc0d783d1e7874ac73dfbdfe7e03c63b227ab3c4f1e15a0a2f5c97956a76d9_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:6f3eb26734e89375c3e1fb7ac366e12dc0d41bac8f07de9210c7e9845a01eec1_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:768c45fa9f35d98dfe5cfe1ea12f552402bf68ac6e1f828b14310ef59ce57c40_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:b5f1bf30495f6be97c696cf7f90768629cee96f8d106f745bf95fdefddc99592_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:137ffbb95d463d95da6c350600d968f3cd0e9873bf2e7c6edf952ae3229e9e2b_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:1cccdfd7e90877c27c6d8caea4f1e8ad89bb97c83d97ddf570d4f4ee116f1986_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:71657b82894cfd9e350746f48965e148868a675b9a20dcb7f94a6bc7a5b16ea5_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:881e405e32821ef10cf992c7a633281c1dc45df721fe909048df1689472000ce_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:6c85b42ede0f4745ed558bcb03d033c49f56cef17a70c12e5308066124cac6e3_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:091529a93e258a612fd4a98222e6a370ee10b4e97efa791b50f79a2670163d01_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0e8958a22f6771ddfe32b34027c69dbbef65d980c7e465a79d4202d2627994ad_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:5a8b0203ff083113e8b30a123ab30c4bad571f57fb59c1e7e01807b92552504e_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:89bf6a32a0935cacadbc6d23566dce6ca741e404d58c11050638c7b8e868028b_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:077cc953354ea2edd85569a622f97c15d44163d68234e7a9fdee899d25c19cdb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:66285f866090e1bfbedacd592e9d5ea9f2a30b88aa03bc86bc790d6b98a929a4_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:8c80054171d5063457df4bd074674b1824783a101dacb6137da227080aff957c_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:b0f15904251c6665961eef9c944d00f17499f7219351fe213fe7935f62fbf7ac_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:62476ac2fb0096caa9b181f523cc3573ccffe70be1433f08d1d0255b6d3a0640_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:6f632bc9829880a44e2e94084284b52683b4a01dc3315043b0aa32eb344b16cb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:aa3d1cf7853bfe8307efb01f714585f378d1d3d4ed5de7c8808a72e4aeecd4f3_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:bf1d4b2b1ef03e65be59699ce3233a75a34e1777abc182984c7a8efa698a936e_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:141f17d12c748c7ab9e94cfd9db7e2492d3063e7478249d6430ac0d8fcfb8875_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:5909184fe3d37eb45ba3bf55d7b708d818f2a5abfc2949c4a7081a5cd30cea4f_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:6217f0bb4937fa0e0fc0a5c86456fdc1992e169dfedc3d11d5165cef575d4d53_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:d55a55a36a23e7deb83718bd5dcc19b083b84d441add72ea7f4e28935e4717e3_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:0f8e1171f278395f3c72e4d9d3c0492bed15b678963fb2b6182bd65343b85a2e_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:823bb59b1c7d01557c29f9f1e4a4ee39814c38d826b06c3c9de4b8d179078419_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:93c7e9b321c7e9aa4a412a993a6b20412e24772832cc0dd23bbb17aa25f15487_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:9e50b45f81fedab27e896f04b80bacaa01d8370ff5679147f95ad79b61972d83_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:8f145d4e336bd77fcc94f0845f9ebf94563ffd96d56794d96a665c11241df152_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:981917806c7faf31156241cc85577cf375ee566f78adaeadc096d0ba8482b835_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:af3ed91687500d64e2348cca4877c43f73211b8fbd132e7767c3521763185348_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:c05020e5ee5bddc62e38493cd16b6e4ffde7c2248a00d710f32b90a6ee12ceeb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2af86b409540513f6da1afa83110a5cafe8778d2ec16332faa31c964bd5f43f7_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2f3bec76a833a72c7dfa93ed55e55e80e2621c154e5a2f156deaf78d7c6b97b4_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:81a2385be30079500f13f97a18607aa685abd61265bf8fa78bc6ce126341be50_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:fdc8f64f3b82b200a5e31b01b8612069f1aa897014085c1de755394552a1a70a_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:856b9088dbda4e7374daf232602f4bb90b05ad1be1df46d6e363a002f549f4de_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:a107ae2f7b140f2fb2243f33c378228c2f164cfd2d23f57e63f6c424fd400929_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:e21de356b7d879800a96f6c5aeee6bc59a3ed9c58d36503f7089625ce887bb25_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:fcaf6d60d682cf51866948ea3b4846c2993e2801adb69dc745ffa832318f515c_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:11f005939e15d63057bf2f0a988b6baebc275d3e752e9f7696d0f7f5266fd5d6_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:4b4c98be96a932d508fad769eff61bff2a44e13baa60b22b6c543f4a11eb71c2_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:6c87453ffe89e8be752ee40c8a9ccf6894c83be703f13901b1e8b64a4c0e549a_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:c18a1c50a4fc7081c6564d1c4ed4904212b7939a4f1f46afef0a36dc1d76f38e_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:33367b9fdb3addce3302ad35bc10423505fefe3dd27b8b9013b26d66caac2a6c_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:72cbdb061cbcd295be5e66a0eabb409af16ade7f0aa12b04c2d7327e9e1a24ba_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:d0379f9da8cbb5514394a4550ff0d79f90fa691fcced5806296479c7b63353da_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:e99d1d877bd7335736cbaeb4db5b9904369a1d07f6df332c38ad79ff1256b67b_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:06285611aef2528fc92c5cebb66ff4c74fe44d457f43cf9ec2f4a98c3c68d25e_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:25e0f4153eb5bc6fbc6b389d5adc81bfde103070ef58317c3c25ce4144a628d3_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:acd3c0369c18cbfa63a5972ed1721f93f1fcb456963ff855dea2c295baf1cdb8_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:d086075db52f4476aa64d7e2680baa01e99da246275fa9cae0ba4a74de63c7f3_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:07d89c1b524d1451051feb865bc716da2197add90fa0c58c4cf4a82975ec846c_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:6582e647d7dd604e25977ec1579969aa1fcb29ead1a0ea65833531d633bbdd2b_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:75e3aec03dffbd0f40f88a08ff5e0319f4515d73f0bcfae28b5fa526b494afc4_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:f0079e8ae53d84223aea2d3186e7bc6b525b7c03d307cde50cfb9f1bbc18712b_arm64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "netty: Netty: High integrity impact due to improper DNS domain name constraint enforcement"
},
{
"cve": "CVE-2026-42581",
"cwe": {
"id": "CWE-444",
"name": "Inconsistent Interpretation of HTTP Requests (\u0027HTTP Request/Response Smuggling\u0027)"
},
"discovery_date": "2026-05-13T19:02:26.404511+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:1384e5ba2b7d23119a49d8713826f4c65668bca310589ac7abd0c0d41c7e4c90_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:7f58528b1da9146aa55917324fdf2b375794742b34e5d10ff57f713af60746cd_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:844c3b1499b00aeadfc561642e53792ad80f535efd53b35793ba08b0f26c6d61_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:e1019c30e1d84e66d775d0d6fc7d051803dcbe44823fb2a1914807be39c79dae_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:8c9a7ebf430b9f4ca200c6c70b049e8456cf88fd8bf0871b42d65e8dc786d451_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:926d965e6fd12ec0d758270fb4c90bbdc1a05e60cc4c895cf9b671a296c9d867_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:e8e807451e3c5d8d0a8575e1280d7125a4ece51547a7b4a5cd247837662cedad_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:f2a24aa01cbe0d926d4aefe3b12eba21eb5ec7f87276e572a6814c727228624c_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:45cc0d783d1e7874ac73dfbdfe7e03c63b227ab3c4f1e15a0a2f5c97956a76d9_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:6f3eb26734e89375c3e1fb7ac366e12dc0d41bac8f07de9210c7e9845a01eec1_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:768c45fa9f35d98dfe5cfe1ea12f552402bf68ac6e1f828b14310ef59ce57c40_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:b5f1bf30495f6be97c696cf7f90768629cee96f8d106f745bf95fdefddc99592_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:137ffbb95d463d95da6c350600d968f3cd0e9873bf2e7c6edf952ae3229e9e2b_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:1cccdfd7e90877c27c6d8caea4f1e8ad89bb97c83d97ddf570d4f4ee116f1986_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:71657b82894cfd9e350746f48965e148868a675b9a20dcb7f94a6bc7a5b16ea5_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:881e405e32821ef10cf992c7a633281c1dc45df721fe909048df1689472000ce_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:6c85b42ede0f4745ed558bcb03d033c49f56cef17a70c12e5308066124cac6e3_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:091529a93e258a612fd4a98222e6a370ee10b4e97efa791b50f79a2670163d01_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0e8958a22f6771ddfe32b34027c69dbbef65d980c7e465a79d4202d2627994ad_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:5a8b0203ff083113e8b30a123ab30c4bad571f57fb59c1e7e01807b92552504e_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:89bf6a32a0935cacadbc6d23566dce6ca741e404d58c11050638c7b8e868028b_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:077cc953354ea2edd85569a622f97c15d44163d68234e7a9fdee899d25c19cdb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:66285f866090e1bfbedacd592e9d5ea9f2a30b88aa03bc86bc790d6b98a929a4_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:8c80054171d5063457df4bd074674b1824783a101dacb6137da227080aff957c_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:b0f15904251c6665961eef9c944d00f17499f7219351fe213fe7935f62fbf7ac_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:62476ac2fb0096caa9b181f523cc3573ccffe70be1433f08d1d0255b6d3a0640_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:6f632bc9829880a44e2e94084284b52683b4a01dc3315043b0aa32eb344b16cb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:aa3d1cf7853bfe8307efb01f714585f378d1d3d4ed5de7c8808a72e4aeecd4f3_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:bf1d4b2b1ef03e65be59699ce3233a75a34e1777abc182984c7a8efa698a936e_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:0f8e1171f278395f3c72e4d9d3c0492bed15b678963fb2b6182bd65343b85a2e_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:823bb59b1c7d01557c29f9f1e4a4ee39814c38d826b06c3c9de4b8d179078419_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:93c7e9b321c7e9aa4a412a993a6b20412e24772832cc0dd23bbb17aa25f15487_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:9e50b45f81fedab27e896f04b80bacaa01d8370ff5679147f95ad79b61972d83_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:8f145d4e336bd77fcc94f0845f9ebf94563ffd96d56794d96a665c11241df152_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:981917806c7faf31156241cc85577cf375ee566f78adaeadc096d0ba8482b835_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:af3ed91687500d64e2348cca4877c43f73211b8fbd132e7767c3521763185348_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:c05020e5ee5bddc62e38493cd16b6e4ffde7c2248a00d710f32b90a6ee12ceeb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2af86b409540513f6da1afa83110a5cafe8778d2ec16332faa31c964bd5f43f7_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2f3bec76a833a72c7dfa93ed55e55e80e2621c154e5a2f156deaf78d7c6b97b4_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:81a2385be30079500f13f97a18607aa685abd61265bf8fa78bc6ce126341be50_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:fdc8f64f3b82b200a5e31b01b8612069f1aa897014085c1de755394552a1a70a_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:856b9088dbda4e7374daf232602f4bb90b05ad1be1df46d6e363a002f549f4de_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:a107ae2f7b140f2fb2243f33c378228c2f164cfd2d23f57e63f6c424fd400929_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:e21de356b7d879800a96f6c5aeee6bc59a3ed9c58d36503f7089625ce887bb25_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:fcaf6d60d682cf51866948ea3b4846c2993e2801adb69dc745ffa832318f515c_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:11f005939e15d63057bf2f0a988b6baebc275d3e752e9f7696d0f7f5266fd5d6_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:4b4c98be96a932d508fad769eff61bff2a44e13baa60b22b6c543f4a11eb71c2_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:6c87453ffe89e8be752ee40c8a9ccf6894c83be703f13901b1e8b64a4c0e549a_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:c18a1c50a4fc7081c6564d1c4ed4904212b7939a4f1f46afef0a36dc1d76f38e_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:33367b9fdb3addce3302ad35bc10423505fefe3dd27b8b9013b26d66caac2a6c_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:72cbdb061cbcd295be5e66a0eabb409af16ade7f0aa12b04c2d7327e9e1a24ba_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:d0379f9da8cbb5514394a4550ff0d79f90fa691fcced5806296479c7b63353da_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:e99d1d877bd7335736cbaeb4db5b9904369a1d07f6df332c38ad79ff1256b67b_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:06285611aef2528fc92c5cebb66ff4c74fe44d457f43cf9ec2f4a98c3c68d25e_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:25e0f4153eb5bc6fbc6b389d5adc81bfde103070ef58317c3c25ce4144a628d3_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:acd3c0369c18cbfa63a5972ed1721f93f1fcb456963ff855dea2c295baf1cdb8_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:d086075db52f4476aa64d7e2680baa01e99da246275fa9cae0ba4a74de63c7f3_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:07d89c1b524d1451051feb865bc716da2197add90fa0c58c4cf4a82975ec846c_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:6582e647d7dd604e25977ec1579969aa1fcb29ead1a0ea65833531d633bbdd2b_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:75e3aec03dffbd0f40f88a08ff5e0319f4515d73f0bcfae28b5fa526b494afc4_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:f0079e8ae53d84223aea2d3186e7bc6b525b7c03d307cde50cfb9f1bbc18712b_arm64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2477232"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Netty\u0027s HttpObjectDecoder. A remote attacker can exploit this by sending a specially crafted HTTP/1.0 request that includes both `Transfer-Encoding: chunked` and `Content-Length` headers. While Netty correctly strips the conflicting `Content-Length` header for HTTP/1.1 messages, this guard is absent for HTTP/1.0. This can lead to HTTP request smuggling, where downstream proxies or handlers may misinterpret message boundaries, potentially allowing an attacker to bypass security controls or access unauthorized information.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "netty: io.netty/netty-codec-http: Netty: HTTP Request Smuggling due to improper handling of conflicting HTTP/1.0 headers",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This is an Important flaw. Netty\u0027s HttpObjectDecoder, used across various Red Hat products, improperly handles conflicting `Transfer-Encoding: chunked` and `Content-Length` headers in HTTP/1.0 requests. This allows a remote attacker to perform HTTP request smuggling, potentially bypassing security controls or gaining unauthorized access to information due to misinterpretation of message boundaries by downstream proxies or handlers.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:141f17d12c748c7ab9e94cfd9db7e2492d3063e7478249d6430ac0d8fcfb8875_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:5909184fe3d37eb45ba3bf55d7b708d818f2a5abfc2949c4a7081a5cd30cea4f_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:6217f0bb4937fa0e0fc0a5c86456fdc1992e169dfedc3d11d5165cef575d4d53_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:d55a55a36a23e7deb83718bd5dcc19b083b84d441add72ea7f4e28935e4717e3_ppc64le"
],
"known_not_affected": [
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:1384e5ba2b7d23119a49d8713826f4c65668bca310589ac7abd0c0d41c7e4c90_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:7f58528b1da9146aa55917324fdf2b375794742b34e5d10ff57f713af60746cd_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:844c3b1499b00aeadfc561642e53792ad80f535efd53b35793ba08b0f26c6d61_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:e1019c30e1d84e66d775d0d6fc7d051803dcbe44823fb2a1914807be39c79dae_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:8c9a7ebf430b9f4ca200c6c70b049e8456cf88fd8bf0871b42d65e8dc786d451_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:926d965e6fd12ec0d758270fb4c90bbdc1a05e60cc4c895cf9b671a296c9d867_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:e8e807451e3c5d8d0a8575e1280d7125a4ece51547a7b4a5cd247837662cedad_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:f2a24aa01cbe0d926d4aefe3b12eba21eb5ec7f87276e572a6814c727228624c_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:45cc0d783d1e7874ac73dfbdfe7e03c63b227ab3c4f1e15a0a2f5c97956a76d9_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:6f3eb26734e89375c3e1fb7ac366e12dc0d41bac8f07de9210c7e9845a01eec1_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:768c45fa9f35d98dfe5cfe1ea12f552402bf68ac6e1f828b14310ef59ce57c40_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:b5f1bf30495f6be97c696cf7f90768629cee96f8d106f745bf95fdefddc99592_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:137ffbb95d463d95da6c350600d968f3cd0e9873bf2e7c6edf952ae3229e9e2b_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:1cccdfd7e90877c27c6d8caea4f1e8ad89bb97c83d97ddf570d4f4ee116f1986_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:71657b82894cfd9e350746f48965e148868a675b9a20dcb7f94a6bc7a5b16ea5_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:881e405e32821ef10cf992c7a633281c1dc45df721fe909048df1689472000ce_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:6c85b42ede0f4745ed558bcb03d033c49f56cef17a70c12e5308066124cac6e3_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:091529a93e258a612fd4a98222e6a370ee10b4e97efa791b50f79a2670163d01_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0e8958a22f6771ddfe32b34027c69dbbef65d980c7e465a79d4202d2627994ad_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:5a8b0203ff083113e8b30a123ab30c4bad571f57fb59c1e7e01807b92552504e_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:89bf6a32a0935cacadbc6d23566dce6ca741e404d58c11050638c7b8e868028b_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:077cc953354ea2edd85569a622f97c15d44163d68234e7a9fdee899d25c19cdb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:66285f866090e1bfbedacd592e9d5ea9f2a30b88aa03bc86bc790d6b98a929a4_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:8c80054171d5063457df4bd074674b1824783a101dacb6137da227080aff957c_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:b0f15904251c6665961eef9c944d00f17499f7219351fe213fe7935f62fbf7ac_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:62476ac2fb0096caa9b181f523cc3573ccffe70be1433f08d1d0255b6d3a0640_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:6f632bc9829880a44e2e94084284b52683b4a01dc3315043b0aa32eb344b16cb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:aa3d1cf7853bfe8307efb01f714585f378d1d3d4ed5de7c8808a72e4aeecd4f3_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:bf1d4b2b1ef03e65be59699ce3233a75a34e1777abc182984c7a8efa698a936e_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:0f8e1171f278395f3c72e4d9d3c0492bed15b678963fb2b6182bd65343b85a2e_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:823bb59b1c7d01557c29f9f1e4a4ee39814c38d826b06c3c9de4b8d179078419_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:93c7e9b321c7e9aa4a412a993a6b20412e24772832cc0dd23bbb17aa25f15487_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:9e50b45f81fedab27e896f04b80bacaa01d8370ff5679147f95ad79b61972d83_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:8f145d4e336bd77fcc94f0845f9ebf94563ffd96d56794d96a665c11241df152_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:981917806c7faf31156241cc85577cf375ee566f78adaeadc096d0ba8482b835_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:af3ed91687500d64e2348cca4877c43f73211b8fbd132e7767c3521763185348_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:c05020e5ee5bddc62e38493cd16b6e4ffde7c2248a00d710f32b90a6ee12ceeb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2af86b409540513f6da1afa83110a5cafe8778d2ec16332faa31c964bd5f43f7_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2f3bec76a833a72c7dfa93ed55e55e80e2621c154e5a2f156deaf78d7c6b97b4_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:81a2385be30079500f13f97a18607aa685abd61265bf8fa78bc6ce126341be50_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:fdc8f64f3b82b200a5e31b01b8612069f1aa897014085c1de755394552a1a70a_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:856b9088dbda4e7374daf232602f4bb90b05ad1be1df46d6e363a002f549f4de_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:a107ae2f7b140f2fb2243f33c378228c2f164cfd2d23f57e63f6c424fd400929_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:e21de356b7d879800a96f6c5aeee6bc59a3ed9c58d36503f7089625ce887bb25_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:fcaf6d60d682cf51866948ea3b4846c2993e2801adb69dc745ffa832318f515c_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:11f005939e15d63057bf2f0a988b6baebc275d3e752e9f7696d0f7f5266fd5d6_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:4b4c98be96a932d508fad769eff61bff2a44e13baa60b22b6c543f4a11eb71c2_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:6c87453ffe89e8be752ee40c8a9ccf6894c83be703f13901b1e8b64a4c0e549a_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:c18a1c50a4fc7081c6564d1c4ed4904212b7939a4f1f46afef0a36dc1d76f38e_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:33367b9fdb3addce3302ad35bc10423505fefe3dd27b8b9013b26d66caac2a6c_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:72cbdb061cbcd295be5e66a0eabb409af16ade7f0aa12b04c2d7327e9e1a24ba_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:d0379f9da8cbb5514394a4550ff0d79f90fa691fcced5806296479c7b63353da_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:e99d1d877bd7335736cbaeb4db5b9904369a1d07f6df332c38ad79ff1256b67b_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:06285611aef2528fc92c5cebb66ff4c74fe44d457f43cf9ec2f4a98c3c68d25e_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:25e0f4153eb5bc6fbc6b389d5adc81bfde103070ef58317c3c25ce4144a628d3_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:acd3c0369c18cbfa63a5972ed1721f93f1fcb456963ff855dea2c295baf1cdb8_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:d086075db52f4476aa64d7e2680baa01e99da246275fa9cae0ba4a74de63c7f3_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:07d89c1b524d1451051feb865bc716da2197add90fa0c58c4cf4a82975ec846c_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:6582e647d7dd604e25977ec1579969aa1fcb29ead1a0ea65833531d633bbdd2b_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:75e3aec03dffbd0f40f88a08ff5e0319f4515d73f0bcfae28b5fa526b494afc4_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:f0079e8ae53d84223aea2d3186e7bc6b525b7c03d307cde50cfb9f1bbc18712b_arm64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-42581"
},
{
"category": "external",
"summary": "RHBZ#2477232",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2477232"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-42581",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-42581"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-42581",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-42581"
},
{
"category": "external",
"summary": "https://github.com/netty/netty/security/advisories/GHSA-xxqh-mfjm-7mv9",
"url": "https://github.com/netty/netty/security/advisories/GHSA-xxqh-mfjm-7mv9"
}
],
"release_date": "2026-05-13T17:54:44.492000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T17:12:17+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\nFor details on how to apply this update, refer to:\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:141f17d12c748c7ab9e94cfd9db7e2492d3063e7478249d6430ac0d8fcfb8875_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:5909184fe3d37eb45ba3bf55d7b708d818f2a5abfc2949c4a7081a5cd30cea4f_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:6217f0bb4937fa0e0fc0a5c86456fdc1992e169dfedc3d11d5165cef575d4d53_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:d55a55a36a23e7deb83718bd5dcc19b083b84d441add72ea7f4e28935e4717e3_ppc64le"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36820"
},
{
"category": "workaround",
"details": "To mitigate this issue, configure any reverse proxies or load balancers in front of Netty to either reject HTTP/1.0 requests containing both Transfer-Encoding: chunked and Content-Length headers, or to explicitly prioritize the Transfer-Encoding header over Content-Length for HTTP/1.0 traffic. This ensures consistent interpretation of message boundaries and prevents request smuggling attacks.",
"product_ids": [
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:1384e5ba2b7d23119a49d8713826f4c65668bca310589ac7abd0c0d41c7e4c90_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:7f58528b1da9146aa55917324fdf2b375794742b34e5d10ff57f713af60746cd_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:844c3b1499b00aeadfc561642e53792ad80f535efd53b35793ba08b0f26c6d61_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:e1019c30e1d84e66d775d0d6fc7d051803dcbe44823fb2a1914807be39c79dae_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:8c9a7ebf430b9f4ca200c6c70b049e8456cf88fd8bf0871b42d65e8dc786d451_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:926d965e6fd12ec0d758270fb4c90bbdc1a05e60cc4c895cf9b671a296c9d867_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:e8e807451e3c5d8d0a8575e1280d7125a4ece51547a7b4a5cd247837662cedad_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:f2a24aa01cbe0d926d4aefe3b12eba21eb5ec7f87276e572a6814c727228624c_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:45cc0d783d1e7874ac73dfbdfe7e03c63b227ab3c4f1e15a0a2f5c97956a76d9_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:6f3eb26734e89375c3e1fb7ac366e12dc0d41bac8f07de9210c7e9845a01eec1_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:768c45fa9f35d98dfe5cfe1ea12f552402bf68ac6e1f828b14310ef59ce57c40_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:b5f1bf30495f6be97c696cf7f90768629cee96f8d106f745bf95fdefddc99592_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:137ffbb95d463d95da6c350600d968f3cd0e9873bf2e7c6edf952ae3229e9e2b_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:1cccdfd7e90877c27c6d8caea4f1e8ad89bb97c83d97ddf570d4f4ee116f1986_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:71657b82894cfd9e350746f48965e148868a675b9a20dcb7f94a6bc7a5b16ea5_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:881e405e32821ef10cf992c7a633281c1dc45df721fe909048df1689472000ce_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:6c85b42ede0f4745ed558bcb03d033c49f56cef17a70c12e5308066124cac6e3_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:091529a93e258a612fd4a98222e6a370ee10b4e97efa791b50f79a2670163d01_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0e8958a22f6771ddfe32b34027c69dbbef65d980c7e465a79d4202d2627994ad_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:5a8b0203ff083113e8b30a123ab30c4bad571f57fb59c1e7e01807b92552504e_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:89bf6a32a0935cacadbc6d23566dce6ca741e404d58c11050638c7b8e868028b_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:077cc953354ea2edd85569a622f97c15d44163d68234e7a9fdee899d25c19cdb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:66285f866090e1bfbedacd592e9d5ea9f2a30b88aa03bc86bc790d6b98a929a4_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:8c80054171d5063457df4bd074674b1824783a101dacb6137da227080aff957c_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:b0f15904251c6665961eef9c944d00f17499f7219351fe213fe7935f62fbf7ac_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:62476ac2fb0096caa9b181f523cc3573ccffe70be1433f08d1d0255b6d3a0640_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:6f632bc9829880a44e2e94084284b52683b4a01dc3315043b0aa32eb344b16cb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:aa3d1cf7853bfe8307efb01f714585f378d1d3d4ed5de7c8808a72e4aeecd4f3_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:bf1d4b2b1ef03e65be59699ce3233a75a34e1777abc182984c7a8efa698a936e_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:141f17d12c748c7ab9e94cfd9db7e2492d3063e7478249d6430ac0d8fcfb8875_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:5909184fe3d37eb45ba3bf55d7b708d818f2a5abfc2949c4a7081a5cd30cea4f_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:6217f0bb4937fa0e0fc0a5c86456fdc1992e169dfedc3d11d5165cef575d4d53_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:d55a55a36a23e7deb83718bd5dcc19b083b84d441add72ea7f4e28935e4717e3_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:0f8e1171f278395f3c72e4d9d3c0492bed15b678963fb2b6182bd65343b85a2e_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:823bb59b1c7d01557c29f9f1e4a4ee39814c38d826b06c3c9de4b8d179078419_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:93c7e9b321c7e9aa4a412a993a6b20412e24772832cc0dd23bbb17aa25f15487_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:9e50b45f81fedab27e896f04b80bacaa01d8370ff5679147f95ad79b61972d83_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:8f145d4e336bd77fcc94f0845f9ebf94563ffd96d56794d96a665c11241df152_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:981917806c7faf31156241cc85577cf375ee566f78adaeadc096d0ba8482b835_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:af3ed91687500d64e2348cca4877c43f73211b8fbd132e7767c3521763185348_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:c05020e5ee5bddc62e38493cd16b6e4ffde7c2248a00d710f32b90a6ee12ceeb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2af86b409540513f6da1afa83110a5cafe8778d2ec16332faa31c964bd5f43f7_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2f3bec76a833a72c7dfa93ed55e55e80e2621c154e5a2f156deaf78d7c6b97b4_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:81a2385be30079500f13f97a18607aa685abd61265bf8fa78bc6ce126341be50_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:fdc8f64f3b82b200a5e31b01b8612069f1aa897014085c1de755394552a1a70a_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:856b9088dbda4e7374daf232602f4bb90b05ad1be1df46d6e363a002f549f4de_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:a107ae2f7b140f2fb2243f33c378228c2f164cfd2d23f57e63f6c424fd400929_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:e21de356b7d879800a96f6c5aeee6bc59a3ed9c58d36503f7089625ce887bb25_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:fcaf6d60d682cf51866948ea3b4846c2993e2801adb69dc745ffa832318f515c_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:11f005939e15d63057bf2f0a988b6baebc275d3e752e9f7696d0f7f5266fd5d6_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:4b4c98be96a932d508fad769eff61bff2a44e13baa60b22b6c543f4a11eb71c2_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:6c87453ffe89e8be752ee40c8a9ccf6894c83be703f13901b1e8b64a4c0e549a_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:c18a1c50a4fc7081c6564d1c4ed4904212b7939a4f1f46afef0a36dc1d76f38e_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:33367b9fdb3addce3302ad35bc10423505fefe3dd27b8b9013b26d66caac2a6c_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:72cbdb061cbcd295be5e66a0eabb409af16ade7f0aa12b04c2d7327e9e1a24ba_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:d0379f9da8cbb5514394a4550ff0d79f90fa691fcced5806296479c7b63353da_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:e99d1d877bd7335736cbaeb4db5b9904369a1d07f6df332c38ad79ff1256b67b_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:06285611aef2528fc92c5cebb66ff4c74fe44d457f43cf9ec2f4a98c3c68d25e_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:25e0f4153eb5bc6fbc6b389d5adc81bfde103070ef58317c3c25ce4144a628d3_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:acd3c0369c18cbfa63a5972ed1721f93f1fcb456963ff855dea2c295baf1cdb8_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:d086075db52f4476aa64d7e2680baa01e99da246275fa9cae0ba4a74de63c7f3_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:07d89c1b524d1451051feb865bc716da2197add90fa0c58c4cf4a82975ec846c_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:6582e647d7dd604e25977ec1579969aa1fcb29ead1a0ea65833531d633bbdd2b_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:75e3aec03dffbd0f40f88a08ff5e0319f4515d73f0bcfae28b5fa526b494afc4_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:f0079e8ae53d84223aea2d3186e7bc6b525b7c03d307cde50cfb9f1bbc18712b_arm64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.2,
"baseSeverity": "HIGH",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:L/A:N",
"version": "3.1"
},
"products": [
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:1384e5ba2b7d23119a49d8713826f4c65668bca310589ac7abd0c0d41c7e4c90_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:7f58528b1da9146aa55917324fdf2b375794742b34e5d10ff57f713af60746cd_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:844c3b1499b00aeadfc561642e53792ad80f535efd53b35793ba08b0f26c6d61_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:e1019c30e1d84e66d775d0d6fc7d051803dcbe44823fb2a1914807be39c79dae_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:8c9a7ebf430b9f4ca200c6c70b049e8456cf88fd8bf0871b42d65e8dc786d451_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:926d965e6fd12ec0d758270fb4c90bbdc1a05e60cc4c895cf9b671a296c9d867_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:e8e807451e3c5d8d0a8575e1280d7125a4ece51547a7b4a5cd247837662cedad_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:f2a24aa01cbe0d926d4aefe3b12eba21eb5ec7f87276e572a6814c727228624c_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:45cc0d783d1e7874ac73dfbdfe7e03c63b227ab3c4f1e15a0a2f5c97956a76d9_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:6f3eb26734e89375c3e1fb7ac366e12dc0d41bac8f07de9210c7e9845a01eec1_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:768c45fa9f35d98dfe5cfe1ea12f552402bf68ac6e1f828b14310ef59ce57c40_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:b5f1bf30495f6be97c696cf7f90768629cee96f8d106f745bf95fdefddc99592_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:137ffbb95d463d95da6c350600d968f3cd0e9873bf2e7c6edf952ae3229e9e2b_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:1cccdfd7e90877c27c6d8caea4f1e8ad89bb97c83d97ddf570d4f4ee116f1986_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:71657b82894cfd9e350746f48965e148868a675b9a20dcb7f94a6bc7a5b16ea5_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:881e405e32821ef10cf992c7a633281c1dc45df721fe909048df1689472000ce_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:6c85b42ede0f4745ed558bcb03d033c49f56cef17a70c12e5308066124cac6e3_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:091529a93e258a612fd4a98222e6a370ee10b4e97efa791b50f79a2670163d01_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0e8958a22f6771ddfe32b34027c69dbbef65d980c7e465a79d4202d2627994ad_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:5a8b0203ff083113e8b30a123ab30c4bad571f57fb59c1e7e01807b92552504e_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:89bf6a32a0935cacadbc6d23566dce6ca741e404d58c11050638c7b8e868028b_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:077cc953354ea2edd85569a622f97c15d44163d68234e7a9fdee899d25c19cdb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:66285f866090e1bfbedacd592e9d5ea9f2a30b88aa03bc86bc790d6b98a929a4_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:8c80054171d5063457df4bd074674b1824783a101dacb6137da227080aff957c_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:b0f15904251c6665961eef9c944d00f17499f7219351fe213fe7935f62fbf7ac_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:62476ac2fb0096caa9b181f523cc3573ccffe70be1433f08d1d0255b6d3a0640_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:6f632bc9829880a44e2e94084284b52683b4a01dc3315043b0aa32eb344b16cb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:aa3d1cf7853bfe8307efb01f714585f378d1d3d4ed5de7c8808a72e4aeecd4f3_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:bf1d4b2b1ef03e65be59699ce3233a75a34e1777abc182984c7a8efa698a936e_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:141f17d12c748c7ab9e94cfd9db7e2492d3063e7478249d6430ac0d8fcfb8875_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:5909184fe3d37eb45ba3bf55d7b708d818f2a5abfc2949c4a7081a5cd30cea4f_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:6217f0bb4937fa0e0fc0a5c86456fdc1992e169dfedc3d11d5165cef575d4d53_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:d55a55a36a23e7deb83718bd5dcc19b083b84d441add72ea7f4e28935e4717e3_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:0f8e1171f278395f3c72e4d9d3c0492bed15b678963fb2b6182bd65343b85a2e_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:823bb59b1c7d01557c29f9f1e4a4ee39814c38d826b06c3c9de4b8d179078419_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:93c7e9b321c7e9aa4a412a993a6b20412e24772832cc0dd23bbb17aa25f15487_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:9e50b45f81fedab27e896f04b80bacaa01d8370ff5679147f95ad79b61972d83_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:8f145d4e336bd77fcc94f0845f9ebf94563ffd96d56794d96a665c11241df152_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:981917806c7faf31156241cc85577cf375ee566f78adaeadc096d0ba8482b835_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:af3ed91687500d64e2348cca4877c43f73211b8fbd132e7767c3521763185348_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:c05020e5ee5bddc62e38493cd16b6e4ffde7c2248a00d710f32b90a6ee12ceeb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2af86b409540513f6da1afa83110a5cafe8778d2ec16332faa31c964bd5f43f7_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2f3bec76a833a72c7dfa93ed55e55e80e2621c154e5a2f156deaf78d7c6b97b4_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:81a2385be30079500f13f97a18607aa685abd61265bf8fa78bc6ce126341be50_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:fdc8f64f3b82b200a5e31b01b8612069f1aa897014085c1de755394552a1a70a_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:856b9088dbda4e7374daf232602f4bb90b05ad1be1df46d6e363a002f549f4de_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:a107ae2f7b140f2fb2243f33c378228c2f164cfd2d23f57e63f6c424fd400929_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:e21de356b7d879800a96f6c5aeee6bc59a3ed9c58d36503f7089625ce887bb25_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:fcaf6d60d682cf51866948ea3b4846c2993e2801adb69dc745ffa832318f515c_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:11f005939e15d63057bf2f0a988b6baebc275d3e752e9f7696d0f7f5266fd5d6_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:4b4c98be96a932d508fad769eff61bff2a44e13baa60b22b6c543f4a11eb71c2_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:6c87453ffe89e8be752ee40c8a9ccf6894c83be703f13901b1e8b64a4c0e549a_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:c18a1c50a4fc7081c6564d1c4ed4904212b7939a4f1f46afef0a36dc1d76f38e_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:33367b9fdb3addce3302ad35bc10423505fefe3dd27b8b9013b26d66caac2a6c_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:72cbdb061cbcd295be5e66a0eabb409af16ade7f0aa12b04c2d7327e9e1a24ba_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:d0379f9da8cbb5514394a4550ff0d79f90fa691fcced5806296479c7b63353da_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:e99d1d877bd7335736cbaeb4db5b9904369a1d07f6df332c38ad79ff1256b67b_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:06285611aef2528fc92c5cebb66ff4c74fe44d457f43cf9ec2f4a98c3c68d25e_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:25e0f4153eb5bc6fbc6b389d5adc81bfde103070ef58317c3c25ce4144a628d3_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:acd3c0369c18cbfa63a5972ed1721f93f1fcb456963ff855dea2c295baf1cdb8_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:d086075db52f4476aa64d7e2680baa01e99da246275fa9cae0ba4a74de63c7f3_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:07d89c1b524d1451051feb865bc716da2197add90fa0c58c4cf4a82975ec846c_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:6582e647d7dd604e25977ec1579969aa1fcb29ead1a0ea65833531d633bbdd2b_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:75e3aec03dffbd0f40f88a08ff5e0319f4515d73f0bcfae28b5fa526b494afc4_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:f0079e8ae53d84223aea2d3186e7bc6b525b7c03d307cde50cfb9f1bbc18712b_arm64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "netty: io.netty/netty-codec-http: Netty: HTTP Request Smuggling due to improper handling of conflicting HTTP/1.0 headers"
},
{
"cve": "CVE-2026-42583",
"cwe": {
"id": "CWE-770",
"name": "Allocation of Resources Without Limits or Throttling"
},
"discovery_date": "2026-05-13T19:01:32.498598+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:1384e5ba2b7d23119a49d8713826f4c65668bca310589ac7abd0c0d41c7e4c90_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:7f58528b1da9146aa55917324fdf2b375794742b34e5d10ff57f713af60746cd_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:844c3b1499b00aeadfc561642e53792ad80f535efd53b35793ba08b0f26c6d61_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:e1019c30e1d84e66d775d0d6fc7d051803dcbe44823fb2a1914807be39c79dae_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:8c9a7ebf430b9f4ca200c6c70b049e8456cf88fd8bf0871b42d65e8dc786d451_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:926d965e6fd12ec0d758270fb4c90bbdc1a05e60cc4c895cf9b671a296c9d867_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:e8e807451e3c5d8d0a8575e1280d7125a4ece51547a7b4a5cd247837662cedad_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:f2a24aa01cbe0d926d4aefe3b12eba21eb5ec7f87276e572a6814c727228624c_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:45cc0d783d1e7874ac73dfbdfe7e03c63b227ab3c4f1e15a0a2f5c97956a76d9_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:6f3eb26734e89375c3e1fb7ac366e12dc0d41bac8f07de9210c7e9845a01eec1_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:768c45fa9f35d98dfe5cfe1ea12f552402bf68ac6e1f828b14310ef59ce57c40_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:b5f1bf30495f6be97c696cf7f90768629cee96f8d106f745bf95fdefddc99592_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:137ffbb95d463d95da6c350600d968f3cd0e9873bf2e7c6edf952ae3229e9e2b_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:1cccdfd7e90877c27c6d8caea4f1e8ad89bb97c83d97ddf570d4f4ee116f1986_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:71657b82894cfd9e350746f48965e148868a675b9a20dcb7f94a6bc7a5b16ea5_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:881e405e32821ef10cf992c7a633281c1dc45df721fe909048df1689472000ce_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:6c85b42ede0f4745ed558bcb03d033c49f56cef17a70c12e5308066124cac6e3_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:091529a93e258a612fd4a98222e6a370ee10b4e97efa791b50f79a2670163d01_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0e8958a22f6771ddfe32b34027c69dbbef65d980c7e465a79d4202d2627994ad_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:5a8b0203ff083113e8b30a123ab30c4bad571f57fb59c1e7e01807b92552504e_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:89bf6a32a0935cacadbc6d23566dce6ca741e404d58c11050638c7b8e868028b_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:077cc953354ea2edd85569a622f97c15d44163d68234e7a9fdee899d25c19cdb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:66285f866090e1bfbedacd592e9d5ea9f2a30b88aa03bc86bc790d6b98a929a4_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:8c80054171d5063457df4bd074674b1824783a101dacb6137da227080aff957c_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:b0f15904251c6665961eef9c944d00f17499f7219351fe213fe7935f62fbf7ac_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:62476ac2fb0096caa9b181f523cc3573ccffe70be1433f08d1d0255b6d3a0640_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:6f632bc9829880a44e2e94084284b52683b4a01dc3315043b0aa32eb344b16cb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:aa3d1cf7853bfe8307efb01f714585f378d1d3d4ed5de7c8808a72e4aeecd4f3_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:bf1d4b2b1ef03e65be59699ce3233a75a34e1777abc182984c7a8efa698a936e_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:0f8e1171f278395f3c72e4d9d3c0492bed15b678963fb2b6182bd65343b85a2e_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:823bb59b1c7d01557c29f9f1e4a4ee39814c38d826b06c3c9de4b8d179078419_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:93c7e9b321c7e9aa4a412a993a6b20412e24772832cc0dd23bbb17aa25f15487_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:9e50b45f81fedab27e896f04b80bacaa01d8370ff5679147f95ad79b61972d83_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:8f145d4e336bd77fcc94f0845f9ebf94563ffd96d56794d96a665c11241df152_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:981917806c7faf31156241cc85577cf375ee566f78adaeadc096d0ba8482b835_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:af3ed91687500d64e2348cca4877c43f73211b8fbd132e7767c3521763185348_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:c05020e5ee5bddc62e38493cd16b6e4ffde7c2248a00d710f32b90a6ee12ceeb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2af86b409540513f6da1afa83110a5cafe8778d2ec16332faa31c964bd5f43f7_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2f3bec76a833a72c7dfa93ed55e55e80e2621c154e5a2f156deaf78d7c6b97b4_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:81a2385be30079500f13f97a18607aa685abd61265bf8fa78bc6ce126341be50_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:fdc8f64f3b82b200a5e31b01b8612069f1aa897014085c1de755394552a1a70a_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:856b9088dbda4e7374daf232602f4bb90b05ad1be1df46d6e363a002f549f4de_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:a107ae2f7b140f2fb2243f33c378228c2f164cfd2d23f57e63f6c424fd400929_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:e21de356b7d879800a96f6c5aeee6bc59a3ed9c58d36503f7089625ce887bb25_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:fcaf6d60d682cf51866948ea3b4846c2993e2801adb69dc745ffa832318f515c_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:11f005939e15d63057bf2f0a988b6baebc275d3e752e9f7696d0f7f5266fd5d6_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:4b4c98be96a932d508fad769eff61bff2a44e13baa60b22b6c543f4a11eb71c2_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:6c87453ffe89e8be752ee40c8a9ccf6894c83be703f13901b1e8b64a4c0e549a_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:c18a1c50a4fc7081c6564d1c4ed4904212b7939a4f1f46afef0a36dc1d76f38e_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:33367b9fdb3addce3302ad35bc10423505fefe3dd27b8b9013b26d66caac2a6c_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:72cbdb061cbcd295be5e66a0eabb409af16ade7f0aa12b04c2d7327e9e1a24ba_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:d0379f9da8cbb5514394a4550ff0d79f90fa691fcced5806296479c7b63353da_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:e99d1d877bd7335736cbaeb4db5b9904369a1d07f6df332c38ad79ff1256b67b_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:06285611aef2528fc92c5cebb66ff4c74fe44d457f43cf9ec2f4a98c3c68d25e_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:25e0f4153eb5bc6fbc6b389d5adc81bfde103070ef58317c3c25ce4144a628d3_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:acd3c0369c18cbfa63a5972ed1721f93f1fcb456963ff855dea2c295baf1cdb8_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:d086075db52f4476aa64d7e2680baa01e99da246275fa9cae0ba4a74de63c7f3_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:07d89c1b524d1451051feb865bc716da2197add90fa0c58c4cf4a82975ec846c_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:6582e647d7dd604e25977ec1579969aa1fcb29ead1a0ea65833531d633bbdd2b_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:75e3aec03dffbd0f40f88a08ff5e0319f4515d73f0bcfae28b5fa526b494afc4_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:f0079e8ae53d84223aea2d3186e7bc6b525b7c03d307cde50cfb9f1bbc18712b_arm64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2477219"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Netty, an asynchronous, event-driven network application framework. A remote attacker can exploit this vulnerability by sending a specially crafted LZ4 compressed data stream. This can cause the Lz4FrameDecoder to allocate a large amount of memory (up to 32 MB per block) before the LZ4 decompression runs, leading to excessive memory consumption and a denial of service (DoS) for the affected application.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "netty: io.netty/netty-codec-compression: io.netty/netty-codec: Netty: Denial of Service via excessive memory allocation in LZ4FrameDecoder",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "A flaw was found in Netty\u0027s LZ4FrameDecoder. The decoder allocates a buffer based on the decompressed length from the LZ4 frame header (up to 32 MB per block) before decompression runs. A remote attacker can send a small crafted LZ4 header (as few as 22 bytes) to force excessive memory allocation, leading to a denial of service. Red Hat products that use Netty with LZ4 compression enabled are affected.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:141f17d12c748c7ab9e94cfd9db7e2492d3063e7478249d6430ac0d8fcfb8875_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:5909184fe3d37eb45ba3bf55d7b708d818f2a5abfc2949c4a7081a5cd30cea4f_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:6217f0bb4937fa0e0fc0a5c86456fdc1992e169dfedc3d11d5165cef575d4d53_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:d55a55a36a23e7deb83718bd5dcc19b083b84d441add72ea7f4e28935e4717e3_ppc64le"
],
"known_not_affected": [
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:1384e5ba2b7d23119a49d8713826f4c65668bca310589ac7abd0c0d41c7e4c90_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:7f58528b1da9146aa55917324fdf2b375794742b34e5d10ff57f713af60746cd_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:844c3b1499b00aeadfc561642e53792ad80f535efd53b35793ba08b0f26c6d61_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:e1019c30e1d84e66d775d0d6fc7d051803dcbe44823fb2a1914807be39c79dae_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:8c9a7ebf430b9f4ca200c6c70b049e8456cf88fd8bf0871b42d65e8dc786d451_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:926d965e6fd12ec0d758270fb4c90bbdc1a05e60cc4c895cf9b671a296c9d867_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:e8e807451e3c5d8d0a8575e1280d7125a4ece51547a7b4a5cd247837662cedad_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:f2a24aa01cbe0d926d4aefe3b12eba21eb5ec7f87276e572a6814c727228624c_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:45cc0d783d1e7874ac73dfbdfe7e03c63b227ab3c4f1e15a0a2f5c97956a76d9_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:6f3eb26734e89375c3e1fb7ac366e12dc0d41bac8f07de9210c7e9845a01eec1_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:768c45fa9f35d98dfe5cfe1ea12f552402bf68ac6e1f828b14310ef59ce57c40_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:b5f1bf30495f6be97c696cf7f90768629cee96f8d106f745bf95fdefddc99592_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:137ffbb95d463d95da6c350600d968f3cd0e9873bf2e7c6edf952ae3229e9e2b_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:1cccdfd7e90877c27c6d8caea4f1e8ad89bb97c83d97ddf570d4f4ee116f1986_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:71657b82894cfd9e350746f48965e148868a675b9a20dcb7f94a6bc7a5b16ea5_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:881e405e32821ef10cf992c7a633281c1dc45df721fe909048df1689472000ce_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:6c85b42ede0f4745ed558bcb03d033c49f56cef17a70c12e5308066124cac6e3_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:091529a93e258a612fd4a98222e6a370ee10b4e97efa791b50f79a2670163d01_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0e8958a22f6771ddfe32b34027c69dbbef65d980c7e465a79d4202d2627994ad_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:5a8b0203ff083113e8b30a123ab30c4bad571f57fb59c1e7e01807b92552504e_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:89bf6a32a0935cacadbc6d23566dce6ca741e404d58c11050638c7b8e868028b_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:077cc953354ea2edd85569a622f97c15d44163d68234e7a9fdee899d25c19cdb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:66285f866090e1bfbedacd592e9d5ea9f2a30b88aa03bc86bc790d6b98a929a4_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:8c80054171d5063457df4bd074674b1824783a101dacb6137da227080aff957c_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:b0f15904251c6665961eef9c944d00f17499f7219351fe213fe7935f62fbf7ac_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:62476ac2fb0096caa9b181f523cc3573ccffe70be1433f08d1d0255b6d3a0640_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:6f632bc9829880a44e2e94084284b52683b4a01dc3315043b0aa32eb344b16cb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:aa3d1cf7853bfe8307efb01f714585f378d1d3d4ed5de7c8808a72e4aeecd4f3_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:bf1d4b2b1ef03e65be59699ce3233a75a34e1777abc182984c7a8efa698a936e_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:0f8e1171f278395f3c72e4d9d3c0492bed15b678963fb2b6182bd65343b85a2e_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:823bb59b1c7d01557c29f9f1e4a4ee39814c38d826b06c3c9de4b8d179078419_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:93c7e9b321c7e9aa4a412a993a6b20412e24772832cc0dd23bbb17aa25f15487_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:9e50b45f81fedab27e896f04b80bacaa01d8370ff5679147f95ad79b61972d83_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:8f145d4e336bd77fcc94f0845f9ebf94563ffd96d56794d96a665c11241df152_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:981917806c7faf31156241cc85577cf375ee566f78adaeadc096d0ba8482b835_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:af3ed91687500d64e2348cca4877c43f73211b8fbd132e7767c3521763185348_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:c05020e5ee5bddc62e38493cd16b6e4ffde7c2248a00d710f32b90a6ee12ceeb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2af86b409540513f6da1afa83110a5cafe8778d2ec16332faa31c964bd5f43f7_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2f3bec76a833a72c7dfa93ed55e55e80e2621c154e5a2f156deaf78d7c6b97b4_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:81a2385be30079500f13f97a18607aa685abd61265bf8fa78bc6ce126341be50_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:fdc8f64f3b82b200a5e31b01b8612069f1aa897014085c1de755394552a1a70a_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:856b9088dbda4e7374daf232602f4bb90b05ad1be1df46d6e363a002f549f4de_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:a107ae2f7b140f2fb2243f33c378228c2f164cfd2d23f57e63f6c424fd400929_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:e21de356b7d879800a96f6c5aeee6bc59a3ed9c58d36503f7089625ce887bb25_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:fcaf6d60d682cf51866948ea3b4846c2993e2801adb69dc745ffa832318f515c_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:11f005939e15d63057bf2f0a988b6baebc275d3e752e9f7696d0f7f5266fd5d6_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:4b4c98be96a932d508fad769eff61bff2a44e13baa60b22b6c543f4a11eb71c2_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:6c87453ffe89e8be752ee40c8a9ccf6894c83be703f13901b1e8b64a4c0e549a_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:c18a1c50a4fc7081c6564d1c4ed4904212b7939a4f1f46afef0a36dc1d76f38e_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:33367b9fdb3addce3302ad35bc10423505fefe3dd27b8b9013b26d66caac2a6c_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:72cbdb061cbcd295be5e66a0eabb409af16ade7f0aa12b04c2d7327e9e1a24ba_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:d0379f9da8cbb5514394a4550ff0d79f90fa691fcced5806296479c7b63353da_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:e99d1d877bd7335736cbaeb4db5b9904369a1d07f6df332c38ad79ff1256b67b_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:06285611aef2528fc92c5cebb66ff4c74fe44d457f43cf9ec2f4a98c3c68d25e_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:25e0f4153eb5bc6fbc6b389d5adc81bfde103070ef58317c3c25ce4144a628d3_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:acd3c0369c18cbfa63a5972ed1721f93f1fcb456963ff855dea2c295baf1cdb8_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:d086075db52f4476aa64d7e2680baa01e99da246275fa9cae0ba4a74de63c7f3_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:07d89c1b524d1451051feb865bc716da2197add90fa0c58c4cf4a82975ec846c_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:6582e647d7dd604e25977ec1579969aa1fcb29ead1a0ea65833531d633bbdd2b_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:75e3aec03dffbd0f40f88a08ff5e0319f4515d73f0bcfae28b5fa526b494afc4_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:f0079e8ae53d84223aea2d3186e7bc6b525b7c03d307cde50cfb9f1bbc18712b_arm64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-42583"
},
{
"category": "external",
"summary": "RHBZ#2477219",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2477219"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-42583",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-42583"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-42583",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-42583"
},
{
"category": "external",
"summary": "https://github.com/netty/netty/security/advisories/GHSA-mj4r-2hfc-f8p6",
"url": "https://github.com/netty/netty/security/advisories/GHSA-mj4r-2hfc-f8p6"
}
],
"release_date": "2026-05-13T18:09:19.817000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T17:12:17+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\nFor details on how to apply this update, refer to:\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:141f17d12c748c7ab9e94cfd9db7e2492d3063e7478249d6430ac0d8fcfb8875_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:5909184fe3d37eb45ba3bf55d7b708d818f2a5abfc2949c4a7081a5cd30cea4f_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:6217f0bb4937fa0e0fc0a5c86456fdc1992e169dfedc3d11d5165cef575d4d53_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:d55a55a36a23e7deb83718bd5dcc19b083b84d441add72ea7f4e28935e4717e3_ppc64le"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36820"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:1384e5ba2b7d23119a49d8713826f4c65668bca310589ac7abd0c0d41c7e4c90_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:7f58528b1da9146aa55917324fdf2b375794742b34e5d10ff57f713af60746cd_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:844c3b1499b00aeadfc561642e53792ad80f535efd53b35793ba08b0f26c6d61_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:e1019c30e1d84e66d775d0d6fc7d051803dcbe44823fb2a1914807be39c79dae_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:8c9a7ebf430b9f4ca200c6c70b049e8456cf88fd8bf0871b42d65e8dc786d451_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:926d965e6fd12ec0d758270fb4c90bbdc1a05e60cc4c895cf9b671a296c9d867_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:e8e807451e3c5d8d0a8575e1280d7125a4ece51547a7b4a5cd247837662cedad_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:f2a24aa01cbe0d926d4aefe3b12eba21eb5ec7f87276e572a6814c727228624c_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:45cc0d783d1e7874ac73dfbdfe7e03c63b227ab3c4f1e15a0a2f5c97956a76d9_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:6f3eb26734e89375c3e1fb7ac366e12dc0d41bac8f07de9210c7e9845a01eec1_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:768c45fa9f35d98dfe5cfe1ea12f552402bf68ac6e1f828b14310ef59ce57c40_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:b5f1bf30495f6be97c696cf7f90768629cee96f8d106f745bf95fdefddc99592_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:137ffbb95d463d95da6c350600d968f3cd0e9873bf2e7c6edf952ae3229e9e2b_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:1cccdfd7e90877c27c6d8caea4f1e8ad89bb97c83d97ddf570d4f4ee116f1986_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:71657b82894cfd9e350746f48965e148868a675b9a20dcb7f94a6bc7a5b16ea5_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:881e405e32821ef10cf992c7a633281c1dc45df721fe909048df1689472000ce_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:6c85b42ede0f4745ed558bcb03d033c49f56cef17a70c12e5308066124cac6e3_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:091529a93e258a612fd4a98222e6a370ee10b4e97efa791b50f79a2670163d01_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0e8958a22f6771ddfe32b34027c69dbbef65d980c7e465a79d4202d2627994ad_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:5a8b0203ff083113e8b30a123ab30c4bad571f57fb59c1e7e01807b92552504e_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:89bf6a32a0935cacadbc6d23566dce6ca741e404d58c11050638c7b8e868028b_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:077cc953354ea2edd85569a622f97c15d44163d68234e7a9fdee899d25c19cdb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:66285f866090e1bfbedacd592e9d5ea9f2a30b88aa03bc86bc790d6b98a929a4_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:8c80054171d5063457df4bd074674b1824783a101dacb6137da227080aff957c_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:b0f15904251c6665961eef9c944d00f17499f7219351fe213fe7935f62fbf7ac_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:62476ac2fb0096caa9b181f523cc3573ccffe70be1433f08d1d0255b6d3a0640_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:6f632bc9829880a44e2e94084284b52683b4a01dc3315043b0aa32eb344b16cb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:aa3d1cf7853bfe8307efb01f714585f378d1d3d4ed5de7c8808a72e4aeecd4f3_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:bf1d4b2b1ef03e65be59699ce3233a75a34e1777abc182984c7a8efa698a936e_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:141f17d12c748c7ab9e94cfd9db7e2492d3063e7478249d6430ac0d8fcfb8875_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:5909184fe3d37eb45ba3bf55d7b708d818f2a5abfc2949c4a7081a5cd30cea4f_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:6217f0bb4937fa0e0fc0a5c86456fdc1992e169dfedc3d11d5165cef575d4d53_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:d55a55a36a23e7deb83718bd5dcc19b083b84d441add72ea7f4e28935e4717e3_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:0f8e1171f278395f3c72e4d9d3c0492bed15b678963fb2b6182bd65343b85a2e_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:823bb59b1c7d01557c29f9f1e4a4ee39814c38d826b06c3c9de4b8d179078419_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:93c7e9b321c7e9aa4a412a993a6b20412e24772832cc0dd23bbb17aa25f15487_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:9e50b45f81fedab27e896f04b80bacaa01d8370ff5679147f95ad79b61972d83_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:8f145d4e336bd77fcc94f0845f9ebf94563ffd96d56794d96a665c11241df152_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:981917806c7faf31156241cc85577cf375ee566f78adaeadc096d0ba8482b835_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:af3ed91687500d64e2348cca4877c43f73211b8fbd132e7767c3521763185348_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:c05020e5ee5bddc62e38493cd16b6e4ffde7c2248a00d710f32b90a6ee12ceeb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2af86b409540513f6da1afa83110a5cafe8778d2ec16332faa31c964bd5f43f7_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2f3bec76a833a72c7dfa93ed55e55e80e2621c154e5a2f156deaf78d7c6b97b4_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:81a2385be30079500f13f97a18607aa685abd61265bf8fa78bc6ce126341be50_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:fdc8f64f3b82b200a5e31b01b8612069f1aa897014085c1de755394552a1a70a_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:856b9088dbda4e7374daf232602f4bb90b05ad1be1df46d6e363a002f549f4de_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:a107ae2f7b140f2fb2243f33c378228c2f164cfd2d23f57e63f6c424fd400929_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:e21de356b7d879800a96f6c5aeee6bc59a3ed9c58d36503f7089625ce887bb25_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:fcaf6d60d682cf51866948ea3b4846c2993e2801adb69dc745ffa832318f515c_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:11f005939e15d63057bf2f0a988b6baebc275d3e752e9f7696d0f7f5266fd5d6_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:4b4c98be96a932d508fad769eff61bff2a44e13baa60b22b6c543f4a11eb71c2_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:6c87453ffe89e8be752ee40c8a9ccf6894c83be703f13901b1e8b64a4c0e549a_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:c18a1c50a4fc7081c6564d1c4ed4904212b7939a4f1f46afef0a36dc1d76f38e_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:33367b9fdb3addce3302ad35bc10423505fefe3dd27b8b9013b26d66caac2a6c_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:72cbdb061cbcd295be5e66a0eabb409af16ade7f0aa12b04c2d7327e9e1a24ba_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:d0379f9da8cbb5514394a4550ff0d79f90fa691fcced5806296479c7b63353da_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:e99d1d877bd7335736cbaeb4db5b9904369a1d07f6df332c38ad79ff1256b67b_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:06285611aef2528fc92c5cebb66ff4c74fe44d457f43cf9ec2f4a98c3c68d25e_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:25e0f4153eb5bc6fbc6b389d5adc81bfde103070ef58317c3c25ce4144a628d3_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:acd3c0369c18cbfa63a5972ed1721f93f1fcb456963ff855dea2c295baf1cdb8_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:d086075db52f4476aa64d7e2680baa01e99da246275fa9cae0ba4a74de63c7f3_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:07d89c1b524d1451051feb865bc716da2197add90fa0c58c4cf4a82975ec846c_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:6582e647d7dd604e25977ec1579969aa1fcb29ead1a0ea65833531d633bbdd2b_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:75e3aec03dffbd0f40f88a08ff5e0319f4515d73f0bcfae28b5fa526b494afc4_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:f0079e8ae53d84223aea2d3186e7bc6b525b7c03d307cde50cfb9f1bbc18712b_arm64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:1384e5ba2b7d23119a49d8713826f4c65668bca310589ac7abd0c0d41c7e4c90_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:7f58528b1da9146aa55917324fdf2b375794742b34e5d10ff57f713af60746cd_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:844c3b1499b00aeadfc561642e53792ad80f535efd53b35793ba08b0f26c6d61_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:e1019c30e1d84e66d775d0d6fc7d051803dcbe44823fb2a1914807be39c79dae_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:8c9a7ebf430b9f4ca200c6c70b049e8456cf88fd8bf0871b42d65e8dc786d451_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:926d965e6fd12ec0d758270fb4c90bbdc1a05e60cc4c895cf9b671a296c9d867_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:e8e807451e3c5d8d0a8575e1280d7125a4ece51547a7b4a5cd247837662cedad_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:f2a24aa01cbe0d926d4aefe3b12eba21eb5ec7f87276e572a6814c727228624c_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:45cc0d783d1e7874ac73dfbdfe7e03c63b227ab3c4f1e15a0a2f5c97956a76d9_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:6f3eb26734e89375c3e1fb7ac366e12dc0d41bac8f07de9210c7e9845a01eec1_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:768c45fa9f35d98dfe5cfe1ea12f552402bf68ac6e1f828b14310ef59ce57c40_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:b5f1bf30495f6be97c696cf7f90768629cee96f8d106f745bf95fdefddc99592_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:137ffbb95d463d95da6c350600d968f3cd0e9873bf2e7c6edf952ae3229e9e2b_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:1cccdfd7e90877c27c6d8caea4f1e8ad89bb97c83d97ddf570d4f4ee116f1986_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:71657b82894cfd9e350746f48965e148868a675b9a20dcb7f94a6bc7a5b16ea5_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:881e405e32821ef10cf992c7a633281c1dc45df721fe909048df1689472000ce_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:6c85b42ede0f4745ed558bcb03d033c49f56cef17a70c12e5308066124cac6e3_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:091529a93e258a612fd4a98222e6a370ee10b4e97efa791b50f79a2670163d01_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0e8958a22f6771ddfe32b34027c69dbbef65d980c7e465a79d4202d2627994ad_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:5a8b0203ff083113e8b30a123ab30c4bad571f57fb59c1e7e01807b92552504e_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:89bf6a32a0935cacadbc6d23566dce6ca741e404d58c11050638c7b8e868028b_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:077cc953354ea2edd85569a622f97c15d44163d68234e7a9fdee899d25c19cdb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:66285f866090e1bfbedacd592e9d5ea9f2a30b88aa03bc86bc790d6b98a929a4_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:8c80054171d5063457df4bd074674b1824783a101dacb6137da227080aff957c_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:b0f15904251c6665961eef9c944d00f17499f7219351fe213fe7935f62fbf7ac_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:62476ac2fb0096caa9b181f523cc3573ccffe70be1433f08d1d0255b6d3a0640_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:6f632bc9829880a44e2e94084284b52683b4a01dc3315043b0aa32eb344b16cb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:aa3d1cf7853bfe8307efb01f714585f378d1d3d4ed5de7c8808a72e4aeecd4f3_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:bf1d4b2b1ef03e65be59699ce3233a75a34e1777abc182984c7a8efa698a936e_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:141f17d12c748c7ab9e94cfd9db7e2492d3063e7478249d6430ac0d8fcfb8875_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:5909184fe3d37eb45ba3bf55d7b708d818f2a5abfc2949c4a7081a5cd30cea4f_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:6217f0bb4937fa0e0fc0a5c86456fdc1992e169dfedc3d11d5165cef575d4d53_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:d55a55a36a23e7deb83718bd5dcc19b083b84d441add72ea7f4e28935e4717e3_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:0f8e1171f278395f3c72e4d9d3c0492bed15b678963fb2b6182bd65343b85a2e_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:823bb59b1c7d01557c29f9f1e4a4ee39814c38d826b06c3c9de4b8d179078419_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:93c7e9b321c7e9aa4a412a993a6b20412e24772832cc0dd23bbb17aa25f15487_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:9e50b45f81fedab27e896f04b80bacaa01d8370ff5679147f95ad79b61972d83_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:8f145d4e336bd77fcc94f0845f9ebf94563ffd96d56794d96a665c11241df152_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:981917806c7faf31156241cc85577cf375ee566f78adaeadc096d0ba8482b835_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:af3ed91687500d64e2348cca4877c43f73211b8fbd132e7767c3521763185348_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:c05020e5ee5bddc62e38493cd16b6e4ffde7c2248a00d710f32b90a6ee12ceeb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2af86b409540513f6da1afa83110a5cafe8778d2ec16332faa31c964bd5f43f7_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2f3bec76a833a72c7dfa93ed55e55e80e2621c154e5a2f156deaf78d7c6b97b4_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:81a2385be30079500f13f97a18607aa685abd61265bf8fa78bc6ce126341be50_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:fdc8f64f3b82b200a5e31b01b8612069f1aa897014085c1de755394552a1a70a_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:856b9088dbda4e7374daf232602f4bb90b05ad1be1df46d6e363a002f549f4de_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:a107ae2f7b140f2fb2243f33c378228c2f164cfd2d23f57e63f6c424fd400929_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:e21de356b7d879800a96f6c5aeee6bc59a3ed9c58d36503f7089625ce887bb25_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:fcaf6d60d682cf51866948ea3b4846c2993e2801adb69dc745ffa832318f515c_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:11f005939e15d63057bf2f0a988b6baebc275d3e752e9f7696d0f7f5266fd5d6_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:4b4c98be96a932d508fad769eff61bff2a44e13baa60b22b6c543f4a11eb71c2_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:6c87453ffe89e8be752ee40c8a9ccf6894c83be703f13901b1e8b64a4c0e549a_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:c18a1c50a4fc7081c6564d1c4ed4904212b7939a4f1f46afef0a36dc1d76f38e_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:33367b9fdb3addce3302ad35bc10423505fefe3dd27b8b9013b26d66caac2a6c_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:72cbdb061cbcd295be5e66a0eabb409af16ade7f0aa12b04c2d7327e9e1a24ba_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:d0379f9da8cbb5514394a4550ff0d79f90fa691fcced5806296479c7b63353da_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:e99d1d877bd7335736cbaeb4db5b9904369a1d07f6df332c38ad79ff1256b67b_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:06285611aef2528fc92c5cebb66ff4c74fe44d457f43cf9ec2f4a98c3c68d25e_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:25e0f4153eb5bc6fbc6b389d5adc81bfde103070ef58317c3c25ce4144a628d3_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:acd3c0369c18cbfa63a5972ed1721f93f1fcb456963ff855dea2c295baf1cdb8_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:d086075db52f4476aa64d7e2680baa01e99da246275fa9cae0ba4a74de63c7f3_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:07d89c1b524d1451051feb865bc716da2197add90fa0c58c4cf4a82975ec846c_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:6582e647d7dd604e25977ec1579969aa1fcb29ead1a0ea65833531d633bbdd2b_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:75e3aec03dffbd0f40f88a08ff5e0319f4515d73f0bcfae28b5fa526b494afc4_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:f0079e8ae53d84223aea2d3186e7bc6b525b7c03d307cde50cfb9f1bbc18712b_arm64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "netty: io.netty/netty-codec-compression: io.netty/netty-codec: Netty: Denial of Service via excessive memory allocation in LZ4FrameDecoder"
},
{
"cve": "CVE-2026-42584",
"cwe": {
"id": "CWE-444",
"name": "Inconsistent Interpretation of HTTP Requests (\u0027HTTP Request/Response Smuggling\u0027)"
},
"discovery_date": "2026-05-13T19:01:51.846351+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:1384e5ba2b7d23119a49d8713826f4c65668bca310589ac7abd0c0d41c7e4c90_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:7f58528b1da9146aa55917324fdf2b375794742b34e5d10ff57f713af60746cd_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:844c3b1499b00aeadfc561642e53792ad80f535efd53b35793ba08b0f26c6d61_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:e1019c30e1d84e66d775d0d6fc7d051803dcbe44823fb2a1914807be39c79dae_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:8c9a7ebf430b9f4ca200c6c70b049e8456cf88fd8bf0871b42d65e8dc786d451_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:926d965e6fd12ec0d758270fb4c90bbdc1a05e60cc4c895cf9b671a296c9d867_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:e8e807451e3c5d8d0a8575e1280d7125a4ece51547a7b4a5cd247837662cedad_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:f2a24aa01cbe0d926d4aefe3b12eba21eb5ec7f87276e572a6814c727228624c_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:45cc0d783d1e7874ac73dfbdfe7e03c63b227ab3c4f1e15a0a2f5c97956a76d9_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:6f3eb26734e89375c3e1fb7ac366e12dc0d41bac8f07de9210c7e9845a01eec1_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:768c45fa9f35d98dfe5cfe1ea12f552402bf68ac6e1f828b14310ef59ce57c40_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:b5f1bf30495f6be97c696cf7f90768629cee96f8d106f745bf95fdefddc99592_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:137ffbb95d463d95da6c350600d968f3cd0e9873bf2e7c6edf952ae3229e9e2b_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:1cccdfd7e90877c27c6d8caea4f1e8ad89bb97c83d97ddf570d4f4ee116f1986_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:71657b82894cfd9e350746f48965e148868a675b9a20dcb7f94a6bc7a5b16ea5_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:881e405e32821ef10cf992c7a633281c1dc45df721fe909048df1689472000ce_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:6c85b42ede0f4745ed558bcb03d033c49f56cef17a70c12e5308066124cac6e3_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:091529a93e258a612fd4a98222e6a370ee10b4e97efa791b50f79a2670163d01_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0e8958a22f6771ddfe32b34027c69dbbef65d980c7e465a79d4202d2627994ad_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:5a8b0203ff083113e8b30a123ab30c4bad571f57fb59c1e7e01807b92552504e_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:89bf6a32a0935cacadbc6d23566dce6ca741e404d58c11050638c7b8e868028b_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:077cc953354ea2edd85569a622f97c15d44163d68234e7a9fdee899d25c19cdb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:66285f866090e1bfbedacd592e9d5ea9f2a30b88aa03bc86bc790d6b98a929a4_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:8c80054171d5063457df4bd074674b1824783a101dacb6137da227080aff957c_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:b0f15904251c6665961eef9c944d00f17499f7219351fe213fe7935f62fbf7ac_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:62476ac2fb0096caa9b181f523cc3573ccffe70be1433f08d1d0255b6d3a0640_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:6f632bc9829880a44e2e94084284b52683b4a01dc3315043b0aa32eb344b16cb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:aa3d1cf7853bfe8307efb01f714585f378d1d3d4ed5de7c8808a72e4aeecd4f3_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:bf1d4b2b1ef03e65be59699ce3233a75a34e1777abc182984c7a8efa698a936e_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:0f8e1171f278395f3c72e4d9d3c0492bed15b678963fb2b6182bd65343b85a2e_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:823bb59b1c7d01557c29f9f1e4a4ee39814c38d826b06c3c9de4b8d179078419_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:93c7e9b321c7e9aa4a412a993a6b20412e24772832cc0dd23bbb17aa25f15487_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:9e50b45f81fedab27e896f04b80bacaa01d8370ff5679147f95ad79b61972d83_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:8f145d4e336bd77fcc94f0845f9ebf94563ffd96d56794d96a665c11241df152_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:981917806c7faf31156241cc85577cf375ee566f78adaeadc096d0ba8482b835_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:af3ed91687500d64e2348cca4877c43f73211b8fbd132e7767c3521763185348_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:c05020e5ee5bddc62e38493cd16b6e4ffde7c2248a00d710f32b90a6ee12ceeb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2af86b409540513f6da1afa83110a5cafe8778d2ec16332faa31c964bd5f43f7_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2f3bec76a833a72c7dfa93ed55e55e80e2621c154e5a2f156deaf78d7c6b97b4_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:81a2385be30079500f13f97a18607aa685abd61265bf8fa78bc6ce126341be50_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:fdc8f64f3b82b200a5e31b01b8612069f1aa897014085c1de755394552a1a70a_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:856b9088dbda4e7374daf232602f4bb90b05ad1be1df46d6e363a002f549f4de_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:a107ae2f7b140f2fb2243f33c378228c2f164cfd2d23f57e63f6c424fd400929_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:e21de356b7d879800a96f6c5aeee6bc59a3ed9c58d36503f7089625ce887bb25_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:fcaf6d60d682cf51866948ea3b4846c2993e2801adb69dc745ffa832318f515c_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:11f005939e15d63057bf2f0a988b6baebc275d3e752e9f7696d0f7f5266fd5d6_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:4b4c98be96a932d508fad769eff61bff2a44e13baa60b22b6c543f4a11eb71c2_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:6c87453ffe89e8be752ee40c8a9ccf6894c83be703f13901b1e8b64a4c0e549a_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:c18a1c50a4fc7081c6564d1c4ed4904212b7939a4f1f46afef0a36dc1d76f38e_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:33367b9fdb3addce3302ad35bc10423505fefe3dd27b8b9013b26d66caac2a6c_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:72cbdb061cbcd295be5e66a0eabb409af16ade7f0aa12b04c2d7327e9e1a24ba_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:d0379f9da8cbb5514394a4550ff0d79f90fa691fcced5806296479c7b63353da_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:e99d1d877bd7335736cbaeb4db5b9904369a1d07f6df332c38ad79ff1256b67b_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:06285611aef2528fc92c5cebb66ff4c74fe44d457f43cf9ec2f4a98c3c68d25e_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:25e0f4153eb5bc6fbc6b389d5adc81bfde103070ef58317c3c25ce4144a628d3_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:acd3c0369c18cbfa63a5972ed1721f93f1fcb456963ff855dea2c295baf1cdb8_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:d086075db52f4476aa64d7e2680baa01e99da246275fa9cae0ba4a74de63c7f3_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:07d89c1b524d1451051feb865bc716da2197add90fa0c58c4cf4a82975ec846c_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:6582e647d7dd604e25977ec1579969aa1fcb29ead1a0ea65833531d633bbdd2b_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:75e3aec03dffbd0f40f88a08ff5e0319f4515d73f0bcfae28b5fa526b494afc4_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:f0079e8ae53d84223aea2d3186e7bc6b525b7c03d307cde50cfb9f1bbc18712b_arm64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2477224"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Netty, an asynchronous, event-driven network application framework. A remote attacker could exploit this vulnerability by sending a specific sequence of HTTP responses (103, followed by a 200 with a GET body, then another 200 for a HEAD request) when the client pipelines GET then HEAD requests. This can cause the HttpClientCodec to incorrectly pair responses, leading to subsequent HTTP responses being parsed from the wrong offset. This issue may result in information disclosure or other data integrity problems due to misinterpretation of network traffic.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "netty: io.netty/netty-codec-http: Netty: Incorrect HTTP response parsing leads to data confusion",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Important: A flaw in Netty\u0027s HttpClientCodec allows a remote attacker to cause data confusion. By sending a specially crafted sequence of HTTP responses, an attacker can cause subsequent HTTP responses to be parsed incorrectly, potentially leading to information disclosure or data integrity issues in applications utilizing Netty for HTTP client operations. This vulnerability affects various Red Hat products that bundle Netty, including Red Hat AMQ, Enterprise Application Platform, Red Hat Build of Quarkus, and Red Hat Build of Keycloak.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:141f17d12c748c7ab9e94cfd9db7e2492d3063e7478249d6430ac0d8fcfb8875_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:5909184fe3d37eb45ba3bf55d7b708d818f2a5abfc2949c4a7081a5cd30cea4f_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:6217f0bb4937fa0e0fc0a5c86456fdc1992e169dfedc3d11d5165cef575d4d53_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:d55a55a36a23e7deb83718bd5dcc19b083b84d441add72ea7f4e28935e4717e3_ppc64le"
],
"known_not_affected": [
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:1384e5ba2b7d23119a49d8713826f4c65668bca310589ac7abd0c0d41c7e4c90_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:7f58528b1da9146aa55917324fdf2b375794742b34e5d10ff57f713af60746cd_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:844c3b1499b00aeadfc561642e53792ad80f535efd53b35793ba08b0f26c6d61_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:e1019c30e1d84e66d775d0d6fc7d051803dcbe44823fb2a1914807be39c79dae_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:8c9a7ebf430b9f4ca200c6c70b049e8456cf88fd8bf0871b42d65e8dc786d451_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:926d965e6fd12ec0d758270fb4c90bbdc1a05e60cc4c895cf9b671a296c9d867_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:e8e807451e3c5d8d0a8575e1280d7125a4ece51547a7b4a5cd247837662cedad_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:f2a24aa01cbe0d926d4aefe3b12eba21eb5ec7f87276e572a6814c727228624c_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:45cc0d783d1e7874ac73dfbdfe7e03c63b227ab3c4f1e15a0a2f5c97956a76d9_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:6f3eb26734e89375c3e1fb7ac366e12dc0d41bac8f07de9210c7e9845a01eec1_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:768c45fa9f35d98dfe5cfe1ea12f552402bf68ac6e1f828b14310ef59ce57c40_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:b5f1bf30495f6be97c696cf7f90768629cee96f8d106f745bf95fdefddc99592_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:137ffbb95d463d95da6c350600d968f3cd0e9873bf2e7c6edf952ae3229e9e2b_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:1cccdfd7e90877c27c6d8caea4f1e8ad89bb97c83d97ddf570d4f4ee116f1986_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:71657b82894cfd9e350746f48965e148868a675b9a20dcb7f94a6bc7a5b16ea5_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:881e405e32821ef10cf992c7a633281c1dc45df721fe909048df1689472000ce_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:6c85b42ede0f4745ed558bcb03d033c49f56cef17a70c12e5308066124cac6e3_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:091529a93e258a612fd4a98222e6a370ee10b4e97efa791b50f79a2670163d01_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0e8958a22f6771ddfe32b34027c69dbbef65d980c7e465a79d4202d2627994ad_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:5a8b0203ff083113e8b30a123ab30c4bad571f57fb59c1e7e01807b92552504e_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:89bf6a32a0935cacadbc6d23566dce6ca741e404d58c11050638c7b8e868028b_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:077cc953354ea2edd85569a622f97c15d44163d68234e7a9fdee899d25c19cdb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:66285f866090e1bfbedacd592e9d5ea9f2a30b88aa03bc86bc790d6b98a929a4_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:8c80054171d5063457df4bd074674b1824783a101dacb6137da227080aff957c_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:b0f15904251c6665961eef9c944d00f17499f7219351fe213fe7935f62fbf7ac_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:62476ac2fb0096caa9b181f523cc3573ccffe70be1433f08d1d0255b6d3a0640_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:6f632bc9829880a44e2e94084284b52683b4a01dc3315043b0aa32eb344b16cb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:aa3d1cf7853bfe8307efb01f714585f378d1d3d4ed5de7c8808a72e4aeecd4f3_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:bf1d4b2b1ef03e65be59699ce3233a75a34e1777abc182984c7a8efa698a936e_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:0f8e1171f278395f3c72e4d9d3c0492bed15b678963fb2b6182bd65343b85a2e_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:823bb59b1c7d01557c29f9f1e4a4ee39814c38d826b06c3c9de4b8d179078419_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:93c7e9b321c7e9aa4a412a993a6b20412e24772832cc0dd23bbb17aa25f15487_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:9e50b45f81fedab27e896f04b80bacaa01d8370ff5679147f95ad79b61972d83_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:8f145d4e336bd77fcc94f0845f9ebf94563ffd96d56794d96a665c11241df152_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:981917806c7faf31156241cc85577cf375ee566f78adaeadc096d0ba8482b835_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:af3ed91687500d64e2348cca4877c43f73211b8fbd132e7767c3521763185348_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:c05020e5ee5bddc62e38493cd16b6e4ffde7c2248a00d710f32b90a6ee12ceeb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2af86b409540513f6da1afa83110a5cafe8778d2ec16332faa31c964bd5f43f7_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2f3bec76a833a72c7dfa93ed55e55e80e2621c154e5a2f156deaf78d7c6b97b4_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:81a2385be30079500f13f97a18607aa685abd61265bf8fa78bc6ce126341be50_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:fdc8f64f3b82b200a5e31b01b8612069f1aa897014085c1de755394552a1a70a_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:856b9088dbda4e7374daf232602f4bb90b05ad1be1df46d6e363a002f549f4de_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:a107ae2f7b140f2fb2243f33c378228c2f164cfd2d23f57e63f6c424fd400929_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:e21de356b7d879800a96f6c5aeee6bc59a3ed9c58d36503f7089625ce887bb25_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:fcaf6d60d682cf51866948ea3b4846c2993e2801adb69dc745ffa832318f515c_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:11f005939e15d63057bf2f0a988b6baebc275d3e752e9f7696d0f7f5266fd5d6_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:4b4c98be96a932d508fad769eff61bff2a44e13baa60b22b6c543f4a11eb71c2_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:6c87453ffe89e8be752ee40c8a9ccf6894c83be703f13901b1e8b64a4c0e549a_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:c18a1c50a4fc7081c6564d1c4ed4904212b7939a4f1f46afef0a36dc1d76f38e_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:33367b9fdb3addce3302ad35bc10423505fefe3dd27b8b9013b26d66caac2a6c_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:72cbdb061cbcd295be5e66a0eabb409af16ade7f0aa12b04c2d7327e9e1a24ba_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:d0379f9da8cbb5514394a4550ff0d79f90fa691fcced5806296479c7b63353da_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:e99d1d877bd7335736cbaeb4db5b9904369a1d07f6df332c38ad79ff1256b67b_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:06285611aef2528fc92c5cebb66ff4c74fe44d457f43cf9ec2f4a98c3c68d25e_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:25e0f4153eb5bc6fbc6b389d5adc81bfde103070ef58317c3c25ce4144a628d3_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:acd3c0369c18cbfa63a5972ed1721f93f1fcb456963ff855dea2c295baf1cdb8_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:d086075db52f4476aa64d7e2680baa01e99da246275fa9cae0ba4a74de63c7f3_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:07d89c1b524d1451051feb865bc716da2197add90fa0c58c4cf4a82975ec846c_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:6582e647d7dd604e25977ec1579969aa1fcb29ead1a0ea65833531d633bbdd2b_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:75e3aec03dffbd0f40f88a08ff5e0319f4515d73f0bcfae28b5fa526b494afc4_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:f0079e8ae53d84223aea2d3186e7bc6b525b7c03d307cde50cfb9f1bbc18712b_arm64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-42584"
},
{
"category": "external",
"summary": "RHBZ#2477224",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2477224"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-42584",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-42584"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-42584",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-42584"
},
{
"category": "external",
"summary": "https://github.com/netty/netty/security/advisories/GHSA-57rv-r2g8-2cj3",
"url": "https://github.com/netty/netty/security/advisories/GHSA-57rv-r2g8-2cj3"
}
],
"release_date": "2026-05-13T18:10:48.437000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T17:12:17+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\nFor details on how to apply this update, refer to:\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:141f17d12c748c7ab9e94cfd9db7e2492d3063e7478249d6430ac0d8fcfb8875_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:5909184fe3d37eb45ba3bf55d7b708d818f2a5abfc2949c4a7081a5cd30cea4f_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:6217f0bb4937fa0e0fc0a5c86456fdc1992e169dfedc3d11d5165cef575d4d53_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:d55a55a36a23e7deb83718bd5dcc19b083b84d441add72ea7f4e28935e4717e3_ppc64le"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36820"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 7.3,
"baseSeverity": "HIGH",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:1384e5ba2b7d23119a49d8713826f4c65668bca310589ac7abd0c0d41c7e4c90_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:7f58528b1da9146aa55917324fdf2b375794742b34e5d10ff57f713af60746cd_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:844c3b1499b00aeadfc561642e53792ad80f535efd53b35793ba08b0f26c6d61_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:e1019c30e1d84e66d775d0d6fc7d051803dcbe44823fb2a1914807be39c79dae_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:8c9a7ebf430b9f4ca200c6c70b049e8456cf88fd8bf0871b42d65e8dc786d451_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:926d965e6fd12ec0d758270fb4c90bbdc1a05e60cc4c895cf9b671a296c9d867_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:e8e807451e3c5d8d0a8575e1280d7125a4ece51547a7b4a5cd247837662cedad_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:f2a24aa01cbe0d926d4aefe3b12eba21eb5ec7f87276e572a6814c727228624c_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:45cc0d783d1e7874ac73dfbdfe7e03c63b227ab3c4f1e15a0a2f5c97956a76d9_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:6f3eb26734e89375c3e1fb7ac366e12dc0d41bac8f07de9210c7e9845a01eec1_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:768c45fa9f35d98dfe5cfe1ea12f552402bf68ac6e1f828b14310ef59ce57c40_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:b5f1bf30495f6be97c696cf7f90768629cee96f8d106f745bf95fdefddc99592_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:137ffbb95d463d95da6c350600d968f3cd0e9873bf2e7c6edf952ae3229e9e2b_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:1cccdfd7e90877c27c6d8caea4f1e8ad89bb97c83d97ddf570d4f4ee116f1986_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:71657b82894cfd9e350746f48965e148868a675b9a20dcb7f94a6bc7a5b16ea5_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:881e405e32821ef10cf992c7a633281c1dc45df721fe909048df1689472000ce_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:6c85b42ede0f4745ed558bcb03d033c49f56cef17a70c12e5308066124cac6e3_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:091529a93e258a612fd4a98222e6a370ee10b4e97efa791b50f79a2670163d01_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0e8958a22f6771ddfe32b34027c69dbbef65d980c7e465a79d4202d2627994ad_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:5a8b0203ff083113e8b30a123ab30c4bad571f57fb59c1e7e01807b92552504e_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:89bf6a32a0935cacadbc6d23566dce6ca741e404d58c11050638c7b8e868028b_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:077cc953354ea2edd85569a622f97c15d44163d68234e7a9fdee899d25c19cdb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:66285f866090e1bfbedacd592e9d5ea9f2a30b88aa03bc86bc790d6b98a929a4_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:8c80054171d5063457df4bd074674b1824783a101dacb6137da227080aff957c_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:b0f15904251c6665961eef9c944d00f17499f7219351fe213fe7935f62fbf7ac_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:62476ac2fb0096caa9b181f523cc3573ccffe70be1433f08d1d0255b6d3a0640_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:6f632bc9829880a44e2e94084284b52683b4a01dc3315043b0aa32eb344b16cb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:aa3d1cf7853bfe8307efb01f714585f378d1d3d4ed5de7c8808a72e4aeecd4f3_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:bf1d4b2b1ef03e65be59699ce3233a75a34e1777abc182984c7a8efa698a936e_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:141f17d12c748c7ab9e94cfd9db7e2492d3063e7478249d6430ac0d8fcfb8875_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:5909184fe3d37eb45ba3bf55d7b708d818f2a5abfc2949c4a7081a5cd30cea4f_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:6217f0bb4937fa0e0fc0a5c86456fdc1992e169dfedc3d11d5165cef575d4d53_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:d55a55a36a23e7deb83718bd5dcc19b083b84d441add72ea7f4e28935e4717e3_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:0f8e1171f278395f3c72e4d9d3c0492bed15b678963fb2b6182bd65343b85a2e_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:823bb59b1c7d01557c29f9f1e4a4ee39814c38d826b06c3c9de4b8d179078419_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:93c7e9b321c7e9aa4a412a993a6b20412e24772832cc0dd23bbb17aa25f15487_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:9e50b45f81fedab27e896f04b80bacaa01d8370ff5679147f95ad79b61972d83_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:8f145d4e336bd77fcc94f0845f9ebf94563ffd96d56794d96a665c11241df152_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:981917806c7faf31156241cc85577cf375ee566f78adaeadc096d0ba8482b835_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:af3ed91687500d64e2348cca4877c43f73211b8fbd132e7767c3521763185348_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:c05020e5ee5bddc62e38493cd16b6e4ffde7c2248a00d710f32b90a6ee12ceeb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2af86b409540513f6da1afa83110a5cafe8778d2ec16332faa31c964bd5f43f7_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2f3bec76a833a72c7dfa93ed55e55e80e2621c154e5a2f156deaf78d7c6b97b4_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:81a2385be30079500f13f97a18607aa685abd61265bf8fa78bc6ce126341be50_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:fdc8f64f3b82b200a5e31b01b8612069f1aa897014085c1de755394552a1a70a_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:856b9088dbda4e7374daf232602f4bb90b05ad1be1df46d6e363a002f549f4de_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:a107ae2f7b140f2fb2243f33c378228c2f164cfd2d23f57e63f6c424fd400929_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:e21de356b7d879800a96f6c5aeee6bc59a3ed9c58d36503f7089625ce887bb25_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:fcaf6d60d682cf51866948ea3b4846c2993e2801adb69dc745ffa832318f515c_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:11f005939e15d63057bf2f0a988b6baebc275d3e752e9f7696d0f7f5266fd5d6_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:4b4c98be96a932d508fad769eff61bff2a44e13baa60b22b6c543f4a11eb71c2_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:6c87453ffe89e8be752ee40c8a9ccf6894c83be703f13901b1e8b64a4c0e549a_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:c18a1c50a4fc7081c6564d1c4ed4904212b7939a4f1f46afef0a36dc1d76f38e_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:33367b9fdb3addce3302ad35bc10423505fefe3dd27b8b9013b26d66caac2a6c_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:72cbdb061cbcd295be5e66a0eabb409af16ade7f0aa12b04c2d7327e9e1a24ba_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:d0379f9da8cbb5514394a4550ff0d79f90fa691fcced5806296479c7b63353da_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:e99d1d877bd7335736cbaeb4db5b9904369a1d07f6df332c38ad79ff1256b67b_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:06285611aef2528fc92c5cebb66ff4c74fe44d457f43cf9ec2f4a98c3c68d25e_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:25e0f4153eb5bc6fbc6b389d5adc81bfde103070ef58317c3c25ce4144a628d3_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:acd3c0369c18cbfa63a5972ed1721f93f1fcb456963ff855dea2c295baf1cdb8_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:d086075db52f4476aa64d7e2680baa01e99da246275fa9cae0ba4a74de63c7f3_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:07d89c1b524d1451051feb865bc716da2197add90fa0c58c4cf4a82975ec846c_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:6582e647d7dd604e25977ec1579969aa1fcb29ead1a0ea65833531d633bbdd2b_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:75e3aec03dffbd0f40f88a08ff5e0319f4515d73f0bcfae28b5fa526b494afc4_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:f0079e8ae53d84223aea2d3186e7bc6b525b7c03d307cde50cfb9f1bbc18712b_arm64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "netty: io.netty/netty-codec-http: Netty: Incorrect HTTP response parsing leads to data confusion"
},
{
"cve": "CVE-2026-42587",
"cwe": {
"id": "CWE-770",
"name": "Allocation of Resources Without Limits or Throttling"
},
"discovery_date": "2026-05-13T19:01:35.415881+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:1384e5ba2b7d23119a49d8713826f4c65668bca310589ac7abd0c0d41c7e4c90_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:7f58528b1da9146aa55917324fdf2b375794742b34e5d10ff57f713af60746cd_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:844c3b1499b00aeadfc561642e53792ad80f535efd53b35793ba08b0f26c6d61_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:e1019c30e1d84e66d775d0d6fc7d051803dcbe44823fb2a1914807be39c79dae_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:8c9a7ebf430b9f4ca200c6c70b049e8456cf88fd8bf0871b42d65e8dc786d451_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:926d965e6fd12ec0d758270fb4c90bbdc1a05e60cc4c895cf9b671a296c9d867_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:e8e807451e3c5d8d0a8575e1280d7125a4ece51547a7b4a5cd247837662cedad_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:f2a24aa01cbe0d926d4aefe3b12eba21eb5ec7f87276e572a6814c727228624c_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:45cc0d783d1e7874ac73dfbdfe7e03c63b227ab3c4f1e15a0a2f5c97956a76d9_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:6f3eb26734e89375c3e1fb7ac366e12dc0d41bac8f07de9210c7e9845a01eec1_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:768c45fa9f35d98dfe5cfe1ea12f552402bf68ac6e1f828b14310ef59ce57c40_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:b5f1bf30495f6be97c696cf7f90768629cee96f8d106f745bf95fdefddc99592_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:137ffbb95d463d95da6c350600d968f3cd0e9873bf2e7c6edf952ae3229e9e2b_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:1cccdfd7e90877c27c6d8caea4f1e8ad89bb97c83d97ddf570d4f4ee116f1986_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:71657b82894cfd9e350746f48965e148868a675b9a20dcb7f94a6bc7a5b16ea5_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:881e405e32821ef10cf992c7a633281c1dc45df721fe909048df1689472000ce_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:6c85b42ede0f4745ed558bcb03d033c49f56cef17a70c12e5308066124cac6e3_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:091529a93e258a612fd4a98222e6a370ee10b4e97efa791b50f79a2670163d01_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0e8958a22f6771ddfe32b34027c69dbbef65d980c7e465a79d4202d2627994ad_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:5a8b0203ff083113e8b30a123ab30c4bad571f57fb59c1e7e01807b92552504e_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:89bf6a32a0935cacadbc6d23566dce6ca741e404d58c11050638c7b8e868028b_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:077cc953354ea2edd85569a622f97c15d44163d68234e7a9fdee899d25c19cdb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:66285f866090e1bfbedacd592e9d5ea9f2a30b88aa03bc86bc790d6b98a929a4_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:8c80054171d5063457df4bd074674b1824783a101dacb6137da227080aff957c_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:b0f15904251c6665961eef9c944d00f17499f7219351fe213fe7935f62fbf7ac_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:62476ac2fb0096caa9b181f523cc3573ccffe70be1433f08d1d0255b6d3a0640_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:6f632bc9829880a44e2e94084284b52683b4a01dc3315043b0aa32eb344b16cb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:aa3d1cf7853bfe8307efb01f714585f378d1d3d4ed5de7c8808a72e4aeecd4f3_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:bf1d4b2b1ef03e65be59699ce3233a75a34e1777abc182984c7a8efa698a936e_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:0f8e1171f278395f3c72e4d9d3c0492bed15b678963fb2b6182bd65343b85a2e_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:823bb59b1c7d01557c29f9f1e4a4ee39814c38d826b06c3c9de4b8d179078419_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:93c7e9b321c7e9aa4a412a993a6b20412e24772832cc0dd23bbb17aa25f15487_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:9e50b45f81fedab27e896f04b80bacaa01d8370ff5679147f95ad79b61972d83_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:8f145d4e336bd77fcc94f0845f9ebf94563ffd96d56794d96a665c11241df152_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:981917806c7faf31156241cc85577cf375ee566f78adaeadc096d0ba8482b835_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:af3ed91687500d64e2348cca4877c43f73211b8fbd132e7767c3521763185348_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:c05020e5ee5bddc62e38493cd16b6e4ffde7c2248a00d710f32b90a6ee12ceeb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2af86b409540513f6da1afa83110a5cafe8778d2ec16332faa31c964bd5f43f7_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2f3bec76a833a72c7dfa93ed55e55e80e2621c154e5a2f156deaf78d7c6b97b4_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:81a2385be30079500f13f97a18607aa685abd61265bf8fa78bc6ce126341be50_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:fdc8f64f3b82b200a5e31b01b8612069f1aa897014085c1de755394552a1a70a_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:856b9088dbda4e7374daf232602f4bb90b05ad1be1df46d6e363a002f549f4de_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:a107ae2f7b140f2fb2243f33c378228c2f164cfd2d23f57e63f6c424fd400929_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:e21de356b7d879800a96f6c5aeee6bc59a3ed9c58d36503f7089625ce887bb25_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:fcaf6d60d682cf51866948ea3b4846c2993e2801adb69dc745ffa832318f515c_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:11f005939e15d63057bf2f0a988b6baebc275d3e752e9f7696d0f7f5266fd5d6_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:4b4c98be96a932d508fad769eff61bff2a44e13baa60b22b6c543f4a11eb71c2_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:6c87453ffe89e8be752ee40c8a9ccf6894c83be703f13901b1e8b64a4c0e549a_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:c18a1c50a4fc7081c6564d1c4ed4904212b7939a4f1f46afef0a36dc1d76f38e_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:33367b9fdb3addce3302ad35bc10423505fefe3dd27b8b9013b26d66caac2a6c_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:72cbdb061cbcd295be5e66a0eabb409af16ade7f0aa12b04c2d7327e9e1a24ba_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:d0379f9da8cbb5514394a4550ff0d79f90fa691fcced5806296479c7b63353da_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:e99d1d877bd7335736cbaeb4db5b9904369a1d07f6df332c38ad79ff1256b67b_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:06285611aef2528fc92c5cebb66ff4c74fe44d457f43cf9ec2f4a98c3c68d25e_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:25e0f4153eb5bc6fbc6b389d5adc81bfde103070ef58317c3c25ce4144a628d3_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:acd3c0369c18cbfa63a5972ed1721f93f1fcb456963ff855dea2c295baf1cdb8_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:d086075db52f4476aa64d7e2680baa01e99da246275fa9cae0ba4a74de63c7f3_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:07d89c1b524d1451051feb865bc716da2197add90fa0c58c4cf4a82975ec846c_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:6582e647d7dd604e25977ec1579969aa1fcb29ead1a0ea65833531d633bbdd2b_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:75e3aec03dffbd0f40f88a08ff5e0319f4515d73f0bcfae28b5fa526b494afc4_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:f0079e8ae53d84223aea2d3186e7bc6b525b7c03d307cde50cfb9f1bbc18712b_arm64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2477220"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Netty. A remote attacker can bypass the configured decompression limit in the HttpContentDecompressor by sending a specially crafted compressed payload using Brotli (br), Zstandard (zstd), or Snappy content encodings. This can lead to unbounded memory allocation, resulting in an out-of-memory Denial of Service (DoS) for the affected system.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "netty: io.netty/netty-codec-http: io.netty/netty-codec-http2: Netty: Denial of Service via unbounded memory allocation in HTTP content decompression",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This is an Important denial of service vulnerability in Netty\u0027s HTTP content decompression. A remote attacker can exploit this flaw by sending specially crafted compressed payloads using Brotli, Zstandard, or Snappy encodings, bypassing configured decompression limits. This leads to unbounded memory allocation, potentially causing an out-of-memory condition and rendering affected Red Hat systems unavailable.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:141f17d12c748c7ab9e94cfd9db7e2492d3063e7478249d6430ac0d8fcfb8875_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:5909184fe3d37eb45ba3bf55d7b708d818f2a5abfc2949c4a7081a5cd30cea4f_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:6217f0bb4937fa0e0fc0a5c86456fdc1992e169dfedc3d11d5165cef575d4d53_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:d55a55a36a23e7deb83718bd5dcc19b083b84d441add72ea7f4e28935e4717e3_ppc64le"
],
"known_not_affected": [
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:1384e5ba2b7d23119a49d8713826f4c65668bca310589ac7abd0c0d41c7e4c90_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:7f58528b1da9146aa55917324fdf2b375794742b34e5d10ff57f713af60746cd_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:844c3b1499b00aeadfc561642e53792ad80f535efd53b35793ba08b0f26c6d61_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:e1019c30e1d84e66d775d0d6fc7d051803dcbe44823fb2a1914807be39c79dae_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:8c9a7ebf430b9f4ca200c6c70b049e8456cf88fd8bf0871b42d65e8dc786d451_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:926d965e6fd12ec0d758270fb4c90bbdc1a05e60cc4c895cf9b671a296c9d867_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:e8e807451e3c5d8d0a8575e1280d7125a4ece51547a7b4a5cd247837662cedad_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:f2a24aa01cbe0d926d4aefe3b12eba21eb5ec7f87276e572a6814c727228624c_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:45cc0d783d1e7874ac73dfbdfe7e03c63b227ab3c4f1e15a0a2f5c97956a76d9_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:6f3eb26734e89375c3e1fb7ac366e12dc0d41bac8f07de9210c7e9845a01eec1_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:768c45fa9f35d98dfe5cfe1ea12f552402bf68ac6e1f828b14310ef59ce57c40_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:b5f1bf30495f6be97c696cf7f90768629cee96f8d106f745bf95fdefddc99592_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:137ffbb95d463d95da6c350600d968f3cd0e9873bf2e7c6edf952ae3229e9e2b_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:1cccdfd7e90877c27c6d8caea4f1e8ad89bb97c83d97ddf570d4f4ee116f1986_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:71657b82894cfd9e350746f48965e148868a675b9a20dcb7f94a6bc7a5b16ea5_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:881e405e32821ef10cf992c7a633281c1dc45df721fe909048df1689472000ce_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:6c85b42ede0f4745ed558bcb03d033c49f56cef17a70c12e5308066124cac6e3_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:091529a93e258a612fd4a98222e6a370ee10b4e97efa791b50f79a2670163d01_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0e8958a22f6771ddfe32b34027c69dbbef65d980c7e465a79d4202d2627994ad_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:5a8b0203ff083113e8b30a123ab30c4bad571f57fb59c1e7e01807b92552504e_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:89bf6a32a0935cacadbc6d23566dce6ca741e404d58c11050638c7b8e868028b_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:077cc953354ea2edd85569a622f97c15d44163d68234e7a9fdee899d25c19cdb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:66285f866090e1bfbedacd592e9d5ea9f2a30b88aa03bc86bc790d6b98a929a4_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:8c80054171d5063457df4bd074674b1824783a101dacb6137da227080aff957c_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:b0f15904251c6665961eef9c944d00f17499f7219351fe213fe7935f62fbf7ac_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:62476ac2fb0096caa9b181f523cc3573ccffe70be1433f08d1d0255b6d3a0640_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:6f632bc9829880a44e2e94084284b52683b4a01dc3315043b0aa32eb344b16cb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:aa3d1cf7853bfe8307efb01f714585f378d1d3d4ed5de7c8808a72e4aeecd4f3_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:bf1d4b2b1ef03e65be59699ce3233a75a34e1777abc182984c7a8efa698a936e_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:0f8e1171f278395f3c72e4d9d3c0492bed15b678963fb2b6182bd65343b85a2e_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:823bb59b1c7d01557c29f9f1e4a4ee39814c38d826b06c3c9de4b8d179078419_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:93c7e9b321c7e9aa4a412a993a6b20412e24772832cc0dd23bbb17aa25f15487_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:9e50b45f81fedab27e896f04b80bacaa01d8370ff5679147f95ad79b61972d83_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:8f145d4e336bd77fcc94f0845f9ebf94563ffd96d56794d96a665c11241df152_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:981917806c7faf31156241cc85577cf375ee566f78adaeadc096d0ba8482b835_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:af3ed91687500d64e2348cca4877c43f73211b8fbd132e7767c3521763185348_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:c05020e5ee5bddc62e38493cd16b6e4ffde7c2248a00d710f32b90a6ee12ceeb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2af86b409540513f6da1afa83110a5cafe8778d2ec16332faa31c964bd5f43f7_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2f3bec76a833a72c7dfa93ed55e55e80e2621c154e5a2f156deaf78d7c6b97b4_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:81a2385be30079500f13f97a18607aa685abd61265bf8fa78bc6ce126341be50_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:fdc8f64f3b82b200a5e31b01b8612069f1aa897014085c1de755394552a1a70a_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:856b9088dbda4e7374daf232602f4bb90b05ad1be1df46d6e363a002f549f4de_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:a107ae2f7b140f2fb2243f33c378228c2f164cfd2d23f57e63f6c424fd400929_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:e21de356b7d879800a96f6c5aeee6bc59a3ed9c58d36503f7089625ce887bb25_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:fcaf6d60d682cf51866948ea3b4846c2993e2801adb69dc745ffa832318f515c_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:11f005939e15d63057bf2f0a988b6baebc275d3e752e9f7696d0f7f5266fd5d6_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:4b4c98be96a932d508fad769eff61bff2a44e13baa60b22b6c543f4a11eb71c2_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:6c87453ffe89e8be752ee40c8a9ccf6894c83be703f13901b1e8b64a4c0e549a_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:c18a1c50a4fc7081c6564d1c4ed4904212b7939a4f1f46afef0a36dc1d76f38e_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:33367b9fdb3addce3302ad35bc10423505fefe3dd27b8b9013b26d66caac2a6c_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:72cbdb061cbcd295be5e66a0eabb409af16ade7f0aa12b04c2d7327e9e1a24ba_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:d0379f9da8cbb5514394a4550ff0d79f90fa691fcced5806296479c7b63353da_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:e99d1d877bd7335736cbaeb4db5b9904369a1d07f6df332c38ad79ff1256b67b_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:06285611aef2528fc92c5cebb66ff4c74fe44d457f43cf9ec2f4a98c3c68d25e_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:25e0f4153eb5bc6fbc6b389d5adc81bfde103070ef58317c3c25ce4144a628d3_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:acd3c0369c18cbfa63a5972ed1721f93f1fcb456963ff855dea2c295baf1cdb8_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:d086075db52f4476aa64d7e2680baa01e99da246275fa9cae0ba4a74de63c7f3_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:07d89c1b524d1451051feb865bc716da2197add90fa0c58c4cf4a82975ec846c_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:6582e647d7dd604e25977ec1579969aa1fcb29ead1a0ea65833531d633bbdd2b_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:75e3aec03dffbd0f40f88a08ff5e0319f4515d73f0bcfae28b5fa526b494afc4_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:f0079e8ae53d84223aea2d3186e7bc6b525b7c03d307cde50cfb9f1bbc18712b_arm64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-42587"
},
{
"category": "external",
"summary": "RHBZ#2477220",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2477220"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-42587",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-42587"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-42587",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-42587"
},
{
"category": "external",
"summary": "https://github.com/netty/netty/security/advisories/GHSA-f6hv-jmp6-3vwv",
"url": "https://github.com/netty/netty/security/advisories/GHSA-f6hv-jmp6-3vwv"
}
],
"release_date": "2026-05-13T18:22:21.699000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T17:12:17+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\nFor details on how to apply this update, refer to:\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:141f17d12c748c7ab9e94cfd9db7e2492d3063e7478249d6430ac0d8fcfb8875_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:5909184fe3d37eb45ba3bf55d7b708d818f2a5abfc2949c4a7081a5cd30cea4f_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:6217f0bb4937fa0e0fc0a5c86456fdc1992e169dfedc3d11d5165cef575d4d53_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:d55a55a36a23e7deb83718bd5dcc19b083b84d441add72ea7f4e28935e4717e3_ppc64le"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36820"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability.",
"product_ids": [
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:1384e5ba2b7d23119a49d8713826f4c65668bca310589ac7abd0c0d41c7e4c90_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:7f58528b1da9146aa55917324fdf2b375794742b34e5d10ff57f713af60746cd_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:844c3b1499b00aeadfc561642e53792ad80f535efd53b35793ba08b0f26c6d61_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:e1019c30e1d84e66d775d0d6fc7d051803dcbe44823fb2a1914807be39c79dae_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:8c9a7ebf430b9f4ca200c6c70b049e8456cf88fd8bf0871b42d65e8dc786d451_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:926d965e6fd12ec0d758270fb4c90bbdc1a05e60cc4c895cf9b671a296c9d867_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:e8e807451e3c5d8d0a8575e1280d7125a4ece51547a7b4a5cd247837662cedad_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:f2a24aa01cbe0d926d4aefe3b12eba21eb5ec7f87276e572a6814c727228624c_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:45cc0d783d1e7874ac73dfbdfe7e03c63b227ab3c4f1e15a0a2f5c97956a76d9_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:6f3eb26734e89375c3e1fb7ac366e12dc0d41bac8f07de9210c7e9845a01eec1_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:768c45fa9f35d98dfe5cfe1ea12f552402bf68ac6e1f828b14310ef59ce57c40_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:b5f1bf30495f6be97c696cf7f90768629cee96f8d106f745bf95fdefddc99592_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:137ffbb95d463d95da6c350600d968f3cd0e9873bf2e7c6edf952ae3229e9e2b_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:1cccdfd7e90877c27c6d8caea4f1e8ad89bb97c83d97ddf570d4f4ee116f1986_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:71657b82894cfd9e350746f48965e148868a675b9a20dcb7f94a6bc7a5b16ea5_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:881e405e32821ef10cf992c7a633281c1dc45df721fe909048df1689472000ce_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:6c85b42ede0f4745ed558bcb03d033c49f56cef17a70c12e5308066124cac6e3_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:091529a93e258a612fd4a98222e6a370ee10b4e97efa791b50f79a2670163d01_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0e8958a22f6771ddfe32b34027c69dbbef65d980c7e465a79d4202d2627994ad_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:5a8b0203ff083113e8b30a123ab30c4bad571f57fb59c1e7e01807b92552504e_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:89bf6a32a0935cacadbc6d23566dce6ca741e404d58c11050638c7b8e868028b_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:077cc953354ea2edd85569a622f97c15d44163d68234e7a9fdee899d25c19cdb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:66285f866090e1bfbedacd592e9d5ea9f2a30b88aa03bc86bc790d6b98a929a4_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:8c80054171d5063457df4bd074674b1824783a101dacb6137da227080aff957c_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:b0f15904251c6665961eef9c944d00f17499f7219351fe213fe7935f62fbf7ac_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:62476ac2fb0096caa9b181f523cc3573ccffe70be1433f08d1d0255b6d3a0640_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:6f632bc9829880a44e2e94084284b52683b4a01dc3315043b0aa32eb344b16cb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:aa3d1cf7853bfe8307efb01f714585f378d1d3d4ed5de7c8808a72e4aeecd4f3_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:bf1d4b2b1ef03e65be59699ce3233a75a34e1777abc182984c7a8efa698a936e_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:141f17d12c748c7ab9e94cfd9db7e2492d3063e7478249d6430ac0d8fcfb8875_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:5909184fe3d37eb45ba3bf55d7b708d818f2a5abfc2949c4a7081a5cd30cea4f_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:6217f0bb4937fa0e0fc0a5c86456fdc1992e169dfedc3d11d5165cef575d4d53_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:d55a55a36a23e7deb83718bd5dcc19b083b84d441add72ea7f4e28935e4717e3_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:0f8e1171f278395f3c72e4d9d3c0492bed15b678963fb2b6182bd65343b85a2e_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:823bb59b1c7d01557c29f9f1e4a4ee39814c38d826b06c3c9de4b8d179078419_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:93c7e9b321c7e9aa4a412a993a6b20412e24772832cc0dd23bbb17aa25f15487_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:9e50b45f81fedab27e896f04b80bacaa01d8370ff5679147f95ad79b61972d83_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:8f145d4e336bd77fcc94f0845f9ebf94563ffd96d56794d96a665c11241df152_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:981917806c7faf31156241cc85577cf375ee566f78adaeadc096d0ba8482b835_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:af3ed91687500d64e2348cca4877c43f73211b8fbd132e7767c3521763185348_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:c05020e5ee5bddc62e38493cd16b6e4ffde7c2248a00d710f32b90a6ee12ceeb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2af86b409540513f6da1afa83110a5cafe8778d2ec16332faa31c964bd5f43f7_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2f3bec76a833a72c7dfa93ed55e55e80e2621c154e5a2f156deaf78d7c6b97b4_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:81a2385be30079500f13f97a18607aa685abd61265bf8fa78bc6ce126341be50_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:fdc8f64f3b82b200a5e31b01b8612069f1aa897014085c1de755394552a1a70a_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:856b9088dbda4e7374daf232602f4bb90b05ad1be1df46d6e363a002f549f4de_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:a107ae2f7b140f2fb2243f33c378228c2f164cfd2d23f57e63f6c424fd400929_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:e21de356b7d879800a96f6c5aeee6bc59a3ed9c58d36503f7089625ce887bb25_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:fcaf6d60d682cf51866948ea3b4846c2993e2801adb69dc745ffa832318f515c_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:11f005939e15d63057bf2f0a988b6baebc275d3e752e9f7696d0f7f5266fd5d6_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:4b4c98be96a932d508fad769eff61bff2a44e13baa60b22b6c543f4a11eb71c2_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:6c87453ffe89e8be752ee40c8a9ccf6894c83be703f13901b1e8b64a4c0e549a_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:c18a1c50a4fc7081c6564d1c4ed4904212b7939a4f1f46afef0a36dc1d76f38e_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:33367b9fdb3addce3302ad35bc10423505fefe3dd27b8b9013b26d66caac2a6c_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:72cbdb061cbcd295be5e66a0eabb409af16ade7f0aa12b04c2d7327e9e1a24ba_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:d0379f9da8cbb5514394a4550ff0d79f90fa691fcced5806296479c7b63353da_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:e99d1d877bd7335736cbaeb4db5b9904369a1d07f6df332c38ad79ff1256b67b_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:06285611aef2528fc92c5cebb66ff4c74fe44d457f43cf9ec2f4a98c3c68d25e_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:25e0f4153eb5bc6fbc6b389d5adc81bfde103070ef58317c3c25ce4144a628d3_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:acd3c0369c18cbfa63a5972ed1721f93f1fcb456963ff855dea2c295baf1cdb8_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:d086075db52f4476aa64d7e2680baa01e99da246275fa9cae0ba4a74de63c7f3_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:07d89c1b524d1451051feb865bc716da2197add90fa0c58c4cf4a82975ec846c_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:6582e647d7dd604e25977ec1579969aa1fcb29ead1a0ea65833531d633bbdd2b_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:75e3aec03dffbd0f40f88a08ff5e0319f4515d73f0bcfae28b5fa526b494afc4_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:f0079e8ae53d84223aea2d3186e7bc6b525b7c03d307cde50cfb9f1bbc18712b_arm64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:1384e5ba2b7d23119a49d8713826f4c65668bca310589ac7abd0c0d41c7e4c90_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:7f58528b1da9146aa55917324fdf2b375794742b34e5d10ff57f713af60746cd_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:844c3b1499b00aeadfc561642e53792ad80f535efd53b35793ba08b0f26c6d61_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:e1019c30e1d84e66d775d0d6fc7d051803dcbe44823fb2a1914807be39c79dae_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:8c9a7ebf430b9f4ca200c6c70b049e8456cf88fd8bf0871b42d65e8dc786d451_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:926d965e6fd12ec0d758270fb4c90bbdc1a05e60cc4c895cf9b671a296c9d867_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:e8e807451e3c5d8d0a8575e1280d7125a4ece51547a7b4a5cd247837662cedad_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:f2a24aa01cbe0d926d4aefe3b12eba21eb5ec7f87276e572a6814c727228624c_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:45cc0d783d1e7874ac73dfbdfe7e03c63b227ab3c4f1e15a0a2f5c97956a76d9_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:6f3eb26734e89375c3e1fb7ac366e12dc0d41bac8f07de9210c7e9845a01eec1_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:768c45fa9f35d98dfe5cfe1ea12f552402bf68ac6e1f828b14310ef59ce57c40_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:b5f1bf30495f6be97c696cf7f90768629cee96f8d106f745bf95fdefddc99592_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:137ffbb95d463d95da6c350600d968f3cd0e9873bf2e7c6edf952ae3229e9e2b_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:1cccdfd7e90877c27c6d8caea4f1e8ad89bb97c83d97ddf570d4f4ee116f1986_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:71657b82894cfd9e350746f48965e148868a675b9a20dcb7f94a6bc7a5b16ea5_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:881e405e32821ef10cf992c7a633281c1dc45df721fe909048df1689472000ce_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:6c85b42ede0f4745ed558bcb03d033c49f56cef17a70c12e5308066124cac6e3_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:091529a93e258a612fd4a98222e6a370ee10b4e97efa791b50f79a2670163d01_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0e8958a22f6771ddfe32b34027c69dbbef65d980c7e465a79d4202d2627994ad_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:5a8b0203ff083113e8b30a123ab30c4bad571f57fb59c1e7e01807b92552504e_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:89bf6a32a0935cacadbc6d23566dce6ca741e404d58c11050638c7b8e868028b_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:077cc953354ea2edd85569a622f97c15d44163d68234e7a9fdee899d25c19cdb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:66285f866090e1bfbedacd592e9d5ea9f2a30b88aa03bc86bc790d6b98a929a4_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:8c80054171d5063457df4bd074674b1824783a101dacb6137da227080aff957c_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:b0f15904251c6665961eef9c944d00f17499f7219351fe213fe7935f62fbf7ac_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:62476ac2fb0096caa9b181f523cc3573ccffe70be1433f08d1d0255b6d3a0640_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:6f632bc9829880a44e2e94084284b52683b4a01dc3315043b0aa32eb344b16cb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:aa3d1cf7853bfe8307efb01f714585f378d1d3d4ed5de7c8808a72e4aeecd4f3_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:bf1d4b2b1ef03e65be59699ce3233a75a34e1777abc182984c7a8efa698a936e_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:141f17d12c748c7ab9e94cfd9db7e2492d3063e7478249d6430ac0d8fcfb8875_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:5909184fe3d37eb45ba3bf55d7b708d818f2a5abfc2949c4a7081a5cd30cea4f_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:6217f0bb4937fa0e0fc0a5c86456fdc1992e169dfedc3d11d5165cef575d4d53_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:d55a55a36a23e7deb83718bd5dcc19b083b84d441add72ea7f4e28935e4717e3_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:0f8e1171f278395f3c72e4d9d3c0492bed15b678963fb2b6182bd65343b85a2e_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:823bb59b1c7d01557c29f9f1e4a4ee39814c38d826b06c3c9de4b8d179078419_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:93c7e9b321c7e9aa4a412a993a6b20412e24772832cc0dd23bbb17aa25f15487_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:9e50b45f81fedab27e896f04b80bacaa01d8370ff5679147f95ad79b61972d83_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:8f145d4e336bd77fcc94f0845f9ebf94563ffd96d56794d96a665c11241df152_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:981917806c7faf31156241cc85577cf375ee566f78adaeadc096d0ba8482b835_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:af3ed91687500d64e2348cca4877c43f73211b8fbd132e7767c3521763185348_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:c05020e5ee5bddc62e38493cd16b6e4ffde7c2248a00d710f32b90a6ee12ceeb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2af86b409540513f6da1afa83110a5cafe8778d2ec16332faa31c964bd5f43f7_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2f3bec76a833a72c7dfa93ed55e55e80e2621c154e5a2f156deaf78d7c6b97b4_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:81a2385be30079500f13f97a18607aa685abd61265bf8fa78bc6ce126341be50_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:fdc8f64f3b82b200a5e31b01b8612069f1aa897014085c1de755394552a1a70a_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:856b9088dbda4e7374daf232602f4bb90b05ad1be1df46d6e363a002f549f4de_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:a107ae2f7b140f2fb2243f33c378228c2f164cfd2d23f57e63f6c424fd400929_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:e21de356b7d879800a96f6c5aeee6bc59a3ed9c58d36503f7089625ce887bb25_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:fcaf6d60d682cf51866948ea3b4846c2993e2801adb69dc745ffa832318f515c_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:11f005939e15d63057bf2f0a988b6baebc275d3e752e9f7696d0f7f5266fd5d6_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:4b4c98be96a932d508fad769eff61bff2a44e13baa60b22b6c543f4a11eb71c2_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:6c87453ffe89e8be752ee40c8a9ccf6894c83be703f13901b1e8b64a4c0e549a_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:c18a1c50a4fc7081c6564d1c4ed4904212b7939a4f1f46afef0a36dc1d76f38e_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:33367b9fdb3addce3302ad35bc10423505fefe3dd27b8b9013b26d66caac2a6c_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:72cbdb061cbcd295be5e66a0eabb409af16ade7f0aa12b04c2d7327e9e1a24ba_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:d0379f9da8cbb5514394a4550ff0d79f90fa691fcced5806296479c7b63353da_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:e99d1d877bd7335736cbaeb4db5b9904369a1d07f6df332c38ad79ff1256b67b_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:06285611aef2528fc92c5cebb66ff4c74fe44d457f43cf9ec2f4a98c3c68d25e_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:25e0f4153eb5bc6fbc6b389d5adc81bfde103070ef58317c3c25ce4144a628d3_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:acd3c0369c18cbfa63a5972ed1721f93f1fcb456963ff855dea2c295baf1cdb8_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:d086075db52f4476aa64d7e2680baa01e99da246275fa9cae0ba4a74de63c7f3_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:07d89c1b524d1451051feb865bc716da2197add90fa0c58c4cf4a82975ec846c_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:6582e647d7dd604e25977ec1579969aa1fcb29ead1a0ea65833531d633bbdd2b_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:75e3aec03dffbd0f40f88a08ff5e0319f4515d73f0bcfae28b5fa526b494afc4_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:f0079e8ae53d84223aea2d3186e7bc6b525b7c03d307cde50cfb9f1bbc18712b_arm64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "netty: io.netty/netty-codec-http: io.netty/netty-codec-http2: Netty: Denial of Service via unbounded memory allocation in HTTP content decompression"
},
{
"cve": "CVE-2026-44249",
"cwe": {
"id": "CWE-1287",
"name": "Improper Validation of Specified Type of Input"
},
"discovery_date": "2026-06-11T22:02:05.327173+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:1384e5ba2b7d23119a49d8713826f4c65668bca310589ac7abd0c0d41c7e4c90_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:7f58528b1da9146aa55917324fdf2b375794742b34e5d10ff57f713af60746cd_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:844c3b1499b00aeadfc561642e53792ad80f535efd53b35793ba08b0f26c6d61_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:e1019c30e1d84e66d775d0d6fc7d051803dcbe44823fb2a1914807be39c79dae_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:8c9a7ebf430b9f4ca200c6c70b049e8456cf88fd8bf0871b42d65e8dc786d451_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:926d965e6fd12ec0d758270fb4c90bbdc1a05e60cc4c895cf9b671a296c9d867_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:e8e807451e3c5d8d0a8575e1280d7125a4ece51547a7b4a5cd247837662cedad_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:f2a24aa01cbe0d926d4aefe3b12eba21eb5ec7f87276e572a6814c727228624c_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:45cc0d783d1e7874ac73dfbdfe7e03c63b227ab3c4f1e15a0a2f5c97956a76d9_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:6f3eb26734e89375c3e1fb7ac366e12dc0d41bac8f07de9210c7e9845a01eec1_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:768c45fa9f35d98dfe5cfe1ea12f552402bf68ac6e1f828b14310ef59ce57c40_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:b5f1bf30495f6be97c696cf7f90768629cee96f8d106f745bf95fdefddc99592_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:137ffbb95d463d95da6c350600d968f3cd0e9873bf2e7c6edf952ae3229e9e2b_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:1cccdfd7e90877c27c6d8caea4f1e8ad89bb97c83d97ddf570d4f4ee116f1986_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:71657b82894cfd9e350746f48965e148868a675b9a20dcb7f94a6bc7a5b16ea5_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:881e405e32821ef10cf992c7a633281c1dc45df721fe909048df1689472000ce_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:6c85b42ede0f4745ed558bcb03d033c49f56cef17a70c12e5308066124cac6e3_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:091529a93e258a612fd4a98222e6a370ee10b4e97efa791b50f79a2670163d01_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0e8958a22f6771ddfe32b34027c69dbbef65d980c7e465a79d4202d2627994ad_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:5a8b0203ff083113e8b30a123ab30c4bad571f57fb59c1e7e01807b92552504e_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:89bf6a32a0935cacadbc6d23566dce6ca741e404d58c11050638c7b8e868028b_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:077cc953354ea2edd85569a622f97c15d44163d68234e7a9fdee899d25c19cdb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:66285f866090e1bfbedacd592e9d5ea9f2a30b88aa03bc86bc790d6b98a929a4_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:8c80054171d5063457df4bd074674b1824783a101dacb6137da227080aff957c_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:b0f15904251c6665961eef9c944d00f17499f7219351fe213fe7935f62fbf7ac_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:62476ac2fb0096caa9b181f523cc3573ccffe70be1433f08d1d0255b6d3a0640_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:6f632bc9829880a44e2e94084284b52683b4a01dc3315043b0aa32eb344b16cb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:aa3d1cf7853bfe8307efb01f714585f378d1d3d4ed5de7c8808a72e4aeecd4f3_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:bf1d4b2b1ef03e65be59699ce3233a75a34e1777abc182984c7a8efa698a936e_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:0f8e1171f278395f3c72e4d9d3c0492bed15b678963fb2b6182bd65343b85a2e_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:823bb59b1c7d01557c29f9f1e4a4ee39814c38d826b06c3c9de4b8d179078419_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:93c7e9b321c7e9aa4a412a993a6b20412e24772832cc0dd23bbb17aa25f15487_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:9e50b45f81fedab27e896f04b80bacaa01d8370ff5679147f95ad79b61972d83_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:856b9088dbda4e7374daf232602f4bb90b05ad1be1df46d6e363a002f549f4de_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:a107ae2f7b140f2fb2243f33c378228c2f164cfd2d23f57e63f6c424fd400929_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:e21de356b7d879800a96f6c5aeee6bc59a3ed9c58d36503f7089625ce887bb25_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:fcaf6d60d682cf51866948ea3b4846c2993e2801adb69dc745ffa832318f515c_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:11f005939e15d63057bf2f0a988b6baebc275d3e752e9f7696d0f7f5266fd5d6_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:4b4c98be96a932d508fad769eff61bff2a44e13baa60b22b6c543f4a11eb71c2_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:6c87453ffe89e8be752ee40c8a9ccf6894c83be703f13901b1e8b64a4c0e549a_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:c18a1c50a4fc7081c6564d1c4ed4904212b7939a4f1f46afef0a36dc1d76f38e_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:33367b9fdb3addce3302ad35bc10423505fefe3dd27b8b9013b26d66caac2a6c_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:72cbdb061cbcd295be5e66a0eabb409af16ade7f0aa12b04c2d7327e9e1a24ba_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:d0379f9da8cbb5514394a4550ff0d79f90fa691fcced5806296479c7b63353da_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:e99d1d877bd7335736cbaeb4db5b9904369a1d07f6df332c38ad79ff1256b67b_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:06285611aef2528fc92c5cebb66ff4c74fe44d457f43cf9ec2f4a98c3c68d25e_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:25e0f4153eb5bc6fbc6b389d5adc81bfde103070ef58317c3c25ce4144a628d3_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:acd3c0369c18cbfa63a5972ed1721f93f1fcb456963ff855dea2c295baf1cdb8_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:d086075db52f4476aa64d7e2680baa01e99da246275fa9cae0ba4a74de63c7f3_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:07d89c1b524d1451051feb865bc716da2197add90fa0c58c4cf4a82975ec846c_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:6582e647d7dd604e25977ec1579969aa1fcb29ead1a0ea65833531d633bbdd2b_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:75e3aec03dffbd0f40f88a08ff5e0319f4515d73f0bcfae28b5fa526b494afc4_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:f0079e8ae53d84223aea2d3186e7bc6b525b7c03d307cde50cfb9f1bbc18712b_arm64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2488081"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in netty-handler, a component of the Netty network application framework. A remote attacker can exploit an incorrect masking operation in the IpSubnetFilterRule.compareTo() function to bypass configured IPv6 subnet rules. This allows valid public IP addresses to circumvent intended network restrictions, potentially leading to unauthorized access or exposure of services.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "netty-handler: netty-handler: IPv6 subnet rule bypass due to incorrect masking operation",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability in netty-handler is rated as Important because a remote attacker can bypass configured IPv6 subnet filtering rules. This flaw, stemming from an incorrect masking operation, could allow unauthorized access to or exposure of services that are intended to be network-restricted within Red Hat products utilizing the affected Netty component.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:141f17d12c748c7ab9e94cfd9db7e2492d3063e7478249d6430ac0d8fcfb8875_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:5909184fe3d37eb45ba3bf55d7b708d818f2a5abfc2949c4a7081a5cd30cea4f_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:6217f0bb4937fa0e0fc0a5c86456fdc1992e169dfedc3d11d5165cef575d4d53_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:d55a55a36a23e7deb83718bd5dcc19b083b84d441add72ea7f4e28935e4717e3_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:8f145d4e336bd77fcc94f0845f9ebf94563ffd96d56794d96a665c11241df152_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:981917806c7faf31156241cc85577cf375ee566f78adaeadc096d0ba8482b835_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:af3ed91687500d64e2348cca4877c43f73211b8fbd132e7767c3521763185348_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:c05020e5ee5bddc62e38493cd16b6e4ffde7c2248a00d710f32b90a6ee12ceeb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2af86b409540513f6da1afa83110a5cafe8778d2ec16332faa31c964bd5f43f7_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2f3bec76a833a72c7dfa93ed55e55e80e2621c154e5a2f156deaf78d7c6b97b4_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:81a2385be30079500f13f97a18607aa685abd61265bf8fa78bc6ce126341be50_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:fdc8f64f3b82b200a5e31b01b8612069f1aa897014085c1de755394552a1a70a_amd64"
],
"known_not_affected": [
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:1384e5ba2b7d23119a49d8713826f4c65668bca310589ac7abd0c0d41c7e4c90_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:7f58528b1da9146aa55917324fdf2b375794742b34e5d10ff57f713af60746cd_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:844c3b1499b00aeadfc561642e53792ad80f535efd53b35793ba08b0f26c6d61_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:e1019c30e1d84e66d775d0d6fc7d051803dcbe44823fb2a1914807be39c79dae_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:8c9a7ebf430b9f4ca200c6c70b049e8456cf88fd8bf0871b42d65e8dc786d451_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:926d965e6fd12ec0d758270fb4c90bbdc1a05e60cc4c895cf9b671a296c9d867_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:e8e807451e3c5d8d0a8575e1280d7125a4ece51547a7b4a5cd247837662cedad_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:f2a24aa01cbe0d926d4aefe3b12eba21eb5ec7f87276e572a6814c727228624c_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:45cc0d783d1e7874ac73dfbdfe7e03c63b227ab3c4f1e15a0a2f5c97956a76d9_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:6f3eb26734e89375c3e1fb7ac366e12dc0d41bac8f07de9210c7e9845a01eec1_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:768c45fa9f35d98dfe5cfe1ea12f552402bf68ac6e1f828b14310ef59ce57c40_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:b5f1bf30495f6be97c696cf7f90768629cee96f8d106f745bf95fdefddc99592_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:137ffbb95d463d95da6c350600d968f3cd0e9873bf2e7c6edf952ae3229e9e2b_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:1cccdfd7e90877c27c6d8caea4f1e8ad89bb97c83d97ddf570d4f4ee116f1986_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:71657b82894cfd9e350746f48965e148868a675b9a20dcb7f94a6bc7a5b16ea5_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:881e405e32821ef10cf992c7a633281c1dc45df721fe909048df1689472000ce_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:6c85b42ede0f4745ed558bcb03d033c49f56cef17a70c12e5308066124cac6e3_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:091529a93e258a612fd4a98222e6a370ee10b4e97efa791b50f79a2670163d01_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0e8958a22f6771ddfe32b34027c69dbbef65d980c7e465a79d4202d2627994ad_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:5a8b0203ff083113e8b30a123ab30c4bad571f57fb59c1e7e01807b92552504e_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:89bf6a32a0935cacadbc6d23566dce6ca741e404d58c11050638c7b8e868028b_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:077cc953354ea2edd85569a622f97c15d44163d68234e7a9fdee899d25c19cdb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:66285f866090e1bfbedacd592e9d5ea9f2a30b88aa03bc86bc790d6b98a929a4_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:8c80054171d5063457df4bd074674b1824783a101dacb6137da227080aff957c_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:b0f15904251c6665961eef9c944d00f17499f7219351fe213fe7935f62fbf7ac_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:62476ac2fb0096caa9b181f523cc3573ccffe70be1433f08d1d0255b6d3a0640_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:6f632bc9829880a44e2e94084284b52683b4a01dc3315043b0aa32eb344b16cb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:aa3d1cf7853bfe8307efb01f714585f378d1d3d4ed5de7c8808a72e4aeecd4f3_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:bf1d4b2b1ef03e65be59699ce3233a75a34e1777abc182984c7a8efa698a936e_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:0f8e1171f278395f3c72e4d9d3c0492bed15b678963fb2b6182bd65343b85a2e_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:823bb59b1c7d01557c29f9f1e4a4ee39814c38d826b06c3c9de4b8d179078419_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:93c7e9b321c7e9aa4a412a993a6b20412e24772832cc0dd23bbb17aa25f15487_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:9e50b45f81fedab27e896f04b80bacaa01d8370ff5679147f95ad79b61972d83_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:856b9088dbda4e7374daf232602f4bb90b05ad1be1df46d6e363a002f549f4de_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:a107ae2f7b140f2fb2243f33c378228c2f164cfd2d23f57e63f6c424fd400929_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:e21de356b7d879800a96f6c5aeee6bc59a3ed9c58d36503f7089625ce887bb25_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:fcaf6d60d682cf51866948ea3b4846c2993e2801adb69dc745ffa832318f515c_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:11f005939e15d63057bf2f0a988b6baebc275d3e752e9f7696d0f7f5266fd5d6_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:4b4c98be96a932d508fad769eff61bff2a44e13baa60b22b6c543f4a11eb71c2_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:6c87453ffe89e8be752ee40c8a9ccf6894c83be703f13901b1e8b64a4c0e549a_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:c18a1c50a4fc7081c6564d1c4ed4904212b7939a4f1f46afef0a36dc1d76f38e_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:33367b9fdb3addce3302ad35bc10423505fefe3dd27b8b9013b26d66caac2a6c_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:72cbdb061cbcd295be5e66a0eabb409af16ade7f0aa12b04c2d7327e9e1a24ba_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:d0379f9da8cbb5514394a4550ff0d79f90fa691fcced5806296479c7b63353da_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:e99d1d877bd7335736cbaeb4db5b9904369a1d07f6df332c38ad79ff1256b67b_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:06285611aef2528fc92c5cebb66ff4c74fe44d457f43cf9ec2f4a98c3c68d25e_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:25e0f4153eb5bc6fbc6b389d5adc81bfde103070ef58317c3c25ce4144a628d3_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:acd3c0369c18cbfa63a5972ed1721f93f1fcb456963ff855dea2c295baf1cdb8_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:d086075db52f4476aa64d7e2680baa01e99da246275fa9cae0ba4a74de63c7f3_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:07d89c1b524d1451051feb865bc716da2197add90fa0c58c4cf4a82975ec846c_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:6582e647d7dd604e25977ec1579969aa1fcb29ead1a0ea65833531d633bbdd2b_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:75e3aec03dffbd0f40f88a08ff5e0319f4515d73f0bcfae28b5fa526b494afc4_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:f0079e8ae53d84223aea2d3186e7bc6b525b7c03d307cde50cfb9f1bbc18712b_arm64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-44249"
},
{
"category": "external",
"summary": "RHBZ#2488081",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2488081"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-44249",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-44249"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-44249",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-44249"
},
{
"category": "external",
"summary": "https://github.com/netty/netty/releases/tag/netty-4.1.135.Final",
"url": "https://github.com/netty/netty/releases/tag/netty-4.1.135.Final"
},
{
"category": "external",
"summary": "https://github.com/netty/netty/releases/tag/netty-4.2.15.Final",
"url": "https://github.com/netty/netty/releases/tag/netty-4.2.15.Final"
},
{
"category": "external",
"summary": "https://github.com/netty/netty/security/advisories/GHSA-3qp7-7mw8-wx86",
"url": "https://github.com/netty/netty/security/advisories/GHSA-3qp7-7mw8-wx86"
}
],
"release_date": "2026-06-11T20:46:14.110000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T17:12:17+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\nFor details on how to apply this update, refer to:\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:141f17d12c748c7ab9e94cfd9db7e2492d3063e7478249d6430ac0d8fcfb8875_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:5909184fe3d37eb45ba3bf55d7b708d818f2a5abfc2949c4a7081a5cd30cea4f_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:6217f0bb4937fa0e0fc0a5c86456fdc1992e169dfedc3d11d5165cef575d4d53_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:d55a55a36a23e7deb83718bd5dcc19b083b84d441add72ea7f4e28935e4717e3_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:8f145d4e336bd77fcc94f0845f9ebf94563ffd96d56794d96a665c11241df152_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:981917806c7faf31156241cc85577cf375ee566f78adaeadc096d0ba8482b835_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:af3ed91687500d64e2348cca4877c43f73211b8fbd132e7767c3521763185348_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:c05020e5ee5bddc62e38493cd16b6e4ffde7c2248a00d710f32b90a6ee12ceeb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2af86b409540513f6da1afa83110a5cafe8778d2ec16332faa31c964bd5f43f7_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2f3bec76a833a72c7dfa93ed55e55e80e2621c154e5a2f156deaf78d7c6b97b4_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:81a2385be30079500f13f97a18607aa685abd61265bf8fa78bc6ce126341be50_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:fdc8f64f3b82b200a5e31b01b8612069f1aa897014085c1de755394552a1a70a_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36820"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability.",
"product_ids": [
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:1384e5ba2b7d23119a49d8713826f4c65668bca310589ac7abd0c0d41c7e4c90_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:7f58528b1da9146aa55917324fdf2b375794742b34e5d10ff57f713af60746cd_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:844c3b1499b00aeadfc561642e53792ad80f535efd53b35793ba08b0f26c6d61_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:e1019c30e1d84e66d775d0d6fc7d051803dcbe44823fb2a1914807be39c79dae_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:8c9a7ebf430b9f4ca200c6c70b049e8456cf88fd8bf0871b42d65e8dc786d451_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:926d965e6fd12ec0d758270fb4c90bbdc1a05e60cc4c895cf9b671a296c9d867_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:e8e807451e3c5d8d0a8575e1280d7125a4ece51547a7b4a5cd247837662cedad_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:f2a24aa01cbe0d926d4aefe3b12eba21eb5ec7f87276e572a6814c727228624c_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:45cc0d783d1e7874ac73dfbdfe7e03c63b227ab3c4f1e15a0a2f5c97956a76d9_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:6f3eb26734e89375c3e1fb7ac366e12dc0d41bac8f07de9210c7e9845a01eec1_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:768c45fa9f35d98dfe5cfe1ea12f552402bf68ac6e1f828b14310ef59ce57c40_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:b5f1bf30495f6be97c696cf7f90768629cee96f8d106f745bf95fdefddc99592_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:137ffbb95d463d95da6c350600d968f3cd0e9873bf2e7c6edf952ae3229e9e2b_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:1cccdfd7e90877c27c6d8caea4f1e8ad89bb97c83d97ddf570d4f4ee116f1986_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:71657b82894cfd9e350746f48965e148868a675b9a20dcb7f94a6bc7a5b16ea5_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:881e405e32821ef10cf992c7a633281c1dc45df721fe909048df1689472000ce_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:6c85b42ede0f4745ed558bcb03d033c49f56cef17a70c12e5308066124cac6e3_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:091529a93e258a612fd4a98222e6a370ee10b4e97efa791b50f79a2670163d01_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0e8958a22f6771ddfe32b34027c69dbbef65d980c7e465a79d4202d2627994ad_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:5a8b0203ff083113e8b30a123ab30c4bad571f57fb59c1e7e01807b92552504e_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:89bf6a32a0935cacadbc6d23566dce6ca741e404d58c11050638c7b8e868028b_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:077cc953354ea2edd85569a622f97c15d44163d68234e7a9fdee899d25c19cdb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:66285f866090e1bfbedacd592e9d5ea9f2a30b88aa03bc86bc790d6b98a929a4_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:8c80054171d5063457df4bd074674b1824783a101dacb6137da227080aff957c_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:b0f15904251c6665961eef9c944d00f17499f7219351fe213fe7935f62fbf7ac_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:62476ac2fb0096caa9b181f523cc3573ccffe70be1433f08d1d0255b6d3a0640_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:6f632bc9829880a44e2e94084284b52683b4a01dc3315043b0aa32eb344b16cb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:aa3d1cf7853bfe8307efb01f714585f378d1d3d4ed5de7c8808a72e4aeecd4f3_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:bf1d4b2b1ef03e65be59699ce3233a75a34e1777abc182984c7a8efa698a936e_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:141f17d12c748c7ab9e94cfd9db7e2492d3063e7478249d6430ac0d8fcfb8875_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:5909184fe3d37eb45ba3bf55d7b708d818f2a5abfc2949c4a7081a5cd30cea4f_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:6217f0bb4937fa0e0fc0a5c86456fdc1992e169dfedc3d11d5165cef575d4d53_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:d55a55a36a23e7deb83718bd5dcc19b083b84d441add72ea7f4e28935e4717e3_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:0f8e1171f278395f3c72e4d9d3c0492bed15b678963fb2b6182bd65343b85a2e_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:823bb59b1c7d01557c29f9f1e4a4ee39814c38d826b06c3c9de4b8d179078419_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:93c7e9b321c7e9aa4a412a993a6b20412e24772832cc0dd23bbb17aa25f15487_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:9e50b45f81fedab27e896f04b80bacaa01d8370ff5679147f95ad79b61972d83_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:8f145d4e336bd77fcc94f0845f9ebf94563ffd96d56794d96a665c11241df152_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:981917806c7faf31156241cc85577cf375ee566f78adaeadc096d0ba8482b835_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:af3ed91687500d64e2348cca4877c43f73211b8fbd132e7767c3521763185348_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:c05020e5ee5bddc62e38493cd16b6e4ffde7c2248a00d710f32b90a6ee12ceeb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2af86b409540513f6da1afa83110a5cafe8778d2ec16332faa31c964bd5f43f7_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2f3bec76a833a72c7dfa93ed55e55e80e2621c154e5a2f156deaf78d7c6b97b4_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:81a2385be30079500f13f97a18607aa685abd61265bf8fa78bc6ce126341be50_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:fdc8f64f3b82b200a5e31b01b8612069f1aa897014085c1de755394552a1a70a_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:856b9088dbda4e7374daf232602f4bb90b05ad1be1df46d6e363a002f549f4de_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:a107ae2f7b140f2fb2243f33c378228c2f164cfd2d23f57e63f6c424fd400929_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:e21de356b7d879800a96f6c5aeee6bc59a3ed9c58d36503f7089625ce887bb25_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:fcaf6d60d682cf51866948ea3b4846c2993e2801adb69dc745ffa832318f515c_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:11f005939e15d63057bf2f0a988b6baebc275d3e752e9f7696d0f7f5266fd5d6_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:4b4c98be96a932d508fad769eff61bff2a44e13baa60b22b6c543f4a11eb71c2_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:6c87453ffe89e8be752ee40c8a9ccf6894c83be703f13901b1e8b64a4c0e549a_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:c18a1c50a4fc7081c6564d1c4ed4904212b7939a4f1f46afef0a36dc1d76f38e_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:33367b9fdb3addce3302ad35bc10423505fefe3dd27b8b9013b26d66caac2a6c_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:72cbdb061cbcd295be5e66a0eabb409af16ade7f0aa12b04c2d7327e9e1a24ba_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:d0379f9da8cbb5514394a4550ff0d79f90fa691fcced5806296479c7b63353da_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:e99d1d877bd7335736cbaeb4db5b9904369a1d07f6df332c38ad79ff1256b67b_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:06285611aef2528fc92c5cebb66ff4c74fe44d457f43cf9ec2f4a98c3c68d25e_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:25e0f4153eb5bc6fbc6b389d5adc81bfde103070ef58317c3c25ce4144a628d3_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:acd3c0369c18cbfa63a5972ed1721f93f1fcb456963ff855dea2c295baf1cdb8_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:d086075db52f4476aa64d7e2680baa01e99da246275fa9cae0ba4a74de63c7f3_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:07d89c1b524d1451051feb865bc716da2197add90fa0c58c4cf4a82975ec846c_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:6582e647d7dd604e25977ec1579969aa1fcb29ead1a0ea65833531d633bbdd2b_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:75e3aec03dffbd0f40f88a08ff5e0319f4515d73f0bcfae28b5fa526b494afc4_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:f0079e8ae53d84223aea2d3186e7bc6b525b7c03d307cde50cfb9f1bbc18712b_arm64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.1,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:1384e5ba2b7d23119a49d8713826f4c65668bca310589ac7abd0c0d41c7e4c90_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:7f58528b1da9146aa55917324fdf2b375794742b34e5d10ff57f713af60746cd_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:844c3b1499b00aeadfc561642e53792ad80f535efd53b35793ba08b0f26c6d61_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:e1019c30e1d84e66d775d0d6fc7d051803dcbe44823fb2a1914807be39c79dae_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:8c9a7ebf430b9f4ca200c6c70b049e8456cf88fd8bf0871b42d65e8dc786d451_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:926d965e6fd12ec0d758270fb4c90bbdc1a05e60cc4c895cf9b671a296c9d867_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:e8e807451e3c5d8d0a8575e1280d7125a4ece51547a7b4a5cd247837662cedad_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:f2a24aa01cbe0d926d4aefe3b12eba21eb5ec7f87276e572a6814c727228624c_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:45cc0d783d1e7874ac73dfbdfe7e03c63b227ab3c4f1e15a0a2f5c97956a76d9_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:6f3eb26734e89375c3e1fb7ac366e12dc0d41bac8f07de9210c7e9845a01eec1_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:768c45fa9f35d98dfe5cfe1ea12f552402bf68ac6e1f828b14310ef59ce57c40_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:b5f1bf30495f6be97c696cf7f90768629cee96f8d106f745bf95fdefddc99592_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:137ffbb95d463d95da6c350600d968f3cd0e9873bf2e7c6edf952ae3229e9e2b_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:1cccdfd7e90877c27c6d8caea4f1e8ad89bb97c83d97ddf570d4f4ee116f1986_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:71657b82894cfd9e350746f48965e148868a675b9a20dcb7f94a6bc7a5b16ea5_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:881e405e32821ef10cf992c7a633281c1dc45df721fe909048df1689472000ce_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:6c85b42ede0f4745ed558bcb03d033c49f56cef17a70c12e5308066124cac6e3_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:091529a93e258a612fd4a98222e6a370ee10b4e97efa791b50f79a2670163d01_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0e8958a22f6771ddfe32b34027c69dbbef65d980c7e465a79d4202d2627994ad_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:5a8b0203ff083113e8b30a123ab30c4bad571f57fb59c1e7e01807b92552504e_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:89bf6a32a0935cacadbc6d23566dce6ca741e404d58c11050638c7b8e868028b_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:077cc953354ea2edd85569a622f97c15d44163d68234e7a9fdee899d25c19cdb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:66285f866090e1bfbedacd592e9d5ea9f2a30b88aa03bc86bc790d6b98a929a4_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:8c80054171d5063457df4bd074674b1824783a101dacb6137da227080aff957c_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:b0f15904251c6665961eef9c944d00f17499f7219351fe213fe7935f62fbf7ac_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:62476ac2fb0096caa9b181f523cc3573ccffe70be1433f08d1d0255b6d3a0640_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:6f632bc9829880a44e2e94084284b52683b4a01dc3315043b0aa32eb344b16cb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:aa3d1cf7853bfe8307efb01f714585f378d1d3d4ed5de7c8808a72e4aeecd4f3_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:bf1d4b2b1ef03e65be59699ce3233a75a34e1777abc182984c7a8efa698a936e_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:141f17d12c748c7ab9e94cfd9db7e2492d3063e7478249d6430ac0d8fcfb8875_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:5909184fe3d37eb45ba3bf55d7b708d818f2a5abfc2949c4a7081a5cd30cea4f_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:6217f0bb4937fa0e0fc0a5c86456fdc1992e169dfedc3d11d5165cef575d4d53_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:d55a55a36a23e7deb83718bd5dcc19b083b84d441add72ea7f4e28935e4717e3_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:0f8e1171f278395f3c72e4d9d3c0492bed15b678963fb2b6182bd65343b85a2e_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:823bb59b1c7d01557c29f9f1e4a4ee39814c38d826b06c3c9de4b8d179078419_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:93c7e9b321c7e9aa4a412a993a6b20412e24772832cc0dd23bbb17aa25f15487_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:9e50b45f81fedab27e896f04b80bacaa01d8370ff5679147f95ad79b61972d83_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:8f145d4e336bd77fcc94f0845f9ebf94563ffd96d56794d96a665c11241df152_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:981917806c7faf31156241cc85577cf375ee566f78adaeadc096d0ba8482b835_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:af3ed91687500d64e2348cca4877c43f73211b8fbd132e7767c3521763185348_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:c05020e5ee5bddc62e38493cd16b6e4ffde7c2248a00d710f32b90a6ee12ceeb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2af86b409540513f6da1afa83110a5cafe8778d2ec16332faa31c964bd5f43f7_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2f3bec76a833a72c7dfa93ed55e55e80e2621c154e5a2f156deaf78d7c6b97b4_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:81a2385be30079500f13f97a18607aa685abd61265bf8fa78bc6ce126341be50_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:fdc8f64f3b82b200a5e31b01b8612069f1aa897014085c1de755394552a1a70a_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:856b9088dbda4e7374daf232602f4bb90b05ad1be1df46d6e363a002f549f4de_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:a107ae2f7b140f2fb2243f33c378228c2f164cfd2d23f57e63f6c424fd400929_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:e21de356b7d879800a96f6c5aeee6bc59a3ed9c58d36503f7089625ce887bb25_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:fcaf6d60d682cf51866948ea3b4846c2993e2801adb69dc745ffa832318f515c_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:11f005939e15d63057bf2f0a988b6baebc275d3e752e9f7696d0f7f5266fd5d6_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:4b4c98be96a932d508fad769eff61bff2a44e13baa60b22b6c543f4a11eb71c2_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:6c87453ffe89e8be752ee40c8a9ccf6894c83be703f13901b1e8b64a4c0e549a_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:c18a1c50a4fc7081c6564d1c4ed4904212b7939a4f1f46afef0a36dc1d76f38e_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:33367b9fdb3addce3302ad35bc10423505fefe3dd27b8b9013b26d66caac2a6c_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:72cbdb061cbcd295be5e66a0eabb409af16ade7f0aa12b04c2d7327e9e1a24ba_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:d0379f9da8cbb5514394a4550ff0d79f90fa691fcced5806296479c7b63353da_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:e99d1d877bd7335736cbaeb4db5b9904369a1d07f6df332c38ad79ff1256b67b_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:06285611aef2528fc92c5cebb66ff4c74fe44d457f43cf9ec2f4a98c3c68d25e_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:25e0f4153eb5bc6fbc6b389d5adc81bfde103070ef58317c3c25ce4144a628d3_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:acd3c0369c18cbfa63a5972ed1721f93f1fcb456963ff855dea2c295baf1cdb8_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:d086075db52f4476aa64d7e2680baa01e99da246275fa9cae0ba4a74de63c7f3_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:07d89c1b524d1451051feb865bc716da2197add90fa0c58c4cf4a82975ec846c_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:6582e647d7dd604e25977ec1579969aa1fcb29ead1a0ea65833531d633bbdd2b_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:75e3aec03dffbd0f40f88a08ff5e0319f4515d73f0bcfae28b5fa526b494afc4_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:f0079e8ae53d84223aea2d3186e7bc6b525b7c03d307cde50cfb9f1bbc18712b_arm64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "netty-handler: netty-handler: IPv6 subnet rule bypass due to incorrect masking operation"
},
{
"cve": "CVE-2026-44486",
"cwe": {
"id": "CWE-201",
"name": "Insertion of Sensitive Information Into Sent Data"
},
"discovery_date": "2026-06-11T17:01:30.944384+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:8c9a7ebf430b9f4ca200c6c70b049e8456cf88fd8bf0871b42d65e8dc786d451_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:926d965e6fd12ec0d758270fb4c90bbdc1a05e60cc4c895cf9b671a296c9d867_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:e8e807451e3c5d8d0a8575e1280d7125a4ece51547a7b4a5cd247837662cedad_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:f2a24aa01cbe0d926d4aefe3b12eba21eb5ec7f87276e572a6814c727228624c_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:45cc0d783d1e7874ac73dfbdfe7e03c63b227ab3c4f1e15a0a2f5c97956a76d9_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:6f3eb26734e89375c3e1fb7ac366e12dc0d41bac8f07de9210c7e9845a01eec1_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:768c45fa9f35d98dfe5cfe1ea12f552402bf68ac6e1f828b14310ef59ce57c40_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:b5f1bf30495f6be97c696cf7f90768629cee96f8d106f745bf95fdefddc99592_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:6c85b42ede0f4745ed558bcb03d033c49f56cef17a70c12e5308066124cac6e3_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:091529a93e258a612fd4a98222e6a370ee10b4e97efa791b50f79a2670163d01_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0e8958a22f6771ddfe32b34027c69dbbef65d980c7e465a79d4202d2627994ad_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:5a8b0203ff083113e8b30a123ab30c4bad571f57fb59c1e7e01807b92552504e_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:89bf6a32a0935cacadbc6d23566dce6ca741e404d58c11050638c7b8e868028b_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:077cc953354ea2edd85569a622f97c15d44163d68234e7a9fdee899d25c19cdb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:66285f866090e1bfbedacd592e9d5ea9f2a30b88aa03bc86bc790d6b98a929a4_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:8c80054171d5063457df4bd074674b1824783a101dacb6137da227080aff957c_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:b0f15904251c6665961eef9c944d00f17499f7219351fe213fe7935f62fbf7ac_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:62476ac2fb0096caa9b181f523cc3573ccffe70be1433f08d1d0255b6d3a0640_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:6f632bc9829880a44e2e94084284b52683b4a01dc3315043b0aa32eb344b16cb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:aa3d1cf7853bfe8307efb01f714585f378d1d3d4ed5de7c8808a72e4aeecd4f3_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:bf1d4b2b1ef03e65be59699ce3233a75a34e1777abc182984c7a8efa698a936e_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:141f17d12c748c7ab9e94cfd9db7e2492d3063e7478249d6430ac0d8fcfb8875_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:5909184fe3d37eb45ba3bf55d7b708d818f2a5abfc2949c4a7081a5cd30cea4f_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:6217f0bb4937fa0e0fc0a5c86456fdc1992e169dfedc3d11d5165cef575d4d53_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:d55a55a36a23e7deb83718bd5dcc19b083b84d441add72ea7f4e28935e4717e3_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:0f8e1171f278395f3c72e4d9d3c0492bed15b678963fb2b6182bd65343b85a2e_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:823bb59b1c7d01557c29f9f1e4a4ee39814c38d826b06c3c9de4b8d179078419_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:93c7e9b321c7e9aa4a412a993a6b20412e24772832cc0dd23bbb17aa25f15487_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:9e50b45f81fedab27e896f04b80bacaa01d8370ff5679147f95ad79b61972d83_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:8f145d4e336bd77fcc94f0845f9ebf94563ffd96d56794d96a665c11241df152_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:981917806c7faf31156241cc85577cf375ee566f78adaeadc096d0ba8482b835_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:af3ed91687500d64e2348cca4877c43f73211b8fbd132e7767c3521763185348_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:c05020e5ee5bddc62e38493cd16b6e4ffde7c2248a00d710f32b90a6ee12ceeb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2af86b409540513f6da1afa83110a5cafe8778d2ec16332faa31c964bd5f43f7_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2f3bec76a833a72c7dfa93ed55e55e80e2621c154e5a2f156deaf78d7c6b97b4_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:81a2385be30079500f13f97a18607aa685abd61265bf8fa78bc6ce126341be50_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:fdc8f64f3b82b200a5e31b01b8612069f1aa897014085c1de755394552a1a70a_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:856b9088dbda4e7374daf232602f4bb90b05ad1be1df46d6e363a002f549f4de_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:a107ae2f7b140f2fb2243f33c378228c2f164cfd2d23f57e63f6c424fd400929_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:e21de356b7d879800a96f6c5aeee6bc59a3ed9c58d36503f7089625ce887bb25_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:fcaf6d60d682cf51866948ea3b4846c2993e2801adb69dc745ffa832318f515c_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:11f005939e15d63057bf2f0a988b6baebc275d3e752e9f7696d0f7f5266fd5d6_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:4b4c98be96a932d508fad769eff61bff2a44e13baa60b22b6c543f4a11eb71c2_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:6c87453ffe89e8be752ee40c8a9ccf6894c83be703f13901b1e8b64a4c0e549a_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:c18a1c50a4fc7081c6564d1c4ed4904212b7939a4f1f46afef0a36dc1d76f38e_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:33367b9fdb3addce3302ad35bc10423505fefe3dd27b8b9013b26d66caac2a6c_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:72cbdb061cbcd295be5e66a0eabb409af16ade7f0aa12b04c2d7327e9e1a24ba_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:d0379f9da8cbb5514394a4550ff0d79f90fa691fcced5806296479c7b63353da_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:e99d1d877bd7335736cbaeb4db5b9904369a1d07f6df332c38ad79ff1256b67b_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:06285611aef2528fc92c5cebb66ff4c74fe44d457f43cf9ec2f4a98c3c68d25e_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:25e0f4153eb5bc6fbc6b389d5adc81bfde103070ef58317c3c25ce4144a628d3_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:acd3c0369c18cbfa63a5972ed1721f93f1fcb456963ff855dea2c295baf1cdb8_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:d086075db52f4476aa64d7e2680baa01e99da246275fa9cae0ba4a74de63c7f3_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:07d89c1b524d1451051feb865bc716da2197add90fa0c58c4cf4a82975ec846c_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:6582e647d7dd604e25977ec1579969aa1fcb29ead1a0ea65833531d633bbdd2b_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:75e3aec03dffbd0f40f88a08ff5e0319f4515d73f0bcfae28b5fa526b494afc4_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:f0079e8ae53d84223aea2d3186e7bc6b525b7c03d307cde50cfb9f1bbc18712b_arm64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2487947"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Axios, a promise-based HTTP client, specifically in its Node.js HTTP adapter. When Axios is configured to use an authenticated proxy and follows a redirect, it may inadvertently send the Proxy-Authorization header, containing proxy credentials, to the redirect target. This can lead to the disclosure of sensitive proxy credentials to an unintended remote server.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "axios: Axios: Information disclosure of proxy credentials via HTTP redirects",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This is an Important information disclosure flaw in the Axios Node.js HTTP adapter. Red Hat products utilizing Axios in a Node.js environment with an authenticated proxy and automatic redirects enabled are susceptible. The vulnerability arises when a request, initially sent through an authenticated proxy, is redirected to a target that no longer uses the proxy, potentially leaking `Proxy-Authorization` headers containing sensitive credentials to an untrusted remote server. This risk is heightened in deployments where applications interact with untrusted HTTP origins.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:1384e5ba2b7d23119a49d8713826f4c65668bca310589ac7abd0c0d41c7e4c90_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:7f58528b1da9146aa55917324fdf2b375794742b34e5d10ff57f713af60746cd_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:844c3b1499b00aeadfc561642e53792ad80f535efd53b35793ba08b0f26c6d61_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:e1019c30e1d84e66d775d0d6fc7d051803dcbe44823fb2a1914807be39c79dae_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:137ffbb95d463d95da6c350600d968f3cd0e9873bf2e7c6edf952ae3229e9e2b_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:1cccdfd7e90877c27c6d8caea4f1e8ad89bb97c83d97ddf570d4f4ee116f1986_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:71657b82894cfd9e350746f48965e148868a675b9a20dcb7f94a6bc7a5b16ea5_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:881e405e32821ef10cf992c7a633281c1dc45df721fe909048df1689472000ce_ppc64le"
],
"known_not_affected": [
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:8c9a7ebf430b9f4ca200c6c70b049e8456cf88fd8bf0871b42d65e8dc786d451_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:926d965e6fd12ec0d758270fb4c90bbdc1a05e60cc4c895cf9b671a296c9d867_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:e8e807451e3c5d8d0a8575e1280d7125a4ece51547a7b4a5cd247837662cedad_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:f2a24aa01cbe0d926d4aefe3b12eba21eb5ec7f87276e572a6814c727228624c_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:45cc0d783d1e7874ac73dfbdfe7e03c63b227ab3c4f1e15a0a2f5c97956a76d9_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:6f3eb26734e89375c3e1fb7ac366e12dc0d41bac8f07de9210c7e9845a01eec1_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:768c45fa9f35d98dfe5cfe1ea12f552402bf68ac6e1f828b14310ef59ce57c40_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:b5f1bf30495f6be97c696cf7f90768629cee96f8d106f745bf95fdefddc99592_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:6c85b42ede0f4745ed558bcb03d033c49f56cef17a70c12e5308066124cac6e3_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:091529a93e258a612fd4a98222e6a370ee10b4e97efa791b50f79a2670163d01_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0e8958a22f6771ddfe32b34027c69dbbef65d980c7e465a79d4202d2627994ad_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:5a8b0203ff083113e8b30a123ab30c4bad571f57fb59c1e7e01807b92552504e_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:89bf6a32a0935cacadbc6d23566dce6ca741e404d58c11050638c7b8e868028b_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:077cc953354ea2edd85569a622f97c15d44163d68234e7a9fdee899d25c19cdb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:66285f866090e1bfbedacd592e9d5ea9f2a30b88aa03bc86bc790d6b98a929a4_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:8c80054171d5063457df4bd074674b1824783a101dacb6137da227080aff957c_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:b0f15904251c6665961eef9c944d00f17499f7219351fe213fe7935f62fbf7ac_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:62476ac2fb0096caa9b181f523cc3573ccffe70be1433f08d1d0255b6d3a0640_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:6f632bc9829880a44e2e94084284b52683b4a01dc3315043b0aa32eb344b16cb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:aa3d1cf7853bfe8307efb01f714585f378d1d3d4ed5de7c8808a72e4aeecd4f3_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:bf1d4b2b1ef03e65be59699ce3233a75a34e1777abc182984c7a8efa698a936e_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:141f17d12c748c7ab9e94cfd9db7e2492d3063e7478249d6430ac0d8fcfb8875_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:5909184fe3d37eb45ba3bf55d7b708d818f2a5abfc2949c4a7081a5cd30cea4f_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:6217f0bb4937fa0e0fc0a5c86456fdc1992e169dfedc3d11d5165cef575d4d53_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:d55a55a36a23e7deb83718bd5dcc19b083b84d441add72ea7f4e28935e4717e3_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:0f8e1171f278395f3c72e4d9d3c0492bed15b678963fb2b6182bd65343b85a2e_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:823bb59b1c7d01557c29f9f1e4a4ee39814c38d826b06c3c9de4b8d179078419_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:93c7e9b321c7e9aa4a412a993a6b20412e24772832cc0dd23bbb17aa25f15487_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:9e50b45f81fedab27e896f04b80bacaa01d8370ff5679147f95ad79b61972d83_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:8f145d4e336bd77fcc94f0845f9ebf94563ffd96d56794d96a665c11241df152_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:981917806c7faf31156241cc85577cf375ee566f78adaeadc096d0ba8482b835_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:af3ed91687500d64e2348cca4877c43f73211b8fbd132e7767c3521763185348_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:c05020e5ee5bddc62e38493cd16b6e4ffde7c2248a00d710f32b90a6ee12ceeb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2af86b409540513f6da1afa83110a5cafe8778d2ec16332faa31c964bd5f43f7_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2f3bec76a833a72c7dfa93ed55e55e80e2621c154e5a2f156deaf78d7c6b97b4_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:81a2385be30079500f13f97a18607aa685abd61265bf8fa78bc6ce126341be50_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:fdc8f64f3b82b200a5e31b01b8612069f1aa897014085c1de755394552a1a70a_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:856b9088dbda4e7374daf232602f4bb90b05ad1be1df46d6e363a002f549f4de_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:a107ae2f7b140f2fb2243f33c378228c2f164cfd2d23f57e63f6c424fd400929_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:e21de356b7d879800a96f6c5aeee6bc59a3ed9c58d36503f7089625ce887bb25_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:fcaf6d60d682cf51866948ea3b4846c2993e2801adb69dc745ffa832318f515c_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:11f005939e15d63057bf2f0a988b6baebc275d3e752e9f7696d0f7f5266fd5d6_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:4b4c98be96a932d508fad769eff61bff2a44e13baa60b22b6c543f4a11eb71c2_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:6c87453ffe89e8be752ee40c8a9ccf6894c83be703f13901b1e8b64a4c0e549a_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:c18a1c50a4fc7081c6564d1c4ed4904212b7939a4f1f46afef0a36dc1d76f38e_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:33367b9fdb3addce3302ad35bc10423505fefe3dd27b8b9013b26d66caac2a6c_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:72cbdb061cbcd295be5e66a0eabb409af16ade7f0aa12b04c2d7327e9e1a24ba_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:d0379f9da8cbb5514394a4550ff0d79f90fa691fcced5806296479c7b63353da_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:e99d1d877bd7335736cbaeb4db5b9904369a1d07f6df332c38ad79ff1256b67b_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:06285611aef2528fc92c5cebb66ff4c74fe44d457f43cf9ec2f4a98c3c68d25e_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:25e0f4153eb5bc6fbc6b389d5adc81bfde103070ef58317c3c25ce4144a628d3_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:acd3c0369c18cbfa63a5972ed1721f93f1fcb456963ff855dea2c295baf1cdb8_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:d086075db52f4476aa64d7e2680baa01e99da246275fa9cae0ba4a74de63c7f3_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:07d89c1b524d1451051feb865bc716da2197add90fa0c58c4cf4a82975ec846c_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:6582e647d7dd604e25977ec1579969aa1fcb29ead1a0ea65833531d633bbdd2b_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:75e3aec03dffbd0f40f88a08ff5e0319f4515d73f0bcfae28b5fa526b494afc4_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:f0079e8ae53d84223aea2d3186e7bc6b525b7c03d307cde50cfb9f1bbc18712b_arm64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-44486"
},
{
"category": "external",
"summary": "RHBZ#2487947",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2487947"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-44486",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-44486"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-44486",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-44486"
},
{
"category": "external",
"summary": "https://github.com/axios/axios/security/advisories/GHSA-j5f8-grm9-p9fc",
"url": "https://github.com/axios/axios/security/advisories/GHSA-j5f8-grm9-p9fc"
}
],
"release_date": "2026-06-11T15:39:07.714000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T17:12:17+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\nFor details on how to apply this update, refer to:\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:1384e5ba2b7d23119a49d8713826f4c65668bca310589ac7abd0c0d41c7e4c90_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:7f58528b1da9146aa55917324fdf2b375794742b34e5d10ff57f713af60746cd_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:844c3b1499b00aeadfc561642e53792ad80f535efd53b35793ba08b0f26c6d61_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:e1019c30e1d84e66d775d0d6fc7d051803dcbe44823fb2a1914807be39c79dae_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:137ffbb95d463d95da6c350600d968f3cd0e9873bf2e7c6edf952ae3229e9e2b_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:1cccdfd7e90877c27c6d8caea4f1e8ad89bb97c83d97ddf570d4f4ee116f1986_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:71657b82894cfd9e350746f48965e148868a675b9a20dcb7f94a6bc7a5b16ea5_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:881e405e32821ef10cf992c7a633281c1dc45df721fe909048df1689472000ce_ppc64le"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36820"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:1384e5ba2b7d23119a49d8713826f4c65668bca310589ac7abd0c0d41c7e4c90_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:7f58528b1da9146aa55917324fdf2b375794742b34e5d10ff57f713af60746cd_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:844c3b1499b00aeadfc561642e53792ad80f535efd53b35793ba08b0f26c6d61_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:e1019c30e1d84e66d775d0d6fc7d051803dcbe44823fb2a1914807be39c79dae_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:8c9a7ebf430b9f4ca200c6c70b049e8456cf88fd8bf0871b42d65e8dc786d451_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:926d965e6fd12ec0d758270fb4c90bbdc1a05e60cc4c895cf9b671a296c9d867_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:e8e807451e3c5d8d0a8575e1280d7125a4ece51547a7b4a5cd247837662cedad_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:f2a24aa01cbe0d926d4aefe3b12eba21eb5ec7f87276e572a6814c727228624c_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:45cc0d783d1e7874ac73dfbdfe7e03c63b227ab3c4f1e15a0a2f5c97956a76d9_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:6f3eb26734e89375c3e1fb7ac366e12dc0d41bac8f07de9210c7e9845a01eec1_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:768c45fa9f35d98dfe5cfe1ea12f552402bf68ac6e1f828b14310ef59ce57c40_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:b5f1bf30495f6be97c696cf7f90768629cee96f8d106f745bf95fdefddc99592_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:137ffbb95d463d95da6c350600d968f3cd0e9873bf2e7c6edf952ae3229e9e2b_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:1cccdfd7e90877c27c6d8caea4f1e8ad89bb97c83d97ddf570d4f4ee116f1986_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:71657b82894cfd9e350746f48965e148868a675b9a20dcb7f94a6bc7a5b16ea5_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:881e405e32821ef10cf992c7a633281c1dc45df721fe909048df1689472000ce_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:6c85b42ede0f4745ed558bcb03d033c49f56cef17a70c12e5308066124cac6e3_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:091529a93e258a612fd4a98222e6a370ee10b4e97efa791b50f79a2670163d01_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0e8958a22f6771ddfe32b34027c69dbbef65d980c7e465a79d4202d2627994ad_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:5a8b0203ff083113e8b30a123ab30c4bad571f57fb59c1e7e01807b92552504e_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:89bf6a32a0935cacadbc6d23566dce6ca741e404d58c11050638c7b8e868028b_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:077cc953354ea2edd85569a622f97c15d44163d68234e7a9fdee899d25c19cdb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:66285f866090e1bfbedacd592e9d5ea9f2a30b88aa03bc86bc790d6b98a929a4_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:8c80054171d5063457df4bd074674b1824783a101dacb6137da227080aff957c_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:b0f15904251c6665961eef9c944d00f17499f7219351fe213fe7935f62fbf7ac_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:62476ac2fb0096caa9b181f523cc3573ccffe70be1433f08d1d0255b6d3a0640_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:6f632bc9829880a44e2e94084284b52683b4a01dc3315043b0aa32eb344b16cb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:aa3d1cf7853bfe8307efb01f714585f378d1d3d4ed5de7c8808a72e4aeecd4f3_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:bf1d4b2b1ef03e65be59699ce3233a75a34e1777abc182984c7a8efa698a936e_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:141f17d12c748c7ab9e94cfd9db7e2492d3063e7478249d6430ac0d8fcfb8875_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:5909184fe3d37eb45ba3bf55d7b708d818f2a5abfc2949c4a7081a5cd30cea4f_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:6217f0bb4937fa0e0fc0a5c86456fdc1992e169dfedc3d11d5165cef575d4d53_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:d55a55a36a23e7deb83718bd5dcc19b083b84d441add72ea7f4e28935e4717e3_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:0f8e1171f278395f3c72e4d9d3c0492bed15b678963fb2b6182bd65343b85a2e_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:823bb59b1c7d01557c29f9f1e4a4ee39814c38d826b06c3c9de4b8d179078419_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:93c7e9b321c7e9aa4a412a993a6b20412e24772832cc0dd23bbb17aa25f15487_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:9e50b45f81fedab27e896f04b80bacaa01d8370ff5679147f95ad79b61972d83_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:8f145d4e336bd77fcc94f0845f9ebf94563ffd96d56794d96a665c11241df152_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:981917806c7faf31156241cc85577cf375ee566f78adaeadc096d0ba8482b835_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:af3ed91687500d64e2348cca4877c43f73211b8fbd132e7767c3521763185348_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:c05020e5ee5bddc62e38493cd16b6e4ffde7c2248a00d710f32b90a6ee12ceeb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2af86b409540513f6da1afa83110a5cafe8778d2ec16332faa31c964bd5f43f7_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2f3bec76a833a72c7dfa93ed55e55e80e2621c154e5a2f156deaf78d7c6b97b4_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:81a2385be30079500f13f97a18607aa685abd61265bf8fa78bc6ce126341be50_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:fdc8f64f3b82b200a5e31b01b8612069f1aa897014085c1de755394552a1a70a_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:856b9088dbda4e7374daf232602f4bb90b05ad1be1df46d6e363a002f549f4de_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:a107ae2f7b140f2fb2243f33c378228c2f164cfd2d23f57e63f6c424fd400929_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:e21de356b7d879800a96f6c5aeee6bc59a3ed9c58d36503f7089625ce887bb25_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:fcaf6d60d682cf51866948ea3b4846c2993e2801adb69dc745ffa832318f515c_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:11f005939e15d63057bf2f0a988b6baebc275d3e752e9f7696d0f7f5266fd5d6_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:4b4c98be96a932d508fad769eff61bff2a44e13baa60b22b6c543f4a11eb71c2_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:6c87453ffe89e8be752ee40c8a9ccf6894c83be703f13901b1e8b64a4c0e549a_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:c18a1c50a4fc7081c6564d1c4ed4904212b7939a4f1f46afef0a36dc1d76f38e_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:33367b9fdb3addce3302ad35bc10423505fefe3dd27b8b9013b26d66caac2a6c_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:72cbdb061cbcd295be5e66a0eabb409af16ade7f0aa12b04c2d7327e9e1a24ba_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:d0379f9da8cbb5514394a4550ff0d79f90fa691fcced5806296479c7b63353da_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:e99d1d877bd7335736cbaeb4db5b9904369a1d07f6df332c38ad79ff1256b67b_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:06285611aef2528fc92c5cebb66ff4c74fe44d457f43cf9ec2f4a98c3c68d25e_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:25e0f4153eb5bc6fbc6b389d5adc81bfde103070ef58317c3c25ce4144a628d3_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:acd3c0369c18cbfa63a5972ed1721f93f1fcb456963ff855dea2c295baf1cdb8_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:d086075db52f4476aa64d7e2680baa01e99da246275fa9cae0ba4a74de63c7f3_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:07d89c1b524d1451051feb865bc716da2197add90fa0c58c4cf4a82975ec846c_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:6582e647d7dd604e25977ec1579969aa1fcb29ead1a0ea65833531d633bbdd2b_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:75e3aec03dffbd0f40f88a08ff5e0319f4515d73f0bcfae28b5fa526b494afc4_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:f0079e8ae53d84223aea2d3186e7bc6b525b7c03d307cde50cfb9f1bbc18712b_arm64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:1384e5ba2b7d23119a49d8713826f4c65668bca310589ac7abd0c0d41c7e4c90_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:7f58528b1da9146aa55917324fdf2b375794742b34e5d10ff57f713af60746cd_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:844c3b1499b00aeadfc561642e53792ad80f535efd53b35793ba08b0f26c6d61_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:e1019c30e1d84e66d775d0d6fc7d051803dcbe44823fb2a1914807be39c79dae_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:8c9a7ebf430b9f4ca200c6c70b049e8456cf88fd8bf0871b42d65e8dc786d451_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:926d965e6fd12ec0d758270fb4c90bbdc1a05e60cc4c895cf9b671a296c9d867_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:e8e807451e3c5d8d0a8575e1280d7125a4ece51547a7b4a5cd247837662cedad_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:f2a24aa01cbe0d926d4aefe3b12eba21eb5ec7f87276e572a6814c727228624c_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:45cc0d783d1e7874ac73dfbdfe7e03c63b227ab3c4f1e15a0a2f5c97956a76d9_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:6f3eb26734e89375c3e1fb7ac366e12dc0d41bac8f07de9210c7e9845a01eec1_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:768c45fa9f35d98dfe5cfe1ea12f552402bf68ac6e1f828b14310ef59ce57c40_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:b5f1bf30495f6be97c696cf7f90768629cee96f8d106f745bf95fdefddc99592_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:137ffbb95d463d95da6c350600d968f3cd0e9873bf2e7c6edf952ae3229e9e2b_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:1cccdfd7e90877c27c6d8caea4f1e8ad89bb97c83d97ddf570d4f4ee116f1986_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:71657b82894cfd9e350746f48965e148868a675b9a20dcb7f94a6bc7a5b16ea5_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:881e405e32821ef10cf992c7a633281c1dc45df721fe909048df1689472000ce_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:6c85b42ede0f4745ed558bcb03d033c49f56cef17a70c12e5308066124cac6e3_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:091529a93e258a612fd4a98222e6a370ee10b4e97efa791b50f79a2670163d01_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0e8958a22f6771ddfe32b34027c69dbbef65d980c7e465a79d4202d2627994ad_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:5a8b0203ff083113e8b30a123ab30c4bad571f57fb59c1e7e01807b92552504e_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:89bf6a32a0935cacadbc6d23566dce6ca741e404d58c11050638c7b8e868028b_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:077cc953354ea2edd85569a622f97c15d44163d68234e7a9fdee899d25c19cdb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:66285f866090e1bfbedacd592e9d5ea9f2a30b88aa03bc86bc790d6b98a929a4_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:8c80054171d5063457df4bd074674b1824783a101dacb6137da227080aff957c_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:b0f15904251c6665961eef9c944d00f17499f7219351fe213fe7935f62fbf7ac_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:62476ac2fb0096caa9b181f523cc3573ccffe70be1433f08d1d0255b6d3a0640_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:6f632bc9829880a44e2e94084284b52683b4a01dc3315043b0aa32eb344b16cb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:aa3d1cf7853bfe8307efb01f714585f378d1d3d4ed5de7c8808a72e4aeecd4f3_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:bf1d4b2b1ef03e65be59699ce3233a75a34e1777abc182984c7a8efa698a936e_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:141f17d12c748c7ab9e94cfd9db7e2492d3063e7478249d6430ac0d8fcfb8875_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:5909184fe3d37eb45ba3bf55d7b708d818f2a5abfc2949c4a7081a5cd30cea4f_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:6217f0bb4937fa0e0fc0a5c86456fdc1992e169dfedc3d11d5165cef575d4d53_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:d55a55a36a23e7deb83718bd5dcc19b083b84d441add72ea7f4e28935e4717e3_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:0f8e1171f278395f3c72e4d9d3c0492bed15b678963fb2b6182bd65343b85a2e_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:823bb59b1c7d01557c29f9f1e4a4ee39814c38d826b06c3c9de4b8d179078419_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:93c7e9b321c7e9aa4a412a993a6b20412e24772832cc0dd23bbb17aa25f15487_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:9e50b45f81fedab27e896f04b80bacaa01d8370ff5679147f95ad79b61972d83_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:8f145d4e336bd77fcc94f0845f9ebf94563ffd96d56794d96a665c11241df152_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:981917806c7faf31156241cc85577cf375ee566f78adaeadc096d0ba8482b835_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:af3ed91687500d64e2348cca4877c43f73211b8fbd132e7767c3521763185348_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:c05020e5ee5bddc62e38493cd16b6e4ffde7c2248a00d710f32b90a6ee12ceeb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2af86b409540513f6da1afa83110a5cafe8778d2ec16332faa31c964bd5f43f7_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2f3bec76a833a72c7dfa93ed55e55e80e2621c154e5a2f156deaf78d7c6b97b4_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:81a2385be30079500f13f97a18607aa685abd61265bf8fa78bc6ce126341be50_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:fdc8f64f3b82b200a5e31b01b8612069f1aa897014085c1de755394552a1a70a_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:856b9088dbda4e7374daf232602f4bb90b05ad1be1df46d6e363a002f549f4de_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:a107ae2f7b140f2fb2243f33c378228c2f164cfd2d23f57e63f6c424fd400929_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:e21de356b7d879800a96f6c5aeee6bc59a3ed9c58d36503f7089625ce887bb25_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:fcaf6d60d682cf51866948ea3b4846c2993e2801adb69dc745ffa832318f515c_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:11f005939e15d63057bf2f0a988b6baebc275d3e752e9f7696d0f7f5266fd5d6_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:4b4c98be96a932d508fad769eff61bff2a44e13baa60b22b6c543f4a11eb71c2_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:6c87453ffe89e8be752ee40c8a9ccf6894c83be703f13901b1e8b64a4c0e549a_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:c18a1c50a4fc7081c6564d1c4ed4904212b7939a4f1f46afef0a36dc1d76f38e_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:33367b9fdb3addce3302ad35bc10423505fefe3dd27b8b9013b26d66caac2a6c_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:72cbdb061cbcd295be5e66a0eabb409af16ade7f0aa12b04c2d7327e9e1a24ba_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:d0379f9da8cbb5514394a4550ff0d79f90fa691fcced5806296479c7b63353da_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:e99d1d877bd7335736cbaeb4db5b9904369a1d07f6df332c38ad79ff1256b67b_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:06285611aef2528fc92c5cebb66ff4c74fe44d457f43cf9ec2f4a98c3c68d25e_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:25e0f4153eb5bc6fbc6b389d5adc81bfde103070ef58317c3c25ce4144a628d3_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:acd3c0369c18cbfa63a5972ed1721f93f1fcb456963ff855dea2c295baf1cdb8_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:d086075db52f4476aa64d7e2680baa01e99da246275fa9cae0ba4a74de63c7f3_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:07d89c1b524d1451051feb865bc716da2197add90fa0c58c4cf4a82975ec846c_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:6582e647d7dd604e25977ec1579969aa1fcb29ead1a0ea65833531d633bbdd2b_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:75e3aec03dffbd0f40f88a08ff5e0319f4515d73f0bcfae28b5fa526b494afc4_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:f0079e8ae53d84223aea2d3186e7bc6b525b7c03d307cde50cfb9f1bbc18712b_arm64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "axios: Axios: Information disclosure of proxy credentials via HTTP redirects"
},
{
"cve": "CVE-2026-44487",
"cwe": {
"id": "CWE-201",
"name": "Insertion of Sensitive Information Into Sent Data"
},
"discovery_date": "2026-06-11T17:01:34.091476+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:8c9a7ebf430b9f4ca200c6c70b049e8456cf88fd8bf0871b42d65e8dc786d451_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:926d965e6fd12ec0d758270fb4c90bbdc1a05e60cc4c895cf9b671a296c9d867_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:e8e807451e3c5d8d0a8575e1280d7125a4ece51547a7b4a5cd247837662cedad_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:f2a24aa01cbe0d926d4aefe3b12eba21eb5ec7f87276e572a6814c727228624c_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:45cc0d783d1e7874ac73dfbdfe7e03c63b227ab3c4f1e15a0a2f5c97956a76d9_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:6f3eb26734e89375c3e1fb7ac366e12dc0d41bac8f07de9210c7e9845a01eec1_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:768c45fa9f35d98dfe5cfe1ea12f552402bf68ac6e1f828b14310ef59ce57c40_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:b5f1bf30495f6be97c696cf7f90768629cee96f8d106f745bf95fdefddc99592_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:6c85b42ede0f4745ed558bcb03d033c49f56cef17a70c12e5308066124cac6e3_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:091529a93e258a612fd4a98222e6a370ee10b4e97efa791b50f79a2670163d01_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0e8958a22f6771ddfe32b34027c69dbbef65d980c7e465a79d4202d2627994ad_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:5a8b0203ff083113e8b30a123ab30c4bad571f57fb59c1e7e01807b92552504e_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:89bf6a32a0935cacadbc6d23566dce6ca741e404d58c11050638c7b8e868028b_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:077cc953354ea2edd85569a622f97c15d44163d68234e7a9fdee899d25c19cdb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:66285f866090e1bfbedacd592e9d5ea9f2a30b88aa03bc86bc790d6b98a929a4_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:8c80054171d5063457df4bd074674b1824783a101dacb6137da227080aff957c_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:b0f15904251c6665961eef9c944d00f17499f7219351fe213fe7935f62fbf7ac_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:62476ac2fb0096caa9b181f523cc3573ccffe70be1433f08d1d0255b6d3a0640_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:6f632bc9829880a44e2e94084284b52683b4a01dc3315043b0aa32eb344b16cb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:aa3d1cf7853bfe8307efb01f714585f378d1d3d4ed5de7c8808a72e4aeecd4f3_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:bf1d4b2b1ef03e65be59699ce3233a75a34e1777abc182984c7a8efa698a936e_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:141f17d12c748c7ab9e94cfd9db7e2492d3063e7478249d6430ac0d8fcfb8875_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:5909184fe3d37eb45ba3bf55d7b708d818f2a5abfc2949c4a7081a5cd30cea4f_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:6217f0bb4937fa0e0fc0a5c86456fdc1992e169dfedc3d11d5165cef575d4d53_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:d55a55a36a23e7deb83718bd5dcc19b083b84d441add72ea7f4e28935e4717e3_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:0f8e1171f278395f3c72e4d9d3c0492bed15b678963fb2b6182bd65343b85a2e_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:823bb59b1c7d01557c29f9f1e4a4ee39814c38d826b06c3c9de4b8d179078419_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:93c7e9b321c7e9aa4a412a993a6b20412e24772832cc0dd23bbb17aa25f15487_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:9e50b45f81fedab27e896f04b80bacaa01d8370ff5679147f95ad79b61972d83_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:8f145d4e336bd77fcc94f0845f9ebf94563ffd96d56794d96a665c11241df152_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:981917806c7faf31156241cc85577cf375ee566f78adaeadc096d0ba8482b835_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:af3ed91687500d64e2348cca4877c43f73211b8fbd132e7767c3521763185348_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:c05020e5ee5bddc62e38493cd16b6e4ffde7c2248a00d710f32b90a6ee12ceeb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2af86b409540513f6da1afa83110a5cafe8778d2ec16332faa31c964bd5f43f7_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2f3bec76a833a72c7dfa93ed55e55e80e2621c154e5a2f156deaf78d7c6b97b4_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:81a2385be30079500f13f97a18607aa685abd61265bf8fa78bc6ce126341be50_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:fdc8f64f3b82b200a5e31b01b8612069f1aa897014085c1de755394552a1a70a_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:856b9088dbda4e7374daf232602f4bb90b05ad1be1df46d6e363a002f549f4de_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:a107ae2f7b140f2fb2243f33c378228c2f164cfd2d23f57e63f6c424fd400929_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:e21de356b7d879800a96f6c5aeee6bc59a3ed9c58d36503f7089625ce887bb25_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:fcaf6d60d682cf51866948ea3b4846c2993e2801adb69dc745ffa832318f515c_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:11f005939e15d63057bf2f0a988b6baebc275d3e752e9f7696d0f7f5266fd5d6_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:4b4c98be96a932d508fad769eff61bff2a44e13baa60b22b6c543f4a11eb71c2_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:6c87453ffe89e8be752ee40c8a9ccf6894c83be703f13901b1e8b64a4c0e549a_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:c18a1c50a4fc7081c6564d1c4ed4904212b7939a4f1f46afef0a36dc1d76f38e_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:33367b9fdb3addce3302ad35bc10423505fefe3dd27b8b9013b26d66caac2a6c_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:72cbdb061cbcd295be5e66a0eabb409af16ade7f0aa12b04c2d7327e9e1a24ba_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:d0379f9da8cbb5514394a4550ff0d79f90fa691fcced5806296479c7b63353da_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:e99d1d877bd7335736cbaeb4db5b9904369a1d07f6df332c38ad79ff1256b67b_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:06285611aef2528fc92c5cebb66ff4c74fe44d457f43cf9ec2f4a98c3c68d25e_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:25e0f4153eb5bc6fbc6b389d5adc81bfde103070ef58317c3c25ce4144a628d3_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:acd3c0369c18cbfa63a5972ed1721f93f1fcb456963ff855dea2c295baf1cdb8_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:d086075db52f4476aa64d7e2680baa01e99da246275fa9cae0ba4a74de63c7f3_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:07d89c1b524d1451051feb865bc716da2197add90fa0c58c4cf4a82975ec846c_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:6582e647d7dd604e25977ec1579969aa1fcb29ead1a0ea65833531d633bbdd2b_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:75e3aec03dffbd0f40f88a08ff5e0319f4515d73f0bcfae28b5fa526b494afc4_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:f0079e8ae53d84223aea2d3186e7bc6b525b7c03d307cde50cfb9f1bbc18712b_arm64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2487948"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Axios. During specific proxy-to-direct redirect flows in the Node.js HTTP adapter, a remote attacker could exploit this vulnerability. The Proxy-Authorization header, which contains proxy credentials and is intended only for the outbound proxy, may be forwarded to the final redirected origin. This can lead to the disclosure of sensitive proxy credentials to an unintended third party.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "axios: Axios: Information disclosure of proxy credentials via redirect flows",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This is an Important information disclosure flaw in Axios affecting Node.js environments. When an application uses Axios with an authenticated HTTP proxy and follows redirects from an HTTP to a non-proxied HTTPS destination, the Proxy-Authorization header may be inadvertently sent to the final origin server. This could lead to the exposure of sensitive proxy credentials to an unintended third party.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:1384e5ba2b7d23119a49d8713826f4c65668bca310589ac7abd0c0d41c7e4c90_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:7f58528b1da9146aa55917324fdf2b375794742b34e5d10ff57f713af60746cd_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:844c3b1499b00aeadfc561642e53792ad80f535efd53b35793ba08b0f26c6d61_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:e1019c30e1d84e66d775d0d6fc7d051803dcbe44823fb2a1914807be39c79dae_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:137ffbb95d463d95da6c350600d968f3cd0e9873bf2e7c6edf952ae3229e9e2b_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:1cccdfd7e90877c27c6d8caea4f1e8ad89bb97c83d97ddf570d4f4ee116f1986_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:71657b82894cfd9e350746f48965e148868a675b9a20dcb7f94a6bc7a5b16ea5_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:881e405e32821ef10cf992c7a633281c1dc45df721fe909048df1689472000ce_ppc64le"
],
"known_not_affected": [
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:8c9a7ebf430b9f4ca200c6c70b049e8456cf88fd8bf0871b42d65e8dc786d451_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:926d965e6fd12ec0d758270fb4c90bbdc1a05e60cc4c895cf9b671a296c9d867_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:e8e807451e3c5d8d0a8575e1280d7125a4ece51547a7b4a5cd247837662cedad_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:f2a24aa01cbe0d926d4aefe3b12eba21eb5ec7f87276e572a6814c727228624c_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:45cc0d783d1e7874ac73dfbdfe7e03c63b227ab3c4f1e15a0a2f5c97956a76d9_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:6f3eb26734e89375c3e1fb7ac366e12dc0d41bac8f07de9210c7e9845a01eec1_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:768c45fa9f35d98dfe5cfe1ea12f552402bf68ac6e1f828b14310ef59ce57c40_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:b5f1bf30495f6be97c696cf7f90768629cee96f8d106f745bf95fdefddc99592_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:6c85b42ede0f4745ed558bcb03d033c49f56cef17a70c12e5308066124cac6e3_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:091529a93e258a612fd4a98222e6a370ee10b4e97efa791b50f79a2670163d01_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0e8958a22f6771ddfe32b34027c69dbbef65d980c7e465a79d4202d2627994ad_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:5a8b0203ff083113e8b30a123ab30c4bad571f57fb59c1e7e01807b92552504e_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:89bf6a32a0935cacadbc6d23566dce6ca741e404d58c11050638c7b8e868028b_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:077cc953354ea2edd85569a622f97c15d44163d68234e7a9fdee899d25c19cdb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:66285f866090e1bfbedacd592e9d5ea9f2a30b88aa03bc86bc790d6b98a929a4_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:8c80054171d5063457df4bd074674b1824783a101dacb6137da227080aff957c_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:b0f15904251c6665961eef9c944d00f17499f7219351fe213fe7935f62fbf7ac_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:62476ac2fb0096caa9b181f523cc3573ccffe70be1433f08d1d0255b6d3a0640_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:6f632bc9829880a44e2e94084284b52683b4a01dc3315043b0aa32eb344b16cb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:aa3d1cf7853bfe8307efb01f714585f378d1d3d4ed5de7c8808a72e4aeecd4f3_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:bf1d4b2b1ef03e65be59699ce3233a75a34e1777abc182984c7a8efa698a936e_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:141f17d12c748c7ab9e94cfd9db7e2492d3063e7478249d6430ac0d8fcfb8875_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:5909184fe3d37eb45ba3bf55d7b708d818f2a5abfc2949c4a7081a5cd30cea4f_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:6217f0bb4937fa0e0fc0a5c86456fdc1992e169dfedc3d11d5165cef575d4d53_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:d55a55a36a23e7deb83718bd5dcc19b083b84d441add72ea7f4e28935e4717e3_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:0f8e1171f278395f3c72e4d9d3c0492bed15b678963fb2b6182bd65343b85a2e_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:823bb59b1c7d01557c29f9f1e4a4ee39814c38d826b06c3c9de4b8d179078419_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:93c7e9b321c7e9aa4a412a993a6b20412e24772832cc0dd23bbb17aa25f15487_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:9e50b45f81fedab27e896f04b80bacaa01d8370ff5679147f95ad79b61972d83_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:8f145d4e336bd77fcc94f0845f9ebf94563ffd96d56794d96a665c11241df152_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:981917806c7faf31156241cc85577cf375ee566f78adaeadc096d0ba8482b835_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:af3ed91687500d64e2348cca4877c43f73211b8fbd132e7767c3521763185348_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:c05020e5ee5bddc62e38493cd16b6e4ffde7c2248a00d710f32b90a6ee12ceeb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2af86b409540513f6da1afa83110a5cafe8778d2ec16332faa31c964bd5f43f7_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2f3bec76a833a72c7dfa93ed55e55e80e2621c154e5a2f156deaf78d7c6b97b4_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:81a2385be30079500f13f97a18607aa685abd61265bf8fa78bc6ce126341be50_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:fdc8f64f3b82b200a5e31b01b8612069f1aa897014085c1de755394552a1a70a_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:856b9088dbda4e7374daf232602f4bb90b05ad1be1df46d6e363a002f549f4de_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:a107ae2f7b140f2fb2243f33c378228c2f164cfd2d23f57e63f6c424fd400929_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:e21de356b7d879800a96f6c5aeee6bc59a3ed9c58d36503f7089625ce887bb25_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:fcaf6d60d682cf51866948ea3b4846c2993e2801adb69dc745ffa832318f515c_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:11f005939e15d63057bf2f0a988b6baebc275d3e752e9f7696d0f7f5266fd5d6_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:4b4c98be96a932d508fad769eff61bff2a44e13baa60b22b6c543f4a11eb71c2_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:6c87453ffe89e8be752ee40c8a9ccf6894c83be703f13901b1e8b64a4c0e549a_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:c18a1c50a4fc7081c6564d1c4ed4904212b7939a4f1f46afef0a36dc1d76f38e_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:33367b9fdb3addce3302ad35bc10423505fefe3dd27b8b9013b26d66caac2a6c_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:72cbdb061cbcd295be5e66a0eabb409af16ade7f0aa12b04c2d7327e9e1a24ba_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:d0379f9da8cbb5514394a4550ff0d79f90fa691fcced5806296479c7b63353da_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:e99d1d877bd7335736cbaeb4db5b9904369a1d07f6df332c38ad79ff1256b67b_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:06285611aef2528fc92c5cebb66ff4c74fe44d457f43cf9ec2f4a98c3c68d25e_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:25e0f4153eb5bc6fbc6b389d5adc81bfde103070ef58317c3c25ce4144a628d3_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:acd3c0369c18cbfa63a5972ed1721f93f1fcb456963ff855dea2c295baf1cdb8_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:d086075db52f4476aa64d7e2680baa01e99da246275fa9cae0ba4a74de63c7f3_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:07d89c1b524d1451051feb865bc716da2197add90fa0c58c4cf4a82975ec846c_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:6582e647d7dd604e25977ec1579969aa1fcb29ead1a0ea65833531d633bbdd2b_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:75e3aec03dffbd0f40f88a08ff5e0319f4515d73f0bcfae28b5fa526b494afc4_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:f0079e8ae53d84223aea2d3186e7bc6b525b7c03d307cde50cfb9f1bbc18712b_arm64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-44487"
},
{
"category": "external",
"summary": "RHBZ#2487948",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2487948"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-44487",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-44487"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-44487",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-44487"
},
{
"category": "external",
"summary": "https://github.com/axios/axios/security/advisories/GHSA-p92q-9vqr-4j8v",
"url": "https://github.com/axios/axios/security/advisories/GHSA-p92q-9vqr-4j8v"
}
],
"release_date": "2026-06-11T15:38:25.150000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T17:12:17+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\nFor details on how to apply this update, refer to:\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:1384e5ba2b7d23119a49d8713826f4c65668bca310589ac7abd0c0d41c7e4c90_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:7f58528b1da9146aa55917324fdf2b375794742b34e5d10ff57f713af60746cd_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:844c3b1499b00aeadfc561642e53792ad80f535efd53b35793ba08b0f26c6d61_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:e1019c30e1d84e66d775d0d6fc7d051803dcbe44823fb2a1914807be39c79dae_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:137ffbb95d463d95da6c350600d968f3cd0e9873bf2e7c6edf952ae3229e9e2b_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:1cccdfd7e90877c27c6d8caea4f1e8ad89bb97c83d97ddf570d4f4ee116f1986_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:71657b82894cfd9e350746f48965e148868a675b9a20dcb7f94a6bc7a5b16ea5_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:881e405e32821ef10cf992c7a633281c1dc45df721fe909048df1689472000ce_ppc64le"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36820"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:1384e5ba2b7d23119a49d8713826f4c65668bca310589ac7abd0c0d41c7e4c90_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:7f58528b1da9146aa55917324fdf2b375794742b34e5d10ff57f713af60746cd_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:844c3b1499b00aeadfc561642e53792ad80f535efd53b35793ba08b0f26c6d61_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:e1019c30e1d84e66d775d0d6fc7d051803dcbe44823fb2a1914807be39c79dae_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:8c9a7ebf430b9f4ca200c6c70b049e8456cf88fd8bf0871b42d65e8dc786d451_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:926d965e6fd12ec0d758270fb4c90bbdc1a05e60cc4c895cf9b671a296c9d867_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:e8e807451e3c5d8d0a8575e1280d7125a4ece51547a7b4a5cd247837662cedad_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:f2a24aa01cbe0d926d4aefe3b12eba21eb5ec7f87276e572a6814c727228624c_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:45cc0d783d1e7874ac73dfbdfe7e03c63b227ab3c4f1e15a0a2f5c97956a76d9_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:6f3eb26734e89375c3e1fb7ac366e12dc0d41bac8f07de9210c7e9845a01eec1_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:768c45fa9f35d98dfe5cfe1ea12f552402bf68ac6e1f828b14310ef59ce57c40_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:b5f1bf30495f6be97c696cf7f90768629cee96f8d106f745bf95fdefddc99592_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:137ffbb95d463d95da6c350600d968f3cd0e9873bf2e7c6edf952ae3229e9e2b_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:1cccdfd7e90877c27c6d8caea4f1e8ad89bb97c83d97ddf570d4f4ee116f1986_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:71657b82894cfd9e350746f48965e148868a675b9a20dcb7f94a6bc7a5b16ea5_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:881e405e32821ef10cf992c7a633281c1dc45df721fe909048df1689472000ce_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:6c85b42ede0f4745ed558bcb03d033c49f56cef17a70c12e5308066124cac6e3_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:091529a93e258a612fd4a98222e6a370ee10b4e97efa791b50f79a2670163d01_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0e8958a22f6771ddfe32b34027c69dbbef65d980c7e465a79d4202d2627994ad_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:5a8b0203ff083113e8b30a123ab30c4bad571f57fb59c1e7e01807b92552504e_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:89bf6a32a0935cacadbc6d23566dce6ca741e404d58c11050638c7b8e868028b_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:077cc953354ea2edd85569a622f97c15d44163d68234e7a9fdee899d25c19cdb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:66285f866090e1bfbedacd592e9d5ea9f2a30b88aa03bc86bc790d6b98a929a4_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:8c80054171d5063457df4bd074674b1824783a101dacb6137da227080aff957c_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:b0f15904251c6665961eef9c944d00f17499f7219351fe213fe7935f62fbf7ac_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:62476ac2fb0096caa9b181f523cc3573ccffe70be1433f08d1d0255b6d3a0640_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:6f632bc9829880a44e2e94084284b52683b4a01dc3315043b0aa32eb344b16cb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:aa3d1cf7853bfe8307efb01f714585f378d1d3d4ed5de7c8808a72e4aeecd4f3_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:bf1d4b2b1ef03e65be59699ce3233a75a34e1777abc182984c7a8efa698a936e_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:141f17d12c748c7ab9e94cfd9db7e2492d3063e7478249d6430ac0d8fcfb8875_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:5909184fe3d37eb45ba3bf55d7b708d818f2a5abfc2949c4a7081a5cd30cea4f_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:6217f0bb4937fa0e0fc0a5c86456fdc1992e169dfedc3d11d5165cef575d4d53_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:d55a55a36a23e7deb83718bd5dcc19b083b84d441add72ea7f4e28935e4717e3_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:0f8e1171f278395f3c72e4d9d3c0492bed15b678963fb2b6182bd65343b85a2e_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:823bb59b1c7d01557c29f9f1e4a4ee39814c38d826b06c3c9de4b8d179078419_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:93c7e9b321c7e9aa4a412a993a6b20412e24772832cc0dd23bbb17aa25f15487_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:9e50b45f81fedab27e896f04b80bacaa01d8370ff5679147f95ad79b61972d83_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:8f145d4e336bd77fcc94f0845f9ebf94563ffd96d56794d96a665c11241df152_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:981917806c7faf31156241cc85577cf375ee566f78adaeadc096d0ba8482b835_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:af3ed91687500d64e2348cca4877c43f73211b8fbd132e7767c3521763185348_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:c05020e5ee5bddc62e38493cd16b6e4ffde7c2248a00d710f32b90a6ee12ceeb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2af86b409540513f6da1afa83110a5cafe8778d2ec16332faa31c964bd5f43f7_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2f3bec76a833a72c7dfa93ed55e55e80e2621c154e5a2f156deaf78d7c6b97b4_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:81a2385be30079500f13f97a18607aa685abd61265bf8fa78bc6ce126341be50_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:fdc8f64f3b82b200a5e31b01b8612069f1aa897014085c1de755394552a1a70a_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:856b9088dbda4e7374daf232602f4bb90b05ad1be1df46d6e363a002f549f4de_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:a107ae2f7b140f2fb2243f33c378228c2f164cfd2d23f57e63f6c424fd400929_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:e21de356b7d879800a96f6c5aeee6bc59a3ed9c58d36503f7089625ce887bb25_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:fcaf6d60d682cf51866948ea3b4846c2993e2801adb69dc745ffa832318f515c_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:11f005939e15d63057bf2f0a988b6baebc275d3e752e9f7696d0f7f5266fd5d6_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:4b4c98be96a932d508fad769eff61bff2a44e13baa60b22b6c543f4a11eb71c2_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:6c87453ffe89e8be752ee40c8a9ccf6894c83be703f13901b1e8b64a4c0e549a_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:c18a1c50a4fc7081c6564d1c4ed4904212b7939a4f1f46afef0a36dc1d76f38e_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:33367b9fdb3addce3302ad35bc10423505fefe3dd27b8b9013b26d66caac2a6c_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:72cbdb061cbcd295be5e66a0eabb409af16ade7f0aa12b04c2d7327e9e1a24ba_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:d0379f9da8cbb5514394a4550ff0d79f90fa691fcced5806296479c7b63353da_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:e99d1d877bd7335736cbaeb4db5b9904369a1d07f6df332c38ad79ff1256b67b_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:06285611aef2528fc92c5cebb66ff4c74fe44d457f43cf9ec2f4a98c3c68d25e_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:25e0f4153eb5bc6fbc6b389d5adc81bfde103070ef58317c3c25ce4144a628d3_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:acd3c0369c18cbfa63a5972ed1721f93f1fcb456963ff855dea2c295baf1cdb8_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:d086075db52f4476aa64d7e2680baa01e99da246275fa9cae0ba4a74de63c7f3_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:07d89c1b524d1451051feb865bc716da2197add90fa0c58c4cf4a82975ec846c_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:6582e647d7dd604e25977ec1579969aa1fcb29ead1a0ea65833531d633bbdd2b_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:75e3aec03dffbd0f40f88a08ff5e0319f4515d73f0bcfae28b5fa526b494afc4_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:f0079e8ae53d84223aea2d3186e7bc6b525b7c03d307cde50cfb9f1bbc18712b_arm64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:1384e5ba2b7d23119a49d8713826f4c65668bca310589ac7abd0c0d41c7e4c90_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:7f58528b1da9146aa55917324fdf2b375794742b34e5d10ff57f713af60746cd_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:844c3b1499b00aeadfc561642e53792ad80f535efd53b35793ba08b0f26c6d61_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:e1019c30e1d84e66d775d0d6fc7d051803dcbe44823fb2a1914807be39c79dae_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:8c9a7ebf430b9f4ca200c6c70b049e8456cf88fd8bf0871b42d65e8dc786d451_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:926d965e6fd12ec0d758270fb4c90bbdc1a05e60cc4c895cf9b671a296c9d867_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:e8e807451e3c5d8d0a8575e1280d7125a4ece51547a7b4a5cd247837662cedad_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:f2a24aa01cbe0d926d4aefe3b12eba21eb5ec7f87276e572a6814c727228624c_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:45cc0d783d1e7874ac73dfbdfe7e03c63b227ab3c4f1e15a0a2f5c97956a76d9_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:6f3eb26734e89375c3e1fb7ac366e12dc0d41bac8f07de9210c7e9845a01eec1_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:768c45fa9f35d98dfe5cfe1ea12f552402bf68ac6e1f828b14310ef59ce57c40_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:b5f1bf30495f6be97c696cf7f90768629cee96f8d106f745bf95fdefddc99592_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:137ffbb95d463d95da6c350600d968f3cd0e9873bf2e7c6edf952ae3229e9e2b_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:1cccdfd7e90877c27c6d8caea4f1e8ad89bb97c83d97ddf570d4f4ee116f1986_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:71657b82894cfd9e350746f48965e148868a675b9a20dcb7f94a6bc7a5b16ea5_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:881e405e32821ef10cf992c7a633281c1dc45df721fe909048df1689472000ce_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:6c85b42ede0f4745ed558bcb03d033c49f56cef17a70c12e5308066124cac6e3_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:091529a93e258a612fd4a98222e6a370ee10b4e97efa791b50f79a2670163d01_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0e8958a22f6771ddfe32b34027c69dbbef65d980c7e465a79d4202d2627994ad_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:5a8b0203ff083113e8b30a123ab30c4bad571f57fb59c1e7e01807b92552504e_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:89bf6a32a0935cacadbc6d23566dce6ca741e404d58c11050638c7b8e868028b_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:077cc953354ea2edd85569a622f97c15d44163d68234e7a9fdee899d25c19cdb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:66285f866090e1bfbedacd592e9d5ea9f2a30b88aa03bc86bc790d6b98a929a4_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:8c80054171d5063457df4bd074674b1824783a101dacb6137da227080aff957c_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:b0f15904251c6665961eef9c944d00f17499f7219351fe213fe7935f62fbf7ac_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:62476ac2fb0096caa9b181f523cc3573ccffe70be1433f08d1d0255b6d3a0640_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:6f632bc9829880a44e2e94084284b52683b4a01dc3315043b0aa32eb344b16cb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:aa3d1cf7853bfe8307efb01f714585f378d1d3d4ed5de7c8808a72e4aeecd4f3_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:bf1d4b2b1ef03e65be59699ce3233a75a34e1777abc182984c7a8efa698a936e_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:141f17d12c748c7ab9e94cfd9db7e2492d3063e7478249d6430ac0d8fcfb8875_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:5909184fe3d37eb45ba3bf55d7b708d818f2a5abfc2949c4a7081a5cd30cea4f_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:6217f0bb4937fa0e0fc0a5c86456fdc1992e169dfedc3d11d5165cef575d4d53_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:d55a55a36a23e7deb83718bd5dcc19b083b84d441add72ea7f4e28935e4717e3_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:0f8e1171f278395f3c72e4d9d3c0492bed15b678963fb2b6182bd65343b85a2e_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:823bb59b1c7d01557c29f9f1e4a4ee39814c38d826b06c3c9de4b8d179078419_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:93c7e9b321c7e9aa4a412a993a6b20412e24772832cc0dd23bbb17aa25f15487_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:9e50b45f81fedab27e896f04b80bacaa01d8370ff5679147f95ad79b61972d83_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:8f145d4e336bd77fcc94f0845f9ebf94563ffd96d56794d96a665c11241df152_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:981917806c7faf31156241cc85577cf375ee566f78adaeadc096d0ba8482b835_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:af3ed91687500d64e2348cca4877c43f73211b8fbd132e7767c3521763185348_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:c05020e5ee5bddc62e38493cd16b6e4ffde7c2248a00d710f32b90a6ee12ceeb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2af86b409540513f6da1afa83110a5cafe8778d2ec16332faa31c964bd5f43f7_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2f3bec76a833a72c7dfa93ed55e55e80e2621c154e5a2f156deaf78d7c6b97b4_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:81a2385be30079500f13f97a18607aa685abd61265bf8fa78bc6ce126341be50_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:fdc8f64f3b82b200a5e31b01b8612069f1aa897014085c1de755394552a1a70a_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:856b9088dbda4e7374daf232602f4bb90b05ad1be1df46d6e363a002f549f4de_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:a107ae2f7b140f2fb2243f33c378228c2f164cfd2d23f57e63f6c424fd400929_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:e21de356b7d879800a96f6c5aeee6bc59a3ed9c58d36503f7089625ce887bb25_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:fcaf6d60d682cf51866948ea3b4846c2993e2801adb69dc745ffa832318f515c_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:11f005939e15d63057bf2f0a988b6baebc275d3e752e9f7696d0f7f5266fd5d6_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:4b4c98be96a932d508fad769eff61bff2a44e13baa60b22b6c543f4a11eb71c2_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:6c87453ffe89e8be752ee40c8a9ccf6894c83be703f13901b1e8b64a4c0e549a_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:c18a1c50a4fc7081c6564d1c4ed4904212b7939a4f1f46afef0a36dc1d76f38e_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:33367b9fdb3addce3302ad35bc10423505fefe3dd27b8b9013b26d66caac2a6c_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:72cbdb061cbcd295be5e66a0eabb409af16ade7f0aa12b04c2d7327e9e1a24ba_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:d0379f9da8cbb5514394a4550ff0d79f90fa691fcced5806296479c7b63353da_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:e99d1d877bd7335736cbaeb4db5b9904369a1d07f6df332c38ad79ff1256b67b_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:06285611aef2528fc92c5cebb66ff4c74fe44d457f43cf9ec2f4a98c3c68d25e_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:25e0f4153eb5bc6fbc6b389d5adc81bfde103070ef58317c3c25ce4144a628d3_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:acd3c0369c18cbfa63a5972ed1721f93f1fcb456963ff855dea2c295baf1cdb8_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:d086075db52f4476aa64d7e2680baa01e99da246275fa9cae0ba4a74de63c7f3_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:07d89c1b524d1451051feb865bc716da2197add90fa0c58c4cf4a82975ec846c_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:6582e647d7dd604e25977ec1579969aa1fcb29ead1a0ea65833531d633bbdd2b_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:75e3aec03dffbd0f40f88a08ff5e0319f4515d73f0bcfae28b5fa526b494afc4_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:f0079e8ae53d84223aea2d3186e7bc6b525b7c03d307cde50cfb9f1bbc18712b_arm64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "axios: Axios: Information disclosure of proxy credentials via redirect flows"
},
{
"cve": "CVE-2026-44488",
"cwe": {
"id": "CWE-770",
"name": "Allocation of Resources Without Limits or Throttling"
},
"discovery_date": "2026-06-11T17:01:36.836488+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:8c9a7ebf430b9f4ca200c6c70b049e8456cf88fd8bf0871b42d65e8dc786d451_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:926d965e6fd12ec0d758270fb4c90bbdc1a05e60cc4c895cf9b671a296c9d867_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:e8e807451e3c5d8d0a8575e1280d7125a4ece51547a7b4a5cd247837662cedad_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:f2a24aa01cbe0d926d4aefe3b12eba21eb5ec7f87276e572a6814c727228624c_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:45cc0d783d1e7874ac73dfbdfe7e03c63b227ab3c4f1e15a0a2f5c97956a76d9_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:6f3eb26734e89375c3e1fb7ac366e12dc0d41bac8f07de9210c7e9845a01eec1_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:768c45fa9f35d98dfe5cfe1ea12f552402bf68ac6e1f828b14310ef59ce57c40_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:b5f1bf30495f6be97c696cf7f90768629cee96f8d106f745bf95fdefddc99592_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:6c85b42ede0f4745ed558bcb03d033c49f56cef17a70c12e5308066124cac6e3_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:091529a93e258a612fd4a98222e6a370ee10b4e97efa791b50f79a2670163d01_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0e8958a22f6771ddfe32b34027c69dbbef65d980c7e465a79d4202d2627994ad_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:5a8b0203ff083113e8b30a123ab30c4bad571f57fb59c1e7e01807b92552504e_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:89bf6a32a0935cacadbc6d23566dce6ca741e404d58c11050638c7b8e868028b_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:077cc953354ea2edd85569a622f97c15d44163d68234e7a9fdee899d25c19cdb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:66285f866090e1bfbedacd592e9d5ea9f2a30b88aa03bc86bc790d6b98a929a4_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:8c80054171d5063457df4bd074674b1824783a101dacb6137da227080aff957c_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:b0f15904251c6665961eef9c944d00f17499f7219351fe213fe7935f62fbf7ac_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:62476ac2fb0096caa9b181f523cc3573ccffe70be1433f08d1d0255b6d3a0640_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:6f632bc9829880a44e2e94084284b52683b4a01dc3315043b0aa32eb344b16cb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:aa3d1cf7853bfe8307efb01f714585f378d1d3d4ed5de7c8808a72e4aeecd4f3_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:bf1d4b2b1ef03e65be59699ce3233a75a34e1777abc182984c7a8efa698a936e_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:141f17d12c748c7ab9e94cfd9db7e2492d3063e7478249d6430ac0d8fcfb8875_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:5909184fe3d37eb45ba3bf55d7b708d818f2a5abfc2949c4a7081a5cd30cea4f_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:6217f0bb4937fa0e0fc0a5c86456fdc1992e169dfedc3d11d5165cef575d4d53_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:d55a55a36a23e7deb83718bd5dcc19b083b84d441add72ea7f4e28935e4717e3_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:0f8e1171f278395f3c72e4d9d3c0492bed15b678963fb2b6182bd65343b85a2e_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:823bb59b1c7d01557c29f9f1e4a4ee39814c38d826b06c3c9de4b8d179078419_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:93c7e9b321c7e9aa4a412a993a6b20412e24772832cc0dd23bbb17aa25f15487_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:9e50b45f81fedab27e896f04b80bacaa01d8370ff5679147f95ad79b61972d83_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:8f145d4e336bd77fcc94f0845f9ebf94563ffd96d56794d96a665c11241df152_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:981917806c7faf31156241cc85577cf375ee566f78adaeadc096d0ba8482b835_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:af3ed91687500d64e2348cca4877c43f73211b8fbd132e7767c3521763185348_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:c05020e5ee5bddc62e38493cd16b6e4ffde7c2248a00d710f32b90a6ee12ceeb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2af86b409540513f6da1afa83110a5cafe8778d2ec16332faa31c964bd5f43f7_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2f3bec76a833a72c7dfa93ed55e55e80e2621c154e5a2f156deaf78d7c6b97b4_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:81a2385be30079500f13f97a18607aa685abd61265bf8fa78bc6ce126341be50_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:fdc8f64f3b82b200a5e31b01b8612069f1aa897014085c1de755394552a1a70a_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:856b9088dbda4e7374daf232602f4bb90b05ad1be1df46d6e363a002f549f4de_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:a107ae2f7b140f2fb2243f33c378228c2f164cfd2d23f57e63f6c424fd400929_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:e21de356b7d879800a96f6c5aeee6bc59a3ed9c58d36503f7089625ce887bb25_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:fcaf6d60d682cf51866948ea3b4846c2993e2801adb69dc745ffa832318f515c_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:11f005939e15d63057bf2f0a988b6baebc275d3e752e9f7696d0f7f5266fd5d6_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:4b4c98be96a932d508fad769eff61bff2a44e13baa60b22b6c543f4a11eb71c2_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:6c87453ffe89e8be752ee40c8a9ccf6894c83be703f13901b1e8b64a4c0e549a_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:c18a1c50a4fc7081c6564d1c4ed4904212b7939a4f1f46afef0a36dc1d76f38e_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:33367b9fdb3addce3302ad35bc10423505fefe3dd27b8b9013b26d66caac2a6c_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:72cbdb061cbcd295be5e66a0eabb409af16ade7f0aa12b04c2d7327e9e1a24ba_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:d0379f9da8cbb5514394a4550ff0d79f90fa691fcced5806296479c7b63353da_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:e99d1d877bd7335736cbaeb4db5b9904369a1d07f6df332c38ad79ff1256b67b_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:06285611aef2528fc92c5cebb66ff4c74fe44d457f43cf9ec2f4a98c3c68d25e_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:25e0f4153eb5bc6fbc6b389d5adc81bfde103070ef58317c3c25ce4144a628d3_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:acd3c0369c18cbfa63a5972ed1721f93f1fcb456963ff855dea2c295baf1cdb8_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:d086075db52f4476aa64d7e2680baa01e99da246275fa9cae0ba4a74de63c7f3_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:07d89c1b524d1451051feb865bc716da2197add90fa0c58c4cf4a82975ec846c_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:6582e647d7dd604e25977ec1579969aa1fcb29ead1a0ea65833531d633bbdd2b_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:75e3aec03dffbd0f40f88a08ff5e0319f4515d73f0bcfae28b5fa526b494afc4_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:f0079e8ae53d84223aea2d3186e7bc6b525b7c03d307cde50cfb9f1bbc18712b_arm64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2487949"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Axios, a promise-based HTTP client. When using the fetch adapter, Axios did not properly enforce configured request and response size limits. This vulnerability allows a remote attacker, through a malicious or compromised server, or by supplying a large data URL, to send or receive oversized data bodies. This can lead to resource exhaustion in server-side applications, resulting in a Denial of Service (DoS).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "axios: Axios: Denial of Service due to unenforced request and response size limits",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Important: A denial of service flaw was found in Axios, a JavaScript HTTP client library. This issue arises when applications utilize the `fetch` adapter, as configured request and response size limits are not properly enforced. A remote attacker could exploit this by sending or receiving excessively large data bodies, leading to resource exhaustion and potential denial of service in affected server-side applications.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:1384e5ba2b7d23119a49d8713826f4c65668bca310589ac7abd0c0d41c7e4c90_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:7f58528b1da9146aa55917324fdf2b375794742b34e5d10ff57f713af60746cd_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:844c3b1499b00aeadfc561642e53792ad80f535efd53b35793ba08b0f26c6d61_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:e1019c30e1d84e66d775d0d6fc7d051803dcbe44823fb2a1914807be39c79dae_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:137ffbb95d463d95da6c350600d968f3cd0e9873bf2e7c6edf952ae3229e9e2b_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:1cccdfd7e90877c27c6d8caea4f1e8ad89bb97c83d97ddf570d4f4ee116f1986_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:71657b82894cfd9e350746f48965e148868a675b9a20dcb7f94a6bc7a5b16ea5_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:881e405e32821ef10cf992c7a633281c1dc45df721fe909048df1689472000ce_ppc64le"
],
"known_not_affected": [
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:8c9a7ebf430b9f4ca200c6c70b049e8456cf88fd8bf0871b42d65e8dc786d451_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:926d965e6fd12ec0d758270fb4c90bbdc1a05e60cc4c895cf9b671a296c9d867_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:e8e807451e3c5d8d0a8575e1280d7125a4ece51547a7b4a5cd247837662cedad_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:f2a24aa01cbe0d926d4aefe3b12eba21eb5ec7f87276e572a6814c727228624c_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:45cc0d783d1e7874ac73dfbdfe7e03c63b227ab3c4f1e15a0a2f5c97956a76d9_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:6f3eb26734e89375c3e1fb7ac366e12dc0d41bac8f07de9210c7e9845a01eec1_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:768c45fa9f35d98dfe5cfe1ea12f552402bf68ac6e1f828b14310ef59ce57c40_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:b5f1bf30495f6be97c696cf7f90768629cee96f8d106f745bf95fdefddc99592_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:6c85b42ede0f4745ed558bcb03d033c49f56cef17a70c12e5308066124cac6e3_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:091529a93e258a612fd4a98222e6a370ee10b4e97efa791b50f79a2670163d01_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0e8958a22f6771ddfe32b34027c69dbbef65d980c7e465a79d4202d2627994ad_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:5a8b0203ff083113e8b30a123ab30c4bad571f57fb59c1e7e01807b92552504e_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:89bf6a32a0935cacadbc6d23566dce6ca741e404d58c11050638c7b8e868028b_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:077cc953354ea2edd85569a622f97c15d44163d68234e7a9fdee899d25c19cdb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:66285f866090e1bfbedacd592e9d5ea9f2a30b88aa03bc86bc790d6b98a929a4_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:8c80054171d5063457df4bd074674b1824783a101dacb6137da227080aff957c_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:b0f15904251c6665961eef9c944d00f17499f7219351fe213fe7935f62fbf7ac_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:62476ac2fb0096caa9b181f523cc3573ccffe70be1433f08d1d0255b6d3a0640_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:6f632bc9829880a44e2e94084284b52683b4a01dc3315043b0aa32eb344b16cb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:aa3d1cf7853bfe8307efb01f714585f378d1d3d4ed5de7c8808a72e4aeecd4f3_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:bf1d4b2b1ef03e65be59699ce3233a75a34e1777abc182984c7a8efa698a936e_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:141f17d12c748c7ab9e94cfd9db7e2492d3063e7478249d6430ac0d8fcfb8875_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:5909184fe3d37eb45ba3bf55d7b708d818f2a5abfc2949c4a7081a5cd30cea4f_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:6217f0bb4937fa0e0fc0a5c86456fdc1992e169dfedc3d11d5165cef575d4d53_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:d55a55a36a23e7deb83718bd5dcc19b083b84d441add72ea7f4e28935e4717e3_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:0f8e1171f278395f3c72e4d9d3c0492bed15b678963fb2b6182bd65343b85a2e_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:823bb59b1c7d01557c29f9f1e4a4ee39814c38d826b06c3c9de4b8d179078419_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:93c7e9b321c7e9aa4a412a993a6b20412e24772832cc0dd23bbb17aa25f15487_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:9e50b45f81fedab27e896f04b80bacaa01d8370ff5679147f95ad79b61972d83_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:8f145d4e336bd77fcc94f0845f9ebf94563ffd96d56794d96a665c11241df152_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:981917806c7faf31156241cc85577cf375ee566f78adaeadc096d0ba8482b835_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:af3ed91687500d64e2348cca4877c43f73211b8fbd132e7767c3521763185348_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:c05020e5ee5bddc62e38493cd16b6e4ffde7c2248a00d710f32b90a6ee12ceeb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2af86b409540513f6da1afa83110a5cafe8778d2ec16332faa31c964bd5f43f7_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2f3bec76a833a72c7dfa93ed55e55e80e2621c154e5a2f156deaf78d7c6b97b4_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:81a2385be30079500f13f97a18607aa685abd61265bf8fa78bc6ce126341be50_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:fdc8f64f3b82b200a5e31b01b8612069f1aa897014085c1de755394552a1a70a_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:856b9088dbda4e7374daf232602f4bb90b05ad1be1df46d6e363a002f549f4de_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:a107ae2f7b140f2fb2243f33c378228c2f164cfd2d23f57e63f6c424fd400929_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:e21de356b7d879800a96f6c5aeee6bc59a3ed9c58d36503f7089625ce887bb25_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:fcaf6d60d682cf51866948ea3b4846c2993e2801adb69dc745ffa832318f515c_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:11f005939e15d63057bf2f0a988b6baebc275d3e752e9f7696d0f7f5266fd5d6_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:4b4c98be96a932d508fad769eff61bff2a44e13baa60b22b6c543f4a11eb71c2_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:6c87453ffe89e8be752ee40c8a9ccf6894c83be703f13901b1e8b64a4c0e549a_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:c18a1c50a4fc7081c6564d1c4ed4904212b7939a4f1f46afef0a36dc1d76f38e_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:33367b9fdb3addce3302ad35bc10423505fefe3dd27b8b9013b26d66caac2a6c_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:72cbdb061cbcd295be5e66a0eabb409af16ade7f0aa12b04c2d7327e9e1a24ba_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:d0379f9da8cbb5514394a4550ff0d79f90fa691fcced5806296479c7b63353da_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:e99d1d877bd7335736cbaeb4db5b9904369a1d07f6df332c38ad79ff1256b67b_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:06285611aef2528fc92c5cebb66ff4c74fe44d457f43cf9ec2f4a98c3c68d25e_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:25e0f4153eb5bc6fbc6b389d5adc81bfde103070ef58317c3c25ce4144a628d3_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:acd3c0369c18cbfa63a5972ed1721f93f1fcb456963ff855dea2c295baf1cdb8_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:d086075db52f4476aa64d7e2680baa01e99da246275fa9cae0ba4a74de63c7f3_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:07d89c1b524d1451051feb865bc716da2197add90fa0c58c4cf4a82975ec846c_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:6582e647d7dd604e25977ec1579969aa1fcb29ead1a0ea65833531d633bbdd2b_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:75e3aec03dffbd0f40f88a08ff5e0319f4515d73f0bcfae28b5fa526b494afc4_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:f0079e8ae53d84223aea2d3186e7bc6b525b7c03d307cde50cfb9f1bbc18712b_arm64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-44488"
},
{
"category": "external",
"summary": "RHBZ#2487949",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2487949"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-44488",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-44488"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-44488",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-44488"
},
{
"category": "external",
"summary": "https://github.com/axios/axios/security/advisories/GHSA-777c-7fjr-54vf",
"url": "https://github.com/axios/axios/security/advisories/GHSA-777c-7fjr-54vf"
}
],
"release_date": "2026-06-11T15:37:38.013000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T17:12:17+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\nFor details on how to apply this update, refer to:\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:1384e5ba2b7d23119a49d8713826f4c65668bca310589ac7abd0c0d41c7e4c90_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:7f58528b1da9146aa55917324fdf2b375794742b34e5d10ff57f713af60746cd_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:844c3b1499b00aeadfc561642e53792ad80f535efd53b35793ba08b0f26c6d61_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:e1019c30e1d84e66d775d0d6fc7d051803dcbe44823fb2a1914807be39c79dae_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:137ffbb95d463d95da6c350600d968f3cd0e9873bf2e7c6edf952ae3229e9e2b_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:1cccdfd7e90877c27c6d8caea4f1e8ad89bb97c83d97ddf570d4f4ee116f1986_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:71657b82894cfd9e350746f48965e148868a675b9a20dcb7f94a6bc7a5b16ea5_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:881e405e32821ef10cf992c7a633281c1dc45df721fe909048df1689472000ce_ppc64le"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36820"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:1384e5ba2b7d23119a49d8713826f4c65668bca310589ac7abd0c0d41c7e4c90_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:7f58528b1da9146aa55917324fdf2b375794742b34e5d10ff57f713af60746cd_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:844c3b1499b00aeadfc561642e53792ad80f535efd53b35793ba08b0f26c6d61_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:e1019c30e1d84e66d775d0d6fc7d051803dcbe44823fb2a1914807be39c79dae_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:8c9a7ebf430b9f4ca200c6c70b049e8456cf88fd8bf0871b42d65e8dc786d451_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:926d965e6fd12ec0d758270fb4c90bbdc1a05e60cc4c895cf9b671a296c9d867_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:e8e807451e3c5d8d0a8575e1280d7125a4ece51547a7b4a5cd247837662cedad_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:f2a24aa01cbe0d926d4aefe3b12eba21eb5ec7f87276e572a6814c727228624c_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:45cc0d783d1e7874ac73dfbdfe7e03c63b227ab3c4f1e15a0a2f5c97956a76d9_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:6f3eb26734e89375c3e1fb7ac366e12dc0d41bac8f07de9210c7e9845a01eec1_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:768c45fa9f35d98dfe5cfe1ea12f552402bf68ac6e1f828b14310ef59ce57c40_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:b5f1bf30495f6be97c696cf7f90768629cee96f8d106f745bf95fdefddc99592_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:137ffbb95d463d95da6c350600d968f3cd0e9873bf2e7c6edf952ae3229e9e2b_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:1cccdfd7e90877c27c6d8caea4f1e8ad89bb97c83d97ddf570d4f4ee116f1986_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:71657b82894cfd9e350746f48965e148868a675b9a20dcb7f94a6bc7a5b16ea5_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:881e405e32821ef10cf992c7a633281c1dc45df721fe909048df1689472000ce_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:6c85b42ede0f4745ed558bcb03d033c49f56cef17a70c12e5308066124cac6e3_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:091529a93e258a612fd4a98222e6a370ee10b4e97efa791b50f79a2670163d01_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0e8958a22f6771ddfe32b34027c69dbbef65d980c7e465a79d4202d2627994ad_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:5a8b0203ff083113e8b30a123ab30c4bad571f57fb59c1e7e01807b92552504e_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:89bf6a32a0935cacadbc6d23566dce6ca741e404d58c11050638c7b8e868028b_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:077cc953354ea2edd85569a622f97c15d44163d68234e7a9fdee899d25c19cdb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:66285f866090e1bfbedacd592e9d5ea9f2a30b88aa03bc86bc790d6b98a929a4_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:8c80054171d5063457df4bd074674b1824783a101dacb6137da227080aff957c_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:b0f15904251c6665961eef9c944d00f17499f7219351fe213fe7935f62fbf7ac_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:62476ac2fb0096caa9b181f523cc3573ccffe70be1433f08d1d0255b6d3a0640_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:6f632bc9829880a44e2e94084284b52683b4a01dc3315043b0aa32eb344b16cb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:aa3d1cf7853bfe8307efb01f714585f378d1d3d4ed5de7c8808a72e4aeecd4f3_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:bf1d4b2b1ef03e65be59699ce3233a75a34e1777abc182984c7a8efa698a936e_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:141f17d12c748c7ab9e94cfd9db7e2492d3063e7478249d6430ac0d8fcfb8875_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:5909184fe3d37eb45ba3bf55d7b708d818f2a5abfc2949c4a7081a5cd30cea4f_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:6217f0bb4937fa0e0fc0a5c86456fdc1992e169dfedc3d11d5165cef575d4d53_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:d55a55a36a23e7deb83718bd5dcc19b083b84d441add72ea7f4e28935e4717e3_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:0f8e1171f278395f3c72e4d9d3c0492bed15b678963fb2b6182bd65343b85a2e_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:823bb59b1c7d01557c29f9f1e4a4ee39814c38d826b06c3c9de4b8d179078419_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:93c7e9b321c7e9aa4a412a993a6b20412e24772832cc0dd23bbb17aa25f15487_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:9e50b45f81fedab27e896f04b80bacaa01d8370ff5679147f95ad79b61972d83_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:8f145d4e336bd77fcc94f0845f9ebf94563ffd96d56794d96a665c11241df152_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:981917806c7faf31156241cc85577cf375ee566f78adaeadc096d0ba8482b835_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:af3ed91687500d64e2348cca4877c43f73211b8fbd132e7767c3521763185348_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:c05020e5ee5bddc62e38493cd16b6e4ffde7c2248a00d710f32b90a6ee12ceeb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2af86b409540513f6da1afa83110a5cafe8778d2ec16332faa31c964bd5f43f7_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2f3bec76a833a72c7dfa93ed55e55e80e2621c154e5a2f156deaf78d7c6b97b4_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:81a2385be30079500f13f97a18607aa685abd61265bf8fa78bc6ce126341be50_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:fdc8f64f3b82b200a5e31b01b8612069f1aa897014085c1de755394552a1a70a_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:856b9088dbda4e7374daf232602f4bb90b05ad1be1df46d6e363a002f549f4de_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:a107ae2f7b140f2fb2243f33c378228c2f164cfd2d23f57e63f6c424fd400929_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:e21de356b7d879800a96f6c5aeee6bc59a3ed9c58d36503f7089625ce887bb25_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:fcaf6d60d682cf51866948ea3b4846c2993e2801adb69dc745ffa832318f515c_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:11f005939e15d63057bf2f0a988b6baebc275d3e752e9f7696d0f7f5266fd5d6_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:4b4c98be96a932d508fad769eff61bff2a44e13baa60b22b6c543f4a11eb71c2_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:6c87453ffe89e8be752ee40c8a9ccf6894c83be703f13901b1e8b64a4c0e549a_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:c18a1c50a4fc7081c6564d1c4ed4904212b7939a4f1f46afef0a36dc1d76f38e_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:33367b9fdb3addce3302ad35bc10423505fefe3dd27b8b9013b26d66caac2a6c_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:72cbdb061cbcd295be5e66a0eabb409af16ade7f0aa12b04c2d7327e9e1a24ba_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:d0379f9da8cbb5514394a4550ff0d79f90fa691fcced5806296479c7b63353da_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:e99d1d877bd7335736cbaeb4db5b9904369a1d07f6df332c38ad79ff1256b67b_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:06285611aef2528fc92c5cebb66ff4c74fe44d457f43cf9ec2f4a98c3c68d25e_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:25e0f4153eb5bc6fbc6b389d5adc81bfde103070ef58317c3c25ce4144a628d3_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:acd3c0369c18cbfa63a5972ed1721f93f1fcb456963ff855dea2c295baf1cdb8_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:d086075db52f4476aa64d7e2680baa01e99da246275fa9cae0ba4a74de63c7f3_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:07d89c1b524d1451051feb865bc716da2197add90fa0c58c4cf4a82975ec846c_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:6582e647d7dd604e25977ec1579969aa1fcb29ead1a0ea65833531d633bbdd2b_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:75e3aec03dffbd0f40f88a08ff5e0319f4515d73f0bcfae28b5fa526b494afc4_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:f0079e8ae53d84223aea2d3186e7bc6b525b7c03d307cde50cfb9f1bbc18712b_arm64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:1384e5ba2b7d23119a49d8713826f4c65668bca310589ac7abd0c0d41c7e4c90_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:7f58528b1da9146aa55917324fdf2b375794742b34e5d10ff57f713af60746cd_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:844c3b1499b00aeadfc561642e53792ad80f535efd53b35793ba08b0f26c6d61_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:e1019c30e1d84e66d775d0d6fc7d051803dcbe44823fb2a1914807be39c79dae_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:8c9a7ebf430b9f4ca200c6c70b049e8456cf88fd8bf0871b42d65e8dc786d451_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:926d965e6fd12ec0d758270fb4c90bbdc1a05e60cc4c895cf9b671a296c9d867_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:e8e807451e3c5d8d0a8575e1280d7125a4ece51547a7b4a5cd247837662cedad_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:f2a24aa01cbe0d926d4aefe3b12eba21eb5ec7f87276e572a6814c727228624c_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:45cc0d783d1e7874ac73dfbdfe7e03c63b227ab3c4f1e15a0a2f5c97956a76d9_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:6f3eb26734e89375c3e1fb7ac366e12dc0d41bac8f07de9210c7e9845a01eec1_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:768c45fa9f35d98dfe5cfe1ea12f552402bf68ac6e1f828b14310ef59ce57c40_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:b5f1bf30495f6be97c696cf7f90768629cee96f8d106f745bf95fdefddc99592_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:137ffbb95d463d95da6c350600d968f3cd0e9873bf2e7c6edf952ae3229e9e2b_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:1cccdfd7e90877c27c6d8caea4f1e8ad89bb97c83d97ddf570d4f4ee116f1986_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:71657b82894cfd9e350746f48965e148868a675b9a20dcb7f94a6bc7a5b16ea5_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:881e405e32821ef10cf992c7a633281c1dc45df721fe909048df1689472000ce_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:6c85b42ede0f4745ed558bcb03d033c49f56cef17a70c12e5308066124cac6e3_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:091529a93e258a612fd4a98222e6a370ee10b4e97efa791b50f79a2670163d01_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0e8958a22f6771ddfe32b34027c69dbbef65d980c7e465a79d4202d2627994ad_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:5a8b0203ff083113e8b30a123ab30c4bad571f57fb59c1e7e01807b92552504e_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:89bf6a32a0935cacadbc6d23566dce6ca741e404d58c11050638c7b8e868028b_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:077cc953354ea2edd85569a622f97c15d44163d68234e7a9fdee899d25c19cdb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:66285f866090e1bfbedacd592e9d5ea9f2a30b88aa03bc86bc790d6b98a929a4_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:8c80054171d5063457df4bd074674b1824783a101dacb6137da227080aff957c_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:b0f15904251c6665961eef9c944d00f17499f7219351fe213fe7935f62fbf7ac_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:62476ac2fb0096caa9b181f523cc3573ccffe70be1433f08d1d0255b6d3a0640_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:6f632bc9829880a44e2e94084284b52683b4a01dc3315043b0aa32eb344b16cb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:aa3d1cf7853bfe8307efb01f714585f378d1d3d4ed5de7c8808a72e4aeecd4f3_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:bf1d4b2b1ef03e65be59699ce3233a75a34e1777abc182984c7a8efa698a936e_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:141f17d12c748c7ab9e94cfd9db7e2492d3063e7478249d6430ac0d8fcfb8875_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:5909184fe3d37eb45ba3bf55d7b708d818f2a5abfc2949c4a7081a5cd30cea4f_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:6217f0bb4937fa0e0fc0a5c86456fdc1992e169dfedc3d11d5165cef575d4d53_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:d55a55a36a23e7deb83718bd5dcc19b083b84d441add72ea7f4e28935e4717e3_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:0f8e1171f278395f3c72e4d9d3c0492bed15b678963fb2b6182bd65343b85a2e_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:823bb59b1c7d01557c29f9f1e4a4ee39814c38d826b06c3c9de4b8d179078419_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:93c7e9b321c7e9aa4a412a993a6b20412e24772832cc0dd23bbb17aa25f15487_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:9e50b45f81fedab27e896f04b80bacaa01d8370ff5679147f95ad79b61972d83_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:8f145d4e336bd77fcc94f0845f9ebf94563ffd96d56794d96a665c11241df152_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:981917806c7faf31156241cc85577cf375ee566f78adaeadc096d0ba8482b835_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:af3ed91687500d64e2348cca4877c43f73211b8fbd132e7767c3521763185348_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:c05020e5ee5bddc62e38493cd16b6e4ffde7c2248a00d710f32b90a6ee12ceeb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2af86b409540513f6da1afa83110a5cafe8778d2ec16332faa31c964bd5f43f7_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2f3bec76a833a72c7dfa93ed55e55e80e2621c154e5a2f156deaf78d7c6b97b4_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:81a2385be30079500f13f97a18607aa685abd61265bf8fa78bc6ce126341be50_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:fdc8f64f3b82b200a5e31b01b8612069f1aa897014085c1de755394552a1a70a_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:856b9088dbda4e7374daf232602f4bb90b05ad1be1df46d6e363a002f549f4de_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:a107ae2f7b140f2fb2243f33c378228c2f164cfd2d23f57e63f6c424fd400929_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:e21de356b7d879800a96f6c5aeee6bc59a3ed9c58d36503f7089625ce887bb25_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:fcaf6d60d682cf51866948ea3b4846c2993e2801adb69dc745ffa832318f515c_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:11f005939e15d63057bf2f0a988b6baebc275d3e752e9f7696d0f7f5266fd5d6_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:4b4c98be96a932d508fad769eff61bff2a44e13baa60b22b6c543f4a11eb71c2_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:6c87453ffe89e8be752ee40c8a9ccf6894c83be703f13901b1e8b64a4c0e549a_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:c18a1c50a4fc7081c6564d1c4ed4904212b7939a4f1f46afef0a36dc1d76f38e_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:33367b9fdb3addce3302ad35bc10423505fefe3dd27b8b9013b26d66caac2a6c_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:72cbdb061cbcd295be5e66a0eabb409af16ade7f0aa12b04c2d7327e9e1a24ba_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:d0379f9da8cbb5514394a4550ff0d79f90fa691fcced5806296479c7b63353da_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:e99d1d877bd7335736cbaeb4db5b9904369a1d07f6df332c38ad79ff1256b67b_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:06285611aef2528fc92c5cebb66ff4c74fe44d457f43cf9ec2f4a98c3c68d25e_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:25e0f4153eb5bc6fbc6b389d5adc81bfde103070ef58317c3c25ce4144a628d3_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:acd3c0369c18cbfa63a5972ed1721f93f1fcb456963ff855dea2c295baf1cdb8_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:d086075db52f4476aa64d7e2680baa01e99da246275fa9cae0ba4a74de63c7f3_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:07d89c1b524d1451051feb865bc716da2197add90fa0c58c4cf4a82975ec846c_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:6582e647d7dd604e25977ec1579969aa1fcb29ead1a0ea65833531d633bbdd2b_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:75e3aec03dffbd0f40f88a08ff5e0319f4515d73f0bcfae28b5fa526b494afc4_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:f0079e8ae53d84223aea2d3186e7bc6b525b7c03d307cde50cfb9f1bbc18712b_arm64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "axios: Axios: Denial of Service due to unenforced request and response size limits"
},
{
"cve": "CVE-2026-44492",
"cwe": {
"id": "CWE-289",
"name": "Authentication Bypass by Alternate Name"
},
"discovery_date": "2026-06-11T17:00:56.761751+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:8c9a7ebf430b9f4ca200c6c70b049e8456cf88fd8bf0871b42d65e8dc786d451_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:926d965e6fd12ec0d758270fb4c90bbdc1a05e60cc4c895cf9b671a296c9d867_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:e8e807451e3c5d8d0a8575e1280d7125a4ece51547a7b4a5cd247837662cedad_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:f2a24aa01cbe0d926d4aefe3b12eba21eb5ec7f87276e572a6814c727228624c_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:45cc0d783d1e7874ac73dfbdfe7e03c63b227ab3c4f1e15a0a2f5c97956a76d9_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:6f3eb26734e89375c3e1fb7ac366e12dc0d41bac8f07de9210c7e9845a01eec1_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:768c45fa9f35d98dfe5cfe1ea12f552402bf68ac6e1f828b14310ef59ce57c40_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:b5f1bf30495f6be97c696cf7f90768629cee96f8d106f745bf95fdefddc99592_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:6c85b42ede0f4745ed558bcb03d033c49f56cef17a70c12e5308066124cac6e3_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:091529a93e258a612fd4a98222e6a370ee10b4e97efa791b50f79a2670163d01_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0e8958a22f6771ddfe32b34027c69dbbef65d980c7e465a79d4202d2627994ad_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:5a8b0203ff083113e8b30a123ab30c4bad571f57fb59c1e7e01807b92552504e_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:89bf6a32a0935cacadbc6d23566dce6ca741e404d58c11050638c7b8e868028b_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:077cc953354ea2edd85569a622f97c15d44163d68234e7a9fdee899d25c19cdb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:66285f866090e1bfbedacd592e9d5ea9f2a30b88aa03bc86bc790d6b98a929a4_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:8c80054171d5063457df4bd074674b1824783a101dacb6137da227080aff957c_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:b0f15904251c6665961eef9c944d00f17499f7219351fe213fe7935f62fbf7ac_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:62476ac2fb0096caa9b181f523cc3573ccffe70be1433f08d1d0255b6d3a0640_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:6f632bc9829880a44e2e94084284b52683b4a01dc3315043b0aa32eb344b16cb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:aa3d1cf7853bfe8307efb01f714585f378d1d3d4ed5de7c8808a72e4aeecd4f3_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:bf1d4b2b1ef03e65be59699ce3233a75a34e1777abc182984c7a8efa698a936e_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:141f17d12c748c7ab9e94cfd9db7e2492d3063e7478249d6430ac0d8fcfb8875_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:5909184fe3d37eb45ba3bf55d7b708d818f2a5abfc2949c4a7081a5cd30cea4f_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:6217f0bb4937fa0e0fc0a5c86456fdc1992e169dfedc3d11d5165cef575d4d53_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:d55a55a36a23e7deb83718bd5dcc19b083b84d441add72ea7f4e28935e4717e3_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:0f8e1171f278395f3c72e4d9d3c0492bed15b678963fb2b6182bd65343b85a2e_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:823bb59b1c7d01557c29f9f1e4a4ee39814c38d826b06c3c9de4b8d179078419_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:93c7e9b321c7e9aa4a412a993a6b20412e24772832cc0dd23bbb17aa25f15487_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:9e50b45f81fedab27e896f04b80bacaa01d8370ff5679147f95ad79b61972d83_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:8f145d4e336bd77fcc94f0845f9ebf94563ffd96d56794d96a665c11241df152_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:981917806c7faf31156241cc85577cf375ee566f78adaeadc096d0ba8482b835_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:af3ed91687500d64e2348cca4877c43f73211b8fbd132e7767c3521763185348_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:c05020e5ee5bddc62e38493cd16b6e4ffde7c2248a00d710f32b90a6ee12ceeb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2af86b409540513f6da1afa83110a5cafe8778d2ec16332faa31c964bd5f43f7_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2f3bec76a833a72c7dfa93ed55e55e80e2621c154e5a2f156deaf78d7c6b97b4_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:81a2385be30079500f13f97a18607aa685abd61265bf8fa78bc6ce126341be50_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:fdc8f64f3b82b200a5e31b01b8612069f1aa897014085c1de755394552a1a70a_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:856b9088dbda4e7374daf232602f4bb90b05ad1be1df46d6e363a002f549f4de_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:a107ae2f7b140f2fb2243f33c378228c2f164cfd2d23f57e63f6c424fd400929_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:e21de356b7d879800a96f6c5aeee6bc59a3ed9c58d36503f7089625ce887bb25_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:fcaf6d60d682cf51866948ea3b4846c2993e2801adb69dc745ffa832318f515c_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:11f005939e15d63057bf2f0a988b6baebc275d3e752e9f7696d0f7f5266fd5d6_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:4b4c98be96a932d508fad769eff61bff2a44e13baa60b22b6c543f4a11eb71c2_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:6c87453ffe89e8be752ee40c8a9ccf6894c83be703f13901b1e8b64a4c0e549a_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:c18a1c50a4fc7081c6564d1c4ed4904212b7939a4f1f46afef0a36dc1d76f38e_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:33367b9fdb3addce3302ad35bc10423505fefe3dd27b8b9013b26d66caac2a6c_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:72cbdb061cbcd295be5e66a0eabb409af16ade7f0aa12b04c2d7327e9e1a24ba_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:d0379f9da8cbb5514394a4550ff0d79f90fa691fcced5806296479c7b63353da_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:e99d1d877bd7335736cbaeb4db5b9904369a1d07f6df332c38ad79ff1256b67b_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:06285611aef2528fc92c5cebb66ff4c74fe44d457f43cf9ec2f4a98c3c68d25e_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:25e0f4153eb5bc6fbc6b389d5adc81bfde103070ef58317c3c25ce4144a628d3_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:acd3c0369c18cbfa63a5972ed1721f93f1fcb456963ff855dea2c295baf1cdb8_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:d086075db52f4476aa64d7e2680baa01e99da246275fa9cae0ba4a74de63c7f3_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:07d89c1b524d1451051feb865bc716da2197add90fa0c58c4cf4a82975ec846c_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:6582e647d7dd604e25977ec1579969aa1fcb29ead1a0ea65833531d633bbdd2b_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:75e3aec03dffbd0f40f88a08ff5e0319f4515d73f0bcfae28b5fa526b494afc4_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:f0079e8ae53d84223aea2d3186e7bc6b525b7c03d307cde50cfb9f1bbc18712b_arm64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2487938"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Axios, a promise-based HTTP client. This vulnerability occurs because Axios does not properly normalize IPv4-mapped IPv6 addresses. When a NO_PROXY setting is configured to block direct access to specific IPv4 addresses, an attacker can bypass this restriction by using the IPv4-mapped IPv6 form of the address in a request URL. This allows the request to be routed through the proxy, potentially exposing internal services or sensitive information that should otherwise be inaccessible.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "axios: Axios: Proxy bypass via IPv4-mapped IPv6 address non-normalization",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This is an Important flaw in Axios, a JavaScript HTTP client library, that allows for a proxy bypass. When a `NO_PROXY` environment variable is configured to prevent direct connections to specific IPv4 addresses, an attacker can craft a request URL using the IPv4-mapped IPv6 address format. This bypasses the intended `NO_PROXY` exclusion, routing the request through the configured proxy and potentially exposing internal services or sensitive information, such as cloud instance metadata credentials.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:1384e5ba2b7d23119a49d8713826f4c65668bca310589ac7abd0c0d41c7e4c90_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:7f58528b1da9146aa55917324fdf2b375794742b34e5d10ff57f713af60746cd_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:844c3b1499b00aeadfc561642e53792ad80f535efd53b35793ba08b0f26c6d61_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:e1019c30e1d84e66d775d0d6fc7d051803dcbe44823fb2a1914807be39c79dae_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:137ffbb95d463d95da6c350600d968f3cd0e9873bf2e7c6edf952ae3229e9e2b_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:1cccdfd7e90877c27c6d8caea4f1e8ad89bb97c83d97ddf570d4f4ee116f1986_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:71657b82894cfd9e350746f48965e148868a675b9a20dcb7f94a6bc7a5b16ea5_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:881e405e32821ef10cf992c7a633281c1dc45df721fe909048df1689472000ce_ppc64le"
],
"known_not_affected": [
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:8c9a7ebf430b9f4ca200c6c70b049e8456cf88fd8bf0871b42d65e8dc786d451_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:926d965e6fd12ec0d758270fb4c90bbdc1a05e60cc4c895cf9b671a296c9d867_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:e8e807451e3c5d8d0a8575e1280d7125a4ece51547a7b4a5cd247837662cedad_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:f2a24aa01cbe0d926d4aefe3b12eba21eb5ec7f87276e572a6814c727228624c_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:45cc0d783d1e7874ac73dfbdfe7e03c63b227ab3c4f1e15a0a2f5c97956a76d9_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:6f3eb26734e89375c3e1fb7ac366e12dc0d41bac8f07de9210c7e9845a01eec1_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:768c45fa9f35d98dfe5cfe1ea12f552402bf68ac6e1f828b14310ef59ce57c40_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:b5f1bf30495f6be97c696cf7f90768629cee96f8d106f745bf95fdefddc99592_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:6c85b42ede0f4745ed558bcb03d033c49f56cef17a70c12e5308066124cac6e3_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:091529a93e258a612fd4a98222e6a370ee10b4e97efa791b50f79a2670163d01_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0e8958a22f6771ddfe32b34027c69dbbef65d980c7e465a79d4202d2627994ad_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:5a8b0203ff083113e8b30a123ab30c4bad571f57fb59c1e7e01807b92552504e_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:89bf6a32a0935cacadbc6d23566dce6ca741e404d58c11050638c7b8e868028b_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:077cc953354ea2edd85569a622f97c15d44163d68234e7a9fdee899d25c19cdb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:66285f866090e1bfbedacd592e9d5ea9f2a30b88aa03bc86bc790d6b98a929a4_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:8c80054171d5063457df4bd074674b1824783a101dacb6137da227080aff957c_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:b0f15904251c6665961eef9c944d00f17499f7219351fe213fe7935f62fbf7ac_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:62476ac2fb0096caa9b181f523cc3573ccffe70be1433f08d1d0255b6d3a0640_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:6f632bc9829880a44e2e94084284b52683b4a01dc3315043b0aa32eb344b16cb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:aa3d1cf7853bfe8307efb01f714585f378d1d3d4ed5de7c8808a72e4aeecd4f3_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:bf1d4b2b1ef03e65be59699ce3233a75a34e1777abc182984c7a8efa698a936e_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:141f17d12c748c7ab9e94cfd9db7e2492d3063e7478249d6430ac0d8fcfb8875_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:5909184fe3d37eb45ba3bf55d7b708d818f2a5abfc2949c4a7081a5cd30cea4f_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:6217f0bb4937fa0e0fc0a5c86456fdc1992e169dfedc3d11d5165cef575d4d53_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:d55a55a36a23e7deb83718bd5dcc19b083b84d441add72ea7f4e28935e4717e3_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:0f8e1171f278395f3c72e4d9d3c0492bed15b678963fb2b6182bd65343b85a2e_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:823bb59b1c7d01557c29f9f1e4a4ee39814c38d826b06c3c9de4b8d179078419_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:93c7e9b321c7e9aa4a412a993a6b20412e24772832cc0dd23bbb17aa25f15487_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:9e50b45f81fedab27e896f04b80bacaa01d8370ff5679147f95ad79b61972d83_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:8f145d4e336bd77fcc94f0845f9ebf94563ffd96d56794d96a665c11241df152_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:981917806c7faf31156241cc85577cf375ee566f78adaeadc096d0ba8482b835_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:af3ed91687500d64e2348cca4877c43f73211b8fbd132e7767c3521763185348_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:c05020e5ee5bddc62e38493cd16b6e4ffde7c2248a00d710f32b90a6ee12ceeb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2af86b409540513f6da1afa83110a5cafe8778d2ec16332faa31c964bd5f43f7_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2f3bec76a833a72c7dfa93ed55e55e80e2621c154e5a2f156deaf78d7c6b97b4_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:81a2385be30079500f13f97a18607aa685abd61265bf8fa78bc6ce126341be50_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:fdc8f64f3b82b200a5e31b01b8612069f1aa897014085c1de755394552a1a70a_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:856b9088dbda4e7374daf232602f4bb90b05ad1be1df46d6e363a002f549f4de_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:a107ae2f7b140f2fb2243f33c378228c2f164cfd2d23f57e63f6c424fd400929_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:e21de356b7d879800a96f6c5aeee6bc59a3ed9c58d36503f7089625ce887bb25_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:fcaf6d60d682cf51866948ea3b4846c2993e2801adb69dc745ffa832318f515c_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:11f005939e15d63057bf2f0a988b6baebc275d3e752e9f7696d0f7f5266fd5d6_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:4b4c98be96a932d508fad769eff61bff2a44e13baa60b22b6c543f4a11eb71c2_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:6c87453ffe89e8be752ee40c8a9ccf6894c83be703f13901b1e8b64a4c0e549a_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:c18a1c50a4fc7081c6564d1c4ed4904212b7939a4f1f46afef0a36dc1d76f38e_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:33367b9fdb3addce3302ad35bc10423505fefe3dd27b8b9013b26d66caac2a6c_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:72cbdb061cbcd295be5e66a0eabb409af16ade7f0aa12b04c2d7327e9e1a24ba_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:d0379f9da8cbb5514394a4550ff0d79f90fa691fcced5806296479c7b63353da_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:e99d1d877bd7335736cbaeb4db5b9904369a1d07f6df332c38ad79ff1256b67b_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:06285611aef2528fc92c5cebb66ff4c74fe44d457f43cf9ec2f4a98c3c68d25e_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:25e0f4153eb5bc6fbc6b389d5adc81bfde103070ef58317c3c25ce4144a628d3_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:acd3c0369c18cbfa63a5972ed1721f93f1fcb456963ff855dea2c295baf1cdb8_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:d086075db52f4476aa64d7e2680baa01e99da246275fa9cae0ba4a74de63c7f3_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:07d89c1b524d1451051feb865bc716da2197add90fa0c58c4cf4a82975ec846c_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:6582e647d7dd604e25977ec1579969aa1fcb29ead1a0ea65833531d633bbdd2b_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:75e3aec03dffbd0f40f88a08ff5e0319f4515d73f0bcfae28b5fa526b494afc4_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:f0079e8ae53d84223aea2d3186e7bc6b525b7c03d307cde50cfb9f1bbc18712b_arm64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-44492"
},
{
"category": "external",
"summary": "RHBZ#2487938",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2487938"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-44492",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-44492"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-44492",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-44492"
},
{
"category": "external",
"summary": "https://github.com/axios/axios/security/advisories/GHSA-pjwm-pj3p-43mv",
"url": "https://github.com/axios/axios/security/advisories/GHSA-pjwm-pj3p-43mv"
}
],
"release_date": "2026-06-11T15:29:13.890000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T17:12:17+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\nFor details on how to apply this update, refer to:\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:1384e5ba2b7d23119a49d8713826f4c65668bca310589ac7abd0c0d41c7e4c90_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:7f58528b1da9146aa55917324fdf2b375794742b34e5d10ff57f713af60746cd_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:844c3b1499b00aeadfc561642e53792ad80f535efd53b35793ba08b0f26c6d61_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:e1019c30e1d84e66d775d0d6fc7d051803dcbe44823fb2a1914807be39c79dae_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:137ffbb95d463d95da6c350600d968f3cd0e9873bf2e7c6edf952ae3229e9e2b_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:1cccdfd7e90877c27c6d8caea4f1e8ad89bb97c83d97ddf570d4f4ee116f1986_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:71657b82894cfd9e350746f48965e148868a675b9a20dcb7f94a6bc7a5b16ea5_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:881e405e32821ef10cf992c7a633281c1dc45df721fe909048df1689472000ce_ppc64le"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36820"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:1384e5ba2b7d23119a49d8713826f4c65668bca310589ac7abd0c0d41c7e4c90_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:7f58528b1da9146aa55917324fdf2b375794742b34e5d10ff57f713af60746cd_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:844c3b1499b00aeadfc561642e53792ad80f535efd53b35793ba08b0f26c6d61_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:e1019c30e1d84e66d775d0d6fc7d051803dcbe44823fb2a1914807be39c79dae_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:8c9a7ebf430b9f4ca200c6c70b049e8456cf88fd8bf0871b42d65e8dc786d451_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:926d965e6fd12ec0d758270fb4c90bbdc1a05e60cc4c895cf9b671a296c9d867_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:e8e807451e3c5d8d0a8575e1280d7125a4ece51547a7b4a5cd247837662cedad_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:f2a24aa01cbe0d926d4aefe3b12eba21eb5ec7f87276e572a6814c727228624c_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:45cc0d783d1e7874ac73dfbdfe7e03c63b227ab3c4f1e15a0a2f5c97956a76d9_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:6f3eb26734e89375c3e1fb7ac366e12dc0d41bac8f07de9210c7e9845a01eec1_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:768c45fa9f35d98dfe5cfe1ea12f552402bf68ac6e1f828b14310ef59ce57c40_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:b5f1bf30495f6be97c696cf7f90768629cee96f8d106f745bf95fdefddc99592_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:137ffbb95d463d95da6c350600d968f3cd0e9873bf2e7c6edf952ae3229e9e2b_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:1cccdfd7e90877c27c6d8caea4f1e8ad89bb97c83d97ddf570d4f4ee116f1986_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:71657b82894cfd9e350746f48965e148868a675b9a20dcb7f94a6bc7a5b16ea5_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:881e405e32821ef10cf992c7a633281c1dc45df721fe909048df1689472000ce_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:6c85b42ede0f4745ed558bcb03d033c49f56cef17a70c12e5308066124cac6e3_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:091529a93e258a612fd4a98222e6a370ee10b4e97efa791b50f79a2670163d01_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0e8958a22f6771ddfe32b34027c69dbbef65d980c7e465a79d4202d2627994ad_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:5a8b0203ff083113e8b30a123ab30c4bad571f57fb59c1e7e01807b92552504e_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:89bf6a32a0935cacadbc6d23566dce6ca741e404d58c11050638c7b8e868028b_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:077cc953354ea2edd85569a622f97c15d44163d68234e7a9fdee899d25c19cdb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:66285f866090e1bfbedacd592e9d5ea9f2a30b88aa03bc86bc790d6b98a929a4_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:8c80054171d5063457df4bd074674b1824783a101dacb6137da227080aff957c_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:b0f15904251c6665961eef9c944d00f17499f7219351fe213fe7935f62fbf7ac_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:62476ac2fb0096caa9b181f523cc3573ccffe70be1433f08d1d0255b6d3a0640_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:6f632bc9829880a44e2e94084284b52683b4a01dc3315043b0aa32eb344b16cb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:aa3d1cf7853bfe8307efb01f714585f378d1d3d4ed5de7c8808a72e4aeecd4f3_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:bf1d4b2b1ef03e65be59699ce3233a75a34e1777abc182984c7a8efa698a936e_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:141f17d12c748c7ab9e94cfd9db7e2492d3063e7478249d6430ac0d8fcfb8875_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:5909184fe3d37eb45ba3bf55d7b708d818f2a5abfc2949c4a7081a5cd30cea4f_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:6217f0bb4937fa0e0fc0a5c86456fdc1992e169dfedc3d11d5165cef575d4d53_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:d55a55a36a23e7deb83718bd5dcc19b083b84d441add72ea7f4e28935e4717e3_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:0f8e1171f278395f3c72e4d9d3c0492bed15b678963fb2b6182bd65343b85a2e_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:823bb59b1c7d01557c29f9f1e4a4ee39814c38d826b06c3c9de4b8d179078419_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:93c7e9b321c7e9aa4a412a993a6b20412e24772832cc0dd23bbb17aa25f15487_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:9e50b45f81fedab27e896f04b80bacaa01d8370ff5679147f95ad79b61972d83_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:8f145d4e336bd77fcc94f0845f9ebf94563ffd96d56794d96a665c11241df152_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:981917806c7faf31156241cc85577cf375ee566f78adaeadc096d0ba8482b835_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:af3ed91687500d64e2348cca4877c43f73211b8fbd132e7767c3521763185348_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:c05020e5ee5bddc62e38493cd16b6e4ffde7c2248a00d710f32b90a6ee12ceeb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2af86b409540513f6da1afa83110a5cafe8778d2ec16332faa31c964bd5f43f7_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2f3bec76a833a72c7dfa93ed55e55e80e2621c154e5a2f156deaf78d7c6b97b4_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:81a2385be30079500f13f97a18607aa685abd61265bf8fa78bc6ce126341be50_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:fdc8f64f3b82b200a5e31b01b8612069f1aa897014085c1de755394552a1a70a_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:856b9088dbda4e7374daf232602f4bb90b05ad1be1df46d6e363a002f549f4de_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:a107ae2f7b140f2fb2243f33c378228c2f164cfd2d23f57e63f6c424fd400929_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:e21de356b7d879800a96f6c5aeee6bc59a3ed9c58d36503f7089625ce887bb25_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:fcaf6d60d682cf51866948ea3b4846c2993e2801adb69dc745ffa832318f515c_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:11f005939e15d63057bf2f0a988b6baebc275d3e752e9f7696d0f7f5266fd5d6_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:4b4c98be96a932d508fad769eff61bff2a44e13baa60b22b6c543f4a11eb71c2_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:6c87453ffe89e8be752ee40c8a9ccf6894c83be703f13901b1e8b64a4c0e549a_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:c18a1c50a4fc7081c6564d1c4ed4904212b7939a4f1f46afef0a36dc1d76f38e_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:33367b9fdb3addce3302ad35bc10423505fefe3dd27b8b9013b26d66caac2a6c_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:72cbdb061cbcd295be5e66a0eabb409af16ade7f0aa12b04c2d7327e9e1a24ba_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:d0379f9da8cbb5514394a4550ff0d79f90fa691fcced5806296479c7b63353da_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:e99d1d877bd7335736cbaeb4db5b9904369a1d07f6df332c38ad79ff1256b67b_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:06285611aef2528fc92c5cebb66ff4c74fe44d457f43cf9ec2f4a98c3c68d25e_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:25e0f4153eb5bc6fbc6b389d5adc81bfde103070ef58317c3c25ce4144a628d3_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:acd3c0369c18cbfa63a5972ed1721f93f1fcb456963ff855dea2c295baf1cdb8_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:d086075db52f4476aa64d7e2680baa01e99da246275fa9cae0ba4a74de63c7f3_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:07d89c1b524d1451051feb865bc716da2197add90fa0c58c4cf4a82975ec846c_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:6582e647d7dd604e25977ec1579969aa1fcb29ead1a0ea65833531d633bbdd2b_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:75e3aec03dffbd0f40f88a08ff5e0319f4515d73f0bcfae28b5fa526b494afc4_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:f0079e8ae53d84223aea2d3186e7bc6b525b7c03d307cde50cfb9f1bbc18712b_arm64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 8.6,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:1384e5ba2b7d23119a49d8713826f4c65668bca310589ac7abd0c0d41c7e4c90_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:7f58528b1da9146aa55917324fdf2b375794742b34e5d10ff57f713af60746cd_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:844c3b1499b00aeadfc561642e53792ad80f535efd53b35793ba08b0f26c6d61_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:e1019c30e1d84e66d775d0d6fc7d051803dcbe44823fb2a1914807be39c79dae_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:8c9a7ebf430b9f4ca200c6c70b049e8456cf88fd8bf0871b42d65e8dc786d451_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:926d965e6fd12ec0d758270fb4c90bbdc1a05e60cc4c895cf9b671a296c9d867_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:e8e807451e3c5d8d0a8575e1280d7125a4ece51547a7b4a5cd247837662cedad_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:f2a24aa01cbe0d926d4aefe3b12eba21eb5ec7f87276e572a6814c727228624c_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:45cc0d783d1e7874ac73dfbdfe7e03c63b227ab3c4f1e15a0a2f5c97956a76d9_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:6f3eb26734e89375c3e1fb7ac366e12dc0d41bac8f07de9210c7e9845a01eec1_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:768c45fa9f35d98dfe5cfe1ea12f552402bf68ac6e1f828b14310ef59ce57c40_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:b5f1bf30495f6be97c696cf7f90768629cee96f8d106f745bf95fdefddc99592_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:137ffbb95d463d95da6c350600d968f3cd0e9873bf2e7c6edf952ae3229e9e2b_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:1cccdfd7e90877c27c6d8caea4f1e8ad89bb97c83d97ddf570d4f4ee116f1986_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:71657b82894cfd9e350746f48965e148868a675b9a20dcb7f94a6bc7a5b16ea5_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:881e405e32821ef10cf992c7a633281c1dc45df721fe909048df1689472000ce_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:6c85b42ede0f4745ed558bcb03d033c49f56cef17a70c12e5308066124cac6e3_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:091529a93e258a612fd4a98222e6a370ee10b4e97efa791b50f79a2670163d01_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0e8958a22f6771ddfe32b34027c69dbbef65d980c7e465a79d4202d2627994ad_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:5a8b0203ff083113e8b30a123ab30c4bad571f57fb59c1e7e01807b92552504e_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:89bf6a32a0935cacadbc6d23566dce6ca741e404d58c11050638c7b8e868028b_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:077cc953354ea2edd85569a622f97c15d44163d68234e7a9fdee899d25c19cdb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:66285f866090e1bfbedacd592e9d5ea9f2a30b88aa03bc86bc790d6b98a929a4_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:8c80054171d5063457df4bd074674b1824783a101dacb6137da227080aff957c_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:b0f15904251c6665961eef9c944d00f17499f7219351fe213fe7935f62fbf7ac_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:62476ac2fb0096caa9b181f523cc3573ccffe70be1433f08d1d0255b6d3a0640_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:6f632bc9829880a44e2e94084284b52683b4a01dc3315043b0aa32eb344b16cb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:aa3d1cf7853bfe8307efb01f714585f378d1d3d4ed5de7c8808a72e4aeecd4f3_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:bf1d4b2b1ef03e65be59699ce3233a75a34e1777abc182984c7a8efa698a936e_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:141f17d12c748c7ab9e94cfd9db7e2492d3063e7478249d6430ac0d8fcfb8875_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:5909184fe3d37eb45ba3bf55d7b708d818f2a5abfc2949c4a7081a5cd30cea4f_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:6217f0bb4937fa0e0fc0a5c86456fdc1992e169dfedc3d11d5165cef575d4d53_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:d55a55a36a23e7deb83718bd5dcc19b083b84d441add72ea7f4e28935e4717e3_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:0f8e1171f278395f3c72e4d9d3c0492bed15b678963fb2b6182bd65343b85a2e_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:823bb59b1c7d01557c29f9f1e4a4ee39814c38d826b06c3c9de4b8d179078419_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:93c7e9b321c7e9aa4a412a993a6b20412e24772832cc0dd23bbb17aa25f15487_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:9e50b45f81fedab27e896f04b80bacaa01d8370ff5679147f95ad79b61972d83_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:8f145d4e336bd77fcc94f0845f9ebf94563ffd96d56794d96a665c11241df152_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:981917806c7faf31156241cc85577cf375ee566f78adaeadc096d0ba8482b835_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:af3ed91687500d64e2348cca4877c43f73211b8fbd132e7767c3521763185348_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:c05020e5ee5bddc62e38493cd16b6e4ffde7c2248a00d710f32b90a6ee12ceeb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2af86b409540513f6da1afa83110a5cafe8778d2ec16332faa31c964bd5f43f7_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2f3bec76a833a72c7dfa93ed55e55e80e2621c154e5a2f156deaf78d7c6b97b4_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:81a2385be30079500f13f97a18607aa685abd61265bf8fa78bc6ce126341be50_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:fdc8f64f3b82b200a5e31b01b8612069f1aa897014085c1de755394552a1a70a_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:856b9088dbda4e7374daf232602f4bb90b05ad1be1df46d6e363a002f549f4de_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:a107ae2f7b140f2fb2243f33c378228c2f164cfd2d23f57e63f6c424fd400929_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:e21de356b7d879800a96f6c5aeee6bc59a3ed9c58d36503f7089625ce887bb25_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:fcaf6d60d682cf51866948ea3b4846c2993e2801adb69dc745ffa832318f515c_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:11f005939e15d63057bf2f0a988b6baebc275d3e752e9f7696d0f7f5266fd5d6_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:4b4c98be96a932d508fad769eff61bff2a44e13baa60b22b6c543f4a11eb71c2_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:6c87453ffe89e8be752ee40c8a9ccf6894c83be703f13901b1e8b64a4c0e549a_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:c18a1c50a4fc7081c6564d1c4ed4904212b7939a4f1f46afef0a36dc1d76f38e_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:33367b9fdb3addce3302ad35bc10423505fefe3dd27b8b9013b26d66caac2a6c_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:72cbdb061cbcd295be5e66a0eabb409af16ade7f0aa12b04c2d7327e9e1a24ba_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:d0379f9da8cbb5514394a4550ff0d79f90fa691fcced5806296479c7b63353da_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:e99d1d877bd7335736cbaeb4db5b9904369a1d07f6df332c38ad79ff1256b67b_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:06285611aef2528fc92c5cebb66ff4c74fe44d457f43cf9ec2f4a98c3c68d25e_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:25e0f4153eb5bc6fbc6b389d5adc81bfde103070ef58317c3c25ce4144a628d3_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:acd3c0369c18cbfa63a5972ed1721f93f1fcb456963ff855dea2c295baf1cdb8_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:d086075db52f4476aa64d7e2680baa01e99da246275fa9cae0ba4a74de63c7f3_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:07d89c1b524d1451051feb865bc716da2197add90fa0c58c4cf4a82975ec846c_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:6582e647d7dd604e25977ec1579969aa1fcb29ead1a0ea65833531d633bbdd2b_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:75e3aec03dffbd0f40f88a08ff5e0319f4515d73f0bcfae28b5fa526b494afc4_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:f0079e8ae53d84223aea2d3186e7bc6b525b7c03d307cde50cfb9f1bbc18712b_arm64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "axios: Axios: Proxy bypass via IPv4-mapped IPv6 address non-normalization"
},
{
"cve": "CVE-2026-44494",
"cwe": {
"id": "CWE-915",
"name": "Improperly Controlled Modification of Dynamically-Determined Object Attributes"
},
"discovery_date": "2026-06-11T17:01:12.945664+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:8c9a7ebf430b9f4ca200c6c70b049e8456cf88fd8bf0871b42d65e8dc786d451_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:926d965e6fd12ec0d758270fb4c90bbdc1a05e60cc4c895cf9b671a296c9d867_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:e8e807451e3c5d8d0a8575e1280d7125a4ece51547a7b4a5cd247837662cedad_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:f2a24aa01cbe0d926d4aefe3b12eba21eb5ec7f87276e572a6814c727228624c_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:45cc0d783d1e7874ac73dfbdfe7e03c63b227ab3c4f1e15a0a2f5c97956a76d9_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:6f3eb26734e89375c3e1fb7ac366e12dc0d41bac8f07de9210c7e9845a01eec1_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:768c45fa9f35d98dfe5cfe1ea12f552402bf68ac6e1f828b14310ef59ce57c40_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:b5f1bf30495f6be97c696cf7f90768629cee96f8d106f745bf95fdefddc99592_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:6c85b42ede0f4745ed558bcb03d033c49f56cef17a70c12e5308066124cac6e3_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:091529a93e258a612fd4a98222e6a370ee10b4e97efa791b50f79a2670163d01_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0e8958a22f6771ddfe32b34027c69dbbef65d980c7e465a79d4202d2627994ad_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:5a8b0203ff083113e8b30a123ab30c4bad571f57fb59c1e7e01807b92552504e_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:89bf6a32a0935cacadbc6d23566dce6ca741e404d58c11050638c7b8e868028b_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:077cc953354ea2edd85569a622f97c15d44163d68234e7a9fdee899d25c19cdb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:66285f866090e1bfbedacd592e9d5ea9f2a30b88aa03bc86bc790d6b98a929a4_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:8c80054171d5063457df4bd074674b1824783a101dacb6137da227080aff957c_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:b0f15904251c6665961eef9c944d00f17499f7219351fe213fe7935f62fbf7ac_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:62476ac2fb0096caa9b181f523cc3573ccffe70be1433f08d1d0255b6d3a0640_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:6f632bc9829880a44e2e94084284b52683b4a01dc3315043b0aa32eb344b16cb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:aa3d1cf7853bfe8307efb01f714585f378d1d3d4ed5de7c8808a72e4aeecd4f3_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:bf1d4b2b1ef03e65be59699ce3233a75a34e1777abc182984c7a8efa698a936e_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:141f17d12c748c7ab9e94cfd9db7e2492d3063e7478249d6430ac0d8fcfb8875_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:5909184fe3d37eb45ba3bf55d7b708d818f2a5abfc2949c4a7081a5cd30cea4f_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:6217f0bb4937fa0e0fc0a5c86456fdc1992e169dfedc3d11d5165cef575d4d53_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:d55a55a36a23e7deb83718bd5dcc19b083b84d441add72ea7f4e28935e4717e3_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:0f8e1171f278395f3c72e4d9d3c0492bed15b678963fb2b6182bd65343b85a2e_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:823bb59b1c7d01557c29f9f1e4a4ee39814c38d826b06c3c9de4b8d179078419_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:93c7e9b321c7e9aa4a412a993a6b20412e24772832cc0dd23bbb17aa25f15487_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:9e50b45f81fedab27e896f04b80bacaa01d8370ff5679147f95ad79b61972d83_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:8f145d4e336bd77fcc94f0845f9ebf94563ffd96d56794d96a665c11241df152_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:981917806c7faf31156241cc85577cf375ee566f78adaeadc096d0ba8482b835_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:af3ed91687500d64e2348cca4877c43f73211b8fbd132e7767c3521763185348_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:c05020e5ee5bddc62e38493cd16b6e4ffde7c2248a00d710f32b90a6ee12ceeb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2af86b409540513f6da1afa83110a5cafe8778d2ec16332faa31c964bd5f43f7_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2f3bec76a833a72c7dfa93ed55e55e80e2621c154e5a2f156deaf78d7c6b97b4_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:81a2385be30079500f13f97a18607aa685abd61265bf8fa78bc6ce126341be50_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:fdc8f64f3b82b200a5e31b01b8612069f1aa897014085c1de755394552a1a70a_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:856b9088dbda4e7374daf232602f4bb90b05ad1be1df46d6e363a002f549f4de_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:a107ae2f7b140f2fb2243f33c378228c2f164cfd2d23f57e63f6c424fd400929_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:e21de356b7d879800a96f6c5aeee6bc59a3ed9c58d36503f7089625ce887bb25_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:fcaf6d60d682cf51866948ea3b4846c2993e2801adb69dc745ffa832318f515c_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:11f005939e15d63057bf2f0a988b6baebc275d3e752e9f7696d0f7f5266fd5d6_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:4b4c98be96a932d508fad769eff61bff2a44e13baa60b22b6c543f4a11eb71c2_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:6c87453ffe89e8be752ee40c8a9ccf6894c83be703f13901b1e8b64a4c0e549a_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:c18a1c50a4fc7081c6564d1c4ed4904212b7939a4f1f46afef0a36dc1d76f38e_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:33367b9fdb3addce3302ad35bc10423505fefe3dd27b8b9013b26d66caac2a6c_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:72cbdb061cbcd295be5e66a0eabb409af16ade7f0aa12b04c2d7327e9e1a24ba_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:d0379f9da8cbb5514394a4550ff0d79f90fa691fcced5806296479c7b63353da_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:e99d1d877bd7335736cbaeb4db5b9904369a1d07f6df332c38ad79ff1256b67b_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:06285611aef2528fc92c5cebb66ff4c74fe44d457f43cf9ec2f4a98c3c68d25e_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:25e0f4153eb5bc6fbc6b389d5adc81bfde103070ef58317c3c25ce4144a628d3_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:acd3c0369c18cbfa63a5972ed1721f93f1fcb456963ff855dea2c295baf1cdb8_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:d086075db52f4476aa64d7e2680baa01e99da246275fa9cae0ba4a74de63c7f3_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:07d89c1b524d1451051feb865bc716da2197add90fa0c58c4cf4a82975ec846c_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:6582e647d7dd604e25977ec1579969aa1fcb29ead1a0ea65833531d633bbdd2b_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:75e3aec03dffbd0f40f88a08ff5e0319f4515d73f0bcfae28b5fa526b494afc4_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:f0079e8ae53d84223aea2d3186e7bc6b525b7c03d307cde50cfb9f1bbc18712b_arm64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2487942"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Axios. This vulnerability, a Prototype Pollution \"Gadget\" attack, allows an attacker to escalate any existing Object.prototype pollution in an application\u0027s dependency tree into a full Man-in-the-Middle (MITM) attack. This enables the attacker to intercept, read, and modify all HTTP traffic, including sensitive authentication credentials. The flaw occurs because the `config.proxy` setting is susceptible to prototype pollution, allowing an attacker to inject a malicious proxy server.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "axios: Axios: Man-in-the-Middle (MITM) attack via Prototype Pollution",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This Important flaw in the Axios library allows an attacker to escalate existing prototype pollution vulnerabilities within an application\u0027s dependency tree into a full Man-in-the-Middle (MITM) attack. By injecting a malicious proxy configuration into the `Object.prototype`, an attacker can intercept, read, and modify all HTTP traffic, including sensitive authentication credentials, without direct user interaction. This poses a significant risk to data confidentiality and integrity in Red Hat products that utilize the Axios library.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:1384e5ba2b7d23119a49d8713826f4c65668bca310589ac7abd0c0d41c7e4c90_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:7f58528b1da9146aa55917324fdf2b375794742b34e5d10ff57f713af60746cd_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:844c3b1499b00aeadfc561642e53792ad80f535efd53b35793ba08b0f26c6d61_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:e1019c30e1d84e66d775d0d6fc7d051803dcbe44823fb2a1914807be39c79dae_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:137ffbb95d463d95da6c350600d968f3cd0e9873bf2e7c6edf952ae3229e9e2b_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:1cccdfd7e90877c27c6d8caea4f1e8ad89bb97c83d97ddf570d4f4ee116f1986_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:71657b82894cfd9e350746f48965e148868a675b9a20dcb7f94a6bc7a5b16ea5_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:881e405e32821ef10cf992c7a633281c1dc45df721fe909048df1689472000ce_ppc64le"
],
"known_not_affected": [
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:8c9a7ebf430b9f4ca200c6c70b049e8456cf88fd8bf0871b42d65e8dc786d451_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:926d965e6fd12ec0d758270fb4c90bbdc1a05e60cc4c895cf9b671a296c9d867_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:e8e807451e3c5d8d0a8575e1280d7125a4ece51547a7b4a5cd247837662cedad_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:f2a24aa01cbe0d926d4aefe3b12eba21eb5ec7f87276e572a6814c727228624c_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:45cc0d783d1e7874ac73dfbdfe7e03c63b227ab3c4f1e15a0a2f5c97956a76d9_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:6f3eb26734e89375c3e1fb7ac366e12dc0d41bac8f07de9210c7e9845a01eec1_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:768c45fa9f35d98dfe5cfe1ea12f552402bf68ac6e1f828b14310ef59ce57c40_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:b5f1bf30495f6be97c696cf7f90768629cee96f8d106f745bf95fdefddc99592_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:6c85b42ede0f4745ed558bcb03d033c49f56cef17a70c12e5308066124cac6e3_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:091529a93e258a612fd4a98222e6a370ee10b4e97efa791b50f79a2670163d01_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0e8958a22f6771ddfe32b34027c69dbbef65d980c7e465a79d4202d2627994ad_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:5a8b0203ff083113e8b30a123ab30c4bad571f57fb59c1e7e01807b92552504e_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:89bf6a32a0935cacadbc6d23566dce6ca741e404d58c11050638c7b8e868028b_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:077cc953354ea2edd85569a622f97c15d44163d68234e7a9fdee899d25c19cdb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:66285f866090e1bfbedacd592e9d5ea9f2a30b88aa03bc86bc790d6b98a929a4_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:8c80054171d5063457df4bd074674b1824783a101dacb6137da227080aff957c_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:b0f15904251c6665961eef9c944d00f17499f7219351fe213fe7935f62fbf7ac_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:62476ac2fb0096caa9b181f523cc3573ccffe70be1433f08d1d0255b6d3a0640_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:6f632bc9829880a44e2e94084284b52683b4a01dc3315043b0aa32eb344b16cb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:aa3d1cf7853bfe8307efb01f714585f378d1d3d4ed5de7c8808a72e4aeecd4f3_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:bf1d4b2b1ef03e65be59699ce3233a75a34e1777abc182984c7a8efa698a936e_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:141f17d12c748c7ab9e94cfd9db7e2492d3063e7478249d6430ac0d8fcfb8875_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:5909184fe3d37eb45ba3bf55d7b708d818f2a5abfc2949c4a7081a5cd30cea4f_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:6217f0bb4937fa0e0fc0a5c86456fdc1992e169dfedc3d11d5165cef575d4d53_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:d55a55a36a23e7deb83718bd5dcc19b083b84d441add72ea7f4e28935e4717e3_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:0f8e1171f278395f3c72e4d9d3c0492bed15b678963fb2b6182bd65343b85a2e_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:823bb59b1c7d01557c29f9f1e4a4ee39814c38d826b06c3c9de4b8d179078419_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:93c7e9b321c7e9aa4a412a993a6b20412e24772832cc0dd23bbb17aa25f15487_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:9e50b45f81fedab27e896f04b80bacaa01d8370ff5679147f95ad79b61972d83_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:8f145d4e336bd77fcc94f0845f9ebf94563ffd96d56794d96a665c11241df152_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:981917806c7faf31156241cc85577cf375ee566f78adaeadc096d0ba8482b835_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:af3ed91687500d64e2348cca4877c43f73211b8fbd132e7767c3521763185348_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:c05020e5ee5bddc62e38493cd16b6e4ffde7c2248a00d710f32b90a6ee12ceeb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2af86b409540513f6da1afa83110a5cafe8778d2ec16332faa31c964bd5f43f7_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2f3bec76a833a72c7dfa93ed55e55e80e2621c154e5a2f156deaf78d7c6b97b4_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:81a2385be30079500f13f97a18607aa685abd61265bf8fa78bc6ce126341be50_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:fdc8f64f3b82b200a5e31b01b8612069f1aa897014085c1de755394552a1a70a_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:856b9088dbda4e7374daf232602f4bb90b05ad1be1df46d6e363a002f549f4de_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:a107ae2f7b140f2fb2243f33c378228c2f164cfd2d23f57e63f6c424fd400929_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:e21de356b7d879800a96f6c5aeee6bc59a3ed9c58d36503f7089625ce887bb25_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:fcaf6d60d682cf51866948ea3b4846c2993e2801adb69dc745ffa832318f515c_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:11f005939e15d63057bf2f0a988b6baebc275d3e752e9f7696d0f7f5266fd5d6_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:4b4c98be96a932d508fad769eff61bff2a44e13baa60b22b6c543f4a11eb71c2_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:6c87453ffe89e8be752ee40c8a9ccf6894c83be703f13901b1e8b64a4c0e549a_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:c18a1c50a4fc7081c6564d1c4ed4904212b7939a4f1f46afef0a36dc1d76f38e_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:33367b9fdb3addce3302ad35bc10423505fefe3dd27b8b9013b26d66caac2a6c_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:72cbdb061cbcd295be5e66a0eabb409af16ade7f0aa12b04c2d7327e9e1a24ba_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:d0379f9da8cbb5514394a4550ff0d79f90fa691fcced5806296479c7b63353da_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:e99d1d877bd7335736cbaeb4db5b9904369a1d07f6df332c38ad79ff1256b67b_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:06285611aef2528fc92c5cebb66ff4c74fe44d457f43cf9ec2f4a98c3c68d25e_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:25e0f4153eb5bc6fbc6b389d5adc81bfde103070ef58317c3c25ce4144a628d3_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:acd3c0369c18cbfa63a5972ed1721f93f1fcb456963ff855dea2c295baf1cdb8_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:d086075db52f4476aa64d7e2680baa01e99da246275fa9cae0ba4a74de63c7f3_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:07d89c1b524d1451051feb865bc716da2197add90fa0c58c4cf4a82975ec846c_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:6582e647d7dd604e25977ec1579969aa1fcb29ead1a0ea65833531d633bbdd2b_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:75e3aec03dffbd0f40f88a08ff5e0319f4515d73f0bcfae28b5fa526b494afc4_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:f0079e8ae53d84223aea2d3186e7bc6b525b7c03d307cde50cfb9f1bbc18712b_arm64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-44494"
},
{
"category": "external",
"summary": "RHBZ#2487942",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2487942"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-44494",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-44494"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-44494",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-44494"
},
{
"category": "external",
"summary": "https://github.com/axios/axios/security/advisories/GHSA-35jp-ww65-95wh",
"url": "https://github.com/axios/axios/security/advisories/GHSA-35jp-ww65-95wh"
}
],
"release_date": "2026-06-11T15:32:03.155000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T17:12:17+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\nFor details on how to apply this update, refer to:\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:1384e5ba2b7d23119a49d8713826f4c65668bca310589ac7abd0c0d41c7e4c90_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:7f58528b1da9146aa55917324fdf2b375794742b34e5d10ff57f713af60746cd_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:844c3b1499b00aeadfc561642e53792ad80f535efd53b35793ba08b0f26c6d61_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:e1019c30e1d84e66d775d0d6fc7d051803dcbe44823fb2a1914807be39c79dae_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:137ffbb95d463d95da6c350600d968f3cd0e9873bf2e7c6edf952ae3229e9e2b_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:1cccdfd7e90877c27c6d8caea4f1e8ad89bb97c83d97ddf570d4f4ee116f1986_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:71657b82894cfd9e350746f48965e148868a675b9a20dcb7f94a6bc7a5b16ea5_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:881e405e32821ef10cf992c7a633281c1dc45df721fe909048df1689472000ce_ppc64le"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36820"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:1384e5ba2b7d23119a49d8713826f4c65668bca310589ac7abd0c0d41c7e4c90_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:7f58528b1da9146aa55917324fdf2b375794742b34e5d10ff57f713af60746cd_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:844c3b1499b00aeadfc561642e53792ad80f535efd53b35793ba08b0f26c6d61_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:e1019c30e1d84e66d775d0d6fc7d051803dcbe44823fb2a1914807be39c79dae_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:8c9a7ebf430b9f4ca200c6c70b049e8456cf88fd8bf0871b42d65e8dc786d451_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:926d965e6fd12ec0d758270fb4c90bbdc1a05e60cc4c895cf9b671a296c9d867_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:e8e807451e3c5d8d0a8575e1280d7125a4ece51547a7b4a5cd247837662cedad_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:f2a24aa01cbe0d926d4aefe3b12eba21eb5ec7f87276e572a6814c727228624c_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:45cc0d783d1e7874ac73dfbdfe7e03c63b227ab3c4f1e15a0a2f5c97956a76d9_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:6f3eb26734e89375c3e1fb7ac366e12dc0d41bac8f07de9210c7e9845a01eec1_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:768c45fa9f35d98dfe5cfe1ea12f552402bf68ac6e1f828b14310ef59ce57c40_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:b5f1bf30495f6be97c696cf7f90768629cee96f8d106f745bf95fdefddc99592_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:137ffbb95d463d95da6c350600d968f3cd0e9873bf2e7c6edf952ae3229e9e2b_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:1cccdfd7e90877c27c6d8caea4f1e8ad89bb97c83d97ddf570d4f4ee116f1986_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:71657b82894cfd9e350746f48965e148868a675b9a20dcb7f94a6bc7a5b16ea5_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:881e405e32821ef10cf992c7a633281c1dc45df721fe909048df1689472000ce_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:6c85b42ede0f4745ed558bcb03d033c49f56cef17a70c12e5308066124cac6e3_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:091529a93e258a612fd4a98222e6a370ee10b4e97efa791b50f79a2670163d01_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0e8958a22f6771ddfe32b34027c69dbbef65d980c7e465a79d4202d2627994ad_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:5a8b0203ff083113e8b30a123ab30c4bad571f57fb59c1e7e01807b92552504e_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:89bf6a32a0935cacadbc6d23566dce6ca741e404d58c11050638c7b8e868028b_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:077cc953354ea2edd85569a622f97c15d44163d68234e7a9fdee899d25c19cdb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:66285f866090e1bfbedacd592e9d5ea9f2a30b88aa03bc86bc790d6b98a929a4_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:8c80054171d5063457df4bd074674b1824783a101dacb6137da227080aff957c_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:b0f15904251c6665961eef9c944d00f17499f7219351fe213fe7935f62fbf7ac_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:62476ac2fb0096caa9b181f523cc3573ccffe70be1433f08d1d0255b6d3a0640_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:6f632bc9829880a44e2e94084284b52683b4a01dc3315043b0aa32eb344b16cb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:aa3d1cf7853bfe8307efb01f714585f378d1d3d4ed5de7c8808a72e4aeecd4f3_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:bf1d4b2b1ef03e65be59699ce3233a75a34e1777abc182984c7a8efa698a936e_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:141f17d12c748c7ab9e94cfd9db7e2492d3063e7478249d6430ac0d8fcfb8875_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:5909184fe3d37eb45ba3bf55d7b708d818f2a5abfc2949c4a7081a5cd30cea4f_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:6217f0bb4937fa0e0fc0a5c86456fdc1992e169dfedc3d11d5165cef575d4d53_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:d55a55a36a23e7deb83718bd5dcc19b083b84d441add72ea7f4e28935e4717e3_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:0f8e1171f278395f3c72e4d9d3c0492bed15b678963fb2b6182bd65343b85a2e_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:823bb59b1c7d01557c29f9f1e4a4ee39814c38d826b06c3c9de4b8d179078419_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:93c7e9b321c7e9aa4a412a993a6b20412e24772832cc0dd23bbb17aa25f15487_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:9e50b45f81fedab27e896f04b80bacaa01d8370ff5679147f95ad79b61972d83_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:8f145d4e336bd77fcc94f0845f9ebf94563ffd96d56794d96a665c11241df152_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:981917806c7faf31156241cc85577cf375ee566f78adaeadc096d0ba8482b835_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:af3ed91687500d64e2348cca4877c43f73211b8fbd132e7767c3521763185348_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:c05020e5ee5bddc62e38493cd16b6e4ffde7c2248a00d710f32b90a6ee12ceeb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2af86b409540513f6da1afa83110a5cafe8778d2ec16332faa31c964bd5f43f7_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2f3bec76a833a72c7dfa93ed55e55e80e2621c154e5a2f156deaf78d7c6b97b4_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:81a2385be30079500f13f97a18607aa685abd61265bf8fa78bc6ce126341be50_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:fdc8f64f3b82b200a5e31b01b8612069f1aa897014085c1de755394552a1a70a_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:856b9088dbda4e7374daf232602f4bb90b05ad1be1df46d6e363a002f549f4de_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:a107ae2f7b140f2fb2243f33c378228c2f164cfd2d23f57e63f6c424fd400929_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:e21de356b7d879800a96f6c5aeee6bc59a3ed9c58d36503f7089625ce887bb25_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:fcaf6d60d682cf51866948ea3b4846c2993e2801adb69dc745ffa832318f515c_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:11f005939e15d63057bf2f0a988b6baebc275d3e752e9f7696d0f7f5266fd5d6_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:4b4c98be96a932d508fad769eff61bff2a44e13baa60b22b6c543f4a11eb71c2_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:6c87453ffe89e8be752ee40c8a9ccf6894c83be703f13901b1e8b64a4c0e549a_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:c18a1c50a4fc7081c6564d1c4ed4904212b7939a4f1f46afef0a36dc1d76f38e_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:33367b9fdb3addce3302ad35bc10423505fefe3dd27b8b9013b26d66caac2a6c_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:72cbdb061cbcd295be5e66a0eabb409af16ade7f0aa12b04c2d7327e9e1a24ba_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:d0379f9da8cbb5514394a4550ff0d79f90fa691fcced5806296479c7b63353da_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:e99d1d877bd7335736cbaeb4db5b9904369a1d07f6df332c38ad79ff1256b67b_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:06285611aef2528fc92c5cebb66ff4c74fe44d457f43cf9ec2f4a98c3c68d25e_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:25e0f4153eb5bc6fbc6b389d5adc81bfde103070ef58317c3c25ce4144a628d3_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:acd3c0369c18cbfa63a5972ed1721f93f1fcb456963ff855dea2c295baf1cdb8_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:d086075db52f4476aa64d7e2680baa01e99da246275fa9cae0ba4a74de63c7f3_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:07d89c1b524d1451051feb865bc716da2197add90fa0c58c4cf4a82975ec846c_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:6582e647d7dd604e25977ec1579969aa1fcb29ead1a0ea65833531d633bbdd2b_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:75e3aec03dffbd0f40f88a08ff5e0319f4515d73f0bcfae28b5fa526b494afc4_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:f0079e8ae53d84223aea2d3186e7bc6b525b7c03d307cde50cfb9f1bbc18712b_arm64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 8.7,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:1384e5ba2b7d23119a49d8713826f4c65668bca310589ac7abd0c0d41c7e4c90_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:7f58528b1da9146aa55917324fdf2b375794742b34e5d10ff57f713af60746cd_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:844c3b1499b00aeadfc561642e53792ad80f535efd53b35793ba08b0f26c6d61_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:e1019c30e1d84e66d775d0d6fc7d051803dcbe44823fb2a1914807be39c79dae_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:8c9a7ebf430b9f4ca200c6c70b049e8456cf88fd8bf0871b42d65e8dc786d451_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:926d965e6fd12ec0d758270fb4c90bbdc1a05e60cc4c895cf9b671a296c9d867_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:e8e807451e3c5d8d0a8575e1280d7125a4ece51547a7b4a5cd247837662cedad_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:f2a24aa01cbe0d926d4aefe3b12eba21eb5ec7f87276e572a6814c727228624c_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:45cc0d783d1e7874ac73dfbdfe7e03c63b227ab3c4f1e15a0a2f5c97956a76d9_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:6f3eb26734e89375c3e1fb7ac366e12dc0d41bac8f07de9210c7e9845a01eec1_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:768c45fa9f35d98dfe5cfe1ea12f552402bf68ac6e1f828b14310ef59ce57c40_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:b5f1bf30495f6be97c696cf7f90768629cee96f8d106f745bf95fdefddc99592_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:137ffbb95d463d95da6c350600d968f3cd0e9873bf2e7c6edf952ae3229e9e2b_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:1cccdfd7e90877c27c6d8caea4f1e8ad89bb97c83d97ddf570d4f4ee116f1986_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:71657b82894cfd9e350746f48965e148868a675b9a20dcb7f94a6bc7a5b16ea5_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:881e405e32821ef10cf992c7a633281c1dc45df721fe909048df1689472000ce_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:6c85b42ede0f4745ed558bcb03d033c49f56cef17a70c12e5308066124cac6e3_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:091529a93e258a612fd4a98222e6a370ee10b4e97efa791b50f79a2670163d01_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0e8958a22f6771ddfe32b34027c69dbbef65d980c7e465a79d4202d2627994ad_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:5a8b0203ff083113e8b30a123ab30c4bad571f57fb59c1e7e01807b92552504e_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:89bf6a32a0935cacadbc6d23566dce6ca741e404d58c11050638c7b8e868028b_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:077cc953354ea2edd85569a622f97c15d44163d68234e7a9fdee899d25c19cdb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:66285f866090e1bfbedacd592e9d5ea9f2a30b88aa03bc86bc790d6b98a929a4_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:8c80054171d5063457df4bd074674b1824783a101dacb6137da227080aff957c_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:b0f15904251c6665961eef9c944d00f17499f7219351fe213fe7935f62fbf7ac_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:62476ac2fb0096caa9b181f523cc3573ccffe70be1433f08d1d0255b6d3a0640_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:6f632bc9829880a44e2e94084284b52683b4a01dc3315043b0aa32eb344b16cb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:aa3d1cf7853bfe8307efb01f714585f378d1d3d4ed5de7c8808a72e4aeecd4f3_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:bf1d4b2b1ef03e65be59699ce3233a75a34e1777abc182984c7a8efa698a936e_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:141f17d12c748c7ab9e94cfd9db7e2492d3063e7478249d6430ac0d8fcfb8875_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:5909184fe3d37eb45ba3bf55d7b708d818f2a5abfc2949c4a7081a5cd30cea4f_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:6217f0bb4937fa0e0fc0a5c86456fdc1992e169dfedc3d11d5165cef575d4d53_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:d55a55a36a23e7deb83718bd5dcc19b083b84d441add72ea7f4e28935e4717e3_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:0f8e1171f278395f3c72e4d9d3c0492bed15b678963fb2b6182bd65343b85a2e_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:823bb59b1c7d01557c29f9f1e4a4ee39814c38d826b06c3c9de4b8d179078419_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:93c7e9b321c7e9aa4a412a993a6b20412e24772832cc0dd23bbb17aa25f15487_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:9e50b45f81fedab27e896f04b80bacaa01d8370ff5679147f95ad79b61972d83_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:8f145d4e336bd77fcc94f0845f9ebf94563ffd96d56794d96a665c11241df152_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:981917806c7faf31156241cc85577cf375ee566f78adaeadc096d0ba8482b835_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:af3ed91687500d64e2348cca4877c43f73211b8fbd132e7767c3521763185348_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:c05020e5ee5bddc62e38493cd16b6e4ffde7c2248a00d710f32b90a6ee12ceeb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2af86b409540513f6da1afa83110a5cafe8778d2ec16332faa31c964bd5f43f7_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2f3bec76a833a72c7dfa93ed55e55e80e2621c154e5a2f156deaf78d7c6b97b4_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:81a2385be30079500f13f97a18607aa685abd61265bf8fa78bc6ce126341be50_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:fdc8f64f3b82b200a5e31b01b8612069f1aa897014085c1de755394552a1a70a_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:856b9088dbda4e7374daf232602f4bb90b05ad1be1df46d6e363a002f549f4de_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:a107ae2f7b140f2fb2243f33c378228c2f164cfd2d23f57e63f6c424fd400929_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:e21de356b7d879800a96f6c5aeee6bc59a3ed9c58d36503f7089625ce887bb25_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:fcaf6d60d682cf51866948ea3b4846c2993e2801adb69dc745ffa832318f515c_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:11f005939e15d63057bf2f0a988b6baebc275d3e752e9f7696d0f7f5266fd5d6_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:4b4c98be96a932d508fad769eff61bff2a44e13baa60b22b6c543f4a11eb71c2_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:6c87453ffe89e8be752ee40c8a9ccf6894c83be703f13901b1e8b64a4c0e549a_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:c18a1c50a4fc7081c6564d1c4ed4904212b7939a4f1f46afef0a36dc1d76f38e_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:33367b9fdb3addce3302ad35bc10423505fefe3dd27b8b9013b26d66caac2a6c_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:72cbdb061cbcd295be5e66a0eabb409af16ade7f0aa12b04c2d7327e9e1a24ba_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:d0379f9da8cbb5514394a4550ff0d79f90fa691fcced5806296479c7b63353da_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:e99d1d877bd7335736cbaeb4db5b9904369a1d07f6df332c38ad79ff1256b67b_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:06285611aef2528fc92c5cebb66ff4c74fe44d457f43cf9ec2f4a98c3c68d25e_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:25e0f4153eb5bc6fbc6b389d5adc81bfde103070ef58317c3c25ce4144a628d3_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:acd3c0369c18cbfa63a5972ed1721f93f1fcb456963ff855dea2c295baf1cdb8_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:d086075db52f4476aa64d7e2680baa01e99da246275fa9cae0ba4a74de63c7f3_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:07d89c1b524d1451051feb865bc716da2197add90fa0c58c4cf4a82975ec846c_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:6582e647d7dd604e25977ec1579969aa1fcb29ead1a0ea65833531d633bbdd2b_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:75e3aec03dffbd0f40f88a08ff5e0319f4515d73f0bcfae28b5fa526b494afc4_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:f0079e8ae53d84223aea2d3186e7bc6b525b7c03d307cde50cfb9f1bbc18712b_arm64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "axios: Axios: Man-in-the-Middle (MITM) attack via Prototype Pollution"
},
{
"cve": "CVE-2026-44495",
"cwe": {
"id": "CWE-915",
"name": "Improperly Controlled Modification of Dynamically-Determined Object Attributes"
},
"discovery_date": "2026-06-11T17:00:53.999811+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:1384e5ba2b7d23119a49d8713826f4c65668bca310589ac7abd0c0d41c7e4c90_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:7f58528b1da9146aa55917324fdf2b375794742b34e5d10ff57f713af60746cd_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:844c3b1499b00aeadfc561642e53792ad80f535efd53b35793ba08b0f26c6d61_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:e1019c30e1d84e66d775d0d6fc7d051803dcbe44823fb2a1914807be39c79dae_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:8c9a7ebf430b9f4ca200c6c70b049e8456cf88fd8bf0871b42d65e8dc786d451_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:926d965e6fd12ec0d758270fb4c90bbdc1a05e60cc4c895cf9b671a296c9d867_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:e8e807451e3c5d8d0a8575e1280d7125a4ece51547a7b4a5cd247837662cedad_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:f2a24aa01cbe0d926d4aefe3b12eba21eb5ec7f87276e572a6814c727228624c_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:45cc0d783d1e7874ac73dfbdfe7e03c63b227ab3c4f1e15a0a2f5c97956a76d9_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:6f3eb26734e89375c3e1fb7ac366e12dc0d41bac8f07de9210c7e9845a01eec1_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:768c45fa9f35d98dfe5cfe1ea12f552402bf68ac6e1f828b14310ef59ce57c40_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:b5f1bf30495f6be97c696cf7f90768629cee96f8d106f745bf95fdefddc99592_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:6c85b42ede0f4745ed558bcb03d033c49f56cef17a70c12e5308066124cac6e3_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:091529a93e258a612fd4a98222e6a370ee10b4e97efa791b50f79a2670163d01_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0e8958a22f6771ddfe32b34027c69dbbef65d980c7e465a79d4202d2627994ad_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:5a8b0203ff083113e8b30a123ab30c4bad571f57fb59c1e7e01807b92552504e_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:89bf6a32a0935cacadbc6d23566dce6ca741e404d58c11050638c7b8e868028b_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:077cc953354ea2edd85569a622f97c15d44163d68234e7a9fdee899d25c19cdb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:66285f866090e1bfbedacd592e9d5ea9f2a30b88aa03bc86bc790d6b98a929a4_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:8c80054171d5063457df4bd074674b1824783a101dacb6137da227080aff957c_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:b0f15904251c6665961eef9c944d00f17499f7219351fe213fe7935f62fbf7ac_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:62476ac2fb0096caa9b181f523cc3573ccffe70be1433f08d1d0255b6d3a0640_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:6f632bc9829880a44e2e94084284b52683b4a01dc3315043b0aa32eb344b16cb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:aa3d1cf7853bfe8307efb01f714585f378d1d3d4ed5de7c8808a72e4aeecd4f3_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:bf1d4b2b1ef03e65be59699ce3233a75a34e1777abc182984c7a8efa698a936e_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:141f17d12c748c7ab9e94cfd9db7e2492d3063e7478249d6430ac0d8fcfb8875_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:5909184fe3d37eb45ba3bf55d7b708d818f2a5abfc2949c4a7081a5cd30cea4f_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:6217f0bb4937fa0e0fc0a5c86456fdc1992e169dfedc3d11d5165cef575d4d53_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:d55a55a36a23e7deb83718bd5dcc19b083b84d441add72ea7f4e28935e4717e3_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:0f8e1171f278395f3c72e4d9d3c0492bed15b678963fb2b6182bd65343b85a2e_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:823bb59b1c7d01557c29f9f1e4a4ee39814c38d826b06c3c9de4b8d179078419_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:93c7e9b321c7e9aa4a412a993a6b20412e24772832cc0dd23bbb17aa25f15487_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:9e50b45f81fedab27e896f04b80bacaa01d8370ff5679147f95ad79b61972d83_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:8f145d4e336bd77fcc94f0845f9ebf94563ffd96d56794d96a665c11241df152_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:981917806c7faf31156241cc85577cf375ee566f78adaeadc096d0ba8482b835_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:af3ed91687500d64e2348cca4877c43f73211b8fbd132e7767c3521763185348_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:c05020e5ee5bddc62e38493cd16b6e4ffde7c2248a00d710f32b90a6ee12ceeb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2af86b409540513f6da1afa83110a5cafe8778d2ec16332faa31c964bd5f43f7_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2f3bec76a833a72c7dfa93ed55e55e80e2621c154e5a2f156deaf78d7c6b97b4_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:81a2385be30079500f13f97a18607aa685abd61265bf8fa78bc6ce126341be50_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:fdc8f64f3b82b200a5e31b01b8612069f1aa897014085c1de755394552a1a70a_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:856b9088dbda4e7374daf232602f4bb90b05ad1be1df46d6e363a002f549f4de_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:a107ae2f7b140f2fb2243f33c378228c2f164cfd2d23f57e63f6c424fd400929_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:e21de356b7d879800a96f6c5aeee6bc59a3ed9c58d36503f7089625ce887bb25_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:fcaf6d60d682cf51866948ea3b4846c2993e2801adb69dc745ffa832318f515c_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:11f005939e15d63057bf2f0a988b6baebc275d3e752e9f7696d0f7f5266fd5d6_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:4b4c98be96a932d508fad769eff61bff2a44e13baa60b22b6c543f4a11eb71c2_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:6c87453ffe89e8be752ee40c8a9ccf6894c83be703f13901b1e8b64a4c0e549a_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:c18a1c50a4fc7081c6564d1c4ed4904212b7939a4f1f46afef0a36dc1d76f38e_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:33367b9fdb3addce3302ad35bc10423505fefe3dd27b8b9013b26d66caac2a6c_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:72cbdb061cbcd295be5e66a0eabb409af16ade7f0aa12b04c2d7327e9e1a24ba_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:d0379f9da8cbb5514394a4550ff0d79f90fa691fcced5806296479c7b63353da_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:e99d1d877bd7335736cbaeb4db5b9904369a1d07f6df332c38ad79ff1256b67b_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:06285611aef2528fc92c5cebb66ff4c74fe44d457f43cf9ec2f4a98c3c68d25e_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:25e0f4153eb5bc6fbc6b389d5adc81bfde103070ef58317c3c25ce4144a628d3_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:acd3c0369c18cbfa63a5972ed1721f93f1fcb456963ff855dea2c295baf1cdb8_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:d086075db52f4476aa64d7e2680baa01e99da246275fa9cae0ba4a74de63c7f3_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:07d89c1b524d1451051feb865bc716da2197add90fa0c58c4cf4a82975ec846c_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:6582e647d7dd604e25977ec1579969aa1fcb29ead1a0ea65833531d633bbdd2b_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:75e3aec03dffbd0f40f88a08ff5e0319f4515d73f0bcfae28b5fa526b494afc4_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:f0079e8ae53d84223aea2d3186e7bc6b525b7c03d307cde50cfb9f1bbc18712b_arm64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2487937"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Axios, a promise-based HTTP client. This vulnerability involves prototype pollution gadgets in the request configuration processing. If another vulnerability has already polluted the Object.prototype.transformResponse, affected Axios versions may incorrectly interpret this inherited value as part of the request configuration or as an option validator. Axios does not itself create the prototype pollution. Exploitability requires a separate prototype-pollution vulnerability or equivalent attacker control over Object.prototype before Axios creates a request.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "axios: Axios: Information disclosure due to prototype pollution vulnerability",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This Important vulnerability in Axios, a promise-based HTTP client, can lead to information disclosure, including credential theft and response hijacking, or denial of service. Exploitation requires a separate prototype pollution vulnerability in the same JavaScript process, allowing an attacker to control `Object.prototype.transformResponse`. Red Hat products using affected Axios versions are at risk if another component introduces such pollution.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:137ffbb95d463d95da6c350600d968f3cd0e9873bf2e7c6edf952ae3229e9e2b_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:1cccdfd7e90877c27c6d8caea4f1e8ad89bb97c83d97ddf570d4f4ee116f1986_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:71657b82894cfd9e350746f48965e148868a675b9a20dcb7f94a6bc7a5b16ea5_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:881e405e32821ef10cf992c7a633281c1dc45df721fe909048df1689472000ce_ppc64le"
],
"known_not_affected": [
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:1384e5ba2b7d23119a49d8713826f4c65668bca310589ac7abd0c0d41c7e4c90_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:7f58528b1da9146aa55917324fdf2b375794742b34e5d10ff57f713af60746cd_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:844c3b1499b00aeadfc561642e53792ad80f535efd53b35793ba08b0f26c6d61_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:e1019c30e1d84e66d775d0d6fc7d051803dcbe44823fb2a1914807be39c79dae_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:8c9a7ebf430b9f4ca200c6c70b049e8456cf88fd8bf0871b42d65e8dc786d451_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:926d965e6fd12ec0d758270fb4c90bbdc1a05e60cc4c895cf9b671a296c9d867_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:e8e807451e3c5d8d0a8575e1280d7125a4ece51547a7b4a5cd247837662cedad_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:f2a24aa01cbe0d926d4aefe3b12eba21eb5ec7f87276e572a6814c727228624c_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:45cc0d783d1e7874ac73dfbdfe7e03c63b227ab3c4f1e15a0a2f5c97956a76d9_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:6f3eb26734e89375c3e1fb7ac366e12dc0d41bac8f07de9210c7e9845a01eec1_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:768c45fa9f35d98dfe5cfe1ea12f552402bf68ac6e1f828b14310ef59ce57c40_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:b5f1bf30495f6be97c696cf7f90768629cee96f8d106f745bf95fdefddc99592_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:6c85b42ede0f4745ed558bcb03d033c49f56cef17a70c12e5308066124cac6e3_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:091529a93e258a612fd4a98222e6a370ee10b4e97efa791b50f79a2670163d01_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0e8958a22f6771ddfe32b34027c69dbbef65d980c7e465a79d4202d2627994ad_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:5a8b0203ff083113e8b30a123ab30c4bad571f57fb59c1e7e01807b92552504e_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:89bf6a32a0935cacadbc6d23566dce6ca741e404d58c11050638c7b8e868028b_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:077cc953354ea2edd85569a622f97c15d44163d68234e7a9fdee899d25c19cdb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:66285f866090e1bfbedacd592e9d5ea9f2a30b88aa03bc86bc790d6b98a929a4_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:8c80054171d5063457df4bd074674b1824783a101dacb6137da227080aff957c_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:b0f15904251c6665961eef9c944d00f17499f7219351fe213fe7935f62fbf7ac_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:62476ac2fb0096caa9b181f523cc3573ccffe70be1433f08d1d0255b6d3a0640_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:6f632bc9829880a44e2e94084284b52683b4a01dc3315043b0aa32eb344b16cb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:aa3d1cf7853bfe8307efb01f714585f378d1d3d4ed5de7c8808a72e4aeecd4f3_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:bf1d4b2b1ef03e65be59699ce3233a75a34e1777abc182984c7a8efa698a936e_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:141f17d12c748c7ab9e94cfd9db7e2492d3063e7478249d6430ac0d8fcfb8875_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:5909184fe3d37eb45ba3bf55d7b708d818f2a5abfc2949c4a7081a5cd30cea4f_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:6217f0bb4937fa0e0fc0a5c86456fdc1992e169dfedc3d11d5165cef575d4d53_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:d55a55a36a23e7deb83718bd5dcc19b083b84d441add72ea7f4e28935e4717e3_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:0f8e1171f278395f3c72e4d9d3c0492bed15b678963fb2b6182bd65343b85a2e_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:823bb59b1c7d01557c29f9f1e4a4ee39814c38d826b06c3c9de4b8d179078419_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:93c7e9b321c7e9aa4a412a993a6b20412e24772832cc0dd23bbb17aa25f15487_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:9e50b45f81fedab27e896f04b80bacaa01d8370ff5679147f95ad79b61972d83_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:8f145d4e336bd77fcc94f0845f9ebf94563ffd96d56794d96a665c11241df152_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:981917806c7faf31156241cc85577cf375ee566f78adaeadc096d0ba8482b835_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:af3ed91687500d64e2348cca4877c43f73211b8fbd132e7767c3521763185348_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:c05020e5ee5bddc62e38493cd16b6e4ffde7c2248a00d710f32b90a6ee12ceeb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2af86b409540513f6da1afa83110a5cafe8778d2ec16332faa31c964bd5f43f7_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2f3bec76a833a72c7dfa93ed55e55e80e2621c154e5a2f156deaf78d7c6b97b4_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:81a2385be30079500f13f97a18607aa685abd61265bf8fa78bc6ce126341be50_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:fdc8f64f3b82b200a5e31b01b8612069f1aa897014085c1de755394552a1a70a_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:856b9088dbda4e7374daf232602f4bb90b05ad1be1df46d6e363a002f549f4de_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:a107ae2f7b140f2fb2243f33c378228c2f164cfd2d23f57e63f6c424fd400929_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:e21de356b7d879800a96f6c5aeee6bc59a3ed9c58d36503f7089625ce887bb25_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:fcaf6d60d682cf51866948ea3b4846c2993e2801adb69dc745ffa832318f515c_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:11f005939e15d63057bf2f0a988b6baebc275d3e752e9f7696d0f7f5266fd5d6_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:4b4c98be96a932d508fad769eff61bff2a44e13baa60b22b6c543f4a11eb71c2_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:6c87453ffe89e8be752ee40c8a9ccf6894c83be703f13901b1e8b64a4c0e549a_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:c18a1c50a4fc7081c6564d1c4ed4904212b7939a4f1f46afef0a36dc1d76f38e_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:33367b9fdb3addce3302ad35bc10423505fefe3dd27b8b9013b26d66caac2a6c_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:72cbdb061cbcd295be5e66a0eabb409af16ade7f0aa12b04c2d7327e9e1a24ba_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:d0379f9da8cbb5514394a4550ff0d79f90fa691fcced5806296479c7b63353da_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:e99d1d877bd7335736cbaeb4db5b9904369a1d07f6df332c38ad79ff1256b67b_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:06285611aef2528fc92c5cebb66ff4c74fe44d457f43cf9ec2f4a98c3c68d25e_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:25e0f4153eb5bc6fbc6b389d5adc81bfde103070ef58317c3c25ce4144a628d3_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:acd3c0369c18cbfa63a5972ed1721f93f1fcb456963ff855dea2c295baf1cdb8_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:d086075db52f4476aa64d7e2680baa01e99da246275fa9cae0ba4a74de63c7f3_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:07d89c1b524d1451051feb865bc716da2197add90fa0c58c4cf4a82975ec846c_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:6582e647d7dd604e25977ec1579969aa1fcb29ead1a0ea65833531d633bbdd2b_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:75e3aec03dffbd0f40f88a08ff5e0319f4515d73f0bcfae28b5fa526b494afc4_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:f0079e8ae53d84223aea2d3186e7bc6b525b7c03d307cde50cfb9f1bbc18712b_arm64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-44495"
},
{
"category": "external",
"summary": "RHBZ#2487937",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2487937"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-44495",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-44495"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-44495",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-44495"
},
{
"category": "external",
"summary": "https://github.com/axios/axios/security/advisories/GHSA-3g43-6gmg-66jw",
"url": "https://github.com/axios/axios/security/advisories/GHSA-3g43-6gmg-66jw"
}
],
"release_date": "2026-06-11T15:33:12.433000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T17:12:17+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\nFor details on how to apply this update, refer to:\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:137ffbb95d463d95da6c350600d968f3cd0e9873bf2e7c6edf952ae3229e9e2b_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:1cccdfd7e90877c27c6d8caea4f1e8ad89bb97c83d97ddf570d4f4ee116f1986_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:71657b82894cfd9e350746f48965e148868a675b9a20dcb7f94a6bc7a5b16ea5_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:881e405e32821ef10cf992c7a633281c1dc45df721fe909048df1689472000ce_ppc64le"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36820"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:1384e5ba2b7d23119a49d8713826f4c65668bca310589ac7abd0c0d41c7e4c90_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:7f58528b1da9146aa55917324fdf2b375794742b34e5d10ff57f713af60746cd_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:844c3b1499b00aeadfc561642e53792ad80f535efd53b35793ba08b0f26c6d61_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:e1019c30e1d84e66d775d0d6fc7d051803dcbe44823fb2a1914807be39c79dae_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:8c9a7ebf430b9f4ca200c6c70b049e8456cf88fd8bf0871b42d65e8dc786d451_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:926d965e6fd12ec0d758270fb4c90bbdc1a05e60cc4c895cf9b671a296c9d867_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:e8e807451e3c5d8d0a8575e1280d7125a4ece51547a7b4a5cd247837662cedad_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:f2a24aa01cbe0d926d4aefe3b12eba21eb5ec7f87276e572a6814c727228624c_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:45cc0d783d1e7874ac73dfbdfe7e03c63b227ab3c4f1e15a0a2f5c97956a76d9_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:6f3eb26734e89375c3e1fb7ac366e12dc0d41bac8f07de9210c7e9845a01eec1_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:768c45fa9f35d98dfe5cfe1ea12f552402bf68ac6e1f828b14310ef59ce57c40_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:b5f1bf30495f6be97c696cf7f90768629cee96f8d106f745bf95fdefddc99592_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:137ffbb95d463d95da6c350600d968f3cd0e9873bf2e7c6edf952ae3229e9e2b_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:1cccdfd7e90877c27c6d8caea4f1e8ad89bb97c83d97ddf570d4f4ee116f1986_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:71657b82894cfd9e350746f48965e148868a675b9a20dcb7f94a6bc7a5b16ea5_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:881e405e32821ef10cf992c7a633281c1dc45df721fe909048df1689472000ce_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:6c85b42ede0f4745ed558bcb03d033c49f56cef17a70c12e5308066124cac6e3_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:091529a93e258a612fd4a98222e6a370ee10b4e97efa791b50f79a2670163d01_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0e8958a22f6771ddfe32b34027c69dbbef65d980c7e465a79d4202d2627994ad_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:5a8b0203ff083113e8b30a123ab30c4bad571f57fb59c1e7e01807b92552504e_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:89bf6a32a0935cacadbc6d23566dce6ca741e404d58c11050638c7b8e868028b_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:077cc953354ea2edd85569a622f97c15d44163d68234e7a9fdee899d25c19cdb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:66285f866090e1bfbedacd592e9d5ea9f2a30b88aa03bc86bc790d6b98a929a4_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:8c80054171d5063457df4bd074674b1824783a101dacb6137da227080aff957c_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:b0f15904251c6665961eef9c944d00f17499f7219351fe213fe7935f62fbf7ac_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:62476ac2fb0096caa9b181f523cc3573ccffe70be1433f08d1d0255b6d3a0640_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:6f632bc9829880a44e2e94084284b52683b4a01dc3315043b0aa32eb344b16cb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:aa3d1cf7853bfe8307efb01f714585f378d1d3d4ed5de7c8808a72e4aeecd4f3_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:bf1d4b2b1ef03e65be59699ce3233a75a34e1777abc182984c7a8efa698a936e_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:141f17d12c748c7ab9e94cfd9db7e2492d3063e7478249d6430ac0d8fcfb8875_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:5909184fe3d37eb45ba3bf55d7b708d818f2a5abfc2949c4a7081a5cd30cea4f_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:6217f0bb4937fa0e0fc0a5c86456fdc1992e169dfedc3d11d5165cef575d4d53_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:d55a55a36a23e7deb83718bd5dcc19b083b84d441add72ea7f4e28935e4717e3_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:0f8e1171f278395f3c72e4d9d3c0492bed15b678963fb2b6182bd65343b85a2e_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:823bb59b1c7d01557c29f9f1e4a4ee39814c38d826b06c3c9de4b8d179078419_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:93c7e9b321c7e9aa4a412a993a6b20412e24772832cc0dd23bbb17aa25f15487_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:9e50b45f81fedab27e896f04b80bacaa01d8370ff5679147f95ad79b61972d83_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:8f145d4e336bd77fcc94f0845f9ebf94563ffd96d56794d96a665c11241df152_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:981917806c7faf31156241cc85577cf375ee566f78adaeadc096d0ba8482b835_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:af3ed91687500d64e2348cca4877c43f73211b8fbd132e7767c3521763185348_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:c05020e5ee5bddc62e38493cd16b6e4ffde7c2248a00d710f32b90a6ee12ceeb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2af86b409540513f6da1afa83110a5cafe8778d2ec16332faa31c964bd5f43f7_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2f3bec76a833a72c7dfa93ed55e55e80e2621c154e5a2f156deaf78d7c6b97b4_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:81a2385be30079500f13f97a18607aa685abd61265bf8fa78bc6ce126341be50_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:fdc8f64f3b82b200a5e31b01b8612069f1aa897014085c1de755394552a1a70a_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:856b9088dbda4e7374daf232602f4bb90b05ad1be1df46d6e363a002f549f4de_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:a107ae2f7b140f2fb2243f33c378228c2f164cfd2d23f57e63f6c424fd400929_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:e21de356b7d879800a96f6c5aeee6bc59a3ed9c58d36503f7089625ce887bb25_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:fcaf6d60d682cf51866948ea3b4846c2993e2801adb69dc745ffa832318f515c_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:11f005939e15d63057bf2f0a988b6baebc275d3e752e9f7696d0f7f5266fd5d6_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:4b4c98be96a932d508fad769eff61bff2a44e13baa60b22b6c543f4a11eb71c2_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:6c87453ffe89e8be752ee40c8a9ccf6894c83be703f13901b1e8b64a4c0e549a_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:c18a1c50a4fc7081c6564d1c4ed4904212b7939a4f1f46afef0a36dc1d76f38e_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:33367b9fdb3addce3302ad35bc10423505fefe3dd27b8b9013b26d66caac2a6c_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:72cbdb061cbcd295be5e66a0eabb409af16ade7f0aa12b04c2d7327e9e1a24ba_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:d0379f9da8cbb5514394a4550ff0d79f90fa691fcced5806296479c7b63353da_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:e99d1d877bd7335736cbaeb4db5b9904369a1d07f6df332c38ad79ff1256b67b_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:06285611aef2528fc92c5cebb66ff4c74fe44d457f43cf9ec2f4a98c3c68d25e_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:25e0f4153eb5bc6fbc6b389d5adc81bfde103070ef58317c3c25ce4144a628d3_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:acd3c0369c18cbfa63a5972ed1721f93f1fcb456963ff855dea2c295baf1cdb8_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:d086075db52f4476aa64d7e2680baa01e99da246275fa9cae0ba4a74de63c7f3_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:07d89c1b524d1451051feb865bc716da2197add90fa0c58c4cf4a82975ec846c_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:6582e647d7dd604e25977ec1579969aa1fcb29ead1a0ea65833531d633bbdd2b_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:75e3aec03dffbd0f40f88a08ff5e0319f4515d73f0bcfae28b5fa526b494afc4_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:f0079e8ae53d84223aea2d3186e7bc6b525b7c03d307cde50cfb9f1bbc18712b_arm64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 7.0,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:L/A:L",
"version": "3.1"
},
"products": [
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:1384e5ba2b7d23119a49d8713826f4c65668bca310589ac7abd0c0d41c7e4c90_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:7f58528b1da9146aa55917324fdf2b375794742b34e5d10ff57f713af60746cd_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:844c3b1499b00aeadfc561642e53792ad80f535efd53b35793ba08b0f26c6d61_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:e1019c30e1d84e66d775d0d6fc7d051803dcbe44823fb2a1914807be39c79dae_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:8c9a7ebf430b9f4ca200c6c70b049e8456cf88fd8bf0871b42d65e8dc786d451_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:926d965e6fd12ec0d758270fb4c90bbdc1a05e60cc4c895cf9b671a296c9d867_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:e8e807451e3c5d8d0a8575e1280d7125a4ece51547a7b4a5cd247837662cedad_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:f2a24aa01cbe0d926d4aefe3b12eba21eb5ec7f87276e572a6814c727228624c_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:45cc0d783d1e7874ac73dfbdfe7e03c63b227ab3c4f1e15a0a2f5c97956a76d9_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:6f3eb26734e89375c3e1fb7ac366e12dc0d41bac8f07de9210c7e9845a01eec1_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:768c45fa9f35d98dfe5cfe1ea12f552402bf68ac6e1f828b14310ef59ce57c40_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:b5f1bf30495f6be97c696cf7f90768629cee96f8d106f745bf95fdefddc99592_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:137ffbb95d463d95da6c350600d968f3cd0e9873bf2e7c6edf952ae3229e9e2b_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:1cccdfd7e90877c27c6d8caea4f1e8ad89bb97c83d97ddf570d4f4ee116f1986_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:71657b82894cfd9e350746f48965e148868a675b9a20dcb7f94a6bc7a5b16ea5_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:881e405e32821ef10cf992c7a633281c1dc45df721fe909048df1689472000ce_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:6c85b42ede0f4745ed558bcb03d033c49f56cef17a70c12e5308066124cac6e3_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:091529a93e258a612fd4a98222e6a370ee10b4e97efa791b50f79a2670163d01_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0e8958a22f6771ddfe32b34027c69dbbef65d980c7e465a79d4202d2627994ad_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:5a8b0203ff083113e8b30a123ab30c4bad571f57fb59c1e7e01807b92552504e_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:89bf6a32a0935cacadbc6d23566dce6ca741e404d58c11050638c7b8e868028b_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:077cc953354ea2edd85569a622f97c15d44163d68234e7a9fdee899d25c19cdb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:66285f866090e1bfbedacd592e9d5ea9f2a30b88aa03bc86bc790d6b98a929a4_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:8c80054171d5063457df4bd074674b1824783a101dacb6137da227080aff957c_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:b0f15904251c6665961eef9c944d00f17499f7219351fe213fe7935f62fbf7ac_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:62476ac2fb0096caa9b181f523cc3573ccffe70be1433f08d1d0255b6d3a0640_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:6f632bc9829880a44e2e94084284b52683b4a01dc3315043b0aa32eb344b16cb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:aa3d1cf7853bfe8307efb01f714585f378d1d3d4ed5de7c8808a72e4aeecd4f3_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:bf1d4b2b1ef03e65be59699ce3233a75a34e1777abc182984c7a8efa698a936e_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:141f17d12c748c7ab9e94cfd9db7e2492d3063e7478249d6430ac0d8fcfb8875_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:5909184fe3d37eb45ba3bf55d7b708d818f2a5abfc2949c4a7081a5cd30cea4f_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:6217f0bb4937fa0e0fc0a5c86456fdc1992e169dfedc3d11d5165cef575d4d53_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:d55a55a36a23e7deb83718bd5dcc19b083b84d441add72ea7f4e28935e4717e3_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:0f8e1171f278395f3c72e4d9d3c0492bed15b678963fb2b6182bd65343b85a2e_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:823bb59b1c7d01557c29f9f1e4a4ee39814c38d826b06c3c9de4b8d179078419_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:93c7e9b321c7e9aa4a412a993a6b20412e24772832cc0dd23bbb17aa25f15487_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:9e50b45f81fedab27e896f04b80bacaa01d8370ff5679147f95ad79b61972d83_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:8f145d4e336bd77fcc94f0845f9ebf94563ffd96d56794d96a665c11241df152_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:981917806c7faf31156241cc85577cf375ee566f78adaeadc096d0ba8482b835_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:af3ed91687500d64e2348cca4877c43f73211b8fbd132e7767c3521763185348_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:c05020e5ee5bddc62e38493cd16b6e4ffde7c2248a00d710f32b90a6ee12ceeb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2af86b409540513f6da1afa83110a5cafe8778d2ec16332faa31c964bd5f43f7_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2f3bec76a833a72c7dfa93ed55e55e80e2621c154e5a2f156deaf78d7c6b97b4_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:81a2385be30079500f13f97a18607aa685abd61265bf8fa78bc6ce126341be50_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:fdc8f64f3b82b200a5e31b01b8612069f1aa897014085c1de755394552a1a70a_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:856b9088dbda4e7374daf232602f4bb90b05ad1be1df46d6e363a002f549f4de_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:a107ae2f7b140f2fb2243f33c378228c2f164cfd2d23f57e63f6c424fd400929_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:e21de356b7d879800a96f6c5aeee6bc59a3ed9c58d36503f7089625ce887bb25_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:fcaf6d60d682cf51866948ea3b4846c2993e2801adb69dc745ffa832318f515c_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:11f005939e15d63057bf2f0a988b6baebc275d3e752e9f7696d0f7f5266fd5d6_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:4b4c98be96a932d508fad769eff61bff2a44e13baa60b22b6c543f4a11eb71c2_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:6c87453ffe89e8be752ee40c8a9ccf6894c83be703f13901b1e8b64a4c0e549a_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:c18a1c50a4fc7081c6564d1c4ed4904212b7939a4f1f46afef0a36dc1d76f38e_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:33367b9fdb3addce3302ad35bc10423505fefe3dd27b8b9013b26d66caac2a6c_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:72cbdb061cbcd295be5e66a0eabb409af16ade7f0aa12b04c2d7327e9e1a24ba_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:d0379f9da8cbb5514394a4550ff0d79f90fa691fcced5806296479c7b63353da_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:e99d1d877bd7335736cbaeb4db5b9904369a1d07f6df332c38ad79ff1256b67b_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:06285611aef2528fc92c5cebb66ff4c74fe44d457f43cf9ec2f4a98c3c68d25e_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:25e0f4153eb5bc6fbc6b389d5adc81bfde103070ef58317c3c25ce4144a628d3_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:acd3c0369c18cbfa63a5972ed1721f93f1fcb456963ff855dea2c295baf1cdb8_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:d086075db52f4476aa64d7e2680baa01e99da246275fa9cae0ba4a74de63c7f3_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:07d89c1b524d1451051feb865bc716da2197add90fa0c58c4cf4a82975ec846c_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:6582e647d7dd604e25977ec1579969aa1fcb29ead1a0ea65833531d633bbdd2b_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:75e3aec03dffbd0f40f88a08ff5e0319f4515d73f0bcfae28b5fa526b494afc4_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:f0079e8ae53d84223aea2d3186e7bc6b525b7c03d307cde50cfb9f1bbc18712b_arm64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "axios: Axios: Information disclosure due to prototype pollution vulnerability"
},
{
"cve": "CVE-2026-44496",
"cwe": {
"id": "CWE-1333",
"name": "Inefficient Regular Expression Complexity"
},
"discovery_date": "2026-06-11T17:01:15.856386+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:8c9a7ebf430b9f4ca200c6c70b049e8456cf88fd8bf0871b42d65e8dc786d451_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:926d965e6fd12ec0d758270fb4c90bbdc1a05e60cc4c895cf9b671a296c9d867_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:e8e807451e3c5d8d0a8575e1280d7125a4ece51547a7b4a5cd247837662cedad_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:f2a24aa01cbe0d926d4aefe3b12eba21eb5ec7f87276e572a6814c727228624c_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:45cc0d783d1e7874ac73dfbdfe7e03c63b227ab3c4f1e15a0a2f5c97956a76d9_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:6f3eb26734e89375c3e1fb7ac366e12dc0d41bac8f07de9210c7e9845a01eec1_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:768c45fa9f35d98dfe5cfe1ea12f552402bf68ac6e1f828b14310ef59ce57c40_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:b5f1bf30495f6be97c696cf7f90768629cee96f8d106f745bf95fdefddc99592_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:6c85b42ede0f4745ed558bcb03d033c49f56cef17a70c12e5308066124cac6e3_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:091529a93e258a612fd4a98222e6a370ee10b4e97efa791b50f79a2670163d01_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0e8958a22f6771ddfe32b34027c69dbbef65d980c7e465a79d4202d2627994ad_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:5a8b0203ff083113e8b30a123ab30c4bad571f57fb59c1e7e01807b92552504e_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:89bf6a32a0935cacadbc6d23566dce6ca741e404d58c11050638c7b8e868028b_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:077cc953354ea2edd85569a622f97c15d44163d68234e7a9fdee899d25c19cdb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:66285f866090e1bfbedacd592e9d5ea9f2a30b88aa03bc86bc790d6b98a929a4_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:8c80054171d5063457df4bd074674b1824783a101dacb6137da227080aff957c_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:b0f15904251c6665961eef9c944d00f17499f7219351fe213fe7935f62fbf7ac_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:62476ac2fb0096caa9b181f523cc3573ccffe70be1433f08d1d0255b6d3a0640_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:6f632bc9829880a44e2e94084284b52683b4a01dc3315043b0aa32eb344b16cb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:aa3d1cf7853bfe8307efb01f714585f378d1d3d4ed5de7c8808a72e4aeecd4f3_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:bf1d4b2b1ef03e65be59699ce3233a75a34e1777abc182984c7a8efa698a936e_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:141f17d12c748c7ab9e94cfd9db7e2492d3063e7478249d6430ac0d8fcfb8875_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:5909184fe3d37eb45ba3bf55d7b708d818f2a5abfc2949c4a7081a5cd30cea4f_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:6217f0bb4937fa0e0fc0a5c86456fdc1992e169dfedc3d11d5165cef575d4d53_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:d55a55a36a23e7deb83718bd5dcc19b083b84d441add72ea7f4e28935e4717e3_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:0f8e1171f278395f3c72e4d9d3c0492bed15b678963fb2b6182bd65343b85a2e_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:823bb59b1c7d01557c29f9f1e4a4ee39814c38d826b06c3c9de4b8d179078419_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:93c7e9b321c7e9aa4a412a993a6b20412e24772832cc0dd23bbb17aa25f15487_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:9e50b45f81fedab27e896f04b80bacaa01d8370ff5679147f95ad79b61972d83_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:8f145d4e336bd77fcc94f0845f9ebf94563ffd96d56794d96a665c11241df152_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:981917806c7faf31156241cc85577cf375ee566f78adaeadc096d0ba8482b835_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:af3ed91687500d64e2348cca4877c43f73211b8fbd132e7767c3521763185348_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:c05020e5ee5bddc62e38493cd16b6e4ffde7c2248a00d710f32b90a6ee12ceeb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2af86b409540513f6da1afa83110a5cafe8778d2ec16332faa31c964bd5f43f7_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2f3bec76a833a72c7dfa93ed55e55e80e2621c154e5a2f156deaf78d7c6b97b4_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:81a2385be30079500f13f97a18607aa685abd61265bf8fa78bc6ce126341be50_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:fdc8f64f3b82b200a5e31b01b8612069f1aa897014085c1de755394552a1a70a_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:856b9088dbda4e7374daf232602f4bb90b05ad1be1df46d6e363a002f549f4de_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:a107ae2f7b140f2fb2243f33c378228c2f164cfd2d23f57e63f6c424fd400929_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:e21de356b7d879800a96f6c5aeee6bc59a3ed9c58d36503f7089625ce887bb25_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:fcaf6d60d682cf51866948ea3b4846c2993e2801adb69dc745ffa832318f515c_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:11f005939e15d63057bf2f0a988b6baebc275d3e752e9f7696d0f7f5266fd5d6_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:4b4c98be96a932d508fad769eff61bff2a44e13baa60b22b6c543f4a11eb71c2_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:6c87453ffe89e8be752ee40c8a9ccf6894c83be703f13901b1e8b64a4c0e549a_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:c18a1c50a4fc7081c6564d1c4ed4904212b7939a4f1f46afef0a36dc1d76f38e_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:33367b9fdb3addce3302ad35bc10423505fefe3dd27b8b9013b26d66caac2a6c_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:72cbdb061cbcd295be5e66a0eabb409af16ade7f0aa12b04c2d7327e9e1a24ba_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:d0379f9da8cbb5514394a4550ff0d79f90fa691fcced5806296479c7b63353da_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:e99d1d877bd7335736cbaeb4db5b9904369a1d07f6df332c38ad79ff1256b67b_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:06285611aef2528fc92c5cebb66ff4c74fe44d457f43cf9ec2f4a98c3c68d25e_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:25e0f4153eb5bc6fbc6b389d5adc81bfde103070ef58317c3c25ce4144a628d3_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:acd3c0369c18cbfa63a5972ed1721f93f1fcb456963ff855dea2c295baf1cdb8_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:d086075db52f4476aa64d7e2680baa01e99da246275fa9cae0ba4a74de63c7f3_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:07d89c1b524d1451051feb865bc716da2197add90fa0c58c4cf4a82975ec846c_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:6582e647d7dd604e25977ec1579969aa1fcb29ead1a0ea65833531d633bbdd2b_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:75e3aec03dffbd0f40f88a08ff5e0319f4515d73f0bcfae28b5fa526b494afc4_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:f0079e8ae53d84223aea2d3186e7bc6b525b7c03d307cde50cfb9f1bbc18712b_arm64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2487943"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Axios. A remote attacker, by influencing the XSRF cookie name in a browser environment, could cause the application to construct a regular expression that leads to excessive processing. This can result in a client-side Denial of Service (DoS), where the affected browser tab may freeze, impacting the availability of the application for the user.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "axios: Axios: Client-side Denial of Service via unescaped regex metacharacters in XSRF cookie name",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This Important flaw in Axios can lead to a client-side Denial of Service. An attacker capable of influencing the XSRF cookie name within a browser environment could trigger excessive regular expression processing, causing the affected browser tab to freeze and degrade user availability. This issue specifically impacts browser-based applications and does not affect Node.js HTTP adapter usage, React Native, or web workers.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:1384e5ba2b7d23119a49d8713826f4c65668bca310589ac7abd0c0d41c7e4c90_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:7f58528b1da9146aa55917324fdf2b375794742b34e5d10ff57f713af60746cd_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:844c3b1499b00aeadfc561642e53792ad80f535efd53b35793ba08b0f26c6d61_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:e1019c30e1d84e66d775d0d6fc7d051803dcbe44823fb2a1914807be39c79dae_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:137ffbb95d463d95da6c350600d968f3cd0e9873bf2e7c6edf952ae3229e9e2b_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:1cccdfd7e90877c27c6d8caea4f1e8ad89bb97c83d97ddf570d4f4ee116f1986_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:71657b82894cfd9e350746f48965e148868a675b9a20dcb7f94a6bc7a5b16ea5_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:881e405e32821ef10cf992c7a633281c1dc45df721fe909048df1689472000ce_ppc64le"
],
"known_not_affected": [
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:8c9a7ebf430b9f4ca200c6c70b049e8456cf88fd8bf0871b42d65e8dc786d451_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:926d965e6fd12ec0d758270fb4c90bbdc1a05e60cc4c895cf9b671a296c9d867_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:e8e807451e3c5d8d0a8575e1280d7125a4ece51547a7b4a5cd247837662cedad_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:f2a24aa01cbe0d926d4aefe3b12eba21eb5ec7f87276e572a6814c727228624c_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:45cc0d783d1e7874ac73dfbdfe7e03c63b227ab3c4f1e15a0a2f5c97956a76d9_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:6f3eb26734e89375c3e1fb7ac366e12dc0d41bac8f07de9210c7e9845a01eec1_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:768c45fa9f35d98dfe5cfe1ea12f552402bf68ac6e1f828b14310ef59ce57c40_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:b5f1bf30495f6be97c696cf7f90768629cee96f8d106f745bf95fdefddc99592_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:6c85b42ede0f4745ed558bcb03d033c49f56cef17a70c12e5308066124cac6e3_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:091529a93e258a612fd4a98222e6a370ee10b4e97efa791b50f79a2670163d01_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0e8958a22f6771ddfe32b34027c69dbbef65d980c7e465a79d4202d2627994ad_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:5a8b0203ff083113e8b30a123ab30c4bad571f57fb59c1e7e01807b92552504e_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:89bf6a32a0935cacadbc6d23566dce6ca741e404d58c11050638c7b8e868028b_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:077cc953354ea2edd85569a622f97c15d44163d68234e7a9fdee899d25c19cdb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:66285f866090e1bfbedacd592e9d5ea9f2a30b88aa03bc86bc790d6b98a929a4_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:8c80054171d5063457df4bd074674b1824783a101dacb6137da227080aff957c_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:b0f15904251c6665961eef9c944d00f17499f7219351fe213fe7935f62fbf7ac_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:62476ac2fb0096caa9b181f523cc3573ccffe70be1433f08d1d0255b6d3a0640_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:6f632bc9829880a44e2e94084284b52683b4a01dc3315043b0aa32eb344b16cb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:aa3d1cf7853bfe8307efb01f714585f378d1d3d4ed5de7c8808a72e4aeecd4f3_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:bf1d4b2b1ef03e65be59699ce3233a75a34e1777abc182984c7a8efa698a936e_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:141f17d12c748c7ab9e94cfd9db7e2492d3063e7478249d6430ac0d8fcfb8875_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:5909184fe3d37eb45ba3bf55d7b708d818f2a5abfc2949c4a7081a5cd30cea4f_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:6217f0bb4937fa0e0fc0a5c86456fdc1992e169dfedc3d11d5165cef575d4d53_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:d55a55a36a23e7deb83718bd5dcc19b083b84d441add72ea7f4e28935e4717e3_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:0f8e1171f278395f3c72e4d9d3c0492bed15b678963fb2b6182bd65343b85a2e_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:823bb59b1c7d01557c29f9f1e4a4ee39814c38d826b06c3c9de4b8d179078419_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:93c7e9b321c7e9aa4a412a993a6b20412e24772832cc0dd23bbb17aa25f15487_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:9e50b45f81fedab27e896f04b80bacaa01d8370ff5679147f95ad79b61972d83_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:8f145d4e336bd77fcc94f0845f9ebf94563ffd96d56794d96a665c11241df152_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:981917806c7faf31156241cc85577cf375ee566f78adaeadc096d0ba8482b835_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:af3ed91687500d64e2348cca4877c43f73211b8fbd132e7767c3521763185348_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:c05020e5ee5bddc62e38493cd16b6e4ffde7c2248a00d710f32b90a6ee12ceeb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2af86b409540513f6da1afa83110a5cafe8778d2ec16332faa31c964bd5f43f7_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2f3bec76a833a72c7dfa93ed55e55e80e2621c154e5a2f156deaf78d7c6b97b4_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:81a2385be30079500f13f97a18607aa685abd61265bf8fa78bc6ce126341be50_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:fdc8f64f3b82b200a5e31b01b8612069f1aa897014085c1de755394552a1a70a_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:856b9088dbda4e7374daf232602f4bb90b05ad1be1df46d6e363a002f549f4de_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:a107ae2f7b140f2fb2243f33c378228c2f164cfd2d23f57e63f6c424fd400929_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:e21de356b7d879800a96f6c5aeee6bc59a3ed9c58d36503f7089625ce887bb25_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:fcaf6d60d682cf51866948ea3b4846c2993e2801adb69dc745ffa832318f515c_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:11f005939e15d63057bf2f0a988b6baebc275d3e752e9f7696d0f7f5266fd5d6_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:4b4c98be96a932d508fad769eff61bff2a44e13baa60b22b6c543f4a11eb71c2_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:6c87453ffe89e8be752ee40c8a9ccf6894c83be703f13901b1e8b64a4c0e549a_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:c18a1c50a4fc7081c6564d1c4ed4904212b7939a4f1f46afef0a36dc1d76f38e_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:33367b9fdb3addce3302ad35bc10423505fefe3dd27b8b9013b26d66caac2a6c_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:72cbdb061cbcd295be5e66a0eabb409af16ade7f0aa12b04c2d7327e9e1a24ba_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:d0379f9da8cbb5514394a4550ff0d79f90fa691fcced5806296479c7b63353da_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:e99d1d877bd7335736cbaeb4db5b9904369a1d07f6df332c38ad79ff1256b67b_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:06285611aef2528fc92c5cebb66ff4c74fe44d457f43cf9ec2f4a98c3c68d25e_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:25e0f4153eb5bc6fbc6b389d5adc81bfde103070ef58317c3c25ce4144a628d3_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:acd3c0369c18cbfa63a5972ed1721f93f1fcb456963ff855dea2c295baf1cdb8_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:d086075db52f4476aa64d7e2680baa01e99da246275fa9cae0ba4a74de63c7f3_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:07d89c1b524d1451051feb865bc716da2197add90fa0c58c4cf4a82975ec846c_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:6582e647d7dd604e25977ec1579969aa1fcb29ead1a0ea65833531d633bbdd2b_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:75e3aec03dffbd0f40f88a08ff5e0319f4515d73f0bcfae28b5fa526b494afc4_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:f0079e8ae53d84223aea2d3186e7bc6b525b7c03d307cde50cfb9f1bbc18712b_arm64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-44496"
},
{
"category": "external",
"summary": "RHBZ#2487943",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2487943"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-44496",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-44496"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-44496",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-44496"
},
{
"category": "external",
"summary": "https://github.com/axios/axios/security/advisories/GHSA-hfxv-24rg-xrqf",
"url": "https://github.com/axios/axios/security/advisories/GHSA-hfxv-24rg-xrqf"
}
],
"release_date": "2026-06-11T15:34:28.492000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T17:12:17+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\nFor details on how to apply this update, refer to:\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:1384e5ba2b7d23119a49d8713826f4c65668bca310589ac7abd0c0d41c7e4c90_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:7f58528b1da9146aa55917324fdf2b375794742b34e5d10ff57f713af60746cd_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:844c3b1499b00aeadfc561642e53792ad80f535efd53b35793ba08b0f26c6d61_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:e1019c30e1d84e66d775d0d6fc7d051803dcbe44823fb2a1914807be39c79dae_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:137ffbb95d463d95da6c350600d968f3cd0e9873bf2e7c6edf952ae3229e9e2b_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:1cccdfd7e90877c27c6d8caea4f1e8ad89bb97c83d97ddf570d4f4ee116f1986_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:71657b82894cfd9e350746f48965e148868a675b9a20dcb7f94a6bc7a5b16ea5_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:881e405e32821ef10cf992c7a633281c1dc45df721fe909048df1689472000ce_ppc64le"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36820"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:1384e5ba2b7d23119a49d8713826f4c65668bca310589ac7abd0c0d41c7e4c90_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:7f58528b1da9146aa55917324fdf2b375794742b34e5d10ff57f713af60746cd_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:844c3b1499b00aeadfc561642e53792ad80f535efd53b35793ba08b0f26c6d61_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:e1019c30e1d84e66d775d0d6fc7d051803dcbe44823fb2a1914807be39c79dae_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:8c9a7ebf430b9f4ca200c6c70b049e8456cf88fd8bf0871b42d65e8dc786d451_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:926d965e6fd12ec0d758270fb4c90bbdc1a05e60cc4c895cf9b671a296c9d867_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:e8e807451e3c5d8d0a8575e1280d7125a4ece51547a7b4a5cd247837662cedad_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:f2a24aa01cbe0d926d4aefe3b12eba21eb5ec7f87276e572a6814c727228624c_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:45cc0d783d1e7874ac73dfbdfe7e03c63b227ab3c4f1e15a0a2f5c97956a76d9_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:6f3eb26734e89375c3e1fb7ac366e12dc0d41bac8f07de9210c7e9845a01eec1_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:768c45fa9f35d98dfe5cfe1ea12f552402bf68ac6e1f828b14310ef59ce57c40_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:b5f1bf30495f6be97c696cf7f90768629cee96f8d106f745bf95fdefddc99592_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:137ffbb95d463d95da6c350600d968f3cd0e9873bf2e7c6edf952ae3229e9e2b_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:1cccdfd7e90877c27c6d8caea4f1e8ad89bb97c83d97ddf570d4f4ee116f1986_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:71657b82894cfd9e350746f48965e148868a675b9a20dcb7f94a6bc7a5b16ea5_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:881e405e32821ef10cf992c7a633281c1dc45df721fe909048df1689472000ce_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:6c85b42ede0f4745ed558bcb03d033c49f56cef17a70c12e5308066124cac6e3_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:091529a93e258a612fd4a98222e6a370ee10b4e97efa791b50f79a2670163d01_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0e8958a22f6771ddfe32b34027c69dbbef65d980c7e465a79d4202d2627994ad_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:5a8b0203ff083113e8b30a123ab30c4bad571f57fb59c1e7e01807b92552504e_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:89bf6a32a0935cacadbc6d23566dce6ca741e404d58c11050638c7b8e868028b_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:077cc953354ea2edd85569a622f97c15d44163d68234e7a9fdee899d25c19cdb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:66285f866090e1bfbedacd592e9d5ea9f2a30b88aa03bc86bc790d6b98a929a4_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:8c80054171d5063457df4bd074674b1824783a101dacb6137da227080aff957c_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:b0f15904251c6665961eef9c944d00f17499f7219351fe213fe7935f62fbf7ac_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:62476ac2fb0096caa9b181f523cc3573ccffe70be1433f08d1d0255b6d3a0640_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:6f632bc9829880a44e2e94084284b52683b4a01dc3315043b0aa32eb344b16cb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:aa3d1cf7853bfe8307efb01f714585f378d1d3d4ed5de7c8808a72e4aeecd4f3_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:bf1d4b2b1ef03e65be59699ce3233a75a34e1777abc182984c7a8efa698a936e_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:141f17d12c748c7ab9e94cfd9db7e2492d3063e7478249d6430ac0d8fcfb8875_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:5909184fe3d37eb45ba3bf55d7b708d818f2a5abfc2949c4a7081a5cd30cea4f_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:6217f0bb4937fa0e0fc0a5c86456fdc1992e169dfedc3d11d5165cef575d4d53_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:d55a55a36a23e7deb83718bd5dcc19b083b84d441add72ea7f4e28935e4717e3_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:0f8e1171f278395f3c72e4d9d3c0492bed15b678963fb2b6182bd65343b85a2e_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:823bb59b1c7d01557c29f9f1e4a4ee39814c38d826b06c3c9de4b8d179078419_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:93c7e9b321c7e9aa4a412a993a6b20412e24772832cc0dd23bbb17aa25f15487_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:9e50b45f81fedab27e896f04b80bacaa01d8370ff5679147f95ad79b61972d83_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:8f145d4e336bd77fcc94f0845f9ebf94563ffd96d56794d96a665c11241df152_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:981917806c7faf31156241cc85577cf375ee566f78adaeadc096d0ba8482b835_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:af3ed91687500d64e2348cca4877c43f73211b8fbd132e7767c3521763185348_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:c05020e5ee5bddc62e38493cd16b6e4ffde7c2248a00d710f32b90a6ee12ceeb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2af86b409540513f6da1afa83110a5cafe8778d2ec16332faa31c964bd5f43f7_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2f3bec76a833a72c7dfa93ed55e55e80e2621c154e5a2f156deaf78d7c6b97b4_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:81a2385be30079500f13f97a18607aa685abd61265bf8fa78bc6ce126341be50_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:fdc8f64f3b82b200a5e31b01b8612069f1aa897014085c1de755394552a1a70a_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:856b9088dbda4e7374daf232602f4bb90b05ad1be1df46d6e363a002f549f4de_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:a107ae2f7b140f2fb2243f33c378228c2f164cfd2d23f57e63f6c424fd400929_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:e21de356b7d879800a96f6c5aeee6bc59a3ed9c58d36503f7089625ce887bb25_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:fcaf6d60d682cf51866948ea3b4846c2993e2801adb69dc745ffa832318f515c_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:11f005939e15d63057bf2f0a988b6baebc275d3e752e9f7696d0f7f5266fd5d6_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:4b4c98be96a932d508fad769eff61bff2a44e13baa60b22b6c543f4a11eb71c2_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:6c87453ffe89e8be752ee40c8a9ccf6894c83be703f13901b1e8b64a4c0e549a_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:c18a1c50a4fc7081c6564d1c4ed4904212b7939a4f1f46afef0a36dc1d76f38e_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:33367b9fdb3addce3302ad35bc10423505fefe3dd27b8b9013b26d66caac2a6c_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:72cbdb061cbcd295be5e66a0eabb409af16ade7f0aa12b04c2d7327e9e1a24ba_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:d0379f9da8cbb5514394a4550ff0d79f90fa691fcced5806296479c7b63353da_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:e99d1d877bd7335736cbaeb4db5b9904369a1d07f6df332c38ad79ff1256b67b_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:06285611aef2528fc92c5cebb66ff4c74fe44d457f43cf9ec2f4a98c3c68d25e_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:25e0f4153eb5bc6fbc6b389d5adc81bfde103070ef58317c3c25ce4144a628d3_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:acd3c0369c18cbfa63a5972ed1721f93f1fcb456963ff855dea2c295baf1cdb8_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:d086075db52f4476aa64d7e2680baa01e99da246275fa9cae0ba4a74de63c7f3_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:07d89c1b524d1451051feb865bc716da2197add90fa0c58c4cf4a82975ec846c_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:6582e647d7dd604e25977ec1579969aa1fcb29ead1a0ea65833531d633bbdd2b_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:75e3aec03dffbd0f40f88a08ff5e0319f4515d73f0bcfae28b5fa526b494afc4_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:f0079e8ae53d84223aea2d3186e7bc6b525b7c03d307cde50cfb9f1bbc18712b_arm64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:1384e5ba2b7d23119a49d8713826f4c65668bca310589ac7abd0c0d41c7e4c90_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:7f58528b1da9146aa55917324fdf2b375794742b34e5d10ff57f713af60746cd_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:844c3b1499b00aeadfc561642e53792ad80f535efd53b35793ba08b0f26c6d61_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:e1019c30e1d84e66d775d0d6fc7d051803dcbe44823fb2a1914807be39c79dae_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:8c9a7ebf430b9f4ca200c6c70b049e8456cf88fd8bf0871b42d65e8dc786d451_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:926d965e6fd12ec0d758270fb4c90bbdc1a05e60cc4c895cf9b671a296c9d867_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:e8e807451e3c5d8d0a8575e1280d7125a4ece51547a7b4a5cd247837662cedad_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:f2a24aa01cbe0d926d4aefe3b12eba21eb5ec7f87276e572a6814c727228624c_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:45cc0d783d1e7874ac73dfbdfe7e03c63b227ab3c4f1e15a0a2f5c97956a76d9_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:6f3eb26734e89375c3e1fb7ac366e12dc0d41bac8f07de9210c7e9845a01eec1_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:768c45fa9f35d98dfe5cfe1ea12f552402bf68ac6e1f828b14310ef59ce57c40_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:b5f1bf30495f6be97c696cf7f90768629cee96f8d106f745bf95fdefddc99592_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:137ffbb95d463d95da6c350600d968f3cd0e9873bf2e7c6edf952ae3229e9e2b_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:1cccdfd7e90877c27c6d8caea4f1e8ad89bb97c83d97ddf570d4f4ee116f1986_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:71657b82894cfd9e350746f48965e148868a675b9a20dcb7f94a6bc7a5b16ea5_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:881e405e32821ef10cf992c7a633281c1dc45df721fe909048df1689472000ce_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:6c85b42ede0f4745ed558bcb03d033c49f56cef17a70c12e5308066124cac6e3_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:091529a93e258a612fd4a98222e6a370ee10b4e97efa791b50f79a2670163d01_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0e8958a22f6771ddfe32b34027c69dbbef65d980c7e465a79d4202d2627994ad_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:5a8b0203ff083113e8b30a123ab30c4bad571f57fb59c1e7e01807b92552504e_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:89bf6a32a0935cacadbc6d23566dce6ca741e404d58c11050638c7b8e868028b_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:077cc953354ea2edd85569a622f97c15d44163d68234e7a9fdee899d25c19cdb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:66285f866090e1bfbedacd592e9d5ea9f2a30b88aa03bc86bc790d6b98a929a4_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:8c80054171d5063457df4bd074674b1824783a101dacb6137da227080aff957c_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:b0f15904251c6665961eef9c944d00f17499f7219351fe213fe7935f62fbf7ac_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:62476ac2fb0096caa9b181f523cc3573ccffe70be1433f08d1d0255b6d3a0640_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:6f632bc9829880a44e2e94084284b52683b4a01dc3315043b0aa32eb344b16cb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:aa3d1cf7853bfe8307efb01f714585f378d1d3d4ed5de7c8808a72e4aeecd4f3_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:bf1d4b2b1ef03e65be59699ce3233a75a34e1777abc182984c7a8efa698a936e_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:141f17d12c748c7ab9e94cfd9db7e2492d3063e7478249d6430ac0d8fcfb8875_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:5909184fe3d37eb45ba3bf55d7b708d818f2a5abfc2949c4a7081a5cd30cea4f_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:6217f0bb4937fa0e0fc0a5c86456fdc1992e169dfedc3d11d5165cef575d4d53_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:d55a55a36a23e7deb83718bd5dcc19b083b84d441add72ea7f4e28935e4717e3_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:0f8e1171f278395f3c72e4d9d3c0492bed15b678963fb2b6182bd65343b85a2e_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:823bb59b1c7d01557c29f9f1e4a4ee39814c38d826b06c3c9de4b8d179078419_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:93c7e9b321c7e9aa4a412a993a6b20412e24772832cc0dd23bbb17aa25f15487_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:9e50b45f81fedab27e896f04b80bacaa01d8370ff5679147f95ad79b61972d83_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:8f145d4e336bd77fcc94f0845f9ebf94563ffd96d56794d96a665c11241df152_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:981917806c7faf31156241cc85577cf375ee566f78adaeadc096d0ba8482b835_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:af3ed91687500d64e2348cca4877c43f73211b8fbd132e7767c3521763185348_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:c05020e5ee5bddc62e38493cd16b6e4ffde7c2248a00d710f32b90a6ee12ceeb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2af86b409540513f6da1afa83110a5cafe8778d2ec16332faa31c964bd5f43f7_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2f3bec76a833a72c7dfa93ed55e55e80e2621c154e5a2f156deaf78d7c6b97b4_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:81a2385be30079500f13f97a18607aa685abd61265bf8fa78bc6ce126341be50_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:fdc8f64f3b82b200a5e31b01b8612069f1aa897014085c1de755394552a1a70a_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:856b9088dbda4e7374daf232602f4bb90b05ad1be1df46d6e363a002f549f4de_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:a107ae2f7b140f2fb2243f33c378228c2f164cfd2d23f57e63f6c424fd400929_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:e21de356b7d879800a96f6c5aeee6bc59a3ed9c58d36503f7089625ce887bb25_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:fcaf6d60d682cf51866948ea3b4846c2993e2801adb69dc745ffa832318f515c_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:11f005939e15d63057bf2f0a988b6baebc275d3e752e9f7696d0f7f5266fd5d6_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:4b4c98be96a932d508fad769eff61bff2a44e13baa60b22b6c543f4a11eb71c2_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:6c87453ffe89e8be752ee40c8a9ccf6894c83be703f13901b1e8b64a4c0e549a_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:c18a1c50a4fc7081c6564d1c4ed4904212b7939a4f1f46afef0a36dc1d76f38e_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:33367b9fdb3addce3302ad35bc10423505fefe3dd27b8b9013b26d66caac2a6c_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:72cbdb061cbcd295be5e66a0eabb409af16ade7f0aa12b04c2d7327e9e1a24ba_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:d0379f9da8cbb5514394a4550ff0d79f90fa691fcced5806296479c7b63353da_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:e99d1d877bd7335736cbaeb4db5b9904369a1d07f6df332c38ad79ff1256b67b_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:06285611aef2528fc92c5cebb66ff4c74fe44d457f43cf9ec2f4a98c3c68d25e_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:25e0f4153eb5bc6fbc6b389d5adc81bfde103070ef58317c3c25ce4144a628d3_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:acd3c0369c18cbfa63a5972ed1721f93f1fcb456963ff855dea2c295baf1cdb8_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:d086075db52f4476aa64d7e2680baa01e99da246275fa9cae0ba4a74de63c7f3_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:07d89c1b524d1451051feb865bc716da2197add90fa0c58c4cf4a82975ec846c_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:6582e647d7dd604e25977ec1579969aa1fcb29ead1a0ea65833531d633bbdd2b_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:75e3aec03dffbd0f40f88a08ff5e0319f4515d73f0bcfae28b5fa526b494afc4_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:f0079e8ae53d84223aea2d3186e7bc6b525b7c03d307cde50cfb9f1bbc18712b_arm64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "axios: Axios: Client-side Denial of Service via unescaped regex metacharacters in XSRF cookie name"
},
{
"cve": "CVE-2026-44774",
"cwe": {
"id": "CWE-15",
"name": "External Control of System or Configuration Setting"
},
"discovery_date": "2026-05-15T17:01:12.579630+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:1384e5ba2b7d23119a49d8713826f4c65668bca310589ac7abd0c0d41c7e4c90_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:7f58528b1da9146aa55917324fdf2b375794742b34e5d10ff57f713af60746cd_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:844c3b1499b00aeadfc561642e53792ad80f535efd53b35793ba08b0f26c6d61_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:e1019c30e1d84e66d775d0d6fc7d051803dcbe44823fb2a1914807be39c79dae_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:8c9a7ebf430b9f4ca200c6c70b049e8456cf88fd8bf0871b42d65e8dc786d451_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:926d965e6fd12ec0d758270fb4c90bbdc1a05e60cc4c895cf9b671a296c9d867_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:e8e807451e3c5d8d0a8575e1280d7125a4ece51547a7b4a5cd247837662cedad_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:f2a24aa01cbe0d926d4aefe3b12eba21eb5ec7f87276e572a6814c727228624c_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:45cc0d783d1e7874ac73dfbdfe7e03c63b227ab3c4f1e15a0a2f5c97956a76d9_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:6f3eb26734e89375c3e1fb7ac366e12dc0d41bac8f07de9210c7e9845a01eec1_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:768c45fa9f35d98dfe5cfe1ea12f552402bf68ac6e1f828b14310ef59ce57c40_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:b5f1bf30495f6be97c696cf7f90768629cee96f8d106f745bf95fdefddc99592_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:137ffbb95d463d95da6c350600d968f3cd0e9873bf2e7c6edf952ae3229e9e2b_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:1cccdfd7e90877c27c6d8caea4f1e8ad89bb97c83d97ddf570d4f4ee116f1986_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:71657b82894cfd9e350746f48965e148868a675b9a20dcb7f94a6bc7a5b16ea5_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:881e405e32821ef10cf992c7a633281c1dc45df721fe909048df1689472000ce_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:6c85b42ede0f4745ed558bcb03d033c49f56cef17a70c12e5308066124cac6e3_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:091529a93e258a612fd4a98222e6a370ee10b4e97efa791b50f79a2670163d01_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0e8958a22f6771ddfe32b34027c69dbbef65d980c7e465a79d4202d2627994ad_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:5a8b0203ff083113e8b30a123ab30c4bad571f57fb59c1e7e01807b92552504e_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:89bf6a32a0935cacadbc6d23566dce6ca741e404d58c11050638c7b8e868028b_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:077cc953354ea2edd85569a622f97c15d44163d68234e7a9fdee899d25c19cdb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:66285f866090e1bfbedacd592e9d5ea9f2a30b88aa03bc86bc790d6b98a929a4_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:8c80054171d5063457df4bd074674b1824783a101dacb6137da227080aff957c_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:b0f15904251c6665961eef9c944d00f17499f7219351fe213fe7935f62fbf7ac_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:62476ac2fb0096caa9b181f523cc3573ccffe70be1433f08d1d0255b6d3a0640_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:6f632bc9829880a44e2e94084284b52683b4a01dc3315043b0aa32eb344b16cb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:aa3d1cf7853bfe8307efb01f714585f378d1d3d4ed5de7c8808a72e4aeecd4f3_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:bf1d4b2b1ef03e65be59699ce3233a75a34e1777abc182984c7a8efa698a936e_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:141f17d12c748c7ab9e94cfd9db7e2492d3063e7478249d6430ac0d8fcfb8875_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:5909184fe3d37eb45ba3bf55d7b708d818f2a5abfc2949c4a7081a5cd30cea4f_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:6217f0bb4937fa0e0fc0a5c86456fdc1992e169dfedc3d11d5165cef575d4d53_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:d55a55a36a23e7deb83718bd5dcc19b083b84d441add72ea7f4e28935e4717e3_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:0f8e1171f278395f3c72e4d9d3c0492bed15b678963fb2b6182bd65343b85a2e_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:823bb59b1c7d01557c29f9f1e4a4ee39814c38d826b06c3c9de4b8d179078419_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:93c7e9b321c7e9aa4a412a993a6b20412e24772832cc0dd23bbb17aa25f15487_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:9e50b45f81fedab27e896f04b80bacaa01d8370ff5679147f95ad79b61972d83_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:8f145d4e336bd77fcc94f0845f9ebf94563ffd96d56794d96a665c11241df152_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:981917806c7faf31156241cc85577cf375ee566f78adaeadc096d0ba8482b835_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:af3ed91687500d64e2348cca4877c43f73211b8fbd132e7767c3521763185348_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:c05020e5ee5bddc62e38493cd16b6e4ffde7c2248a00d710f32b90a6ee12ceeb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2af86b409540513f6da1afa83110a5cafe8778d2ec16332faa31c964bd5f43f7_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2f3bec76a833a72c7dfa93ed55e55e80e2621c154e5a2f156deaf78d7c6b97b4_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:81a2385be30079500f13f97a18607aa685abd61265bf8fa78bc6ce126341be50_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:fdc8f64f3b82b200a5e31b01b8612069f1aa897014085c1de755394552a1a70a_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:856b9088dbda4e7374daf232602f4bb90b05ad1be1df46d6e363a002f549f4de_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:a107ae2f7b140f2fb2243f33c378228c2f164cfd2d23f57e63f6c424fd400929_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:e21de356b7d879800a96f6c5aeee6bc59a3ed9c58d36503f7089625ce887bb25_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:fcaf6d60d682cf51866948ea3b4846c2993e2801adb69dc745ffa832318f515c_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:33367b9fdb3addce3302ad35bc10423505fefe3dd27b8b9013b26d66caac2a6c_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:72cbdb061cbcd295be5e66a0eabb409af16ade7f0aa12b04c2d7327e9e1a24ba_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:d0379f9da8cbb5514394a4550ff0d79f90fa691fcced5806296479c7b63353da_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:e99d1d877bd7335736cbaeb4db5b9904369a1d07f6df332c38ad79ff1256b67b_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:06285611aef2528fc92c5cebb66ff4c74fe44d457f43cf9ec2f4a98c3c68d25e_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:25e0f4153eb5bc6fbc6b389d5adc81bfde103070ef58317c3c25ce4144a628d3_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:acd3c0369c18cbfa63a5972ed1721f93f1fcb456963ff855dea2c295baf1cdb8_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:d086075db52f4476aa64d7e2680baa01e99da246275fa9cae0ba4a74de63c7f3_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:07d89c1b524d1451051feb865bc716da2197add90fa0c58c4cf4a82975ec846c_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:6582e647d7dd604e25977ec1579969aa1fcb29ead1a0ea65833531d633bbdd2b_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:75e3aec03dffbd0f40f88a08ff5e0319f4515d73f0bcfae28b5fa526b494afc4_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:f0079e8ae53d84223aea2d3186e7bc6b525b7c03d307cde50cfb9f1bbc18712b_arm64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2477937"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Traefik. A low-privileged tenant with HTTPRoute creation permissions in Traefik\u0027s Kubernetes Gateway API provider can bypass security settings. This allows the tenant to expose the REST provider handler and gain live dynamic configuration write access to Traefik. This vulnerability enables unauthorized reconfiguration of routers and services, potentially leading to privilege escalation within the system.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "traefik: Traefik: Privilege escalation via Kubernetes Gateway API provider configuration bypass",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:11f005939e15d63057bf2f0a988b6baebc275d3e752e9f7696d0f7f5266fd5d6_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:4b4c98be96a932d508fad769eff61bff2a44e13baa60b22b6c543f4a11eb71c2_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:6c87453ffe89e8be752ee40c8a9ccf6894c83be703f13901b1e8b64a4c0e549a_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:c18a1c50a4fc7081c6564d1c4ed4904212b7939a4f1f46afef0a36dc1d76f38e_arm64"
],
"known_not_affected": [
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:1384e5ba2b7d23119a49d8713826f4c65668bca310589ac7abd0c0d41c7e4c90_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:7f58528b1da9146aa55917324fdf2b375794742b34e5d10ff57f713af60746cd_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:844c3b1499b00aeadfc561642e53792ad80f535efd53b35793ba08b0f26c6d61_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:e1019c30e1d84e66d775d0d6fc7d051803dcbe44823fb2a1914807be39c79dae_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:8c9a7ebf430b9f4ca200c6c70b049e8456cf88fd8bf0871b42d65e8dc786d451_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:926d965e6fd12ec0d758270fb4c90bbdc1a05e60cc4c895cf9b671a296c9d867_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:e8e807451e3c5d8d0a8575e1280d7125a4ece51547a7b4a5cd247837662cedad_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:f2a24aa01cbe0d926d4aefe3b12eba21eb5ec7f87276e572a6814c727228624c_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:45cc0d783d1e7874ac73dfbdfe7e03c63b227ab3c4f1e15a0a2f5c97956a76d9_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:6f3eb26734e89375c3e1fb7ac366e12dc0d41bac8f07de9210c7e9845a01eec1_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:768c45fa9f35d98dfe5cfe1ea12f552402bf68ac6e1f828b14310ef59ce57c40_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:b5f1bf30495f6be97c696cf7f90768629cee96f8d106f745bf95fdefddc99592_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:137ffbb95d463d95da6c350600d968f3cd0e9873bf2e7c6edf952ae3229e9e2b_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:1cccdfd7e90877c27c6d8caea4f1e8ad89bb97c83d97ddf570d4f4ee116f1986_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:71657b82894cfd9e350746f48965e148868a675b9a20dcb7f94a6bc7a5b16ea5_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:881e405e32821ef10cf992c7a633281c1dc45df721fe909048df1689472000ce_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:6c85b42ede0f4745ed558bcb03d033c49f56cef17a70c12e5308066124cac6e3_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:091529a93e258a612fd4a98222e6a370ee10b4e97efa791b50f79a2670163d01_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0e8958a22f6771ddfe32b34027c69dbbef65d980c7e465a79d4202d2627994ad_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:5a8b0203ff083113e8b30a123ab30c4bad571f57fb59c1e7e01807b92552504e_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:89bf6a32a0935cacadbc6d23566dce6ca741e404d58c11050638c7b8e868028b_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:077cc953354ea2edd85569a622f97c15d44163d68234e7a9fdee899d25c19cdb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:66285f866090e1bfbedacd592e9d5ea9f2a30b88aa03bc86bc790d6b98a929a4_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:8c80054171d5063457df4bd074674b1824783a101dacb6137da227080aff957c_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:b0f15904251c6665961eef9c944d00f17499f7219351fe213fe7935f62fbf7ac_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:62476ac2fb0096caa9b181f523cc3573ccffe70be1433f08d1d0255b6d3a0640_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:6f632bc9829880a44e2e94084284b52683b4a01dc3315043b0aa32eb344b16cb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:aa3d1cf7853bfe8307efb01f714585f378d1d3d4ed5de7c8808a72e4aeecd4f3_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:bf1d4b2b1ef03e65be59699ce3233a75a34e1777abc182984c7a8efa698a936e_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:141f17d12c748c7ab9e94cfd9db7e2492d3063e7478249d6430ac0d8fcfb8875_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:5909184fe3d37eb45ba3bf55d7b708d818f2a5abfc2949c4a7081a5cd30cea4f_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:6217f0bb4937fa0e0fc0a5c86456fdc1992e169dfedc3d11d5165cef575d4d53_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:d55a55a36a23e7deb83718bd5dcc19b083b84d441add72ea7f4e28935e4717e3_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:0f8e1171f278395f3c72e4d9d3c0492bed15b678963fb2b6182bd65343b85a2e_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:823bb59b1c7d01557c29f9f1e4a4ee39814c38d826b06c3c9de4b8d179078419_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:93c7e9b321c7e9aa4a412a993a6b20412e24772832cc0dd23bbb17aa25f15487_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:9e50b45f81fedab27e896f04b80bacaa01d8370ff5679147f95ad79b61972d83_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:8f145d4e336bd77fcc94f0845f9ebf94563ffd96d56794d96a665c11241df152_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:981917806c7faf31156241cc85577cf375ee566f78adaeadc096d0ba8482b835_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:af3ed91687500d64e2348cca4877c43f73211b8fbd132e7767c3521763185348_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:c05020e5ee5bddc62e38493cd16b6e4ffde7c2248a00d710f32b90a6ee12ceeb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2af86b409540513f6da1afa83110a5cafe8778d2ec16332faa31c964bd5f43f7_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2f3bec76a833a72c7dfa93ed55e55e80e2621c154e5a2f156deaf78d7c6b97b4_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:81a2385be30079500f13f97a18607aa685abd61265bf8fa78bc6ce126341be50_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:fdc8f64f3b82b200a5e31b01b8612069f1aa897014085c1de755394552a1a70a_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:856b9088dbda4e7374daf232602f4bb90b05ad1be1df46d6e363a002f549f4de_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:a107ae2f7b140f2fb2243f33c378228c2f164cfd2d23f57e63f6c424fd400929_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:e21de356b7d879800a96f6c5aeee6bc59a3ed9c58d36503f7089625ce887bb25_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:fcaf6d60d682cf51866948ea3b4846c2993e2801adb69dc745ffa832318f515c_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:33367b9fdb3addce3302ad35bc10423505fefe3dd27b8b9013b26d66caac2a6c_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:72cbdb061cbcd295be5e66a0eabb409af16ade7f0aa12b04c2d7327e9e1a24ba_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:d0379f9da8cbb5514394a4550ff0d79f90fa691fcced5806296479c7b63353da_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:e99d1d877bd7335736cbaeb4db5b9904369a1d07f6df332c38ad79ff1256b67b_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:06285611aef2528fc92c5cebb66ff4c74fe44d457f43cf9ec2f4a98c3c68d25e_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:25e0f4153eb5bc6fbc6b389d5adc81bfde103070ef58317c3c25ce4144a628d3_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:acd3c0369c18cbfa63a5972ed1721f93f1fcb456963ff855dea2c295baf1cdb8_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:d086075db52f4476aa64d7e2680baa01e99da246275fa9cae0ba4a74de63c7f3_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:07d89c1b524d1451051feb865bc716da2197add90fa0c58c4cf4a82975ec846c_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:6582e647d7dd604e25977ec1579969aa1fcb29ead1a0ea65833531d633bbdd2b_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:75e3aec03dffbd0f40f88a08ff5e0319f4515d73f0bcfae28b5fa526b494afc4_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:f0079e8ae53d84223aea2d3186e7bc6b525b7c03d307cde50cfb9f1bbc18712b_arm64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-44774"
},
{
"category": "external",
"summary": "RHBZ#2477937",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2477937"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-44774",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-44774"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-44774",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-44774"
},
{
"category": "external",
"summary": "https://github.com/traefik/traefik/releases/tag/v2.11.46",
"url": "https://github.com/traefik/traefik/releases/tag/v2.11.46"
},
{
"category": "external",
"summary": "https://github.com/traefik/traefik/releases/tag/v3.6.17",
"url": "https://github.com/traefik/traefik/releases/tag/v3.6.17"
},
{
"category": "external",
"summary": "https://github.com/traefik/traefik/releases/tag/v3.7.1",
"url": "https://github.com/traefik/traefik/releases/tag/v3.7.1"
},
{
"category": "external",
"summary": "https://github.com/traefik/traefik/security/advisories/GHSA-96qj-4jj5-wcjc",
"url": "https://github.com/traefik/traefik/security/advisories/GHSA-96qj-4jj5-wcjc"
}
],
"release_date": "2026-05-15T16:30:43.265000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T17:12:17+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\nFor details on how to apply this update, refer to:\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:11f005939e15d63057bf2f0a988b6baebc275d3e752e9f7696d0f7f5266fd5d6_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:4b4c98be96a932d508fad769eff61bff2a44e13baa60b22b6c543f4a11eb71c2_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:6c87453ffe89e8be752ee40c8a9ccf6894c83be703f13901b1e8b64a4c0e549a_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:c18a1c50a4fc7081c6564d1c4ed4904212b7939a4f1f46afef0a36dc1d76f38e_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36820"
},
{
"category": "workaround",
"details": "Upgrade Traefik to version 2.11.46 or later (2.x line), 3.6.17 or later (3.6.x line), or 3.7.1 or later (3.7.x line) by installing updated Red Hat OpenShift Dev Spaces releases that ship a fixed traefik-rhel9 container image.\n\nUntil updated images are available, limit which principals can create HTTPRoute resources in namespaces where Traefik runs with the Kubernetes Gateway API provider. Disable or tightly restrict the Traefik REST dynamic configuration provider in shared Gateway deployments, and block untrusted use of TraefikService backends that reference @internal handlers.",
"product_ids": [
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:1384e5ba2b7d23119a49d8713826f4c65668bca310589ac7abd0c0d41c7e4c90_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:7f58528b1da9146aa55917324fdf2b375794742b34e5d10ff57f713af60746cd_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:844c3b1499b00aeadfc561642e53792ad80f535efd53b35793ba08b0f26c6d61_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:e1019c30e1d84e66d775d0d6fc7d051803dcbe44823fb2a1914807be39c79dae_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:8c9a7ebf430b9f4ca200c6c70b049e8456cf88fd8bf0871b42d65e8dc786d451_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:926d965e6fd12ec0d758270fb4c90bbdc1a05e60cc4c895cf9b671a296c9d867_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:e8e807451e3c5d8d0a8575e1280d7125a4ece51547a7b4a5cd247837662cedad_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:f2a24aa01cbe0d926d4aefe3b12eba21eb5ec7f87276e572a6814c727228624c_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:45cc0d783d1e7874ac73dfbdfe7e03c63b227ab3c4f1e15a0a2f5c97956a76d9_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:6f3eb26734e89375c3e1fb7ac366e12dc0d41bac8f07de9210c7e9845a01eec1_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:768c45fa9f35d98dfe5cfe1ea12f552402bf68ac6e1f828b14310ef59ce57c40_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:b5f1bf30495f6be97c696cf7f90768629cee96f8d106f745bf95fdefddc99592_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:137ffbb95d463d95da6c350600d968f3cd0e9873bf2e7c6edf952ae3229e9e2b_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:1cccdfd7e90877c27c6d8caea4f1e8ad89bb97c83d97ddf570d4f4ee116f1986_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:71657b82894cfd9e350746f48965e148868a675b9a20dcb7f94a6bc7a5b16ea5_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:881e405e32821ef10cf992c7a633281c1dc45df721fe909048df1689472000ce_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:6c85b42ede0f4745ed558bcb03d033c49f56cef17a70c12e5308066124cac6e3_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:091529a93e258a612fd4a98222e6a370ee10b4e97efa791b50f79a2670163d01_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0e8958a22f6771ddfe32b34027c69dbbef65d980c7e465a79d4202d2627994ad_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:5a8b0203ff083113e8b30a123ab30c4bad571f57fb59c1e7e01807b92552504e_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:89bf6a32a0935cacadbc6d23566dce6ca741e404d58c11050638c7b8e868028b_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:077cc953354ea2edd85569a622f97c15d44163d68234e7a9fdee899d25c19cdb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:66285f866090e1bfbedacd592e9d5ea9f2a30b88aa03bc86bc790d6b98a929a4_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:8c80054171d5063457df4bd074674b1824783a101dacb6137da227080aff957c_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:b0f15904251c6665961eef9c944d00f17499f7219351fe213fe7935f62fbf7ac_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:62476ac2fb0096caa9b181f523cc3573ccffe70be1433f08d1d0255b6d3a0640_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:6f632bc9829880a44e2e94084284b52683b4a01dc3315043b0aa32eb344b16cb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:aa3d1cf7853bfe8307efb01f714585f378d1d3d4ed5de7c8808a72e4aeecd4f3_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:bf1d4b2b1ef03e65be59699ce3233a75a34e1777abc182984c7a8efa698a936e_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:141f17d12c748c7ab9e94cfd9db7e2492d3063e7478249d6430ac0d8fcfb8875_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:5909184fe3d37eb45ba3bf55d7b708d818f2a5abfc2949c4a7081a5cd30cea4f_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:6217f0bb4937fa0e0fc0a5c86456fdc1992e169dfedc3d11d5165cef575d4d53_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:d55a55a36a23e7deb83718bd5dcc19b083b84d441add72ea7f4e28935e4717e3_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:0f8e1171f278395f3c72e4d9d3c0492bed15b678963fb2b6182bd65343b85a2e_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:823bb59b1c7d01557c29f9f1e4a4ee39814c38d826b06c3c9de4b8d179078419_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:93c7e9b321c7e9aa4a412a993a6b20412e24772832cc0dd23bbb17aa25f15487_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:9e50b45f81fedab27e896f04b80bacaa01d8370ff5679147f95ad79b61972d83_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:8f145d4e336bd77fcc94f0845f9ebf94563ffd96d56794d96a665c11241df152_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:981917806c7faf31156241cc85577cf375ee566f78adaeadc096d0ba8482b835_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:af3ed91687500d64e2348cca4877c43f73211b8fbd132e7767c3521763185348_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:c05020e5ee5bddc62e38493cd16b6e4ffde7c2248a00d710f32b90a6ee12ceeb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2af86b409540513f6da1afa83110a5cafe8778d2ec16332faa31c964bd5f43f7_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2f3bec76a833a72c7dfa93ed55e55e80e2621c154e5a2f156deaf78d7c6b97b4_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:81a2385be30079500f13f97a18607aa685abd61265bf8fa78bc6ce126341be50_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:fdc8f64f3b82b200a5e31b01b8612069f1aa897014085c1de755394552a1a70a_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:856b9088dbda4e7374daf232602f4bb90b05ad1be1df46d6e363a002f549f4de_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:a107ae2f7b140f2fb2243f33c378228c2f164cfd2d23f57e63f6c424fd400929_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:e21de356b7d879800a96f6c5aeee6bc59a3ed9c58d36503f7089625ce887bb25_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:fcaf6d60d682cf51866948ea3b4846c2993e2801adb69dc745ffa832318f515c_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:11f005939e15d63057bf2f0a988b6baebc275d3e752e9f7696d0f7f5266fd5d6_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:4b4c98be96a932d508fad769eff61bff2a44e13baa60b22b6c543f4a11eb71c2_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:6c87453ffe89e8be752ee40c8a9ccf6894c83be703f13901b1e8b64a4c0e549a_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:c18a1c50a4fc7081c6564d1c4ed4904212b7939a4f1f46afef0a36dc1d76f38e_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:33367b9fdb3addce3302ad35bc10423505fefe3dd27b8b9013b26d66caac2a6c_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:72cbdb061cbcd295be5e66a0eabb409af16ade7f0aa12b04c2d7327e9e1a24ba_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:d0379f9da8cbb5514394a4550ff0d79f90fa691fcced5806296479c7b63353da_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:e99d1d877bd7335736cbaeb4db5b9904369a1d07f6df332c38ad79ff1256b67b_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:06285611aef2528fc92c5cebb66ff4c74fe44d457f43cf9ec2f4a98c3c68d25e_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:25e0f4153eb5bc6fbc6b389d5adc81bfde103070ef58317c3c25ce4144a628d3_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:acd3c0369c18cbfa63a5972ed1721f93f1fcb456963ff855dea2c295baf1cdb8_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:d086075db52f4476aa64d7e2680baa01e99da246275fa9cae0ba4a74de63c7f3_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:07d89c1b524d1451051feb865bc716da2197add90fa0c58c4cf4a82975ec846c_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:6582e647d7dd604e25977ec1579969aa1fcb29ead1a0ea65833531d633bbdd2b_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:75e3aec03dffbd0f40f88a08ff5e0319f4515d73f0bcfae28b5fa526b494afc4_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:f0079e8ae53d84223aea2d3186e7bc6b525b7c03d307cde50cfb9f1bbc18712b_arm64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.3,
"baseSeverity": "HIGH",
"confidentialityImpact": "LOW",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H",
"version": "3.1"
},
"products": [
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:1384e5ba2b7d23119a49d8713826f4c65668bca310589ac7abd0c0d41c7e4c90_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:7f58528b1da9146aa55917324fdf2b375794742b34e5d10ff57f713af60746cd_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:844c3b1499b00aeadfc561642e53792ad80f535efd53b35793ba08b0f26c6d61_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:e1019c30e1d84e66d775d0d6fc7d051803dcbe44823fb2a1914807be39c79dae_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:8c9a7ebf430b9f4ca200c6c70b049e8456cf88fd8bf0871b42d65e8dc786d451_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:926d965e6fd12ec0d758270fb4c90bbdc1a05e60cc4c895cf9b671a296c9d867_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:e8e807451e3c5d8d0a8575e1280d7125a4ece51547a7b4a5cd247837662cedad_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:f2a24aa01cbe0d926d4aefe3b12eba21eb5ec7f87276e572a6814c727228624c_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:45cc0d783d1e7874ac73dfbdfe7e03c63b227ab3c4f1e15a0a2f5c97956a76d9_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:6f3eb26734e89375c3e1fb7ac366e12dc0d41bac8f07de9210c7e9845a01eec1_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:768c45fa9f35d98dfe5cfe1ea12f552402bf68ac6e1f828b14310ef59ce57c40_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:b5f1bf30495f6be97c696cf7f90768629cee96f8d106f745bf95fdefddc99592_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:137ffbb95d463d95da6c350600d968f3cd0e9873bf2e7c6edf952ae3229e9e2b_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:1cccdfd7e90877c27c6d8caea4f1e8ad89bb97c83d97ddf570d4f4ee116f1986_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:71657b82894cfd9e350746f48965e148868a675b9a20dcb7f94a6bc7a5b16ea5_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:881e405e32821ef10cf992c7a633281c1dc45df721fe909048df1689472000ce_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:6c85b42ede0f4745ed558bcb03d033c49f56cef17a70c12e5308066124cac6e3_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:091529a93e258a612fd4a98222e6a370ee10b4e97efa791b50f79a2670163d01_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0e8958a22f6771ddfe32b34027c69dbbef65d980c7e465a79d4202d2627994ad_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:5a8b0203ff083113e8b30a123ab30c4bad571f57fb59c1e7e01807b92552504e_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:89bf6a32a0935cacadbc6d23566dce6ca741e404d58c11050638c7b8e868028b_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:077cc953354ea2edd85569a622f97c15d44163d68234e7a9fdee899d25c19cdb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:66285f866090e1bfbedacd592e9d5ea9f2a30b88aa03bc86bc790d6b98a929a4_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:8c80054171d5063457df4bd074674b1824783a101dacb6137da227080aff957c_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:b0f15904251c6665961eef9c944d00f17499f7219351fe213fe7935f62fbf7ac_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:62476ac2fb0096caa9b181f523cc3573ccffe70be1433f08d1d0255b6d3a0640_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:6f632bc9829880a44e2e94084284b52683b4a01dc3315043b0aa32eb344b16cb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:aa3d1cf7853bfe8307efb01f714585f378d1d3d4ed5de7c8808a72e4aeecd4f3_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:bf1d4b2b1ef03e65be59699ce3233a75a34e1777abc182984c7a8efa698a936e_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:141f17d12c748c7ab9e94cfd9db7e2492d3063e7478249d6430ac0d8fcfb8875_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:5909184fe3d37eb45ba3bf55d7b708d818f2a5abfc2949c4a7081a5cd30cea4f_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:6217f0bb4937fa0e0fc0a5c86456fdc1992e169dfedc3d11d5165cef575d4d53_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:d55a55a36a23e7deb83718bd5dcc19b083b84d441add72ea7f4e28935e4717e3_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:0f8e1171f278395f3c72e4d9d3c0492bed15b678963fb2b6182bd65343b85a2e_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:823bb59b1c7d01557c29f9f1e4a4ee39814c38d826b06c3c9de4b8d179078419_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:93c7e9b321c7e9aa4a412a993a6b20412e24772832cc0dd23bbb17aa25f15487_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:9e50b45f81fedab27e896f04b80bacaa01d8370ff5679147f95ad79b61972d83_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:8f145d4e336bd77fcc94f0845f9ebf94563ffd96d56794d96a665c11241df152_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:981917806c7faf31156241cc85577cf375ee566f78adaeadc096d0ba8482b835_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:af3ed91687500d64e2348cca4877c43f73211b8fbd132e7767c3521763185348_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:c05020e5ee5bddc62e38493cd16b6e4ffde7c2248a00d710f32b90a6ee12ceeb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2af86b409540513f6da1afa83110a5cafe8778d2ec16332faa31c964bd5f43f7_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2f3bec76a833a72c7dfa93ed55e55e80e2621c154e5a2f156deaf78d7c6b97b4_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:81a2385be30079500f13f97a18607aa685abd61265bf8fa78bc6ce126341be50_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:fdc8f64f3b82b200a5e31b01b8612069f1aa897014085c1de755394552a1a70a_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:856b9088dbda4e7374daf232602f4bb90b05ad1be1df46d6e363a002f549f4de_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:a107ae2f7b140f2fb2243f33c378228c2f164cfd2d23f57e63f6c424fd400929_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:e21de356b7d879800a96f6c5aeee6bc59a3ed9c58d36503f7089625ce887bb25_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:fcaf6d60d682cf51866948ea3b4846c2993e2801adb69dc745ffa832318f515c_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:11f005939e15d63057bf2f0a988b6baebc275d3e752e9f7696d0f7f5266fd5d6_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:4b4c98be96a932d508fad769eff61bff2a44e13baa60b22b6c543f4a11eb71c2_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:6c87453ffe89e8be752ee40c8a9ccf6894c83be703f13901b1e8b64a4c0e549a_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:c18a1c50a4fc7081c6564d1c4ed4904212b7939a4f1f46afef0a36dc1d76f38e_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:33367b9fdb3addce3302ad35bc10423505fefe3dd27b8b9013b26d66caac2a6c_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:72cbdb061cbcd295be5e66a0eabb409af16ade7f0aa12b04c2d7327e9e1a24ba_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:d0379f9da8cbb5514394a4550ff0d79f90fa691fcced5806296479c7b63353da_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:e99d1d877bd7335736cbaeb4db5b9904369a1d07f6df332c38ad79ff1256b67b_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:06285611aef2528fc92c5cebb66ff4c74fe44d457f43cf9ec2f4a98c3c68d25e_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:25e0f4153eb5bc6fbc6b389d5adc81bfde103070ef58317c3c25ce4144a628d3_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:acd3c0369c18cbfa63a5972ed1721f93f1fcb456963ff855dea2c295baf1cdb8_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:d086075db52f4476aa64d7e2680baa01e99da246275fa9cae0ba4a74de63c7f3_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:07d89c1b524d1451051feb865bc716da2197add90fa0c58c4cf4a82975ec846c_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:6582e647d7dd604e25977ec1579969aa1fcb29ead1a0ea65833531d633bbdd2b_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:75e3aec03dffbd0f40f88a08ff5e0319f4515d73f0bcfae28b5fa526b494afc4_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:f0079e8ae53d84223aea2d3186e7bc6b525b7c03d307cde50cfb9f1bbc18712b_arm64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "traefik: Traefik: Privilege escalation via Kubernetes Gateway API provider configuration bypass"
},
{
"cve": "CVE-2026-44893",
"cwe": {
"id": "CWE-805",
"name": "Buffer Access with Incorrect Length Value"
},
"discovery_date": "2026-06-12T15:01:18.066312+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:1384e5ba2b7d23119a49d8713826f4c65668bca310589ac7abd0c0d41c7e4c90_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:7f58528b1da9146aa55917324fdf2b375794742b34e5d10ff57f713af60746cd_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:844c3b1499b00aeadfc561642e53792ad80f535efd53b35793ba08b0f26c6d61_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:e1019c30e1d84e66d775d0d6fc7d051803dcbe44823fb2a1914807be39c79dae_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:8c9a7ebf430b9f4ca200c6c70b049e8456cf88fd8bf0871b42d65e8dc786d451_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:926d965e6fd12ec0d758270fb4c90bbdc1a05e60cc4c895cf9b671a296c9d867_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:e8e807451e3c5d8d0a8575e1280d7125a4ece51547a7b4a5cd247837662cedad_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:f2a24aa01cbe0d926d4aefe3b12eba21eb5ec7f87276e572a6814c727228624c_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:45cc0d783d1e7874ac73dfbdfe7e03c63b227ab3c4f1e15a0a2f5c97956a76d9_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:6f3eb26734e89375c3e1fb7ac366e12dc0d41bac8f07de9210c7e9845a01eec1_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:768c45fa9f35d98dfe5cfe1ea12f552402bf68ac6e1f828b14310ef59ce57c40_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:b5f1bf30495f6be97c696cf7f90768629cee96f8d106f745bf95fdefddc99592_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:137ffbb95d463d95da6c350600d968f3cd0e9873bf2e7c6edf952ae3229e9e2b_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:1cccdfd7e90877c27c6d8caea4f1e8ad89bb97c83d97ddf570d4f4ee116f1986_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:71657b82894cfd9e350746f48965e148868a675b9a20dcb7f94a6bc7a5b16ea5_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:881e405e32821ef10cf992c7a633281c1dc45df721fe909048df1689472000ce_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:6c85b42ede0f4745ed558bcb03d033c49f56cef17a70c12e5308066124cac6e3_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:091529a93e258a612fd4a98222e6a370ee10b4e97efa791b50f79a2670163d01_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0e8958a22f6771ddfe32b34027c69dbbef65d980c7e465a79d4202d2627994ad_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:5a8b0203ff083113e8b30a123ab30c4bad571f57fb59c1e7e01807b92552504e_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:89bf6a32a0935cacadbc6d23566dce6ca741e404d58c11050638c7b8e868028b_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:077cc953354ea2edd85569a622f97c15d44163d68234e7a9fdee899d25c19cdb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:66285f866090e1bfbedacd592e9d5ea9f2a30b88aa03bc86bc790d6b98a929a4_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:8c80054171d5063457df4bd074674b1824783a101dacb6137da227080aff957c_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:b0f15904251c6665961eef9c944d00f17499f7219351fe213fe7935f62fbf7ac_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:62476ac2fb0096caa9b181f523cc3573ccffe70be1433f08d1d0255b6d3a0640_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:6f632bc9829880a44e2e94084284b52683b4a01dc3315043b0aa32eb344b16cb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:aa3d1cf7853bfe8307efb01f714585f378d1d3d4ed5de7c8808a72e4aeecd4f3_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:bf1d4b2b1ef03e65be59699ce3233a75a34e1777abc182984c7a8efa698a936e_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:0f8e1171f278395f3c72e4d9d3c0492bed15b678963fb2b6182bd65343b85a2e_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:823bb59b1c7d01557c29f9f1e4a4ee39814c38d826b06c3c9de4b8d179078419_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:93c7e9b321c7e9aa4a412a993a6b20412e24772832cc0dd23bbb17aa25f15487_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:9e50b45f81fedab27e896f04b80bacaa01d8370ff5679147f95ad79b61972d83_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:8f145d4e336bd77fcc94f0845f9ebf94563ffd96d56794d96a665c11241df152_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:981917806c7faf31156241cc85577cf375ee566f78adaeadc096d0ba8482b835_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:af3ed91687500d64e2348cca4877c43f73211b8fbd132e7767c3521763185348_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:c05020e5ee5bddc62e38493cd16b6e4ffde7c2248a00d710f32b90a6ee12ceeb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2af86b409540513f6da1afa83110a5cafe8778d2ec16332faa31c964bd5f43f7_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2f3bec76a833a72c7dfa93ed55e55e80e2621c154e5a2f156deaf78d7c6b97b4_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:81a2385be30079500f13f97a18607aa685abd61265bf8fa78bc6ce126341be50_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:fdc8f64f3b82b200a5e31b01b8612069f1aa897014085c1de755394552a1a70a_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:856b9088dbda4e7374daf232602f4bb90b05ad1be1df46d6e363a002f549f4de_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:a107ae2f7b140f2fb2243f33c378228c2f164cfd2d23f57e63f6c424fd400929_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:e21de356b7d879800a96f6c5aeee6bc59a3ed9c58d36503f7089625ce887bb25_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:fcaf6d60d682cf51866948ea3b4846c2993e2801adb69dc745ffa832318f515c_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:11f005939e15d63057bf2f0a988b6baebc275d3e752e9f7696d0f7f5266fd5d6_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:4b4c98be96a932d508fad769eff61bff2a44e13baa60b22b6c543f4a11eb71c2_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:6c87453ffe89e8be752ee40c8a9ccf6894c83be703f13901b1e8b64a4c0e549a_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:c18a1c50a4fc7081c6564d1c4ed4904212b7939a4f1f46afef0a36dc1d76f38e_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:33367b9fdb3addce3302ad35bc10423505fefe3dd27b8b9013b26d66caac2a6c_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:72cbdb061cbcd295be5e66a0eabb409af16ade7f0aa12b04c2d7327e9e1a24ba_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:d0379f9da8cbb5514394a4550ff0d79f90fa691fcced5806296479c7b63353da_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:e99d1d877bd7335736cbaeb4db5b9904369a1d07f6df332c38ad79ff1256b67b_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:06285611aef2528fc92c5cebb66ff4c74fe44d457f43cf9ec2f4a98c3c68d25e_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:25e0f4153eb5bc6fbc6b389d5adc81bfde103070ef58317c3c25ce4144a628d3_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:acd3c0369c18cbfa63a5972ed1721f93f1fcb456963ff855dea2c295baf1cdb8_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:d086075db52f4476aa64d7e2680baa01e99da246275fa9cae0ba4a74de63c7f3_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:07d89c1b524d1451051feb865bc716da2197add90fa0c58c4cf4a82975ec846c_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:6582e647d7dd604e25977ec1579969aa1fcb29ead1a0ea65833531d633bbdd2b_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:75e3aec03dffbd0f40f88a08ff5e0319f4515d73f0bcfae28b5fa526b494afc4_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:f0079e8ae53d84223aea2d3186e7bc6b525b7c03d307cde50cfb9f1bbc18712b_arm64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2488383"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in netty-codec-haproxy, a component of the Netty network application framework. A remote attacker can exploit this vulnerability by sending a specially crafted HAProxy message with a malformed PP2_TYPE_SSL TLV (Type-Length-Value) header. This can lead to an IndexOutOfBoundsException and prevent the release of retained memory, ultimately causing a Denial of Service (DoS) condition for the affected application.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "netty-codec-haproxy: Netty-codec-haproxy: Denial of Service via malformed HAProxy message",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This flaw is rated as Important because a remote, unauthenticated attacker can trigger a denial of service in applications utilizing `netty-codec-haproxy`. By sending a specially crafted HAProxy message with a malformed SSL TLV header, an attacker can cause an `IndexOutOfBoundsException`, leading to unreleased memory and resource exhaustion. This can render the affected application unresponsive.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:141f17d12c748c7ab9e94cfd9db7e2492d3063e7478249d6430ac0d8fcfb8875_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:5909184fe3d37eb45ba3bf55d7b708d818f2a5abfc2949c4a7081a5cd30cea4f_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:6217f0bb4937fa0e0fc0a5c86456fdc1992e169dfedc3d11d5165cef575d4d53_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:d55a55a36a23e7deb83718bd5dcc19b083b84d441add72ea7f4e28935e4717e3_ppc64le"
],
"known_not_affected": [
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:1384e5ba2b7d23119a49d8713826f4c65668bca310589ac7abd0c0d41c7e4c90_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:7f58528b1da9146aa55917324fdf2b375794742b34e5d10ff57f713af60746cd_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:844c3b1499b00aeadfc561642e53792ad80f535efd53b35793ba08b0f26c6d61_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:e1019c30e1d84e66d775d0d6fc7d051803dcbe44823fb2a1914807be39c79dae_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:8c9a7ebf430b9f4ca200c6c70b049e8456cf88fd8bf0871b42d65e8dc786d451_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:926d965e6fd12ec0d758270fb4c90bbdc1a05e60cc4c895cf9b671a296c9d867_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:e8e807451e3c5d8d0a8575e1280d7125a4ece51547a7b4a5cd247837662cedad_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:f2a24aa01cbe0d926d4aefe3b12eba21eb5ec7f87276e572a6814c727228624c_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:45cc0d783d1e7874ac73dfbdfe7e03c63b227ab3c4f1e15a0a2f5c97956a76d9_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:6f3eb26734e89375c3e1fb7ac366e12dc0d41bac8f07de9210c7e9845a01eec1_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:768c45fa9f35d98dfe5cfe1ea12f552402bf68ac6e1f828b14310ef59ce57c40_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:b5f1bf30495f6be97c696cf7f90768629cee96f8d106f745bf95fdefddc99592_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:137ffbb95d463d95da6c350600d968f3cd0e9873bf2e7c6edf952ae3229e9e2b_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:1cccdfd7e90877c27c6d8caea4f1e8ad89bb97c83d97ddf570d4f4ee116f1986_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:71657b82894cfd9e350746f48965e148868a675b9a20dcb7f94a6bc7a5b16ea5_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:881e405e32821ef10cf992c7a633281c1dc45df721fe909048df1689472000ce_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:6c85b42ede0f4745ed558bcb03d033c49f56cef17a70c12e5308066124cac6e3_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:091529a93e258a612fd4a98222e6a370ee10b4e97efa791b50f79a2670163d01_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0e8958a22f6771ddfe32b34027c69dbbef65d980c7e465a79d4202d2627994ad_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:5a8b0203ff083113e8b30a123ab30c4bad571f57fb59c1e7e01807b92552504e_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:89bf6a32a0935cacadbc6d23566dce6ca741e404d58c11050638c7b8e868028b_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:077cc953354ea2edd85569a622f97c15d44163d68234e7a9fdee899d25c19cdb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:66285f866090e1bfbedacd592e9d5ea9f2a30b88aa03bc86bc790d6b98a929a4_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:8c80054171d5063457df4bd074674b1824783a101dacb6137da227080aff957c_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:b0f15904251c6665961eef9c944d00f17499f7219351fe213fe7935f62fbf7ac_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:62476ac2fb0096caa9b181f523cc3573ccffe70be1433f08d1d0255b6d3a0640_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:6f632bc9829880a44e2e94084284b52683b4a01dc3315043b0aa32eb344b16cb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:aa3d1cf7853bfe8307efb01f714585f378d1d3d4ed5de7c8808a72e4aeecd4f3_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:bf1d4b2b1ef03e65be59699ce3233a75a34e1777abc182984c7a8efa698a936e_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:0f8e1171f278395f3c72e4d9d3c0492bed15b678963fb2b6182bd65343b85a2e_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:823bb59b1c7d01557c29f9f1e4a4ee39814c38d826b06c3c9de4b8d179078419_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:93c7e9b321c7e9aa4a412a993a6b20412e24772832cc0dd23bbb17aa25f15487_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:9e50b45f81fedab27e896f04b80bacaa01d8370ff5679147f95ad79b61972d83_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:8f145d4e336bd77fcc94f0845f9ebf94563ffd96d56794d96a665c11241df152_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:981917806c7faf31156241cc85577cf375ee566f78adaeadc096d0ba8482b835_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:af3ed91687500d64e2348cca4877c43f73211b8fbd132e7767c3521763185348_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:c05020e5ee5bddc62e38493cd16b6e4ffde7c2248a00d710f32b90a6ee12ceeb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2af86b409540513f6da1afa83110a5cafe8778d2ec16332faa31c964bd5f43f7_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2f3bec76a833a72c7dfa93ed55e55e80e2621c154e5a2f156deaf78d7c6b97b4_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:81a2385be30079500f13f97a18607aa685abd61265bf8fa78bc6ce126341be50_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:fdc8f64f3b82b200a5e31b01b8612069f1aa897014085c1de755394552a1a70a_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:856b9088dbda4e7374daf232602f4bb90b05ad1be1df46d6e363a002f549f4de_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:a107ae2f7b140f2fb2243f33c378228c2f164cfd2d23f57e63f6c424fd400929_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:e21de356b7d879800a96f6c5aeee6bc59a3ed9c58d36503f7089625ce887bb25_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:fcaf6d60d682cf51866948ea3b4846c2993e2801adb69dc745ffa832318f515c_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:11f005939e15d63057bf2f0a988b6baebc275d3e752e9f7696d0f7f5266fd5d6_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:4b4c98be96a932d508fad769eff61bff2a44e13baa60b22b6c543f4a11eb71c2_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:6c87453ffe89e8be752ee40c8a9ccf6894c83be703f13901b1e8b64a4c0e549a_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:c18a1c50a4fc7081c6564d1c4ed4904212b7939a4f1f46afef0a36dc1d76f38e_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:33367b9fdb3addce3302ad35bc10423505fefe3dd27b8b9013b26d66caac2a6c_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:72cbdb061cbcd295be5e66a0eabb409af16ade7f0aa12b04c2d7327e9e1a24ba_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:d0379f9da8cbb5514394a4550ff0d79f90fa691fcced5806296479c7b63353da_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:e99d1d877bd7335736cbaeb4db5b9904369a1d07f6df332c38ad79ff1256b67b_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:06285611aef2528fc92c5cebb66ff4c74fe44d457f43cf9ec2f4a98c3c68d25e_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:25e0f4153eb5bc6fbc6b389d5adc81bfde103070ef58317c3c25ce4144a628d3_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:acd3c0369c18cbfa63a5972ed1721f93f1fcb456963ff855dea2c295baf1cdb8_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:d086075db52f4476aa64d7e2680baa01e99da246275fa9cae0ba4a74de63c7f3_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:07d89c1b524d1451051feb865bc716da2197add90fa0c58c4cf4a82975ec846c_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:6582e647d7dd604e25977ec1579969aa1fcb29ead1a0ea65833531d633bbdd2b_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:75e3aec03dffbd0f40f88a08ff5e0319f4515d73f0bcfae28b5fa526b494afc4_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:f0079e8ae53d84223aea2d3186e7bc6b525b7c03d307cde50cfb9f1bbc18712b_arm64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-44893"
},
{
"category": "external",
"summary": "RHBZ#2488383",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2488383"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-44893",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-44893"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-44893",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-44893"
},
{
"category": "external",
"summary": "https://github.com/netty/netty/releases/tag/netty-4.1.135.Final",
"url": "https://github.com/netty/netty/releases/tag/netty-4.1.135.Final"
},
{
"category": "external",
"summary": "https://github.com/netty/netty/releases/tag/netty-4.2.15.Final",
"url": "https://github.com/netty/netty/releases/tag/netty-4.2.15.Final"
},
{
"category": "external",
"summary": "https://github.com/netty/netty/security/advisories/GHSA-cc37-9q2j-3hfv",
"url": "https://github.com/netty/netty/security/advisories/GHSA-cc37-9q2j-3hfv"
}
],
"release_date": "2026-06-12T14:00:25.801000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T17:12:17+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\nFor details on how to apply this update, refer to:\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:141f17d12c748c7ab9e94cfd9db7e2492d3063e7478249d6430ac0d8fcfb8875_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:5909184fe3d37eb45ba3bf55d7b708d818f2a5abfc2949c4a7081a5cd30cea4f_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:6217f0bb4937fa0e0fc0a5c86456fdc1992e169dfedc3d11d5165cef575d4d53_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:d55a55a36a23e7deb83718bd5dcc19b083b84d441add72ea7f4e28935e4717e3_ppc64le"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36820"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:1384e5ba2b7d23119a49d8713826f4c65668bca310589ac7abd0c0d41c7e4c90_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:7f58528b1da9146aa55917324fdf2b375794742b34e5d10ff57f713af60746cd_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:844c3b1499b00aeadfc561642e53792ad80f535efd53b35793ba08b0f26c6d61_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:e1019c30e1d84e66d775d0d6fc7d051803dcbe44823fb2a1914807be39c79dae_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:8c9a7ebf430b9f4ca200c6c70b049e8456cf88fd8bf0871b42d65e8dc786d451_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:926d965e6fd12ec0d758270fb4c90bbdc1a05e60cc4c895cf9b671a296c9d867_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:e8e807451e3c5d8d0a8575e1280d7125a4ece51547a7b4a5cd247837662cedad_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:f2a24aa01cbe0d926d4aefe3b12eba21eb5ec7f87276e572a6814c727228624c_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:45cc0d783d1e7874ac73dfbdfe7e03c63b227ab3c4f1e15a0a2f5c97956a76d9_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:6f3eb26734e89375c3e1fb7ac366e12dc0d41bac8f07de9210c7e9845a01eec1_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:768c45fa9f35d98dfe5cfe1ea12f552402bf68ac6e1f828b14310ef59ce57c40_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:b5f1bf30495f6be97c696cf7f90768629cee96f8d106f745bf95fdefddc99592_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:137ffbb95d463d95da6c350600d968f3cd0e9873bf2e7c6edf952ae3229e9e2b_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:1cccdfd7e90877c27c6d8caea4f1e8ad89bb97c83d97ddf570d4f4ee116f1986_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:71657b82894cfd9e350746f48965e148868a675b9a20dcb7f94a6bc7a5b16ea5_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:881e405e32821ef10cf992c7a633281c1dc45df721fe909048df1689472000ce_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:6c85b42ede0f4745ed558bcb03d033c49f56cef17a70c12e5308066124cac6e3_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:091529a93e258a612fd4a98222e6a370ee10b4e97efa791b50f79a2670163d01_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0e8958a22f6771ddfe32b34027c69dbbef65d980c7e465a79d4202d2627994ad_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:5a8b0203ff083113e8b30a123ab30c4bad571f57fb59c1e7e01807b92552504e_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:89bf6a32a0935cacadbc6d23566dce6ca741e404d58c11050638c7b8e868028b_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:077cc953354ea2edd85569a622f97c15d44163d68234e7a9fdee899d25c19cdb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:66285f866090e1bfbedacd592e9d5ea9f2a30b88aa03bc86bc790d6b98a929a4_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:8c80054171d5063457df4bd074674b1824783a101dacb6137da227080aff957c_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:b0f15904251c6665961eef9c944d00f17499f7219351fe213fe7935f62fbf7ac_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:62476ac2fb0096caa9b181f523cc3573ccffe70be1433f08d1d0255b6d3a0640_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:6f632bc9829880a44e2e94084284b52683b4a01dc3315043b0aa32eb344b16cb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:aa3d1cf7853bfe8307efb01f714585f378d1d3d4ed5de7c8808a72e4aeecd4f3_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:bf1d4b2b1ef03e65be59699ce3233a75a34e1777abc182984c7a8efa698a936e_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:141f17d12c748c7ab9e94cfd9db7e2492d3063e7478249d6430ac0d8fcfb8875_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:5909184fe3d37eb45ba3bf55d7b708d818f2a5abfc2949c4a7081a5cd30cea4f_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:6217f0bb4937fa0e0fc0a5c86456fdc1992e169dfedc3d11d5165cef575d4d53_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:d55a55a36a23e7deb83718bd5dcc19b083b84d441add72ea7f4e28935e4717e3_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:0f8e1171f278395f3c72e4d9d3c0492bed15b678963fb2b6182bd65343b85a2e_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:823bb59b1c7d01557c29f9f1e4a4ee39814c38d826b06c3c9de4b8d179078419_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:93c7e9b321c7e9aa4a412a993a6b20412e24772832cc0dd23bbb17aa25f15487_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:9e50b45f81fedab27e896f04b80bacaa01d8370ff5679147f95ad79b61972d83_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:8f145d4e336bd77fcc94f0845f9ebf94563ffd96d56794d96a665c11241df152_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:981917806c7faf31156241cc85577cf375ee566f78adaeadc096d0ba8482b835_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:af3ed91687500d64e2348cca4877c43f73211b8fbd132e7767c3521763185348_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:c05020e5ee5bddc62e38493cd16b6e4ffde7c2248a00d710f32b90a6ee12ceeb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2af86b409540513f6da1afa83110a5cafe8778d2ec16332faa31c964bd5f43f7_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2f3bec76a833a72c7dfa93ed55e55e80e2621c154e5a2f156deaf78d7c6b97b4_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:81a2385be30079500f13f97a18607aa685abd61265bf8fa78bc6ce126341be50_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:fdc8f64f3b82b200a5e31b01b8612069f1aa897014085c1de755394552a1a70a_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:856b9088dbda4e7374daf232602f4bb90b05ad1be1df46d6e363a002f549f4de_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:a107ae2f7b140f2fb2243f33c378228c2f164cfd2d23f57e63f6c424fd400929_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:e21de356b7d879800a96f6c5aeee6bc59a3ed9c58d36503f7089625ce887bb25_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:fcaf6d60d682cf51866948ea3b4846c2993e2801adb69dc745ffa832318f515c_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:11f005939e15d63057bf2f0a988b6baebc275d3e752e9f7696d0f7f5266fd5d6_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:4b4c98be96a932d508fad769eff61bff2a44e13baa60b22b6c543f4a11eb71c2_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:6c87453ffe89e8be752ee40c8a9ccf6894c83be703f13901b1e8b64a4c0e549a_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:c18a1c50a4fc7081c6564d1c4ed4904212b7939a4f1f46afef0a36dc1d76f38e_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:33367b9fdb3addce3302ad35bc10423505fefe3dd27b8b9013b26d66caac2a6c_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:72cbdb061cbcd295be5e66a0eabb409af16ade7f0aa12b04c2d7327e9e1a24ba_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:d0379f9da8cbb5514394a4550ff0d79f90fa691fcced5806296479c7b63353da_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:e99d1d877bd7335736cbaeb4db5b9904369a1d07f6df332c38ad79ff1256b67b_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:06285611aef2528fc92c5cebb66ff4c74fe44d457f43cf9ec2f4a98c3c68d25e_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:25e0f4153eb5bc6fbc6b389d5adc81bfde103070ef58317c3c25ce4144a628d3_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:acd3c0369c18cbfa63a5972ed1721f93f1fcb456963ff855dea2c295baf1cdb8_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:d086075db52f4476aa64d7e2680baa01e99da246275fa9cae0ba4a74de63c7f3_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:07d89c1b524d1451051feb865bc716da2197add90fa0c58c4cf4a82975ec846c_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:6582e647d7dd604e25977ec1579969aa1fcb29ead1a0ea65833531d633bbdd2b_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:75e3aec03dffbd0f40f88a08ff5e0319f4515d73f0bcfae28b5fa526b494afc4_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:f0079e8ae53d84223aea2d3186e7bc6b525b7c03d307cde50cfb9f1bbc18712b_arm64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:1384e5ba2b7d23119a49d8713826f4c65668bca310589ac7abd0c0d41c7e4c90_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:7f58528b1da9146aa55917324fdf2b375794742b34e5d10ff57f713af60746cd_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:844c3b1499b00aeadfc561642e53792ad80f535efd53b35793ba08b0f26c6d61_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:e1019c30e1d84e66d775d0d6fc7d051803dcbe44823fb2a1914807be39c79dae_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:8c9a7ebf430b9f4ca200c6c70b049e8456cf88fd8bf0871b42d65e8dc786d451_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:926d965e6fd12ec0d758270fb4c90bbdc1a05e60cc4c895cf9b671a296c9d867_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:e8e807451e3c5d8d0a8575e1280d7125a4ece51547a7b4a5cd247837662cedad_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:f2a24aa01cbe0d926d4aefe3b12eba21eb5ec7f87276e572a6814c727228624c_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:45cc0d783d1e7874ac73dfbdfe7e03c63b227ab3c4f1e15a0a2f5c97956a76d9_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:6f3eb26734e89375c3e1fb7ac366e12dc0d41bac8f07de9210c7e9845a01eec1_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:768c45fa9f35d98dfe5cfe1ea12f552402bf68ac6e1f828b14310ef59ce57c40_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:b5f1bf30495f6be97c696cf7f90768629cee96f8d106f745bf95fdefddc99592_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:137ffbb95d463d95da6c350600d968f3cd0e9873bf2e7c6edf952ae3229e9e2b_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:1cccdfd7e90877c27c6d8caea4f1e8ad89bb97c83d97ddf570d4f4ee116f1986_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:71657b82894cfd9e350746f48965e148868a675b9a20dcb7f94a6bc7a5b16ea5_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:881e405e32821ef10cf992c7a633281c1dc45df721fe909048df1689472000ce_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:6c85b42ede0f4745ed558bcb03d033c49f56cef17a70c12e5308066124cac6e3_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:091529a93e258a612fd4a98222e6a370ee10b4e97efa791b50f79a2670163d01_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0e8958a22f6771ddfe32b34027c69dbbef65d980c7e465a79d4202d2627994ad_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:5a8b0203ff083113e8b30a123ab30c4bad571f57fb59c1e7e01807b92552504e_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:89bf6a32a0935cacadbc6d23566dce6ca741e404d58c11050638c7b8e868028b_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:077cc953354ea2edd85569a622f97c15d44163d68234e7a9fdee899d25c19cdb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:66285f866090e1bfbedacd592e9d5ea9f2a30b88aa03bc86bc790d6b98a929a4_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:8c80054171d5063457df4bd074674b1824783a101dacb6137da227080aff957c_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:b0f15904251c6665961eef9c944d00f17499f7219351fe213fe7935f62fbf7ac_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:62476ac2fb0096caa9b181f523cc3573ccffe70be1433f08d1d0255b6d3a0640_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:6f632bc9829880a44e2e94084284b52683b4a01dc3315043b0aa32eb344b16cb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:aa3d1cf7853bfe8307efb01f714585f378d1d3d4ed5de7c8808a72e4aeecd4f3_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:bf1d4b2b1ef03e65be59699ce3233a75a34e1777abc182984c7a8efa698a936e_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:141f17d12c748c7ab9e94cfd9db7e2492d3063e7478249d6430ac0d8fcfb8875_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:5909184fe3d37eb45ba3bf55d7b708d818f2a5abfc2949c4a7081a5cd30cea4f_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:6217f0bb4937fa0e0fc0a5c86456fdc1992e169dfedc3d11d5165cef575d4d53_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:d55a55a36a23e7deb83718bd5dcc19b083b84d441add72ea7f4e28935e4717e3_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:0f8e1171f278395f3c72e4d9d3c0492bed15b678963fb2b6182bd65343b85a2e_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:823bb59b1c7d01557c29f9f1e4a4ee39814c38d826b06c3c9de4b8d179078419_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:93c7e9b321c7e9aa4a412a993a6b20412e24772832cc0dd23bbb17aa25f15487_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:9e50b45f81fedab27e896f04b80bacaa01d8370ff5679147f95ad79b61972d83_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:8f145d4e336bd77fcc94f0845f9ebf94563ffd96d56794d96a665c11241df152_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:981917806c7faf31156241cc85577cf375ee566f78adaeadc096d0ba8482b835_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:af3ed91687500d64e2348cca4877c43f73211b8fbd132e7767c3521763185348_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:c05020e5ee5bddc62e38493cd16b6e4ffde7c2248a00d710f32b90a6ee12ceeb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2af86b409540513f6da1afa83110a5cafe8778d2ec16332faa31c964bd5f43f7_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2f3bec76a833a72c7dfa93ed55e55e80e2621c154e5a2f156deaf78d7c6b97b4_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:81a2385be30079500f13f97a18607aa685abd61265bf8fa78bc6ce126341be50_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:fdc8f64f3b82b200a5e31b01b8612069f1aa897014085c1de755394552a1a70a_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:856b9088dbda4e7374daf232602f4bb90b05ad1be1df46d6e363a002f549f4de_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:a107ae2f7b140f2fb2243f33c378228c2f164cfd2d23f57e63f6c424fd400929_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:e21de356b7d879800a96f6c5aeee6bc59a3ed9c58d36503f7089625ce887bb25_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:fcaf6d60d682cf51866948ea3b4846c2993e2801adb69dc745ffa832318f515c_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:11f005939e15d63057bf2f0a988b6baebc275d3e752e9f7696d0f7f5266fd5d6_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:4b4c98be96a932d508fad769eff61bff2a44e13baa60b22b6c543f4a11eb71c2_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:6c87453ffe89e8be752ee40c8a9ccf6894c83be703f13901b1e8b64a4c0e549a_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:c18a1c50a4fc7081c6564d1c4ed4904212b7939a4f1f46afef0a36dc1d76f38e_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:33367b9fdb3addce3302ad35bc10423505fefe3dd27b8b9013b26d66caac2a6c_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:72cbdb061cbcd295be5e66a0eabb409af16ade7f0aa12b04c2d7327e9e1a24ba_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:d0379f9da8cbb5514394a4550ff0d79f90fa691fcced5806296479c7b63353da_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:e99d1d877bd7335736cbaeb4db5b9904369a1d07f6df332c38ad79ff1256b67b_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:06285611aef2528fc92c5cebb66ff4c74fe44d457f43cf9ec2f4a98c3c68d25e_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:25e0f4153eb5bc6fbc6b389d5adc81bfde103070ef58317c3c25ce4144a628d3_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:acd3c0369c18cbfa63a5972ed1721f93f1fcb456963ff855dea2c295baf1cdb8_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:d086075db52f4476aa64d7e2680baa01e99da246275fa9cae0ba4a74de63c7f3_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:07d89c1b524d1451051feb865bc716da2197add90fa0c58c4cf4a82975ec846c_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:6582e647d7dd604e25977ec1579969aa1fcb29ead1a0ea65833531d633bbdd2b_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:75e3aec03dffbd0f40f88a08ff5e0319f4515d73f0bcfae28b5fa526b494afc4_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:f0079e8ae53d84223aea2d3186e7bc6b525b7c03d307cde50cfb9f1bbc18712b_arm64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "netty-codec-haproxy: Netty-codec-haproxy: Denial of Service via malformed HAProxy message"
},
{
"cve": "CVE-2026-45292",
"cwe": {
"id": "CWE-770",
"name": "Allocation of Resources Without Limits or Throttling"
},
"discovery_date": "2026-05-28T17:02:14.674828+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:1384e5ba2b7d23119a49d8713826f4c65668bca310589ac7abd0c0d41c7e4c90_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:7f58528b1da9146aa55917324fdf2b375794742b34e5d10ff57f713af60746cd_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:844c3b1499b00aeadfc561642e53792ad80f535efd53b35793ba08b0f26c6d61_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:e1019c30e1d84e66d775d0d6fc7d051803dcbe44823fb2a1914807be39c79dae_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:8c9a7ebf430b9f4ca200c6c70b049e8456cf88fd8bf0871b42d65e8dc786d451_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:926d965e6fd12ec0d758270fb4c90bbdc1a05e60cc4c895cf9b671a296c9d867_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:e8e807451e3c5d8d0a8575e1280d7125a4ece51547a7b4a5cd247837662cedad_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:f2a24aa01cbe0d926d4aefe3b12eba21eb5ec7f87276e572a6814c727228624c_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:45cc0d783d1e7874ac73dfbdfe7e03c63b227ab3c4f1e15a0a2f5c97956a76d9_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:6f3eb26734e89375c3e1fb7ac366e12dc0d41bac8f07de9210c7e9845a01eec1_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:768c45fa9f35d98dfe5cfe1ea12f552402bf68ac6e1f828b14310ef59ce57c40_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:b5f1bf30495f6be97c696cf7f90768629cee96f8d106f745bf95fdefddc99592_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:137ffbb95d463d95da6c350600d968f3cd0e9873bf2e7c6edf952ae3229e9e2b_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:1cccdfd7e90877c27c6d8caea4f1e8ad89bb97c83d97ddf570d4f4ee116f1986_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:71657b82894cfd9e350746f48965e148868a675b9a20dcb7f94a6bc7a5b16ea5_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:881e405e32821ef10cf992c7a633281c1dc45df721fe909048df1689472000ce_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:6c85b42ede0f4745ed558bcb03d033c49f56cef17a70c12e5308066124cac6e3_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:091529a93e258a612fd4a98222e6a370ee10b4e97efa791b50f79a2670163d01_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0e8958a22f6771ddfe32b34027c69dbbef65d980c7e465a79d4202d2627994ad_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:5a8b0203ff083113e8b30a123ab30c4bad571f57fb59c1e7e01807b92552504e_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:89bf6a32a0935cacadbc6d23566dce6ca741e404d58c11050638c7b8e868028b_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:077cc953354ea2edd85569a622f97c15d44163d68234e7a9fdee899d25c19cdb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:66285f866090e1bfbedacd592e9d5ea9f2a30b88aa03bc86bc790d6b98a929a4_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:8c80054171d5063457df4bd074674b1824783a101dacb6137da227080aff957c_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:b0f15904251c6665961eef9c944d00f17499f7219351fe213fe7935f62fbf7ac_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:62476ac2fb0096caa9b181f523cc3573ccffe70be1433f08d1d0255b6d3a0640_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:6f632bc9829880a44e2e94084284b52683b4a01dc3315043b0aa32eb344b16cb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:aa3d1cf7853bfe8307efb01f714585f378d1d3d4ed5de7c8808a72e4aeecd4f3_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:bf1d4b2b1ef03e65be59699ce3233a75a34e1777abc182984c7a8efa698a936e_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:141f17d12c748c7ab9e94cfd9db7e2492d3063e7478249d6430ac0d8fcfb8875_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:5909184fe3d37eb45ba3bf55d7b708d818f2a5abfc2949c4a7081a5cd30cea4f_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:6217f0bb4937fa0e0fc0a5c86456fdc1992e169dfedc3d11d5165cef575d4d53_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:d55a55a36a23e7deb83718bd5dcc19b083b84d441add72ea7f4e28935e4717e3_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:0f8e1171f278395f3c72e4d9d3c0492bed15b678963fb2b6182bd65343b85a2e_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:823bb59b1c7d01557c29f9f1e4a4ee39814c38d826b06c3c9de4b8d179078419_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:93c7e9b321c7e9aa4a412a993a6b20412e24772832cc0dd23bbb17aa25f15487_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:9e50b45f81fedab27e896f04b80bacaa01d8370ff5679147f95ad79b61972d83_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:856b9088dbda4e7374daf232602f4bb90b05ad1be1df46d6e363a002f549f4de_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:a107ae2f7b140f2fb2243f33c378228c2f164cfd2d23f57e63f6c424fd400929_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:e21de356b7d879800a96f6c5aeee6bc59a3ed9c58d36503f7089625ce887bb25_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:fcaf6d60d682cf51866948ea3b4846c2993e2801adb69dc745ffa832318f515c_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:11f005939e15d63057bf2f0a988b6baebc275d3e752e9f7696d0f7f5266fd5d6_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:4b4c98be96a932d508fad769eff61bff2a44e13baa60b22b6c543f4a11eb71c2_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:6c87453ffe89e8be752ee40c8a9ccf6894c83be703f13901b1e8b64a4c0e549a_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:c18a1c50a4fc7081c6564d1c4ed4904212b7939a4f1f46afef0a36dc1d76f38e_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:33367b9fdb3addce3302ad35bc10423505fefe3dd27b8b9013b26d66caac2a6c_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:72cbdb061cbcd295be5e66a0eabb409af16ade7f0aa12b04c2d7327e9e1a24ba_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:d0379f9da8cbb5514394a4550ff0d79f90fa691fcced5806296479c7b63353da_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:e99d1d877bd7335736cbaeb4db5b9904369a1d07f6df332c38ad79ff1256b67b_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:06285611aef2528fc92c5cebb66ff4c74fe44d457f43cf9ec2f4a98c3c68d25e_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:25e0f4153eb5bc6fbc6b389d5adc81bfde103070ef58317c3c25ce4144a628d3_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:acd3c0369c18cbfa63a5972ed1721f93f1fcb456963ff855dea2c295baf1cdb8_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:d086075db52f4476aa64d7e2680baa01e99da246275fa9cae0ba4a74de63c7f3_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:07d89c1b524d1451051feb865bc716da2197add90fa0c58c4cf4a82975ec846c_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:6582e647d7dd604e25977ec1579969aa1fcb29ead1a0ea65833531d633bbdd2b_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:75e3aec03dffbd0f40f88a08ff5e0319f4515d73f0bcfae28b5fa526b494afc4_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:f0079e8ae53d84223aea2d3186e7bc6b525b7c03d307cde50cfb9f1bbc18712b_arm64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2482785"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in OpenTelemetry Java, specifically within the baggage propagation implementation of opentelemetry-api and opentelemetry-extension-trace-propagators. A remote attacker can exploit this vulnerability by sending oversized baggage, which leads to unbounded memory allocation and high CPU consumption. This can result in a Denial of Service (DoS) for the affected service. Furthermore, because baggage is automatically re-injected into outgoing requests, the impact can spread to other downstream services.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "opentelemetry-java: opentelemetry-api: opentelemetry-extension-trace-propagators: OpenTelemetry Java: Denial of Service due to unbounded memory allocation when parsing oversized baggage",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This is an Important denial of service vulnerability in OpenTelemetry Java\u0027s baggage propagation, affecting Red Hat products that use OpenTelemetry for telemetry. A remote attacker can exploit this by sending excessively large baggage, leading to uncontrolled memory and CPU usage. The vulnerability\u0027s impact can extend to downstream services due to automatic re-injection of baggage into outgoing requests.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:8f145d4e336bd77fcc94f0845f9ebf94563ffd96d56794d96a665c11241df152_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:981917806c7faf31156241cc85577cf375ee566f78adaeadc096d0ba8482b835_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:af3ed91687500d64e2348cca4877c43f73211b8fbd132e7767c3521763185348_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:c05020e5ee5bddc62e38493cd16b6e4ffde7c2248a00d710f32b90a6ee12ceeb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2af86b409540513f6da1afa83110a5cafe8778d2ec16332faa31c964bd5f43f7_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2f3bec76a833a72c7dfa93ed55e55e80e2621c154e5a2f156deaf78d7c6b97b4_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:81a2385be30079500f13f97a18607aa685abd61265bf8fa78bc6ce126341be50_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:fdc8f64f3b82b200a5e31b01b8612069f1aa897014085c1de755394552a1a70a_amd64"
],
"known_not_affected": [
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:1384e5ba2b7d23119a49d8713826f4c65668bca310589ac7abd0c0d41c7e4c90_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:7f58528b1da9146aa55917324fdf2b375794742b34e5d10ff57f713af60746cd_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:844c3b1499b00aeadfc561642e53792ad80f535efd53b35793ba08b0f26c6d61_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:e1019c30e1d84e66d775d0d6fc7d051803dcbe44823fb2a1914807be39c79dae_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:8c9a7ebf430b9f4ca200c6c70b049e8456cf88fd8bf0871b42d65e8dc786d451_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:926d965e6fd12ec0d758270fb4c90bbdc1a05e60cc4c895cf9b671a296c9d867_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:e8e807451e3c5d8d0a8575e1280d7125a4ece51547a7b4a5cd247837662cedad_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:f2a24aa01cbe0d926d4aefe3b12eba21eb5ec7f87276e572a6814c727228624c_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:45cc0d783d1e7874ac73dfbdfe7e03c63b227ab3c4f1e15a0a2f5c97956a76d9_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:6f3eb26734e89375c3e1fb7ac366e12dc0d41bac8f07de9210c7e9845a01eec1_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:768c45fa9f35d98dfe5cfe1ea12f552402bf68ac6e1f828b14310ef59ce57c40_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:b5f1bf30495f6be97c696cf7f90768629cee96f8d106f745bf95fdefddc99592_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:137ffbb95d463d95da6c350600d968f3cd0e9873bf2e7c6edf952ae3229e9e2b_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:1cccdfd7e90877c27c6d8caea4f1e8ad89bb97c83d97ddf570d4f4ee116f1986_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:71657b82894cfd9e350746f48965e148868a675b9a20dcb7f94a6bc7a5b16ea5_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:881e405e32821ef10cf992c7a633281c1dc45df721fe909048df1689472000ce_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:6c85b42ede0f4745ed558bcb03d033c49f56cef17a70c12e5308066124cac6e3_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:091529a93e258a612fd4a98222e6a370ee10b4e97efa791b50f79a2670163d01_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0e8958a22f6771ddfe32b34027c69dbbef65d980c7e465a79d4202d2627994ad_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:5a8b0203ff083113e8b30a123ab30c4bad571f57fb59c1e7e01807b92552504e_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:89bf6a32a0935cacadbc6d23566dce6ca741e404d58c11050638c7b8e868028b_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:077cc953354ea2edd85569a622f97c15d44163d68234e7a9fdee899d25c19cdb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:66285f866090e1bfbedacd592e9d5ea9f2a30b88aa03bc86bc790d6b98a929a4_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:8c80054171d5063457df4bd074674b1824783a101dacb6137da227080aff957c_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:b0f15904251c6665961eef9c944d00f17499f7219351fe213fe7935f62fbf7ac_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:62476ac2fb0096caa9b181f523cc3573ccffe70be1433f08d1d0255b6d3a0640_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:6f632bc9829880a44e2e94084284b52683b4a01dc3315043b0aa32eb344b16cb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:aa3d1cf7853bfe8307efb01f714585f378d1d3d4ed5de7c8808a72e4aeecd4f3_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:bf1d4b2b1ef03e65be59699ce3233a75a34e1777abc182984c7a8efa698a936e_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:141f17d12c748c7ab9e94cfd9db7e2492d3063e7478249d6430ac0d8fcfb8875_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:5909184fe3d37eb45ba3bf55d7b708d818f2a5abfc2949c4a7081a5cd30cea4f_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:6217f0bb4937fa0e0fc0a5c86456fdc1992e169dfedc3d11d5165cef575d4d53_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:d55a55a36a23e7deb83718bd5dcc19b083b84d441add72ea7f4e28935e4717e3_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:0f8e1171f278395f3c72e4d9d3c0492bed15b678963fb2b6182bd65343b85a2e_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:823bb59b1c7d01557c29f9f1e4a4ee39814c38d826b06c3c9de4b8d179078419_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:93c7e9b321c7e9aa4a412a993a6b20412e24772832cc0dd23bbb17aa25f15487_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:9e50b45f81fedab27e896f04b80bacaa01d8370ff5679147f95ad79b61972d83_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:856b9088dbda4e7374daf232602f4bb90b05ad1be1df46d6e363a002f549f4de_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:a107ae2f7b140f2fb2243f33c378228c2f164cfd2d23f57e63f6c424fd400929_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:e21de356b7d879800a96f6c5aeee6bc59a3ed9c58d36503f7089625ce887bb25_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:fcaf6d60d682cf51866948ea3b4846c2993e2801adb69dc745ffa832318f515c_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:11f005939e15d63057bf2f0a988b6baebc275d3e752e9f7696d0f7f5266fd5d6_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:4b4c98be96a932d508fad769eff61bff2a44e13baa60b22b6c543f4a11eb71c2_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:6c87453ffe89e8be752ee40c8a9ccf6894c83be703f13901b1e8b64a4c0e549a_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:c18a1c50a4fc7081c6564d1c4ed4904212b7939a4f1f46afef0a36dc1d76f38e_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:33367b9fdb3addce3302ad35bc10423505fefe3dd27b8b9013b26d66caac2a6c_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:72cbdb061cbcd295be5e66a0eabb409af16ade7f0aa12b04c2d7327e9e1a24ba_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:d0379f9da8cbb5514394a4550ff0d79f90fa691fcced5806296479c7b63353da_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:e99d1d877bd7335736cbaeb4db5b9904369a1d07f6df332c38ad79ff1256b67b_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:06285611aef2528fc92c5cebb66ff4c74fe44d457f43cf9ec2f4a98c3c68d25e_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:25e0f4153eb5bc6fbc6b389d5adc81bfde103070ef58317c3c25ce4144a628d3_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:acd3c0369c18cbfa63a5972ed1721f93f1fcb456963ff855dea2c295baf1cdb8_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:d086075db52f4476aa64d7e2680baa01e99da246275fa9cae0ba4a74de63c7f3_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:07d89c1b524d1451051feb865bc716da2197add90fa0c58c4cf4a82975ec846c_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:6582e647d7dd604e25977ec1579969aa1fcb29ead1a0ea65833531d633bbdd2b_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:75e3aec03dffbd0f40f88a08ff5e0319f4515d73f0bcfae28b5fa526b494afc4_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:f0079e8ae53d84223aea2d3186e7bc6b525b7c03d307cde50cfb9f1bbc18712b_arm64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-45292"
},
{
"category": "external",
"summary": "RHBZ#2482785",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2482785"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-45292",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-45292"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-45292",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-45292"
},
{
"category": "external",
"summary": "https://github.com/open-telemetry/opentelemetry-java/commit/03837d3c1763bc35464aea1078671e2ef2336a5f",
"url": "https://github.com/open-telemetry/opentelemetry-java/commit/03837d3c1763bc35464aea1078671e2ef2336a5f"
},
{
"category": "external",
"summary": "https://github.com/open-telemetry/opentelemetry-java/pull/8380",
"url": "https://github.com/open-telemetry/opentelemetry-java/pull/8380"
},
{
"category": "external",
"summary": "https://github.com/open-telemetry/opentelemetry-java/releases/tag/v1.62.0",
"url": "https://github.com/open-telemetry/opentelemetry-java/releases/tag/v1.62.0"
},
{
"category": "external",
"summary": "https://github.com/open-telemetry/opentelemetry-java/security/advisories/GHSA-rcgg-9c38-7xpx",
"url": "https://github.com/open-telemetry/opentelemetry-java/security/advisories/GHSA-rcgg-9c38-7xpx"
}
],
"release_date": "2026-05-28T16:37:29.490000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T17:12:17+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\nFor details on how to apply this update, refer to:\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:8f145d4e336bd77fcc94f0845f9ebf94563ffd96d56794d96a665c11241df152_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:981917806c7faf31156241cc85577cf375ee566f78adaeadc096d0ba8482b835_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:af3ed91687500d64e2348cca4877c43f73211b8fbd132e7767c3521763185348_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:c05020e5ee5bddc62e38493cd16b6e4ffde7c2248a00d710f32b90a6ee12ceeb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2af86b409540513f6da1afa83110a5cafe8778d2ec16332faa31c964bd5f43f7_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2f3bec76a833a72c7dfa93ed55e55e80e2621c154e5a2f156deaf78d7c6b97b4_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:81a2385be30079500f13f97a18607aa685abd61265bf8fa78bc6ce126341be50_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:fdc8f64f3b82b200a5e31b01b8612069f1aa897014085c1de755394552a1a70a_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36820"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:1384e5ba2b7d23119a49d8713826f4c65668bca310589ac7abd0c0d41c7e4c90_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:7f58528b1da9146aa55917324fdf2b375794742b34e5d10ff57f713af60746cd_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:844c3b1499b00aeadfc561642e53792ad80f535efd53b35793ba08b0f26c6d61_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:e1019c30e1d84e66d775d0d6fc7d051803dcbe44823fb2a1914807be39c79dae_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:8c9a7ebf430b9f4ca200c6c70b049e8456cf88fd8bf0871b42d65e8dc786d451_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:926d965e6fd12ec0d758270fb4c90bbdc1a05e60cc4c895cf9b671a296c9d867_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:e8e807451e3c5d8d0a8575e1280d7125a4ece51547a7b4a5cd247837662cedad_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:f2a24aa01cbe0d926d4aefe3b12eba21eb5ec7f87276e572a6814c727228624c_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:45cc0d783d1e7874ac73dfbdfe7e03c63b227ab3c4f1e15a0a2f5c97956a76d9_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:6f3eb26734e89375c3e1fb7ac366e12dc0d41bac8f07de9210c7e9845a01eec1_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:768c45fa9f35d98dfe5cfe1ea12f552402bf68ac6e1f828b14310ef59ce57c40_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:b5f1bf30495f6be97c696cf7f90768629cee96f8d106f745bf95fdefddc99592_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:137ffbb95d463d95da6c350600d968f3cd0e9873bf2e7c6edf952ae3229e9e2b_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:1cccdfd7e90877c27c6d8caea4f1e8ad89bb97c83d97ddf570d4f4ee116f1986_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:71657b82894cfd9e350746f48965e148868a675b9a20dcb7f94a6bc7a5b16ea5_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:881e405e32821ef10cf992c7a633281c1dc45df721fe909048df1689472000ce_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:6c85b42ede0f4745ed558bcb03d033c49f56cef17a70c12e5308066124cac6e3_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:091529a93e258a612fd4a98222e6a370ee10b4e97efa791b50f79a2670163d01_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0e8958a22f6771ddfe32b34027c69dbbef65d980c7e465a79d4202d2627994ad_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:5a8b0203ff083113e8b30a123ab30c4bad571f57fb59c1e7e01807b92552504e_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:89bf6a32a0935cacadbc6d23566dce6ca741e404d58c11050638c7b8e868028b_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:077cc953354ea2edd85569a622f97c15d44163d68234e7a9fdee899d25c19cdb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:66285f866090e1bfbedacd592e9d5ea9f2a30b88aa03bc86bc790d6b98a929a4_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:8c80054171d5063457df4bd074674b1824783a101dacb6137da227080aff957c_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:b0f15904251c6665961eef9c944d00f17499f7219351fe213fe7935f62fbf7ac_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:62476ac2fb0096caa9b181f523cc3573ccffe70be1433f08d1d0255b6d3a0640_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:6f632bc9829880a44e2e94084284b52683b4a01dc3315043b0aa32eb344b16cb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:aa3d1cf7853bfe8307efb01f714585f378d1d3d4ed5de7c8808a72e4aeecd4f3_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:bf1d4b2b1ef03e65be59699ce3233a75a34e1777abc182984c7a8efa698a936e_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:141f17d12c748c7ab9e94cfd9db7e2492d3063e7478249d6430ac0d8fcfb8875_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:5909184fe3d37eb45ba3bf55d7b708d818f2a5abfc2949c4a7081a5cd30cea4f_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:6217f0bb4937fa0e0fc0a5c86456fdc1992e169dfedc3d11d5165cef575d4d53_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:d55a55a36a23e7deb83718bd5dcc19b083b84d441add72ea7f4e28935e4717e3_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:0f8e1171f278395f3c72e4d9d3c0492bed15b678963fb2b6182bd65343b85a2e_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:823bb59b1c7d01557c29f9f1e4a4ee39814c38d826b06c3c9de4b8d179078419_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:93c7e9b321c7e9aa4a412a993a6b20412e24772832cc0dd23bbb17aa25f15487_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:9e50b45f81fedab27e896f04b80bacaa01d8370ff5679147f95ad79b61972d83_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:8f145d4e336bd77fcc94f0845f9ebf94563ffd96d56794d96a665c11241df152_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:981917806c7faf31156241cc85577cf375ee566f78adaeadc096d0ba8482b835_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:af3ed91687500d64e2348cca4877c43f73211b8fbd132e7767c3521763185348_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:c05020e5ee5bddc62e38493cd16b6e4ffde7c2248a00d710f32b90a6ee12ceeb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2af86b409540513f6da1afa83110a5cafe8778d2ec16332faa31c964bd5f43f7_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2f3bec76a833a72c7dfa93ed55e55e80e2621c154e5a2f156deaf78d7c6b97b4_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:81a2385be30079500f13f97a18607aa685abd61265bf8fa78bc6ce126341be50_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:fdc8f64f3b82b200a5e31b01b8612069f1aa897014085c1de755394552a1a70a_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:856b9088dbda4e7374daf232602f4bb90b05ad1be1df46d6e363a002f549f4de_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:a107ae2f7b140f2fb2243f33c378228c2f164cfd2d23f57e63f6c424fd400929_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:e21de356b7d879800a96f6c5aeee6bc59a3ed9c58d36503f7089625ce887bb25_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:fcaf6d60d682cf51866948ea3b4846c2993e2801adb69dc745ffa832318f515c_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:11f005939e15d63057bf2f0a988b6baebc275d3e752e9f7696d0f7f5266fd5d6_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:4b4c98be96a932d508fad769eff61bff2a44e13baa60b22b6c543f4a11eb71c2_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:6c87453ffe89e8be752ee40c8a9ccf6894c83be703f13901b1e8b64a4c0e549a_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:c18a1c50a4fc7081c6564d1c4ed4904212b7939a4f1f46afef0a36dc1d76f38e_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:33367b9fdb3addce3302ad35bc10423505fefe3dd27b8b9013b26d66caac2a6c_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:72cbdb061cbcd295be5e66a0eabb409af16ade7f0aa12b04c2d7327e9e1a24ba_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:d0379f9da8cbb5514394a4550ff0d79f90fa691fcced5806296479c7b63353da_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:e99d1d877bd7335736cbaeb4db5b9904369a1d07f6df332c38ad79ff1256b67b_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:06285611aef2528fc92c5cebb66ff4c74fe44d457f43cf9ec2f4a98c3c68d25e_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:25e0f4153eb5bc6fbc6b389d5adc81bfde103070ef58317c3c25ce4144a628d3_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:acd3c0369c18cbfa63a5972ed1721f93f1fcb456963ff855dea2c295baf1cdb8_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:d086075db52f4476aa64d7e2680baa01e99da246275fa9cae0ba4a74de63c7f3_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:07d89c1b524d1451051feb865bc716da2197add90fa0c58c4cf4a82975ec846c_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:6582e647d7dd604e25977ec1579969aa1fcb29ead1a0ea65833531d633bbdd2b_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:75e3aec03dffbd0f40f88a08ff5e0319f4515d73f0bcfae28b5fa526b494afc4_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:f0079e8ae53d84223aea2d3186e7bc6b525b7c03d307cde50cfb9f1bbc18712b_arm64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "opentelemetry-java: opentelemetry-api: opentelemetry-extension-trace-propagators: OpenTelemetry Java: Denial of Service due to unbounded memory allocation when parsing oversized baggage"
},
{
"cve": "CVE-2026-45736",
"cwe": {
"id": "CWE-824",
"name": "Access of Uninitialized Pointer"
},
"discovery_date": "2026-05-15T16:00:55.786944+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:8c9a7ebf430b9f4ca200c6c70b049e8456cf88fd8bf0871b42d65e8dc786d451_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:926d965e6fd12ec0d758270fb4c90bbdc1a05e60cc4c895cf9b671a296c9d867_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:e8e807451e3c5d8d0a8575e1280d7125a4ece51547a7b4a5cd247837662cedad_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:f2a24aa01cbe0d926d4aefe3b12eba21eb5ec7f87276e572a6814c727228624c_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:45cc0d783d1e7874ac73dfbdfe7e03c63b227ab3c4f1e15a0a2f5c97956a76d9_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:6f3eb26734e89375c3e1fb7ac366e12dc0d41bac8f07de9210c7e9845a01eec1_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:768c45fa9f35d98dfe5cfe1ea12f552402bf68ac6e1f828b14310ef59ce57c40_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:b5f1bf30495f6be97c696cf7f90768629cee96f8d106f745bf95fdefddc99592_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:6c85b42ede0f4745ed558bcb03d033c49f56cef17a70c12e5308066124cac6e3_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:091529a93e258a612fd4a98222e6a370ee10b4e97efa791b50f79a2670163d01_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0e8958a22f6771ddfe32b34027c69dbbef65d980c7e465a79d4202d2627994ad_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:5a8b0203ff083113e8b30a123ab30c4bad571f57fb59c1e7e01807b92552504e_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:89bf6a32a0935cacadbc6d23566dce6ca741e404d58c11050638c7b8e868028b_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:077cc953354ea2edd85569a622f97c15d44163d68234e7a9fdee899d25c19cdb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:66285f866090e1bfbedacd592e9d5ea9f2a30b88aa03bc86bc790d6b98a929a4_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:8c80054171d5063457df4bd074674b1824783a101dacb6137da227080aff957c_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:b0f15904251c6665961eef9c944d00f17499f7219351fe213fe7935f62fbf7ac_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:62476ac2fb0096caa9b181f523cc3573ccffe70be1433f08d1d0255b6d3a0640_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:6f632bc9829880a44e2e94084284b52683b4a01dc3315043b0aa32eb344b16cb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:aa3d1cf7853bfe8307efb01f714585f378d1d3d4ed5de7c8808a72e4aeecd4f3_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:bf1d4b2b1ef03e65be59699ce3233a75a34e1777abc182984c7a8efa698a936e_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:141f17d12c748c7ab9e94cfd9db7e2492d3063e7478249d6430ac0d8fcfb8875_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:5909184fe3d37eb45ba3bf55d7b708d818f2a5abfc2949c4a7081a5cd30cea4f_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:6217f0bb4937fa0e0fc0a5c86456fdc1992e169dfedc3d11d5165cef575d4d53_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:d55a55a36a23e7deb83718bd5dcc19b083b84d441add72ea7f4e28935e4717e3_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:0f8e1171f278395f3c72e4d9d3c0492bed15b678963fb2b6182bd65343b85a2e_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:823bb59b1c7d01557c29f9f1e4a4ee39814c38d826b06c3c9de4b8d179078419_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:93c7e9b321c7e9aa4a412a993a6b20412e24772832cc0dd23bbb17aa25f15487_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:9e50b45f81fedab27e896f04b80bacaa01d8370ff5679147f95ad79b61972d83_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:8f145d4e336bd77fcc94f0845f9ebf94563ffd96d56794d96a665c11241df152_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:981917806c7faf31156241cc85577cf375ee566f78adaeadc096d0ba8482b835_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:af3ed91687500d64e2348cca4877c43f73211b8fbd132e7767c3521763185348_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:c05020e5ee5bddc62e38493cd16b6e4ffde7c2248a00d710f32b90a6ee12ceeb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2af86b409540513f6da1afa83110a5cafe8778d2ec16332faa31c964bd5f43f7_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2f3bec76a833a72c7dfa93ed55e55e80e2621c154e5a2f156deaf78d7c6b97b4_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:81a2385be30079500f13f97a18607aa685abd61265bf8fa78bc6ce126341be50_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:fdc8f64f3b82b200a5e31b01b8612069f1aa897014085c1de755394552a1a70a_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:856b9088dbda4e7374daf232602f4bb90b05ad1be1df46d6e363a002f549f4de_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:a107ae2f7b140f2fb2243f33c378228c2f164cfd2d23f57e63f6c424fd400929_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:e21de356b7d879800a96f6c5aeee6bc59a3ed9c58d36503f7089625ce887bb25_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:fcaf6d60d682cf51866948ea3b4846c2993e2801adb69dc745ffa832318f515c_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:11f005939e15d63057bf2f0a988b6baebc275d3e752e9f7696d0f7f5266fd5d6_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:4b4c98be96a932d508fad769eff61bff2a44e13baa60b22b6c543f4a11eb71c2_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:6c87453ffe89e8be752ee40c8a9ccf6894c83be703f13901b1e8b64a4c0e549a_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:c18a1c50a4fc7081c6564d1c4ed4904212b7939a4f1f46afef0a36dc1d76f38e_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:33367b9fdb3addce3302ad35bc10423505fefe3dd27b8b9013b26d66caac2a6c_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:72cbdb061cbcd295be5e66a0eabb409af16ade7f0aa12b04c2d7327e9e1a24ba_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:d0379f9da8cbb5514394a4550ff0d79f90fa691fcced5806296479c7b63353da_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:e99d1d877bd7335736cbaeb4db5b9904369a1d07f6df332c38ad79ff1256b67b_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:06285611aef2528fc92c5cebb66ff4c74fe44d457f43cf9ec2f4a98c3c68d25e_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:25e0f4153eb5bc6fbc6b389d5adc81bfde103070ef58317c3c25ce4144a628d3_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:acd3c0369c18cbfa63a5972ed1721f93f1fcb456963ff855dea2c295baf1cdb8_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:d086075db52f4476aa64d7e2680baa01e99da246275fa9cae0ba4a74de63c7f3_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:07d89c1b524d1451051feb865bc716da2197add90fa0c58c4cf4a82975ec846c_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:6582e647d7dd604e25977ec1579969aa1fcb29ead1a0ea65833531d633bbdd2b_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:75e3aec03dffbd0f40f88a08ff5e0319f4515d73f0bcfae28b5fa526b494afc4_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:f0079e8ae53d84223aea2d3186e7bc6b525b7c03d307cde50cfb9f1bbc18712b_arm64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2477914"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in ws, an open source WebSocket client and server for Node.js. The `websocket.close()` implementation is vulnerable to uninitialized memory disclosure when a `TypedArray` is passed as the reason argument. This can lead to the disclosure of sensitive information from uninitialized memory.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "ws: ws: Uninitialized memory disclosure via `websocket.close()` with `TypedArray`",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This Important vulnerability in the `ws` WebSocket library for Node.js could lead to sensitive information disclosure. The flaw occurs when a `TypedArray` is specifically provided as the `reason` argument to the `websocket.close()` function, potentially exposing uninitialized memory. Red Hat products utilizing this library may be affected if their implementations allow for such a crafted `close()` call.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:1384e5ba2b7d23119a49d8713826f4c65668bca310589ac7abd0c0d41c7e4c90_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:7f58528b1da9146aa55917324fdf2b375794742b34e5d10ff57f713af60746cd_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:844c3b1499b00aeadfc561642e53792ad80f535efd53b35793ba08b0f26c6d61_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:e1019c30e1d84e66d775d0d6fc7d051803dcbe44823fb2a1914807be39c79dae_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:137ffbb95d463d95da6c350600d968f3cd0e9873bf2e7c6edf952ae3229e9e2b_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:1cccdfd7e90877c27c6d8caea4f1e8ad89bb97c83d97ddf570d4f4ee116f1986_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:71657b82894cfd9e350746f48965e148868a675b9a20dcb7f94a6bc7a5b16ea5_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:881e405e32821ef10cf992c7a633281c1dc45df721fe909048df1689472000ce_ppc64le"
],
"known_not_affected": [
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:8c9a7ebf430b9f4ca200c6c70b049e8456cf88fd8bf0871b42d65e8dc786d451_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:926d965e6fd12ec0d758270fb4c90bbdc1a05e60cc4c895cf9b671a296c9d867_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:e8e807451e3c5d8d0a8575e1280d7125a4ece51547a7b4a5cd247837662cedad_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:f2a24aa01cbe0d926d4aefe3b12eba21eb5ec7f87276e572a6814c727228624c_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:45cc0d783d1e7874ac73dfbdfe7e03c63b227ab3c4f1e15a0a2f5c97956a76d9_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:6f3eb26734e89375c3e1fb7ac366e12dc0d41bac8f07de9210c7e9845a01eec1_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:768c45fa9f35d98dfe5cfe1ea12f552402bf68ac6e1f828b14310ef59ce57c40_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:b5f1bf30495f6be97c696cf7f90768629cee96f8d106f745bf95fdefddc99592_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:6c85b42ede0f4745ed558bcb03d033c49f56cef17a70c12e5308066124cac6e3_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:091529a93e258a612fd4a98222e6a370ee10b4e97efa791b50f79a2670163d01_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0e8958a22f6771ddfe32b34027c69dbbef65d980c7e465a79d4202d2627994ad_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:5a8b0203ff083113e8b30a123ab30c4bad571f57fb59c1e7e01807b92552504e_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:89bf6a32a0935cacadbc6d23566dce6ca741e404d58c11050638c7b8e868028b_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:077cc953354ea2edd85569a622f97c15d44163d68234e7a9fdee899d25c19cdb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:66285f866090e1bfbedacd592e9d5ea9f2a30b88aa03bc86bc790d6b98a929a4_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:8c80054171d5063457df4bd074674b1824783a101dacb6137da227080aff957c_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:b0f15904251c6665961eef9c944d00f17499f7219351fe213fe7935f62fbf7ac_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:62476ac2fb0096caa9b181f523cc3573ccffe70be1433f08d1d0255b6d3a0640_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:6f632bc9829880a44e2e94084284b52683b4a01dc3315043b0aa32eb344b16cb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:aa3d1cf7853bfe8307efb01f714585f378d1d3d4ed5de7c8808a72e4aeecd4f3_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:bf1d4b2b1ef03e65be59699ce3233a75a34e1777abc182984c7a8efa698a936e_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:141f17d12c748c7ab9e94cfd9db7e2492d3063e7478249d6430ac0d8fcfb8875_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:5909184fe3d37eb45ba3bf55d7b708d818f2a5abfc2949c4a7081a5cd30cea4f_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:6217f0bb4937fa0e0fc0a5c86456fdc1992e169dfedc3d11d5165cef575d4d53_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:d55a55a36a23e7deb83718bd5dcc19b083b84d441add72ea7f4e28935e4717e3_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:0f8e1171f278395f3c72e4d9d3c0492bed15b678963fb2b6182bd65343b85a2e_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:823bb59b1c7d01557c29f9f1e4a4ee39814c38d826b06c3c9de4b8d179078419_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:93c7e9b321c7e9aa4a412a993a6b20412e24772832cc0dd23bbb17aa25f15487_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:9e50b45f81fedab27e896f04b80bacaa01d8370ff5679147f95ad79b61972d83_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:8f145d4e336bd77fcc94f0845f9ebf94563ffd96d56794d96a665c11241df152_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:981917806c7faf31156241cc85577cf375ee566f78adaeadc096d0ba8482b835_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:af3ed91687500d64e2348cca4877c43f73211b8fbd132e7767c3521763185348_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:c05020e5ee5bddc62e38493cd16b6e4ffde7c2248a00d710f32b90a6ee12ceeb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2af86b409540513f6da1afa83110a5cafe8778d2ec16332faa31c964bd5f43f7_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2f3bec76a833a72c7dfa93ed55e55e80e2621c154e5a2f156deaf78d7c6b97b4_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:81a2385be30079500f13f97a18607aa685abd61265bf8fa78bc6ce126341be50_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:fdc8f64f3b82b200a5e31b01b8612069f1aa897014085c1de755394552a1a70a_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:856b9088dbda4e7374daf232602f4bb90b05ad1be1df46d6e363a002f549f4de_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:a107ae2f7b140f2fb2243f33c378228c2f164cfd2d23f57e63f6c424fd400929_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:e21de356b7d879800a96f6c5aeee6bc59a3ed9c58d36503f7089625ce887bb25_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:fcaf6d60d682cf51866948ea3b4846c2993e2801adb69dc745ffa832318f515c_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:11f005939e15d63057bf2f0a988b6baebc275d3e752e9f7696d0f7f5266fd5d6_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:4b4c98be96a932d508fad769eff61bff2a44e13baa60b22b6c543f4a11eb71c2_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:6c87453ffe89e8be752ee40c8a9ccf6894c83be703f13901b1e8b64a4c0e549a_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:c18a1c50a4fc7081c6564d1c4ed4904212b7939a4f1f46afef0a36dc1d76f38e_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:33367b9fdb3addce3302ad35bc10423505fefe3dd27b8b9013b26d66caac2a6c_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:72cbdb061cbcd295be5e66a0eabb409af16ade7f0aa12b04c2d7327e9e1a24ba_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:d0379f9da8cbb5514394a4550ff0d79f90fa691fcced5806296479c7b63353da_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:e99d1d877bd7335736cbaeb4db5b9904369a1d07f6df332c38ad79ff1256b67b_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:06285611aef2528fc92c5cebb66ff4c74fe44d457f43cf9ec2f4a98c3c68d25e_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:25e0f4153eb5bc6fbc6b389d5adc81bfde103070ef58317c3c25ce4144a628d3_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:acd3c0369c18cbfa63a5972ed1721f93f1fcb456963ff855dea2c295baf1cdb8_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:d086075db52f4476aa64d7e2680baa01e99da246275fa9cae0ba4a74de63c7f3_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:07d89c1b524d1451051feb865bc716da2197add90fa0c58c4cf4a82975ec846c_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:6582e647d7dd604e25977ec1579969aa1fcb29ead1a0ea65833531d633bbdd2b_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:75e3aec03dffbd0f40f88a08ff5e0319f4515d73f0bcfae28b5fa526b494afc4_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:f0079e8ae53d84223aea2d3186e7bc6b525b7c03d307cde50cfb9f1bbc18712b_arm64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-45736"
},
{
"category": "external",
"summary": "RHBZ#2477914",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2477914"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-45736",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-45736"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-45736",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-45736"
},
{
"category": "external",
"summary": "https://github.com/websockets/ws/commit/c0327ec15a54d701eb6ccefaa8bef328cfc03086",
"url": "https://github.com/websockets/ws/commit/c0327ec15a54d701eb6ccefaa8bef328cfc03086"
},
{
"category": "external",
"summary": "https://github.com/websockets/ws/security/advisories/GHSA-58qx-3vcg-4xpx",
"url": "https://github.com/websockets/ws/security/advisories/GHSA-58qx-3vcg-4xpx"
}
],
"release_date": "2026-05-15T14:53:57.263000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T17:12:17+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\nFor details on how to apply this update, refer to:\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:1384e5ba2b7d23119a49d8713826f4c65668bca310589ac7abd0c0d41c7e4c90_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:7f58528b1da9146aa55917324fdf2b375794742b34e5d10ff57f713af60746cd_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:844c3b1499b00aeadfc561642e53792ad80f535efd53b35793ba08b0f26c6d61_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:e1019c30e1d84e66d775d0d6fc7d051803dcbe44823fb2a1914807be39c79dae_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:137ffbb95d463d95da6c350600d968f3cd0e9873bf2e7c6edf952ae3229e9e2b_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:1cccdfd7e90877c27c6d8caea4f1e8ad89bb97c83d97ddf570d4f4ee116f1986_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:71657b82894cfd9e350746f48965e148868a675b9a20dcb7f94a6bc7a5b16ea5_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:881e405e32821ef10cf992c7a633281c1dc45df721fe909048df1689472000ce_ppc64le"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36820"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:1384e5ba2b7d23119a49d8713826f4c65668bca310589ac7abd0c0d41c7e4c90_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:7f58528b1da9146aa55917324fdf2b375794742b34e5d10ff57f713af60746cd_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:844c3b1499b00aeadfc561642e53792ad80f535efd53b35793ba08b0f26c6d61_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:e1019c30e1d84e66d775d0d6fc7d051803dcbe44823fb2a1914807be39c79dae_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:8c9a7ebf430b9f4ca200c6c70b049e8456cf88fd8bf0871b42d65e8dc786d451_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:926d965e6fd12ec0d758270fb4c90bbdc1a05e60cc4c895cf9b671a296c9d867_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:e8e807451e3c5d8d0a8575e1280d7125a4ece51547a7b4a5cd247837662cedad_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:f2a24aa01cbe0d926d4aefe3b12eba21eb5ec7f87276e572a6814c727228624c_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:45cc0d783d1e7874ac73dfbdfe7e03c63b227ab3c4f1e15a0a2f5c97956a76d9_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:6f3eb26734e89375c3e1fb7ac366e12dc0d41bac8f07de9210c7e9845a01eec1_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:768c45fa9f35d98dfe5cfe1ea12f552402bf68ac6e1f828b14310ef59ce57c40_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:b5f1bf30495f6be97c696cf7f90768629cee96f8d106f745bf95fdefddc99592_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:137ffbb95d463d95da6c350600d968f3cd0e9873bf2e7c6edf952ae3229e9e2b_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:1cccdfd7e90877c27c6d8caea4f1e8ad89bb97c83d97ddf570d4f4ee116f1986_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:71657b82894cfd9e350746f48965e148868a675b9a20dcb7f94a6bc7a5b16ea5_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:881e405e32821ef10cf992c7a633281c1dc45df721fe909048df1689472000ce_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:6c85b42ede0f4745ed558bcb03d033c49f56cef17a70c12e5308066124cac6e3_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:091529a93e258a612fd4a98222e6a370ee10b4e97efa791b50f79a2670163d01_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0e8958a22f6771ddfe32b34027c69dbbef65d980c7e465a79d4202d2627994ad_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:5a8b0203ff083113e8b30a123ab30c4bad571f57fb59c1e7e01807b92552504e_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:89bf6a32a0935cacadbc6d23566dce6ca741e404d58c11050638c7b8e868028b_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:077cc953354ea2edd85569a622f97c15d44163d68234e7a9fdee899d25c19cdb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:66285f866090e1bfbedacd592e9d5ea9f2a30b88aa03bc86bc790d6b98a929a4_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:8c80054171d5063457df4bd074674b1824783a101dacb6137da227080aff957c_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:b0f15904251c6665961eef9c944d00f17499f7219351fe213fe7935f62fbf7ac_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:62476ac2fb0096caa9b181f523cc3573ccffe70be1433f08d1d0255b6d3a0640_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:6f632bc9829880a44e2e94084284b52683b4a01dc3315043b0aa32eb344b16cb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:aa3d1cf7853bfe8307efb01f714585f378d1d3d4ed5de7c8808a72e4aeecd4f3_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:bf1d4b2b1ef03e65be59699ce3233a75a34e1777abc182984c7a8efa698a936e_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:141f17d12c748c7ab9e94cfd9db7e2492d3063e7478249d6430ac0d8fcfb8875_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:5909184fe3d37eb45ba3bf55d7b708d818f2a5abfc2949c4a7081a5cd30cea4f_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:6217f0bb4937fa0e0fc0a5c86456fdc1992e169dfedc3d11d5165cef575d4d53_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:d55a55a36a23e7deb83718bd5dcc19b083b84d441add72ea7f4e28935e4717e3_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:0f8e1171f278395f3c72e4d9d3c0492bed15b678963fb2b6182bd65343b85a2e_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:823bb59b1c7d01557c29f9f1e4a4ee39814c38d826b06c3c9de4b8d179078419_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:93c7e9b321c7e9aa4a412a993a6b20412e24772832cc0dd23bbb17aa25f15487_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:9e50b45f81fedab27e896f04b80bacaa01d8370ff5679147f95ad79b61972d83_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:8f145d4e336bd77fcc94f0845f9ebf94563ffd96d56794d96a665c11241df152_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:981917806c7faf31156241cc85577cf375ee566f78adaeadc096d0ba8482b835_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:af3ed91687500d64e2348cca4877c43f73211b8fbd132e7767c3521763185348_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:c05020e5ee5bddc62e38493cd16b6e4ffde7c2248a00d710f32b90a6ee12ceeb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2af86b409540513f6da1afa83110a5cafe8778d2ec16332faa31c964bd5f43f7_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2f3bec76a833a72c7dfa93ed55e55e80e2621c154e5a2f156deaf78d7c6b97b4_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:81a2385be30079500f13f97a18607aa685abd61265bf8fa78bc6ce126341be50_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:fdc8f64f3b82b200a5e31b01b8612069f1aa897014085c1de755394552a1a70a_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:856b9088dbda4e7374daf232602f4bb90b05ad1be1df46d6e363a002f549f4de_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:a107ae2f7b140f2fb2243f33c378228c2f164cfd2d23f57e63f6c424fd400929_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:e21de356b7d879800a96f6c5aeee6bc59a3ed9c58d36503f7089625ce887bb25_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:fcaf6d60d682cf51866948ea3b4846c2993e2801adb69dc745ffa832318f515c_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:11f005939e15d63057bf2f0a988b6baebc275d3e752e9f7696d0f7f5266fd5d6_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:4b4c98be96a932d508fad769eff61bff2a44e13baa60b22b6c543f4a11eb71c2_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:6c87453ffe89e8be752ee40c8a9ccf6894c83be703f13901b1e8b64a4c0e549a_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:c18a1c50a4fc7081c6564d1c4ed4904212b7939a4f1f46afef0a36dc1d76f38e_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:33367b9fdb3addce3302ad35bc10423505fefe3dd27b8b9013b26d66caac2a6c_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:72cbdb061cbcd295be5e66a0eabb409af16ade7f0aa12b04c2d7327e9e1a24ba_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:d0379f9da8cbb5514394a4550ff0d79f90fa691fcced5806296479c7b63353da_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:e99d1d877bd7335736cbaeb4db5b9904369a1d07f6df332c38ad79ff1256b67b_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:06285611aef2528fc92c5cebb66ff4c74fe44d457f43cf9ec2f4a98c3c68d25e_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:25e0f4153eb5bc6fbc6b389d5adc81bfde103070ef58317c3c25ce4144a628d3_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:acd3c0369c18cbfa63a5972ed1721f93f1fcb456963ff855dea2c295baf1cdb8_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:d086075db52f4476aa64d7e2680baa01e99da246275fa9cae0ba4a74de63c7f3_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:07d89c1b524d1451051feb865bc716da2197add90fa0c58c4cf4a82975ec846c_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:6582e647d7dd604e25977ec1579969aa1fcb29ead1a0ea65833531d633bbdd2b_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:75e3aec03dffbd0f40f88a08ff5e0319f4515d73f0bcfae28b5fa526b494afc4_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:f0079e8ae53d84223aea2d3186e7bc6b525b7c03d307cde50cfb9f1bbc18712b_arm64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "ws: ws: Uninitialized memory disclosure via `websocket.close()` with `TypedArray`"
},
{
"cve": "CVE-2026-46595",
"cwe": {
"id": "CWE-303",
"name": "Incorrect Implementation of Authentication Algorithm"
},
"discovery_date": "2026-05-22T04:01:52.215134+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:1384e5ba2b7d23119a49d8713826f4c65668bca310589ac7abd0c0d41c7e4c90_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:7f58528b1da9146aa55917324fdf2b375794742b34e5d10ff57f713af60746cd_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:844c3b1499b00aeadfc561642e53792ad80f535efd53b35793ba08b0f26c6d61_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:e1019c30e1d84e66d775d0d6fc7d051803dcbe44823fb2a1914807be39c79dae_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:8c9a7ebf430b9f4ca200c6c70b049e8456cf88fd8bf0871b42d65e8dc786d451_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:926d965e6fd12ec0d758270fb4c90bbdc1a05e60cc4c895cf9b671a296c9d867_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:e8e807451e3c5d8d0a8575e1280d7125a4ece51547a7b4a5cd247837662cedad_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:f2a24aa01cbe0d926d4aefe3b12eba21eb5ec7f87276e572a6814c727228624c_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:45cc0d783d1e7874ac73dfbdfe7e03c63b227ab3c4f1e15a0a2f5c97956a76d9_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:6f3eb26734e89375c3e1fb7ac366e12dc0d41bac8f07de9210c7e9845a01eec1_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:768c45fa9f35d98dfe5cfe1ea12f552402bf68ac6e1f828b14310ef59ce57c40_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:b5f1bf30495f6be97c696cf7f90768629cee96f8d106f745bf95fdefddc99592_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:137ffbb95d463d95da6c350600d968f3cd0e9873bf2e7c6edf952ae3229e9e2b_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:1cccdfd7e90877c27c6d8caea4f1e8ad89bb97c83d97ddf570d4f4ee116f1986_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:71657b82894cfd9e350746f48965e148868a675b9a20dcb7f94a6bc7a5b16ea5_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:881e405e32821ef10cf992c7a633281c1dc45df721fe909048df1689472000ce_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:6c85b42ede0f4745ed558bcb03d033c49f56cef17a70c12e5308066124cac6e3_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:091529a93e258a612fd4a98222e6a370ee10b4e97efa791b50f79a2670163d01_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0e8958a22f6771ddfe32b34027c69dbbef65d980c7e465a79d4202d2627994ad_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:5a8b0203ff083113e8b30a123ab30c4bad571f57fb59c1e7e01807b92552504e_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:89bf6a32a0935cacadbc6d23566dce6ca741e404d58c11050638c7b8e868028b_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:077cc953354ea2edd85569a622f97c15d44163d68234e7a9fdee899d25c19cdb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:66285f866090e1bfbedacd592e9d5ea9f2a30b88aa03bc86bc790d6b98a929a4_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:8c80054171d5063457df4bd074674b1824783a101dacb6137da227080aff957c_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:b0f15904251c6665961eef9c944d00f17499f7219351fe213fe7935f62fbf7ac_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:62476ac2fb0096caa9b181f523cc3573ccffe70be1433f08d1d0255b6d3a0640_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:6f632bc9829880a44e2e94084284b52683b4a01dc3315043b0aa32eb344b16cb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:aa3d1cf7853bfe8307efb01f714585f378d1d3d4ed5de7c8808a72e4aeecd4f3_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:bf1d4b2b1ef03e65be59699ce3233a75a34e1777abc182984c7a8efa698a936e_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:141f17d12c748c7ab9e94cfd9db7e2492d3063e7478249d6430ac0d8fcfb8875_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:5909184fe3d37eb45ba3bf55d7b708d818f2a5abfc2949c4a7081a5cd30cea4f_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:6217f0bb4937fa0e0fc0a5c86456fdc1992e169dfedc3d11d5165cef575d4d53_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:d55a55a36a23e7deb83718bd5dcc19b083b84d441add72ea7f4e28935e4717e3_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:0f8e1171f278395f3c72e4d9d3c0492bed15b678963fb2b6182bd65343b85a2e_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:823bb59b1c7d01557c29f9f1e4a4ee39814c38d826b06c3c9de4b8d179078419_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:93c7e9b321c7e9aa4a412a993a6b20412e24772832cc0dd23bbb17aa25f15487_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:9e50b45f81fedab27e896f04b80bacaa01d8370ff5679147f95ad79b61972d83_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:8f145d4e336bd77fcc94f0845f9ebf94563ffd96d56794d96a665c11241df152_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:981917806c7faf31156241cc85577cf375ee566f78adaeadc096d0ba8482b835_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:af3ed91687500d64e2348cca4877c43f73211b8fbd132e7767c3521763185348_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:c05020e5ee5bddc62e38493cd16b6e4ffde7c2248a00d710f32b90a6ee12ceeb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2af86b409540513f6da1afa83110a5cafe8778d2ec16332faa31c964bd5f43f7_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2f3bec76a833a72c7dfa93ed55e55e80e2621c154e5a2f156deaf78d7c6b97b4_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:81a2385be30079500f13f97a18607aa685abd61265bf8fa78bc6ce126341be50_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:fdc8f64f3b82b200a5e31b01b8612069f1aa897014085c1de755394552a1a70a_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:856b9088dbda4e7374daf232602f4bb90b05ad1be1df46d6e363a002f549f4de_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:a107ae2f7b140f2fb2243f33c378228c2f164cfd2d23f57e63f6c424fd400929_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:e21de356b7d879800a96f6c5aeee6bc59a3ed9c58d36503f7089625ce887bb25_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:fcaf6d60d682cf51866948ea3b4846c2993e2801adb69dc745ffa832318f515c_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:33367b9fdb3addce3302ad35bc10423505fefe3dd27b8b9013b26d66caac2a6c_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:72cbdb061cbcd295be5e66a0eabb409af16ade7f0aa12b04c2d7327e9e1a24ba_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:d0379f9da8cbb5514394a4550ff0d79f90fa691fcced5806296479c7b63353da_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:e99d1d877bd7335736cbaeb4db5b9904369a1d07f6df332c38ad79ff1256b67b_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:06285611aef2528fc92c5cebb66ff4c74fe44d457f43cf9ec2f4a98c3c68d25e_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:25e0f4153eb5bc6fbc6b389d5adc81bfde103070ef58317c3c25ce4144a628d3_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:acd3c0369c18cbfa63a5972ed1721f93f1fcb456963ff855dea2c295baf1cdb8_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:d086075db52f4476aa64d7e2680baa01e99da246275fa9cae0ba4a74de63c7f3_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:07d89c1b524d1451051feb865bc716da2197add90fa0c58c4cf4a82975ec846c_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:6582e647d7dd604e25977ec1579969aa1fcb29ead1a0ea65833531d633bbdd2b_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:75e3aec03dffbd0f40f88a08ff5e0319f4515d73f0bcfae28b5fa526b494afc4_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:f0079e8ae53d84223aea2d3186e7bc6b525b7c03d307cde50cfb9f1bbc18712b_arm64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2480689"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in golang.org/x/crypto/ssh. Source-address validation can be skipped when an SSH server configuration uses an authentication callback type other than public key, allowing authorization bypass in misconfigured servers. This is a follow-on to incomplete coverage from the CVE-2024-45337 fix.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang.org/x/crypto/ssh: golang.org/x/crypto/ssh: Authorization bypass due to skipped source-address validation",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "golang.org/x/crypto/ssh is vulnerable to authorization bypass when SSH server configurations rely on source-address validation alongside non-public-key authentication callbacks. An attacker with low privileges who can authenticate through such a callback path may bypass intended source-address restrictions and gain unauthorized SSH access. Red Hat impact sits in services built with affected x/crypto/ssh, including RHEL golang streams, hummingbird Go toolchains, RHACM/MCE agents, and OpenShift or Ceph components that embed Go SSH servers with mixed callback types.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:11f005939e15d63057bf2f0a988b6baebc275d3e752e9f7696d0f7f5266fd5d6_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:4b4c98be96a932d508fad769eff61bff2a44e13baa60b22b6c543f4a11eb71c2_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:6c87453ffe89e8be752ee40c8a9ccf6894c83be703f13901b1e8b64a4c0e549a_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:c18a1c50a4fc7081c6564d1c4ed4904212b7939a4f1f46afef0a36dc1d76f38e_arm64"
],
"known_not_affected": [
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:1384e5ba2b7d23119a49d8713826f4c65668bca310589ac7abd0c0d41c7e4c90_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:7f58528b1da9146aa55917324fdf2b375794742b34e5d10ff57f713af60746cd_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:844c3b1499b00aeadfc561642e53792ad80f535efd53b35793ba08b0f26c6d61_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:e1019c30e1d84e66d775d0d6fc7d051803dcbe44823fb2a1914807be39c79dae_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:8c9a7ebf430b9f4ca200c6c70b049e8456cf88fd8bf0871b42d65e8dc786d451_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:926d965e6fd12ec0d758270fb4c90bbdc1a05e60cc4c895cf9b671a296c9d867_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:e8e807451e3c5d8d0a8575e1280d7125a4ece51547a7b4a5cd247837662cedad_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:f2a24aa01cbe0d926d4aefe3b12eba21eb5ec7f87276e572a6814c727228624c_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:45cc0d783d1e7874ac73dfbdfe7e03c63b227ab3c4f1e15a0a2f5c97956a76d9_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:6f3eb26734e89375c3e1fb7ac366e12dc0d41bac8f07de9210c7e9845a01eec1_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:768c45fa9f35d98dfe5cfe1ea12f552402bf68ac6e1f828b14310ef59ce57c40_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:b5f1bf30495f6be97c696cf7f90768629cee96f8d106f745bf95fdefddc99592_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:137ffbb95d463d95da6c350600d968f3cd0e9873bf2e7c6edf952ae3229e9e2b_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:1cccdfd7e90877c27c6d8caea4f1e8ad89bb97c83d97ddf570d4f4ee116f1986_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:71657b82894cfd9e350746f48965e148868a675b9a20dcb7f94a6bc7a5b16ea5_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:881e405e32821ef10cf992c7a633281c1dc45df721fe909048df1689472000ce_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:6c85b42ede0f4745ed558bcb03d033c49f56cef17a70c12e5308066124cac6e3_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:091529a93e258a612fd4a98222e6a370ee10b4e97efa791b50f79a2670163d01_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0e8958a22f6771ddfe32b34027c69dbbef65d980c7e465a79d4202d2627994ad_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:5a8b0203ff083113e8b30a123ab30c4bad571f57fb59c1e7e01807b92552504e_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:89bf6a32a0935cacadbc6d23566dce6ca741e404d58c11050638c7b8e868028b_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:077cc953354ea2edd85569a622f97c15d44163d68234e7a9fdee899d25c19cdb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:66285f866090e1bfbedacd592e9d5ea9f2a30b88aa03bc86bc790d6b98a929a4_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:8c80054171d5063457df4bd074674b1824783a101dacb6137da227080aff957c_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:b0f15904251c6665961eef9c944d00f17499f7219351fe213fe7935f62fbf7ac_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:62476ac2fb0096caa9b181f523cc3573ccffe70be1433f08d1d0255b6d3a0640_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:6f632bc9829880a44e2e94084284b52683b4a01dc3315043b0aa32eb344b16cb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:aa3d1cf7853bfe8307efb01f714585f378d1d3d4ed5de7c8808a72e4aeecd4f3_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:bf1d4b2b1ef03e65be59699ce3233a75a34e1777abc182984c7a8efa698a936e_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:141f17d12c748c7ab9e94cfd9db7e2492d3063e7478249d6430ac0d8fcfb8875_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:5909184fe3d37eb45ba3bf55d7b708d818f2a5abfc2949c4a7081a5cd30cea4f_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:6217f0bb4937fa0e0fc0a5c86456fdc1992e169dfedc3d11d5165cef575d4d53_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:d55a55a36a23e7deb83718bd5dcc19b083b84d441add72ea7f4e28935e4717e3_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:0f8e1171f278395f3c72e4d9d3c0492bed15b678963fb2b6182bd65343b85a2e_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:823bb59b1c7d01557c29f9f1e4a4ee39814c38d826b06c3c9de4b8d179078419_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:93c7e9b321c7e9aa4a412a993a6b20412e24772832cc0dd23bbb17aa25f15487_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:9e50b45f81fedab27e896f04b80bacaa01d8370ff5679147f95ad79b61972d83_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:8f145d4e336bd77fcc94f0845f9ebf94563ffd96d56794d96a665c11241df152_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:981917806c7faf31156241cc85577cf375ee566f78adaeadc096d0ba8482b835_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:af3ed91687500d64e2348cca4877c43f73211b8fbd132e7767c3521763185348_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:c05020e5ee5bddc62e38493cd16b6e4ffde7c2248a00d710f32b90a6ee12ceeb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2af86b409540513f6da1afa83110a5cafe8778d2ec16332faa31c964bd5f43f7_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2f3bec76a833a72c7dfa93ed55e55e80e2621c154e5a2f156deaf78d7c6b97b4_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:81a2385be30079500f13f97a18607aa685abd61265bf8fa78bc6ce126341be50_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:fdc8f64f3b82b200a5e31b01b8612069f1aa897014085c1de755394552a1a70a_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:856b9088dbda4e7374daf232602f4bb90b05ad1be1df46d6e363a002f549f4de_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:a107ae2f7b140f2fb2243f33c378228c2f164cfd2d23f57e63f6c424fd400929_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:e21de356b7d879800a96f6c5aeee6bc59a3ed9c58d36503f7089625ce887bb25_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:fcaf6d60d682cf51866948ea3b4846c2993e2801adb69dc745ffa832318f515c_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:33367b9fdb3addce3302ad35bc10423505fefe3dd27b8b9013b26d66caac2a6c_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:72cbdb061cbcd295be5e66a0eabb409af16ade7f0aa12b04c2d7327e9e1a24ba_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:d0379f9da8cbb5514394a4550ff0d79f90fa691fcced5806296479c7b63353da_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:e99d1d877bd7335736cbaeb4db5b9904369a1d07f6df332c38ad79ff1256b67b_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:06285611aef2528fc92c5cebb66ff4c74fe44d457f43cf9ec2f4a98c3c68d25e_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:25e0f4153eb5bc6fbc6b389d5adc81bfde103070ef58317c3c25ce4144a628d3_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:acd3c0369c18cbfa63a5972ed1721f93f1fcb456963ff855dea2c295baf1cdb8_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:d086075db52f4476aa64d7e2680baa01e99da246275fa9cae0ba4a74de63c7f3_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:07d89c1b524d1451051feb865bc716da2197add90fa0c58c4cf4a82975ec846c_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:6582e647d7dd604e25977ec1579969aa1fcb29ead1a0ea65833531d633bbdd2b_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:75e3aec03dffbd0f40f88a08ff5e0319f4515d73f0bcfae28b5fa526b494afc4_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:f0079e8ae53d84223aea2d3186e7bc6b525b7c03d307cde50cfb9f1bbc18712b_arm64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-46595"
},
{
"category": "external",
"summary": "RHBZ#2480689",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2480689"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-46595",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-46595"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-46595",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-46595"
},
{
"category": "external",
"summary": "https://go.dev/cl/781642",
"url": "https://go.dev/cl/781642"
},
{
"category": "external",
"summary": "https://go.dev/issue/79570",
"url": "https://go.dev/issue/79570"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/a082jnz-LvI",
"url": "https://groups.google.com/g/golang-announce/c/a082jnz-LvI"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-5023",
"url": "https://pkg.go.dev/vuln/GO-2026-5023"
}
],
"release_date": "2026-05-22T02:31:27.894000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T17:12:17+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\nFor details on how to apply this update, refer to:\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:11f005939e15d63057bf2f0a988b6baebc275d3e752e9f7696d0f7f5266fd5d6_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:4b4c98be96a932d508fad769eff61bff2a44e13baa60b22b6c543f4a11eb71c2_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:6c87453ffe89e8be752ee40c8a9ccf6894c83be703f13901b1e8b64a4c0e549a_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:c18a1c50a4fc7081c6564d1c4ed4904212b7939a4f1f46afef0a36dc1d76f38e_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36820"
},
{
"category": "workaround",
"details": "Upgrade to a fixed golang.org/x/crypto/ssh release via updated golang or package rebuilds. Ensure SSH servers use supported public-key callback configurations with source-address validation as intended.",
"product_ids": [
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:1384e5ba2b7d23119a49d8713826f4c65668bca310589ac7abd0c0d41c7e4c90_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:7f58528b1da9146aa55917324fdf2b375794742b34e5d10ff57f713af60746cd_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:844c3b1499b00aeadfc561642e53792ad80f535efd53b35793ba08b0f26c6d61_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:e1019c30e1d84e66d775d0d6fc7d051803dcbe44823fb2a1914807be39c79dae_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:8c9a7ebf430b9f4ca200c6c70b049e8456cf88fd8bf0871b42d65e8dc786d451_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:926d965e6fd12ec0d758270fb4c90bbdc1a05e60cc4c895cf9b671a296c9d867_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:e8e807451e3c5d8d0a8575e1280d7125a4ece51547a7b4a5cd247837662cedad_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:f2a24aa01cbe0d926d4aefe3b12eba21eb5ec7f87276e572a6814c727228624c_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:45cc0d783d1e7874ac73dfbdfe7e03c63b227ab3c4f1e15a0a2f5c97956a76d9_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:6f3eb26734e89375c3e1fb7ac366e12dc0d41bac8f07de9210c7e9845a01eec1_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:768c45fa9f35d98dfe5cfe1ea12f552402bf68ac6e1f828b14310ef59ce57c40_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:b5f1bf30495f6be97c696cf7f90768629cee96f8d106f745bf95fdefddc99592_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:137ffbb95d463d95da6c350600d968f3cd0e9873bf2e7c6edf952ae3229e9e2b_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:1cccdfd7e90877c27c6d8caea4f1e8ad89bb97c83d97ddf570d4f4ee116f1986_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:71657b82894cfd9e350746f48965e148868a675b9a20dcb7f94a6bc7a5b16ea5_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:881e405e32821ef10cf992c7a633281c1dc45df721fe909048df1689472000ce_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:6c85b42ede0f4745ed558bcb03d033c49f56cef17a70c12e5308066124cac6e3_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:091529a93e258a612fd4a98222e6a370ee10b4e97efa791b50f79a2670163d01_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0e8958a22f6771ddfe32b34027c69dbbef65d980c7e465a79d4202d2627994ad_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:5a8b0203ff083113e8b30a123ab30c4bad571f57fb59c1e7e01807b92552504e_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:89bf6a32a0935cacadbc6d23566dce6ca741e404d58c11050638c7b8e868028b_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:077cc953354ea2edd85569a622f97c15d44163d68234e7a9fdee899d25c19cdb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:66285f866090e1bfbedacd592e9d5ea9f2a30b88aa03bc86bc790d6b98a929a4_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:8c80054171d5063457df4bd074674b1824783a101dacb6137da227080aff957c_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:b0f15904251c6665961eef9c944d00f17499f7219351fe213fe7935f62fbf7ac_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:62476ac2fb0096caa9b181f523cc3573ccffe70be1433f08d1d0255b6d3a0640_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:6f632bc9829880a44e2e94084284b52683b4a01dc3315043b0aa32eb344b16cb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:aa3d1cf7853bfe8307efb01f714585f378d1d3d4ed5de7c8808a72e4aeecd4f3_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:bf1d4b2b1ef03e65be59699ce3233a75a34e1777abc182984c7a8efa698a936e_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:141f17d12c748c7ab9e94cfd9db7e2492d3063e7478249d6430ac0d8fcfb8875_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:5909184fe3d37eb45ba3bf55d7b708d818f2a5abfc2949c4a7081a5cd30cea4f_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:6217f0bb4937fa0e0fc0a5c86456fdc1992e169dfedc3d11d5165cef575d4d53_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:d55a55a36a23e7deb83718bd5dcc19b083b84d441add72ea7f4e28935e4717e3_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:0f8e1171f278395f3c72e4d9d3c0492bed15b678963fb2b6182bd65343b85a2e_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:823bb59b1c7d01557c29f9f1e4a4ee39814c38d826b06c3c9de4b8d179078419_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:93c7e9b321c7e9aa4a412a993a6b20412e24772832cc0dd23bbb17aa25f15487_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:9e50b45f81fedab27e896f04b80bacaa01d8370ff5679147f95ad79b61972d83_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:8f145d4e336bd77fcc94f0845f9ebf94563ffd96d56794d96a665c11241df152_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:981917806c7faf31156241cc85577cf375ee566f78adaeadc096d0ba8482b835_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:af3ed91687500d64e2348cca4877c43f73211b8fbd132e7767c3521763185348_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:c05020e5ee5bddc62e38493cd16b6e4ffde7c2248a00d710f32b90a6ee12ceeb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2af86b409540513f6da1afa83110a5cafe8778d2ec16332faa31c964bd5f43f7_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2f3bec76a833a72c7dfa93ed55e55e80e2621c154e5a2f156deaf78d7c6b97b4_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:81a2385be30079500f13f97a18607aa685abd61265bf8fa78bc6ce126341be50_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:fdc8f64f3b82b200a5e31b01b8612069f1aa897014085c1de755394552a1a70a_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:856b9088dbda4e7374daf232602f4bb90b05ad1be1df46d6e363a002f549f4de_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:a107ae2f7b140f2fb2243f33c378228c2f164cfd2d23f57e63f6c424fd400929_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:e21de356b7d879800a96f6c5aeee6bc59a3ed9c58d36503f7089625ce887bb25_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:fcaf6d60d682cf51866948ea3b4846c2993e2801adb69dc745ffa832318f515c_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:11f005939e15d63057bf2f0a988b6baebc275d3e752e9f7696d0f7f5266fd5d6_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:4b4c98be96a932d508fad769eff61bff2a44e13baa60b22b6c543f4a11eb71c2_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:6c87453ffe89e8be752ee40c8a9ccf6894c83be703f13901b1e8b64a4c0e549a_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:c18a1c50a4fc7081c6564d1c4ed4904212b7939a4f1f46afef0a36dc1d76f38e_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:33367b9fdb3addce3302ad35bc10423505fefe3dd27b8b9013b26d66caac2a6c_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:72cbdb061cbcd295be5e66a0eabb409af16ade7f0aa12b04c2d7327e9e1a24ba_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:d0379f9da8cbb5514394a4550ff0d79f90fa691fcced5806296479c7b63353da_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:e99d1d877bd7335736cbaeb4db5b9904369a1d07f6df332c38ad79ff1256b67b_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:06285611aef2528fc92c5cebb66ff4c74fe44d457f43cf9ec2f4a98c3c68d25e_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:25e0f4153eb5bc6fbc6b389d5adc81bfde103070ef58317c3c25ce4144a628d3_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:acd3c0369c18cbfa63a5972ed1721f93f1fcb456963ff855dea2c295baf1cdb8_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:d086075db52f4476aa64d7e2680baa01e99da246275fa9cae0ba4a74de63c7f3_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:07d89c1b524d1451051feb865bc716da2197add90fa0c58c4cf4a82975ec846c_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:6582e647d7dd604e25977ec1579969aa1fcb29ead1a0ea65833531d633bbdd2b_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:75e3aec03dffbd0f40f88a08ff5e0319f4515d73f0bcfae28b5fa526b494afc4_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:f0079e8ae53d84223aea2d3186e7bc6b525b7c03d307cde50cfb9f1bbc18712b_arm64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 7.1,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:L",
"version": "3.1"
},
"products": [
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:1384e5ba2b7d23119a49d8713826f4c65668bca310589ac7abd0c0d41c7e4c90_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:7f58528b1da9146aa55917324fdf2b375794742b34e5d10ff57f713af60746cd_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:844c3b1499b00aeadfc561642e53792ad80f535efd53b35793ba08b0f26c6d61_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:e1019c30e1d84e66d775d0d6fc7d051803dcbe44823fb2a1914807be39c79dae_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:8c9a7ebf430b9f4ca200c6c70b049e8456cf88fd8bf0871b42d65e8dc786d451_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:926d965e6fd12ec0d758270fb4c90bbdc1a05e60cc4c895cf9b671a296c9d867_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:e8e807451e3c5d8d0a8575e1280d7125a4ece51547a7b4a5cd247837662cedad_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:f2a24aa01cbe0d926d4aefe3b12eba21eb5ec7f87276e572a6814c727228624c_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:45cc0d783d1e7874ac73dfbdfe7e03c63b227ab3c4f1e15a0a2f5c97956a76d9_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:6f3eb26734e89375c3e1fb7ac366e12dc0d41bac8f07de9210c7e9845a01eec1_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:768c45fa9f35d98dfe5cfe1ea12f552402bf68ac6e1f828b14310ef59ce57c40_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:b5f1bf30495f6be97c696cf7f90768629cee96f8d106f745bf95fdefddc99592_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:137ffbb95d463d95da6c350600d968f3cd0e9873bf2e7c6edf952ae3229e9e2b_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:1cccdfd7e90877c27c6d8caea4f1e8ad89bb97c83d97ddf570d4f4ee116f1986_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:71657b82894cfd9e350746f48965e148868a675b9a20dcb7f94a6bc7a5b16ea5_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:881e405e32821ef10cf992c7a633281c1dc45df721fe909048df1689472000ce_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:6c85b42ede0f4745ed558bcb03d033c49f56cef17a70c12e5308066124cac6e3_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:091529a93e258a612fd4a98222e6a370ee10b4e97efa791b50f79a2670163d01_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0e8958a22f6771ddfe32b34027c69dbbef65d980c7e465a79d4202d2627994ad_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:5a8b0203ff083113e8b30a123ab30c4bad571f57fb59c1e7e01807b92552504e_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:89bf6a32a0935cacadbc6d23566dce6ca741e404d58c11050638c7b8e868028b_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:077cc953354ea2edd85569a622f97c15d44163d68234e7a9fdee899d25c19cdb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:66285f866090e1bfbedacd592e9d5ea9f2a30b88aa03bc86bc790d6b98a929a4_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:8c80054171d5063457df4bd074674b1824783a101dacb6137da227080aff957c_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:b0f15904251c6665961eef9c944d00f17499f7219351fe213fe7935f62fbf7ac_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:62476ac2fb0096caa9b181f523cc3573ccffe70be1433f08d1d0255b6d3a0640_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:6f632bc9829880a44e2e94084284b52683b4a01dc3315043b0aa32eb344b16cb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:aa3d1cf7853bfe8307efb01f714585f378d1d3d4ed5de7c8808a72e4aeecd4f3_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:bf1d4b2b1ef03e65be59699ce3233a75a34e1777abc182984c7a8efa698a936e_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:141f17d12c748c7ab9e94cfd9db7e2492d3063e7478249d6430ac0d8fcfb8875_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:5909184fe3d37eb45ba3bf55d7b708d818f2a5abfc2949c4a7081a5cd30cea4f_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:6217f0bb4937fa0e0fc0a5c86456fdc1992e169dfedc3d11d5165cef575d4d53_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:d55a55a36a23e7deb83718bd5dcc19b083b84d441add72ea7f4e28935e4717e3_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:0f8e1171f278395f3c72e4d9d3c0492bed15b678963fb2b6182bd65343b85a2e_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:823bb59b1c7d01557c29f9f1e4a4ee39814c38d826b06c3c9de4b8d179078419_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:93c7e9b321c7e9aa4a412a993a6b20412e24772832cc0dd23bbb17aa25f15487_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:9e50b45f81fedab27e896f04b80bacaa01d8370ff5679147f95ad79b61972d83_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:8f145d4e336bd77fcc94f0845f9ebf94563ffd96d56794d96a665c11241df152_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:981917806c7faf31156241cc85577cf375ee566f78adaeadc096d0ba8482b835_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:af3ed91687500d64e2348cca4877c43f73211b8fbd132e7767c3521763185348_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:c05020e5ee5bddc62e38493cd16b6e4ffde7c2248a00d710f32b90a6ee12ceeb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2af86b409540513f6da1afa83110a5cafe8778d2ec16332faa31c964bd5f43f7_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2f3bec76a833a72c7dfa93ed55e55e80e2621c154e5a2f156deaf78d7c6b97b4_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:81a2385be30079500f13f97a18607aa685abd61265bf8fa78bc6ce126341be50_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:fdc8f64f3b82b200a5e31b01b8612069f1aa897014085c1de755394552a1a70a_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:856b9088dbda4e7374daf232602f4bb90b05ad1be1df46d6e363a002f549f4de_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:a107ae2f7b140f2fb2243f33c378228c2f164cfd2d23f57e63f6c424fd400929_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:e21de356b7d879800a96f6c5aeee6bc59a3ed9c58d36503f7089625ce887bb25_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:fcaf6d60d682cf51866948ea3b4846c2993e2801adb69dc745ffa832318f515c_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:11f005939e15d63057bf2f0a988b6baebc275d3e752e9f7696d0f7f5266fd5d6_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:4b4c98be96a932d508fad769eff61bff2a44e13baa60b22b6c543f4a11eb71c2_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:6c87453ffe89e8be752ee40c8a9ccf6894c83be703f13901b1e8b64a4c0e549a_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:c18a1c50a4fc7081c6564d1c4ed4904212b7939a4f1f46afef0a36dc1d76f38e_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:33367b9fdb3addce3302ad35bc10423505fefe3dd27b8b9013b26d66caac2a6c_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:72cbdb061cbcd295be5e66a0eabb409af16ade7f0aa12b04c2d7327e9e1a24ba_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:d0379f9da8cbb5514394a4550ff0d79f90fa691fcced5806296479c7b63353da_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:e99d1d877bd7335736cbaeb4db5b9904369a1d07f6df332c38ad79ff1256b67b_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:06285611aef2528fc92c5cebb66ff4c74fe44d457f43cf9ec2f4a98c3c68d25e_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:25e0f4153eb5bc6fbc6b389d5adc81bfde103070ef58317c3c25ce4144a628d3_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:acd3c0369c18cbfa63a5972ed1721f93f1fcb456963ff855dea2c295baf1cdb8_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:d086075db52f4476aa64d7e2680baa01e99da246275fa9cae0ba4a74de63c7f3_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:07d89c1b524d1451051feb865bc716da2197add90fa0c58c4cf4a82975ec846c_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:6582e647d7dd604e25977ec1579969aa1fcb29ead1a0ea65833531d633bbdd2b_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:75e3aec03dffbd0f40f88a08ff5e0319f4515d73f0bcfae28b5fa526b494afc4_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:f0079e8ae53d84223aea2d3186e7bc6b525b7c03d307cde50cfb9f1bbc18712b_arm64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang.org/x/crypto/ssh: golang.org/x/crypto/ssh: Authorization bypass due to skipped source-address validation"
},
{
"cve": "CVE-2026-48043",
"cwe": {
"id": "CWE-772",
"name": "Missing Release of Resource after Effective Lifetime"
},
"discovery_date": "2026-06-12T16:02:56.371830+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:1384e5ba2b7d23119a49d8713826f4c65668bca310589ac7abd0c0d41c7e4c90_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:7f58528b1da9146aa55917324fdf2b375794742b34e5d10ff57f713af60746cd_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:844c3b1499b00aeadfc561642e53792ad80f535efd53b35793ba08b0f26c6d61_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:e1019c30e1d84e66d775d0d6fc7d051803dcbe44823fb2a1914807be39c79dae_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:8c9a7ebf430b9f4ca200c6c70b049e8456cf88fd8bf0871b42d65e8dc786d451_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:926d965e6fd12ec0d758270fb4c90bbdc1a05e60cc4c895cf9b671a296c9d867_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:e8e807451e3c5d8d0a8575e1280d7125a4ece51547a7b4a5cd247837662cedad_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:f2a24aa01cbe0d926d4aefe3b12eba21eb5ec7f87276e572a6814c727228624c_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:45cc0d783d1e7874ac73dfbdfe7e03c63b227ab3c4f1e15a0a2f5c97956a76d9_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:6f3eb26734e89375c3e1fb7ac366e12dc0d41bac8f07de9210c7e9845a01eec1_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:768c45fa9f35d98dfe5cfe1ea12f552402bf68ac6e1f828b14310ef59ce57c40_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:b5f1bf30495f6be97c696cf7f90768629cee96f8d106f745bf95fdefddc99592_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:137ffbb95d463d95da6c350600d968f3cd0e9873bf2e7c6edf952ae3229e9e2b_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:1cccdfd7e90877c27c6d8caea4f1e8ad89bb97c83d97ddf570d4f4ee116f1986_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:71657b82894cfd9e350746f48965e148868a675b9a20dcb7f94a6bc7a5b16ea5_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:881e405e32821ef10cf992c7a633281c1dc45df721fe909048df1689472000ce_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:6c85b42ede0f4745ed558bcb03d033c49f56cef17a70c12e5308066124cac6e3_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:091529a93e258a612fd4a98222e6a370ee10b4e97efa791b50f79a2670163d01_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0e8958a22f6771ddfe32b34027c69dbbef65d980c7e465a79d4202d2627994ad_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:5a8b0203ff083113e8b30a123ab30c4bad571f57fb59c1e7e01807b92552504e_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:89bf6a32a0935cacadbc6d23566dce6ca741e404d58c11050638c7b8e868028b_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:077cc953354ea2edd85569a622f97c15d44163d68234e7a9fdee899d25c19cdb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:66285f866090e1bfbedacd592e9d5ea9f2a30b88aa03bc86bc790d6b98a929a4_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:8c80054171d5063457df4bd074674b1824783a101dacb6137da227080aff957c_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:b0f15904251c6665961eef9c944d00f17499f7219351fe213fe7935f62fbf7ac_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:62476ac2fb0096caa9b181f523cc3573ccffe70be1433f08d1d0255b6d3a0640_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:6f632bc9829880a44e2e94084284b52683b4a01dc3315043b0aa32eb344b16cb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:aa3d1cf7853bfe8307efb01f714585f378d1d3d4ed5de7c8808a72e4aeecd4f3_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:bf1d4b2b1ef03e65be59699ce3233a75a34e1777abc182984c7a8efa698a936e_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:0f8e1171f278395f3c72e4d9d3c0492bed15b678963fb2b6182bd65343b85a2e_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:823bb59b1c7d01557c29f9f1e4a4ee39814c38d826b06c3c9de4b8d179078419_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:93c7e9b321c7e9aa4a412a993a6b20412e24772832cc0dd23bbb17aa25f15487_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:9e50b45f81fedab27e896f04b80bacaa01d8370ff5679147f95ad79b61972d83_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:11f005939e15d63057bf2f0a988b6baebc275d3e752e9f7696d0f7f5266fd5d6_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:4b4c98be96a932d508fad769eff61bff2a44e13baa60b22b6c543f4a11eb71c2_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:6c87453ffe89e8be752ee40c8a9ccf6894c83be703f13901b1e8b64a4c0e549a_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:c18a1c50a4fc7081c6564d1c4ed4904212b7939a4f1f46afef0a36dc1d76f38e_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:33367b9fdb3addce3302ad35bc10423505fefe3dd27b8b9013b26d66caac2a6c_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:72cbdb061cbcd295be5e66a0eabb409af16ade7f0aa12b04c2d7327e9e1a24ba_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:d0379f9da8cbb5514394a4550ff0d79f90fa691fcced5806296479c7b63353da_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:e99d1d877bd7335736cbaeb4db5b9904369a1d07f6df332c38ad79ff1256b67b_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:06285611aef2528fc92c5cebb66ff4c74fe44d457f43cf9ec2f4a98c3c68d25e_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:25e0f4153eb5bc6fbc6b389d5adc81bfde103070ef58317c3c25ce4144a628d3_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:acd3c0369c18cbfa63a5972ed1721f93f1fcb456963ff855dea2c295baf1cdb8_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:d086075db52f4476aa64d7e2680baa01e99da246275fa9cae0ba4a74de63c7f3_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:07d89c1b524d1451051feb865bc716da2197add90fa0c58c4cf4a82975ec846c_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:6582e647d7dd604e25977ec1579969aa1fcb29ead1a0ea65833531d633bbdd2b_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:75e3aec03dffbd0f40f88a08ff5e0319f4515d73f0bcfae28b5fa526b494afc4_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:f0079e8ae53d84223aea2d3186e7bc6b525b7c03d307cde50cfb9f1bbc18712b_arm64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2488442"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in netty-codec-http2. A remote attacker could send specially crafted frames that cause a resource leak within the `DelegatingDecompressorFrameListener` class. This resource leak could lead to an Out Of Memory Error (OOME), potentially causing a Denial of Service (DoS) by taking down the entire Java Virtual Machine (JVM).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "netty-codec-http2: netty-codec-http2: Denial of Service due to resource leak",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This is an Important denial of service flaw in netty-codec-http2, affecting Red Hat products that utilize HTTP/2 communication with decompression. A remote attacker can exploit a resource leak in the `DelegatingDecompressorFrameListener` by sending malformed HTTP/2 frames, potentially leading to an Out Of Memory Error and causing the Java Virtual Machine to terminate. This could disrupt service availability in affected deployments.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:141f17d12c748c7ab9e94cfd9db7e2492d3063e7478249d6430ac0d8fcfb8875_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:5909184fe3d37eb45ba3bf55d7b708d818f2a5abfc2949c4a7081a5cd30cea4f_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:6217f0bb4937fa0e0fc0a5c86456fdc1992e169dfedc3d11d5165cef575d4d53_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:d55a55a36a23e7deb83718bd5dcc19b083b84d441add72ea7f4e28935e4717e3_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:8f145d4e336bd77fcc94f0845f9ebf94563ffd96d56794d96a665c11241df152_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:981917806c7faf31156241cc85577cf375ee566f78adaeadc096d0ba8482b835_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:af3ed91687500d64e2348cca4877c43f73211b8fbd132e7767c3521763185348_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:c05020e5ee5bddc62e38493cd16b6e4ffde7c2248a00d710f32b90a6ee12ceeb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2af86b409540513f6da1afa83110a5cafe8778d2ec16332faa31c964bd5f43f7_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2f3bec76a833a72c7dfa93ed55e55e80e2621c154e5a2f156deaf78d7c6b97b4_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:81a2385be30079500f13f97a18607aa685abd61265bf8fa78bc6ce126341be50_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:fdc8f64f3b82b200a5e31b01b8612069f1aa897014085c1de755394552a1a70a_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:856b9088dbda4e7374daf232602f4bb90b05ad1be1df46d6e363a002f549f4de_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:a107ae2f7b140f2fb2243f33c378228c2f164cfd2d23f57e63f6c424fd400929_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:e21de356b7d879800a96f6c5aeee6bc59a3ed9c58d36503f7089625ce887bb25_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:fcaf6d60d682cf51866948ea3b4846c2993e2801adb69dc745ffa832318f515c_amd64"
],
"known_not_affected": [
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:1384e5ba2b7d23119a49d8713826f4c65668bca310589ac7abd0c0d41c7e4c90_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:7f58528b1da9146aa55917324fdf2b375794742b34e5d10ff57f713af60746cd_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:844c3b1499b00aeadfc561642e53792ad80f535efd53b35793ba08b0f26c6d61_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:e1019c30e1d84e66d775d0d6fc7d051803dcbe44823fb2a1914807be39c79dae_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:8c9a7ebf430b9f4ca200c6c70b049e8456cf88fd8bf0871b42d65e8dc786d451_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:926d965e6fd12ec0d758270fb4c90bbdc1a05e60cc4c895cf9b671a296c9d867_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:e8e807451e3c5d8d0a8575e1280d7125a4ece51547a7b4a5cd247837662cedad_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:f2a24aa01cbe0d926d4aefe3b12eba21eb5ec7f87276e572a6814c727228624c_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:45cc0d783d1e7874ac73dfbdfe7e03c63b227ab3c4f1e15a0a2f5c97956a76d9_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:6f3eb26734e89375c3e1fb7ac366e12dc0d41bac8f07de9210c7e9845a01eec1_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:768c45fa9f35d98dfe5cfe1ea12f552402bf68ac6e1f828b14310ef59ce57c40_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:b5f1bf30495f6be97c696cf7f90768629cee96f8d106f745bf95fdefddc99592_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:137ffbb95d463d95da6c350600d968f3cd0e9873bf2e7c6edf952ae3229e9e2b_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:1cccdfd7e90877c27c6d8caea4f1e8ad89bb97c83d97ddf570d4f4ee116f1986_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:71657b82894cfd9e350746f48965e148868a675b9a20dcb7f94a6bc7a5b16ea5_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:881e405e32821ef10cf992c7a633281c1dc45df721fe909048df1689472000ce_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:6c85b42ede0f4745ed558bcb03d033c49f56cef17a70c12e5308066124cac6e3_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:091529a93e258a612fd4a98222e6a370ee10b4e97efa791b50f79a2670163d01_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0e8958a22f6771ddfe32b34027c69dbbef65d980c7e465a79d4202d2627994ad_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:5a8b0203ff083113e8b30a123ab30c4bad571f57fb59c1e7e01807b92552504e_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:89bf6a32a0935cacadbc6d23566dce6ca741e404d58c11050638c7b8e868028b_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:077cc953354ea2edd85569a622f97c15d44163d68234e7a9fdee899d25c19cdb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:66285f866090e1bfbedacd592e9d5ea9f2a30b88aa03bc86bc790d6b98a929a4_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:8c80054171d5063457df4bd074674b1824783a101dacb6137da227080aff957c_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:b0f15904251c6665961eef9c944d00f17499f7219351fe213fe7935f62fbf7ac_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:62476ac2fb0096caa9b181f523cc3573ccffe70be1433f08d1d0255b6d3a0640_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:6f632bc9829880a44e2e94084284b52683b4a01dc3315043b0aa32eb344b16cb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:aa3d1cf7853bfe8307efb01f714585f378d1d3d4ed5de7c8808a72e4aeecd4f3_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:bf1d4b2b1ef03e65be59699ce3233a75a34e1777abc182984c7a8efa698a936e_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:0f8e1171f278395f3c72e4d9d3c0492bed15b678963fb2b6182bd65343b85a2e_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:823bb59b1c7d01557c29f9f1e4a4ee39814c38d826b06c3c9de4b8d179078419_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:93c7e9b321c7e9aa4a412a993a6b20412e24772832cc0dd23bbb17aa25f15487_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:9e50b45f81fedab27e896f04b80bacaa01d8370ff5679147f95ad79b61972d83_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:11f005939e15d63057bf2f0a988b6baebc275d3e752e9f7696d0f7f5266fd5d6_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:4b4c98be96a932d508fad769eff61bff2a44e13baa60b22b6c543f4a11eb71c2_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:6c87453ffe89e8be752ee40c8a9ccf6894c83be703f13901b1e8b64a4c0e549a_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:c18a1c50a4fc7081c6564d1c4ed4904212b7939a4f1f46afef0a36dc1d76f38e_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:33367b9fdb3addce3302ad35bc10423505fefe3dd27b8b9013b26d66caac2a6c_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:72cbdb061cbcd295be5e66a0eabb409af16ade7f0aa12b04c2d7327e9e1a24ba_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:d0379f9da8cbb5514394a4550ff0d79f90fa691fcced5806296479c7b63353da_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:e99d1d877bd7335736cbaeb4db5b9904369a1d07f6df332c38ad79ff1256b67b_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:06285611aef2528fc92c5cebb66ff4c74fe44d457f43cf9ec2f4a98c3c68d25e_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:25e0f4153eb5bc6fbc6b389d5adc81bfde103070ef58317c3c25ce4144a628d3_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:acd3c0369c18cbfa63a5972ed1721f93f1fcb456963ff855dea2c295baf1cdb8_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:d086075db52f4476aa64d7e2680baa01e99da246275fa9cae0ba4a74de63c7f3_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:07d89c1b524d1451051feb865bc716da2197add90fa0c58c4cf4a82975ec846c_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:6582e647d7dd604e25977ec1579969aa1fcb29ead1a0ea65833531d633bbdd2b_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:75e3aec03dffbd0f40f88a08ff5e0319f4515d73f0bcfae28b5fa526b494afc4_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:f0079e8ae53d84223aea2d3186e7bc6b525b7c03d307cde50cfb9f1bbc18712b_arm64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-48043"
},
{
"category": "external",
"summary": "RHBZ#2488442",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2488442"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-48043",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-48043"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-48043",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-48043"
},
{
"category": "external",
"summary": "https://github.com/netty/netty/releases/tag/netty-4.1.135.Final",
"url": "https://github.com/netty/netty/releases/tag/netty-4.1.135.Final"
},
{
"category": "external",
"summary": "https://github.com/netty/netty/releases/tag/netty-4.2.15.Final",
"url": "https://github.com/netty/netty/releases/tag/netty-4.2.15.Final"
},
{
"category": "external",
"summary": "https://github.com/netty/netty/security/advisories/GHSA-c2gf-v879-257j",
"url": "https://github.com/netty/netty/security/advisories/GHSA-c2gf-v879-257j"
}
],
"release_date": "2026-06-12T14:39:52.498000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T17:12:17+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\nFor details on how to apply this update, refer to:\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:141f17d12c748c7ab9e94cfd9db7e2492d3063e7478249d6430ac0d8fcfb8875_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:5909184fe3d37eb45ba3bf55d7b708d818f2a5abfc2949c4a7081a5cd30cea4f_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:6217f0bb4937fa0e0fc0a5c86456fdc1992e169dfedc3d11d5165cef575d4d53_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:d55a55a36a23e7deb83718bd5dcc19b083b84d441add72ea7f4e28935e4717e3_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:8f145d4e336bd77fcc94f0845f9ebf94563ffd96d56794d96a665c11241df152_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:981917806c7faf31156241cc85577cf375ee566f78adaeadc096d0ba8482b835_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:af3ed91687500d64e2348cca4877c43f73211b8fbd132e7767c3521763185348_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:c05020e5ee5bddc62e38493cd16b6e4ffde7c2248a00d710f32b90a6ee12ceeb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2af86b409540513f6da1afa83110a5cafe8778d2ec16332faa31c964bd5f43f7_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2f3bec76a833a72c7dfa93ed55e55e80e2621c154e5a2f156deaf78d7c6b97b4_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:81a2385be30079500f13f97a18607aa685abd61265bf8fa78bc6ce126341be50_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:fdc8f64f3b82b200a5e31b01b8612069f1aa897014085c1de755394552a1a70a_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:856b9088dbda4e7374daf232602f4bb90b05ad1be1df46d6e363a002f549f4de_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:a107ae2f7b140f2fb2243f33c378228c2f164cfd2d23f57e63f6c424fd400929_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:e21de356b7d879800a96f6c5aeee6bc59a3ed9c58d36503f7089625ce887bb25_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:fcaf6d60d682cf51866948ea3b4846c2993e2801adb69dc745ffa832318f515c_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36820"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:1384e5ba2b7d23119a49d8713826f4c65668bca310589ac7abd0c0d41c7e4c90_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:7f58528b1da9146aa55917324fdf2b375794742b34e5d10ff57f713af60746cd_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:844c3b1499b00aeadfc561642e53792ad80f535efd53b35793ba08b0f26c6d61_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:e1019c30e1d84e66d775d0d6fc7d051803dcbe44823fb2a1914807be39c79dae_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:8c9a7ebf430b9f4ca200c6c70b049e8456cf88fd8bf0871b42d65e8dc786d451_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:926d965e6fd12ec0d758270fb4c90bbdc1a05e60cc4c895cf9b671a296c9d867_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:e8e807451e3c5d8d0a8575e1280d7125a4ece51547a7b4a5cd247837662cedad_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:f2a24aa01cbe0d926d4aefe3b12eba21eb5ec7f87276e572a6814c727228624c_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:45cc0d783d1e7874ac73dfbdfe7e03c63b227ab3c4f1e15a0a2f5c97956a76d9_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:6f3eb26734e89375c3e1fb7ac366e12dc0d41bac8f07de9210c7e9845a01eec1_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:768c45fa9f35d98dfe5cfe1ea12f552402bf68ac6e1f828b14310ef59ce57c40_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:b5f1bf30495f6be97c696cf7f90768629cee96f8d106f745bf95fdefddc99592_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:137ffbb95d463d95da6c350600d968f3cd0e9873bf2e7c6edf952ae3229e9e2b_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:1cccdfd7e90877c27c6d8caea4f1e8ad89bb97c83d97ddf570d4f4ee116f1986_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:71657b82894cfd9e350746f48965e148868a675b9a20dcb7f94a6bc7a5b16ea5_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:881e405e32821ef10cf992c7a633281c1dc45df721fe909048df1689472000ce_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:6c85b42ede0f4745ed558bcb03d033c49f56cef17a70c12e5308066124cac6e3_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:091529a93e258a612fd4a98222e6a370ee10b4e97efa791b50f79a2670163d01_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0e8958a22f6771ddfe32b34027c69dbbef65d980c7e465a79d4202d2627994ad_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:5a8b0203ff083113e8b30a123ab30c4bad571f57fb59c1e7e01807b92552504e_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:89bf6a32a0935cacadbc6d23566dce6ca741e404d58c11050638c7b8e868028b_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:077cc953354ea2edd85569a622f97c15d44163d68234e7a9fdee899d25c19cdb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:66285f866090e1bfbedacd592e9d5ea9f2a30b88aa03bc86bc790d6b98a929a4_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:8c80054171d5063457df4bd074674b1824783a101dacb6137da227080aff957c_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:b0f15904251c6665961eef9c944d00f17499f7219351fe213fe7935f62fbf7ac_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:62476ac2fb0096caa9b181f523cc3573ccffe70be1433f08d1d0255b6d3a0640_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:6f632bc9829880a44e2e94084284b52683b4a01dc3315043b0aa32eb344b16cb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:aa3d1cf7853bfe8307efb01f714585f378d1d3d4ed5de7c8808a72e4aeecd4f3_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:bf1d4b2b1ef03e65be59699ce3233a75a34e1777abc182984c7a8efa698a936e_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:141f17d12c748c7ab9e94cfd9db7e2492d3063e7478249d6430ac0d8fcfb8875_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:5909184fe3d37eb45ba3bf55d7b708d818f2a5abfc2949c4a7081a5cd30cea4f_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:6217f0bb4937fa0e0fc0a5c86456fdc1992e169dfedc3d11d5165cef575d4d53_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:d55a55a36a23e7deb83718bd5dcc19b083b84d441add72ea7f4e28935e4717e3_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:0f8e1171f278395f3c72e4d9d3c0492bed15b678963fb2b6182bd65343b85a2e_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:823bb59b1c7d01557c29f9f1e4a4ee39814c38d826b06c3c9de4b8d179078419_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:93c7e9b321c7e9aa4a412a993a6b20412e24772832cc0dd23bbb17aa25f15487_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:9e50b45f81fedab27e896f04b80bacaa01d8370ff5679147f95ad79b61972d83_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:8f145d4e336bd77fcc94f0845f9ebf94563ffd96d56794d96a665c11241df152_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:981917806c7faf31156241cc85577cf375ee566f78adaeadc096d0ba8482b835_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:af3ed91687500d64e2348cca4877c43f73211b8fbd132e7767c3521763185348_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:c05020e5ee5bddc62e38493cd16b6e4ffde7c2248a00d710f32b90a6ee12ceeb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2af86b409540513f6da1afa83110a5cafe8778d2ec16332faa31c964bd5f43f7_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2f3bec76a833a72c7dfa93ed55e55e80e2621c154e5a2f156deaf78d7c6b97b4_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:81a2385be30079500f13f97a18607aa685abd61265bf8fa78bc6ce126341be50_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:fdc8f64f3b82b200a5e31b01b8612069f1aa897014085c1de755394552a1a70a_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:856b9088dbda4e7374daf232602f4bb90b05ad1be1df46d6e363a002f549f4de_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:a107ae2f7b140f2fb2243f33c378228c2f164cfd2d23f57e63f6c424fd400929_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:e21de356b7d879800a96f6c5aeee6bc59a3ed9c58d36503f7089625ce887bb25_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:fcaf6d60d682cf51866948ea3b4846c2993e2801adb69dc745ffa832318f515c_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:11f005939e15d63057bf2f0a988b6baebc275d3e752e9f7696d0f7f5266fd5d6_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:4b4c98be96a932d508fad769eff61bff2a44e13baa60b22b6c543f4a11eb71c2_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:6c87453ffe89e8be752ee40c8a9ccf6894c83be703f13901b1e8b64a4c0e549a_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:c18a1c50a4fc7081c6564d1c4ed4904212b7939a4f1f46afef0a36dc1d76f38e_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:33367b9fdb3addce3302ad35bc10423505fefe3dd27b8b9013b26d66caac2a6c_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:72cbdb061cbcd295be5e66a0eabb409af16ade7f0aa12b04c2d7327e9e1a24ba_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:d0379f9da8cbb5514394a4550ff0d79f90fa691fcced5806296479c7b63353da_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:e99d1d877bd7335736cbaeb4db5b9904369a1d07f6df332c38ad79ff1256b67b_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:06285611aef2528fc92c5cebb66ff4c74fe44d457f43cf9ec2f4a98c3c68d25e_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:25e0f4153eb5bc6fbc6b389d5adc81bfde103070ef58317c3c25ce4144a628d3_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:acd3c0369c18cbfa63a5972ed1721f93f1fcb456963ff855dea2c295baf1cdb8_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:d086075db52f4476aa64d7e2680baa01e99da246275fa9cae0ba4a74de63c7f3_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:07d89c1b524d1451051feb865bc716da2197add90fa0c58c4cf4a82975ec846c_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:6582e647d7dd604e25977ec1579969aa1fcb29ead1a0ea65833531d633bbdd2b_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:75e3aec03dffbd0f40f88a08ff5e0319f4515d73f0bcfae28b5fa526b494afc4_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:f0079e8ae53d84223aea2d3186e7bc6b525b7c03d307cde50cfb9f1bbc18712b_arm64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:1384e5ba2b7d23119a49d8713826f4c65668bca310589ac7abd0c0d41c7e4c90_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:7f58528b1da9146aa55917324fdf2b375794742b34e5d10ff57f713af60746cd_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:844c3b1499b00aeadfc561642e53792ad80f535efd53b35793ba08b0f26c6d61_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:e1019c30e1d84e66d775d0d6fc7d051803dcbe44823fb2a1914807be39c79dae_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:8c9a7ebf430b9f4ca200c6c70b049e8456cf88fd8bf0871b42d65e8dc786d451_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:926d965e6fd12ec0d758270fb4c90bbdc1a05e60cc4c895cf9b671a296c9d867_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:e8e807451e3c5d8d0a8575e1280d7125a4ece51547a7b4a5cd247837662cedad_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:f2a24aa01cbe0d926d4aefe3b12eba21eb5ec7f87276e572a6814c727228624c_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:45cc0d783d1e7874ac73dfbdfe7e03c63b227ab3c4f1e15a0a2f5c97956a76d9_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:6f3eb26734e89375c3e1fb7ac366e12dc0d41bac8f07de9210c7e9845a01eec1_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:768c45fa9f35d98dfe5cfe1ea12f552402bf68ac6e1f828b14310ef59ce57c40_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:b5f1bf30495f6be97c696cf7f90768629cee96f8d106f745bf95fdefddc99592_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:137ffbb95d463d95da6c350600d968f3cd0e9873bf2e7c6edf952ae3229e9e2b_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:1cccdfd7e90877c27c6d8caea4f1e8ad89bb97c83d97ddf570d4f4ee116f1986_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:71657b82894cfd9e350746f48965e148868a675b9a20dcb7f94a6bc7a5b16ea5_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:881e405e32821ef10cf992c7a633281c1dc45df721fe909048df1689472000ce_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:6c85b42ede0f4745ed558bcb03d033c49f56cef17a70c12e5308066124cac6e3_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:091529a93e258a612fd4a98222e6a370ee10b4e97efa791b50f79a2670163d01_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0e8958a22f6771ddfe32b34027c69dbbef65d980c7e465a79d4202d2627994ad_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:5a8b0203ff083113e8b30a123ab30c4bad571f57fb59c1e7e01807b92552504e_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:89bf6a32a0935cacadbc6d23566dce6ca741e404d58c11050638c7b8e868028b_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:077cc953354ea2edd85569a622f97c15d44163d68234e7a9fdee899d25c19cdb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:66285f866090e1bfbedacd592e9d5ea9f2a30b88aa03bc86bc790d6b98a929a4_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:8c80054171d5063457df4bd074674b1824783a101dacb6137da227080aff957c_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:b0f15904251c6665961eef9c944d00f17499f7219351fe213fe7935f62fbf7ac_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:62476ac2fb0096caa9b181f523cc3573ccffe70be1433f08d1d0255b6d3a0640_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:6f632bc9829880a44e2e94084284b52683b4a01dc3315043b0aa32eb344b16cb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:aa3d1cf7853bfe8307efb01f714585f378d1d3d4ed5de7c8808a72e4aeecd4f3_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:bf1d4b2b1ef03e65be59699ce3233a75a34e1777abc182984c7a8efa698a936e_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:141f17d12c748c7ab9e94cfd9db7e2492d3063e7478249d6430ac0d8fcfb8875_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:5909184fe3d37eb45ba3bf55d7b708d818f2a5abfc2949c4a7081a5cd30cea4f_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:6217f0bb4937fa0e0fc0a5c86456fdc1992e169dfedc3d11d5165cef575d4d53_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:d55a55a36a23e7deb83718bd5dcc19b083b84d441add72ea7f4e28935e4717e3_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:0f8e1171f278395f3c72e4d9d3c0492bed15b678963fb2b6182bd65343b85a2e_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:823bb59b1c7d01557c29f9f1e4a4ee39814c38d826b06c3c9de4b8d179078419_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:93c7e9b321c7e9aa4a412a993a6b20412e24772832cc0dd23bbb17aa25f15487_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:9e50b45f81fedab27e896f04b80bacaa01d8370ff5679147f95ad79b61972d83_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:8f145d4e336bd77fcc94f0845f9ebf94563ffd96d56794d96a665c11241df152_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:981917806c7faf31156241cc85577cf375ee566f78adaeadc096d0ba8482b835_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:af3ed91687500d64e2348cca4877c43f73211b8fbd132e7767c3521763185348_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:c05020e5ee5bddc62e38493cd16b6e4ffde7c2248a00d710f32b90a6ee12ceeb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2af86b409540513f6da1afa83110a5cafe8778d2ec16332faa31c964bd5f43f7_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2f3bec76a833a72c7dfa93ed55e55e80e2621c154e5a2f156deaf78d7c6b97b4_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:81a2385be30079500f13f97a18607aa685abd61265bf8fa78bc6ce126341be50_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:fdc8f64f3b82b200a5e31b01b8612069f1aa897014085c1de755394552a1a70a_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:856b9088dbda4e7374daf232602f4bb90b05ad1be1df46d6e363a002f549f4de_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:a107ae2f7b140f2fb2243f33c378228c2f164cfd2d23f57e63f6c424fd400929_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:e21de356b7d879800a96f6c5aeee6bc59a3ed9c58d36503f7089625ce887bb25_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:fcaf6d60d682cf51866948ea3b4846c2993e2801adb69dc745ffa832318f515c_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:11f005939e15d63057bf2f0a988b6baebc275d3e752e9f7696d0f7f5266fd5d6_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:4b4c98be96a932d508fad769eff61bff2a44e13baa60b22b6c543f4a11eb71c2_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:6c87453ffe89e8be752ee40c8a9ccf6894c83be703f13901b1e8b64a4c0e549a_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:c18a1c50a4fc7081c6564d1c4ed4904212b7939a4f1f46afef0a36dc1d76f38e_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:33367b9fdb3addce3302ad35bc10423505fefe3dd27b8b9013b26d66caac2a6c_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:72cbdb061cbcd295be5e66a0eabb409af16ade7f0aa12b04c2d7327e9e1a24ba_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:d0379f9da8cbb5514394a4550ff0d79f90fa691fcced5806296479c7b63353da_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:e99d1d877bd7335736cbaeb4db5b9904369a1d07f6df332c38ad79ff1256b67b_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:06285611aef2528fc92c5cebb66ff4c74fe44d457f43cf9ec2f4a98c3c68d25e_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:25e0f4153eb5bc6fbc6b389d5adc81bfde103070ef58317c3c25ce4144a628d3_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:acd3c0369c18cbfa63a5972ed1721f93f1fcb456963ff855dea2c295baf1cdb8_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:d086075db52f4476aa64d7e2680baa01e99da246275fa9cae0ba4a74de63c7f3_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:07d89c1b524d1451051feb865bc716da2197add90fa0c58c4cf4a82975ec846c_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:6582e647d7dd604e25977ec1579969aa1fcb29ead1a0ea65833531d633bbdd2b_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:75e3aec03dffbd0f40f88a08ff5e0319f4515d73f0bcfae28b5fa526b494afc4_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:f0079e8ae53d84223aea2d3186e7bc6b525b7c03d307cde50cfb9f1bbc18712b_arm64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "netty-codec-http2: netty-codec-http2: Denial of Service due to resource leak"
},
{
"cve": "CVE-2026-48059",
"cwe": {
"id": "CWE-1286",
"name": "Improper Validation of Syntactic Correctness of Input"
},
"discovery_date": "2026-06-12T16:02:40.032749+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:1384e5ba2b7d23119a49d8713826f4c65668bca310589ac7abd0c0d41c7e4c90_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:7f58528b1da9146aa55917324fdf2b375794742b34e5d10ff57f713af60746cd_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:844c3b1499b00aeadfc561642e53792ad80f535efd53b35793ba08b0f26c6d61_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:e1019c30e1d84e66d775d0d6fc7d051803dcbe44823fb2a1914807be39c79dae_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:8c9a7ebf430b9f4ca200c6c70b049e8456cf88fd8bf0871b42d65e8dc786d451_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:926d965e6fd12ec0d758270fb4c90bbdc1a05e60cc4c895cf9b671a296c9d867_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:e8e807451e3c5d8d0a8575e1280d7125a4ece51547a7b4a5cd247837662cedad_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:f2a24aa01cbe0d926d4aefe3b12eba21eb5ec7f87276e572a6814c727228624c_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:45cc0d783d1e7874ac73dfbdfe7e03c63b227ab3c4f1e15a0a2f5c97956a76d9_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:6f3eb26734e89375c3e1fb7ac366e12dc0d41bac8f07de9210c7e9845a01eec1_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:768c45fa9f35d98dfe5cfe1ea12f552402bf68ac6e1f828b14310ef59ce57c40_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:b5f1bf30495f6be97c696cf7f90768629cee96f8d106f745bf95fdefddc99592_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:137ffbb95d463d95da6c350600d968f3cd0e9873bf2e7c6edf952ae3229e9e2b_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:1cccdfd7e90877c27c6d8caea4f1e8ad89bb97c83d97ddf570d4f4ee116f1986_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:71657b82894cfd9e350746f48965e148868a675b9a20dcb7f94a6bc7a5b16ea5_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:881e405e32821ef10cf992c7a633281c1dc45df721fe909048df1689472000ce_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:6c85b42ede0f4745ed558bcb03d033c49f56cef17a70c12e5308066124cac6e3_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:091529a93e258a612fd4a98222e6a370ee10b4e97efa791b50f79a2670163d01_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0e8958a22f6771ddfe32b34027c69dbbef65d980c7e465a79d4202d2627994ad_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:5a8b0203ff083113e8b30a123ab30c4bad571f57fb59c1e7e01807b92552504e_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:89bf6a32a0935cacadbc6d23566dce6ca741e404d58c11050638c7b8e868028b_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:077cc953354ea2edd85569a622f97c15d44163d68234e7a9fdee899d25c19cdb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:66285f866090e1bfbedacd592e9d5ea9f2a30b88aa03bc86bc790d6b98a929a4_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:8c80054171d5063457df4bd074674b1824783a101dacb6137da227080aff957c_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:b0f15904251c6665961eef9c944d00f17499f7219351fe213fe7935f62fbf7ac_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:62476ac2fb0096caa9b181f523cc3573ccffe70be1433f08d1d0255b6d3a0640_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:6f632bc9829880a44e2e94084284b52683b4a01dc3315043b0aa32eb344b16cb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:aa3d1cf7853bfe8307efb01f714585f378d1d3d4ed5de7c8808a72e4aeecd4f3_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:bf1d4b2b1ef03e65be59699ce3233a75a34e1777abc182984c7a8efa698a936e_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:0f8e1171f278395f3c72e4d9d3c0492bed15b678963fb2b6182bd65343b85a2e_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:823bb59b1c7d01557c29f9f1e4a4ee39814c38d826b06c3c9de4b8d179078419_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:93c7e9b321c7e9aa4a412a993a6b20412e24772832cc0dd23bbb17aa25f15487_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:9e50b45f81fedab27e896f04b80bacaa01d8370ff5679147f95ad79b61972d83_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:8f145d4e336bd77fcc94f0845f9ebf94563ffd96d56794d96a665c11241df152_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:981917806c7faf31156241cc85577cf375ee566f78adaeadc096d0ba8482b835_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:af3ed91687500d64e2348cca4877c43f73211b8fbd132e7767c3521763185348_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:c05020e5ee5bddc62e38493cd16b6e4ffde7c2248a00d710f32b90a6ee12ceeb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2af86b409540513f6da1afa83110a5cafe8778d2ec16332faa31c964bd5f43f7_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2f3bec76a833a72c7dfa93ed55e55e80e2621c154e5a2f156deaf78d7c6b97b4_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:81a2385be30079500f13f97a18607aa685abd61265bf8fa78bc6ce126341be50_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:fdc8f64f3b82b200a5e31b01b8612069f1aa897014085c1de755394552a1a70a_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:856b9088dbda4e7374daf232602f4bb90b05ad1be1df46d6e363a002f549f4de_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:a107ae2f7b140f2fb2243f33c378228c2f164cfd2d23f57e63f6c424fd400929_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:e21de356b7d879800a96f6c5aeee6bc59a3ed9c58d36503f7089625ce887bb25_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:fcaf6d60d682cf51866948ea3b4846c2993e2801adb69dc745ffa832318f515c_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:11f005939e15d63057bf2f0a988b6baebc275d3e752e9f7696d0f7f5266fd5d6_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:4b4c98be96a932d508fad769eff61bff2a44e13baa60b22b6c543f4a11eb71c2_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:6c87453ffe89e8be752ee40c8a9ccf6894c83be703f13901b1e8b64a4c0e549a_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:c18a1c50a4fc7081c6564d1c4ed4904212b7939a4f1f46afef0a36dc1d76f38e_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:33367b9fdb3addce3302ad35bc10423505fefe3dd27b8b9013b26d66caac2a6c_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:72cbdb061cbcd295be5e66a0eabb409af16ade7f0aa12b04c2d7327e9e1a24ba_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:d0379f9da8cbb5514394a4550ff0d79f90fa691fcced5806296479c7b63353da_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:e99d1d877bd7335736cbaeb4db5b9904369a1d07f6df332c38ad79ff1256b67b_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:06285611aef2528fc92c5cebb66ff4c74fe44d457f43cf9ec2f4a98c3c68d25e_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:25e0f4153eb5bc6fbc6b389d5adc81bfde103070ef58317c3c25ce4144a628d3_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:acd3c0369c18cbfa63a5972ed1721f93f1fcb456963ff855dea2c295baf1cdb8_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:d086075db52f4476aa64d7e2680baa01e99da246275fa9cae0ba4a74de63c7f3_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:07d89c1b524d1451051feb865bc716da2197add90fa0c58c4cf4a82975ec846c_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:6582e647d7dd604e25977ec1579969aa1fcb29ead1a0ea65833531d633bbdd2b_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:75e3aec03dffbd0f40f88a08ff5e0319f4515d73f0bcfae28b5fa526b494afc4_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:f0079e8ae53d84223aea2d3186e7bc6b525b7c03d307cde50cfb9f1bbc18712b_arm64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2488437"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the Netty HAProxy PROXY protocol v2 codec. A remote attacker can exploit this vulnerability by sending a specially crafted HAProxy PROXY protocol v2 header with nested `PP2_TYPE_SSL` type-length-value (TLV) records. This can lead to a memory leak, causing the underlying cumulation buffer to remain permanently pinned and potentially resulting in a Denial of Service (DoS) due to resource exhaustion.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "netty-codec-haproxy: Netty HAProxy PROXY protocol v2 codec: Denial of Service via memory leak from crafted PROXY protocol headers",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This is an Important flaw in the Netty HAProxy PROXY protocol v2 codec, which can lead to a denial of service. A remote attacker can trigger a memory leak by sending a specially crafted HAProxy PROXY protocol v2 header with deeply nested SSL TLV records, causing resource exhaustion in affected Red Hat products that utilize this codec.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:141f17d12c748c7ab9e94cfd9db7e2492d3063e7478249d6430ac0d8fcfb8875_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:5909184fe3d37eb45ba3bf55d7b708d818f2a5abfc2949c4a7081a5cd30cea4f_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:6217f0bb4937fa0e0fc0a5c86456fdc1992e169dfedc3d11d5165cef575d4d53_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:d55a55a36a23e7deb83718bd5dcc19b083b84d441add72ea7f4e28935e4717e3_ppc64le"
],
"known_not_affected": [
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:1384e5ba2b7d23119a49d8713826f4c65668bca310589ac7abd0c0d41c7e4c90_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:7f58528b1da9146aa55917324fdf2b375794742b34e5d10ff57f713af60746cd_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:844c3b1499b00aeadfc561642e53792ad80f535efd53b35793ba08b0f26c6d61_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:e1019c30e1d84e66d775d0d6fc7d051803dcbe44823fb2a1914807be39c79dae_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:8c9a7ebf430b9f4ca200c6c70b049e8456cf88fd8bf0871b42d65e8dc786d451_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:926d965e6fd12ec0d758270fb4c90bbdc1a05e60cc4c895cf9b671a296c9d867_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:e8e807451e3c5d8d0a8575e1280d7125a4ece51547a7b4a5cd247837662cedad_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:f2a24aa01cbe0d926d4aefe3b12eba21eb5ec7f87276e572a6814c727228624c_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:45cc0d783d1e7874ac73dfbdfe7e03c63b227ab3c4f1e15a0a2f5c97956a76d9_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:6f3eb26734e89375c3e1fb7ac366e12dc0d41bac8f07de9210c7e9845a01eec1_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:768c45fa9f35d98dfe5cfe1ea12f552402bf68ac6e1f828b14310ef59ce57c40_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:b5f1bf30495f6be97c696cf7f90768629cee96f8d106f745bf95fdefddc99592_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:137ffbb95d463d95da6c350600d968f3cd0e9873bf2e7c6edf952ae3229e9e2b_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:1cccdfd7e90877c27c6d8caea4f1e8ad89bb97c83d97ddf570d4f4ee116f1986_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:71657b82894cfd9e350746f48965e148868a675b9a20dcb7f94a6bc7a5b16ea5_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:881e405e32821ef10cf992c7a633281c1dc45df721fe909048df1689472000ce_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:6c85b42ede0f4745ed558bcb03d033c49f56cef17a70c12e5308066124cac6e3_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:091529a93e258a612fd4a98222e6a370ee10b4e97efa791b50f79a2670163d01_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0e8958a22f6771ddfe32b34027c69dbbef65d980c7e465a79d4202d2627994ad_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:5a8b0203ff083113e8b30a123ab30c4bad571f57fb59c1e7e01807b92552504e_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:89bf6a32a0935cacadbc6d23566dce6ca741e404d58c11050638c7b8e868028b_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:077cc953354ea2edd85569a622f97c15d44163d68234e7a9fdee899d25c19cdb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:66285f866090e1bfbedacd592e9d5ea9f2a30b88aa03bc86bc790d6b98a929a4_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:8c80054171d5063457df4bd074674b1824783a101dacb6137da227080aff957c_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:b0f15904251c6665961eef9c944d00f17499f7219351fe213fe7935f62fbf7ac_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:62476ac2fb0096caa9b181f523cc3573ccffe70be1433f08d1d0255b6d3a0640_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:6f632bc9829880a44e2e94084284b52683b4a01dc3315043b0aa32eb344b16cb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:aa3d1cf7853bfe8307efb01f714585f378d1d3d4ed5de7c8808a72e4aeecd4f3_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:bf1d4b2b1ef03e65be59699ce3233a75a34e1777abc182984c7a8efa698a936e_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:0f8e1171f278395f3c72e4d9d3c0492bed15b678963fb2b6182bd65343b85a2e_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:823bb59b1c7d01557c29f9f1e4a4ee39814c38d826b06c3c9de4b8d179078419_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:93c7e9b321c7e9aa4a412a993a6b20412e24772832cc0dd23bbb17aa25f15487_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:9e50b45f81fedab27e896f04b80bacaa01d8370ff5679147f95ad79b61972d83_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:8f145d4e336bd77fcc94f0845f9ebf94563ffd96d56794d96a665c11241df152_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:981917806c7faf31156241cc85577cf375ee566f78adaeadc096d0ba8482b835_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:af3ed91687500d64e2348cca4877c43f73211b8fbd132e7767c3521763185348_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:c05020e5ee5bddc62e38493cd16b6e4ffde7c2248a00d710f32b90a6ee12ceeb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2af86b409540513f6da1afa83110a5cafe8778d2ec16332faa31c964bd5f43f7_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2f3bec76a833a72c7dfa93ed55e55e80e2621c154e5a2f156deaf78d7c6b97b4_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:81a2385be30079500f13f97a18607aa685abd61265bf8fa78bc6ce126341be50_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:fdc8f64f3b82b200a5e31b01b8612069f1aa897014085c1de755394552a1a70a_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:856b9088dbda4e7374daf232602f4bb90b05ad1be1df46d6e363a002f549f4de_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:a107ae2f7b140f2fb2243f33c378228c2f164cfd2d23f57e63f6c424fd400929_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:e21de356b7d879800a96f6c5aeee6bc59a3ed9c58d36503f7089625ce887bb25_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:fcaf6d60d682cf51866948ea3b4846c2993e2801adb69dc745ffa832318f515c_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:11f005939e15d63057bf2f0a988b6baebc275d3e752e9f7696d0f7f5266fd5d6_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:4b4c98be96a932d508fad769eff61bff2a44e13baa60b22b6c543f4a11eb71c2_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:6c87453ffe89e8be752ee40c8a9ccf6894c83be703f13901b1e8b64a4c0e549a_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:c18a1c50a4fc7081c6564d1c4ed4904212b7939a4f1f46afef0a36dc1d76f38e_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:33367b9fdb3addce3302ad35bc10423505fefe3dd27b8b9013b26d66caac2a6c_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:72cbdb061cbcd295be5e66a0eabb409af16ade7f0aa12b04c2d7327e9e1a24ba_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:d0379f9da8cbb5514394a4550ff0d79f90fa691fcced5806296479c7b63353da_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:e99d1d877bd7335736cbaeb4db5b9904369a1d07f6df332c38ad79ff1256b67b_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:06285611aef2528fc92c5cebb66ff4c74fe44d457f43cf9ec2f4a98c3c68d25e_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:25e0f4153eb5bc6fbc6b389d5adc81bfde103070ef58317c3c25ce4144a628d3_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:acd3c0369c18cbfa63a5972ed1721f93f1fcb456963ff855dea2c295baf1cdb8_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:d086075db52f4476aa64d7e2680baa01e99da246275fa9cae0ba4a74de63c7f3_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:07d89c1b524d1451051feb865bc716da2197add90fa0c58c4cf4a82975ec846c_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:6582e647d7dd604e25977ec1579969aa1fcb29ead1a0ea65833531d633bbdd2b_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:75e3aec03dffbd0f40f88a08ff5e0319f4515d73f0bcfae28b5fa526b494afc4_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:f0079e8ae53d84223aea2d3186e7bc6b525b7c03d307cde50cfb9f1bbc18712b_arm64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-48059"
},
{
"category": "external",
"summary": "RHBZ#2488437",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2488437"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-48059",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-48059"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-48059",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-48059"
},
{
"category": "external",
"summary": "https://github.com/netty/netty/releases/tag/netty-4.1.135.Final",
"url": "https://github.com/netty/netty/releases/tag/netty-4.1.135.Final"
},
{
"category": "external",
"summary": "https://github.com/netty/netty/releases/tag/netty-4.2.15.Final",
"url": "https://github.com/netty/netty/releases/tag/netty-4.2.15.Final"
},
{
"category": "external",
"summary": "https://github.com/netty/netty/security/advisories/GHSA-h2qv-fj59-j46j",
"url": "https://github.com/netty/netty/security/advisories/GHSA-h2qv-fj59-j46j"
}
],
"release_date": "2026-06-12T14:42:44.677000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T17:12:17+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\nFor details on how to apply this update, refer to:\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:141f17d12c748c7ab9e94cfd9db7e2492d3063e7478249d6430ac0d8fcfb8875_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:5909184fe3d37eb45ba3bf55d7b708d818f2a5abfc2949c4a7081a5cd30cea4f_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:6217f0bb4937fa0e0fc0a5c86456fdc1992e169dfedc3d11d5165cef575d4d53_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:d55a55a36a23e7deb83718bd5dcc19b083b84d441add72ea7f4e28935e4717e3_ppc64le"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36820"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:1384e5ba2b7d23119a49d8713826f4c65668bca310589ac7abd0c0d41c7e4c90_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:7f58528b1da9146aa55917324fdf2b375794742b34e5d10ff57f713af60746cd_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:844c3b1499b00aeadfc561642e53792ad80f535efd53b35793ba08b0f26c6d61_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:e1019c30e1d84e66d775d0d6fc7d051803dcbe44823fb2a1914807be39c79dae_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:8c9a7ebf430b9f4ca200c6c70b049e8456cf88fd8bf0871b42d65e8dc786d451_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:926d965e6fd12ec0d758270fb4c90bbdc1a05e60cc4c895cf9b671a296c9d867_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:e8e807451e3c5d8d0a8575e1280d7125a4ece51547a7b4a5cd247837662cedad_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:f2a24aa01cbe0d926d4aefe3b12eba21eb5ec7f87276e572a6814c727228624c_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:45cc0d783d1e7874ac73dfbdfe7e03c63b227ab3c4f1e15a0a2f5c97956a76d9_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:6f3eb26734e89375c3e1fb7ac366e12dc0d41bac8f07de9210c7e9845a01eec1_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:768c45fa9f35d98dfe5cfe1ea12f552402bf68ac6e1f828b14310ef59ce57c40_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:b5f1bf30495f6be97c696cf7f90768629cee96f8d106f745bf95fdefddc99592_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:137ffbb95d463d95da6c350600d968f3cd0e9873bf2e7c6edf952ae3229e9e2b_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:1cccdfd7e90877c27c6d8caea4f1e8ad89bb97c83d97ddf570d4f4ee116f1986_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:71657b82894cfd9e350746f48965e148868a675b9a20dcb7f94a6bc7a5b16ea5_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:881e405e32821ef10cf992c7a633281c1dc45df721fe909048df1689472000ce_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:6c85b42ede0f4745ed558bcb03d033c49f56cef17a70c12e5308066124cac6e3_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:091529a93e258a612fd4a98222e6a370ee10b4e97efa791b50f79a2670163d01_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0e8958a22f6771ddfe32b34027c69dbbef65d980c7e465a79d4202d2627994ad_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:5a8b0203ff083113e8b30a123ab30c4bad571f57fb59c1e7e01807b92552504e_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:89bf6a32a0935cacadbc6d23566dce6ca741e404d58c11050638c7b8e868028b_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:077cc953354ea2edd85569a622f97c15d44163d68234e7a9fdee899d25c19cdb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:66285f866090e1bfbedacd592e9d5ea9f2a30b88aa03bc86bc790d6b98a929a4_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:8c80054171d5063457df4bd074674b1824783a101dacb6137da227080aff957c_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:b0f15904251c6665961eef9c944d00f17499f7219351fe213fe7935f62fbf7ac_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:62476ac2fb0096caa9b181f523cc3573ccffe70be1433f08d1d0255b6d3a0640_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:6f632bc9829880a44e2e94084284b52683b4a01dc3315043b0aa32eb344b16cb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:aa3d1cf7853bfe8307efb01f714585f378d1d3d4ed5de7c8808a72e4aeecd4f3_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:bf1d4b2b1ef03e65be59699ce3233a75a34e1777abc182984c7a8efa698a936e_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:141f17d12c748c7ab9e94cfd9db7e2492d3063e7478249d6430ac0d8fcfb8875_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:5909184fe3d37eb45ba3bf55d7b708d818f2a5abfc2949c4a7081a5cd30cea4f_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:6217f0bb4937fa0e0fc0a5c86456fdc1992e169dfedc3d11d5165cef575d4d53_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:d55a55a36a23e7deb83718bd5dcc19b083b84d441add72ea7f4e28935e4717e3_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:0f8e1171f278395f3c72e4d9d3c0492bed15b678963fb2b6182bd65343b85a2e_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:823bb59b1c7d01557c29f9f1e4a4ee39814c38d826b06c3c9de4b8d179078419_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:93c7e9b321c7e9aa4a412a993a6b20412e24772832cc0dd23bbb17aa25f15487_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:9e50b45f81fedab27e896f04b80bacaa01d8370ff5679147f95ad79b61972d83_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:8f145d4e336bd77fcc94f0845f9ebf94563ffd96d56794d96a665c11241df152_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:981917806c7faf31156241cc85577cf375ee566f78adaeadc096d0ba8482b835_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:af3ed91687500d64e2348cca4877c43f73211b8fbd132e7767c3521763185348_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:c05020e5ee5bddc62e38493cd16b6e4ffde7c2248a00d710f32b90a6ee12ceeb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2af86b409540513f6da1afa83110a5cafe8778d2ec16332faa31c964bd5f43f7_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2f3bec76a833a72c7dfa93ed55e55e80e2621c154e5a2f156deaf78d7c6b97b4_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:81a2385be30079500f13f97a18607aa685abd61265bf8fa78bc6ce126341be50_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:fdc8f64f3b82b200a5e31b01b8612069f1aa897014085c1de755394552a1a70a_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:856b9088dbda4e7374daf232602f4bb90b05ad1be1df46d6e363a002f549f4de_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:a107ae2f7b140f2fb2243f33c378228c2f164cfd2d23f57e63f6c424fd400929_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:e21de356b7d879800a96f6c5aeee6bc59a3ed9c58d36503f7089625ce887bb25_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:fcaf6d60d682cf51866948ea3b4846c2993e2801adb69dc745ffa832318f515c_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:11f005939e15d63057bf2f0a988b6baebc275d3e752e9f7696d0f7f5266fd5d6_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:4b4c98be96a932d508fad769eff61bff2a44e13baa60b22b6c543f4a11eb71c2_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:6c87453ffe89e8be752ee40c8a9ccf6894c83be703f13901b1e8b64a4c0e549a_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:c18a1c50a4fc7081c6564d1c4ed4904212b7939a4f1f46afef0a36dc1d76f38e_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:33367b9fdb3addce3302ad35bc10423505fefe3dd27b8b9013b26d66caac2a6c_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:72cbdb061cbcd295be5e66a0eabb409af16ade7f0aa12b04c2d7327e9e1a24ba_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:d0379f9da8cbb5514394a4550ff0d79f90fa691fcced5806296479c7b63353da_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:e99d1d877bd7335736cbaeb4db5b9904369a1d07f6df332c38ad79ff1256b67b_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:06285611aef2528fc92c5cebb66ff4c74fe44d457f43cf9ec2f4a98c3c68d25e_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:25e0f4153eb5bc6fbc6b389d5adc81bfde103070ef58317c3c25ce4144a628d3_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:acd3c0369c18cbfa63a5972ed1721f93f1fcb456963ff855dea2c295baf1cdb8_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:d086075db52f4476aa64d7e2680baa01e99da246275fa9cae0ba4a74de63c7f3_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:07d89c1b524d1451051feb865bc716da2197add90fa0c58c4cf4a82975ec846c_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:6582e647d7dd604e25977ec1579969aa1fcb29ead1a0ea65833531d633bbdd2b_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:75e3aec03dffbd0f40f88a08ff5e0319f4515d73f0bcfae28b5fa526b494afc4_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:f0079e8ae53d84223aea2d3186e7bc6b525b7c03d307cde50cfb9f1bbc18712b_arm64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:1384e5ba2b7d23119a49d8713826f4c65668bca310589ac7abd0c0d41c7e4c90_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:7f58528b1da9146aa55917324fdf2b375794742b34e5d10ff57f713af60746cd_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:844c3b1499b00aeadfc561642e53792ad80f535efd53b35793ba08b0f26c6d61_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:e1019c30e1d84e66d775d0d6fc7d051803dcbe44823fb2a1914807be39c79dae_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:8c9a7ebf430b9f4ca200c6c70b049e8456cf88fd8bf0871b42d65e8dc786d451_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:926d965e6fd12ec0d758270fb4c90bbdc1a05e60cc4c895cf9b671a296c9d867_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:e8e807451e3c5d8d0a8575e1280d7125a4ece51547a7b4a5cd247837662cedad_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:f2a24aa01cbe0d926d4aefe3b12eba21eb5ec7f87276e572a6814c727228624c_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:45cc0d783d1e7874ac73dfbdfe7e03c63b227ab3c4f1e15a0a2f5c97956a76d9_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:6f3eb26734e89375c3e1fb7ac366e12dc0d41bac8f07de9210c7e9845a01eec1_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:768c45fa9f35d98dfe5cfe1ea12f552402bf68ac6e1f828b14310ef59ce57c40_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:b5f1bf30495f6be97c696cf7f90768629cee96f8d106f745bf95fdefddc99592_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:137ffbb95d463d95da6c350600d968f3cd0e9873bf2e7c6edf952ae3229e9e2b_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:1cccdfd7e90877c27c6d8caea4f1e8ad89bb97c83d97ddf570d4f4ee116f1986_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:71657b82894cfd9e350746f48965e148868a675b9a20dcb7f94a6bc7a5b16ea5_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:881e405e32821ef10cf992c7a633281c1dc45df721fe909048df1689472000ce_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:6c85b42ede0f4745ed558bcb03d033c49f56cef17a70c12e5308066124cac6e3_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:091529a93e258a612fd4a98222e6a370ee10b4e97efa791b50f79a2670163d01_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0e8958a22f6771ddfe32b34027c69dbbef65d980c7e465a79d4202d2627994ad_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:5a8b0203ff083113e8b30a123ab30c4bad571f57fb59c1e7e01807b92552504e_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:89bf6a32a0935cacadbc6d23566dce6ca741e404d58c11050638c7b8e868028b_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:077cc953354ea2edd85569a622f97c15d44163d68234e7a9fdee899d25c19cdb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:66285f866090e1bfbedacd592e9d5ea9f2a30b88aa03bc86bc790d6b98a929a4_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:8c80054171d5063457df4bd074674b1824783a101dacb6137da227080aff957c_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:b0f15904251c6665961eef9c944d00f17499f7219351fe213fe7935f62fbf7ac_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:62476ac2fb0096caa9b181f523cc3573ccffe70be1433f08d1d0255b6d3a0640_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:6f632bc9829880a44e2e94084284b52683b4a01dc3315043b0aa32eb344b16cb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:aa3d1cf7853bfe8307efb01f714585f378d1d3d4ed5de7c8808a72e4aeecd4f3_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:bf1d4b2b1ef03e65be59699ce3233a75a34e1777abc182984c7a8efa698a936e_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:141f17d12c748c7ab9e94cfd9db7e2492d3063e7478249d6430ac0d8fcfb8875_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:5909184fe3d37eb45ba3bf55d7b708d818f2a5abfc2949c4a7081a5cd30cea4f_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:6217f0bb4937fa0e0fc0a5c86456fdc1992e169dfedc3d11d5165cef575d4d53_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:d55a55a36a23e7deb83718bd5dcc19b083b84d441add72ea7f4e28935e4717e3_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:0f8e1171f278395f3c72e4d9d3c0492bed15b678963fb2b6182bd65343b85a2e_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:823bb59b1c7d01557c29f9f1e4a4ee39814c38d826b06c3c9de4b8d179078419_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:93c7e9b321c7e9aa4a412a993a6b20412e24772832cc0dd23bbb17aa25f15487_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:9e50b45f81fedab27e896f04b80bacaa01d8370ff5679147f95ad79b61972d83_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:8f145d4e336bd77fcc94f0845f9ebf94563ffd96d56794d96a665c11241df152_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:981917806c7faf31156241cc85577cf375ee566f78adaeadc096d0ba8482b835_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:af3ed91687500d64e2348cca4877c43f73211b8fbd132e7767c3521763185348_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:c05020e5ee5bddc62e38493cd16b6e4ffde7c2248a00d710f32b90a6ee12ceeb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2af86b409540513f6da1afa83110a5cafe8778d2ec16332faa31c964bd5f43f7_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2f3bec76a833a72c7dfa93ed55e55e80e2621c154e5a2f156deaf78d7c6b97b4_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:81a2385be30079500f13f97a18607aa685abd61265bf8fa78bc6ce126341be50_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:fdc8f64f3b82b200a5e31b01b8612069f1aa897014085c1de755394552a1a70a_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:856b9088dbda4e7374daf232602f4bb90b05ad1be1df46d6e363a002f549f4de_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:a107ae2f7b140f2fb2243f33c378228c2f164cfd2d23f57e63f6c424fd400929_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:e21de356b7d879800a96f6c5aeee6bc59a3ed9c58d36503f7089625ce887bb25_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:fcaf6d60d682cf51866948ea3b4846c2993e2801adb69dc745ffa832318f515c_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:11f005939e15d63057bf2f0a988b6baebc275d3e752e9f7696d0f7f5266fd5d6_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:4b4c98be96a932d508fad769eff61bff2a44e13baa60b22b6c543f4a11eb71c2_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:6c87453ffe89e8be752ee40c8a9ccf6894c83be703f13901b1e8b64a4c0e549a_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:c18a1c50a4fc7081c6564d1c4ed4904212b7939a4f1f46afef0a36dc1d76f38e_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:33367b9fdb3addce3302ad35bc10423505fefe3dd27b8b9013b26d66caac2a6c_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:72cbdb061cbcd295be5e66a0eabb409af16ade7f0aa12b04c2d7327e9e1a24ba_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:d0379f9da8cbb5514394a4550ff0d79f90fa691fcced5806296479c7b63353da_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:e99d1d877bd7335736cbaeb4db5b9904369a1d07f6df332c38ad79ff1256b67b_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:06285611aef2528fc92c5cebb66ff4c74fe44d457f43cf9ec2f4a98c3c68d25e_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:25e0f4153eb5bc6fbc6b389d5adc81bfde103070ef58317c3c25ce4144a628d3_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:acd3c0369c18cbfa63a5972ed1721f93f1fcb456963ff855dea2c295baf1cdb8_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:d086075db52f4476aa64d7e2680baa01e99da246275fa9cae0ba4a74de63c7f3_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:07d89c1b524d1451051feb865bc716da2197add90fa0c58c4cf4a82975ec846c_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:6582e647d7dd604e25977ec1579969aa1fcb29ead1a0ea65833531d633bbdd2b_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:75e3aec03dffbd0f40f88a08ff5e0319f4515d73f0bcfae28b5fa526b494afc4_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:f0079e8ae53d84223aea2d3186e7bc6b525b7c03d307cde50cfb9f1bbc18712b_arm64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "netty-codec-haproxy: Netty HAProxy PROXY protocol v2 codec: Denial of Service via memory leak from crafted PROXY protocol headers"
},
{
"cve": "CVE-2026-48779",
"cwe": {
"id": "CWE-1050",
"name": "Excessive Platform Resource Consumption within a Loop"
},
"discovery_date": "2026-06-16T22:01:24.571224+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:8c9a7ebf430b9f4ca200c6c70b049e8456cf88fd8bf0871b42d65e8dc786d451_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:926d965e6fd12ec0d758270fb4c90bbdc1a05e60cc4c895cf9b671a296c9d867_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:e8e807451e3c5d8d0a8575e1280d7125a4ece51547a7b4a5cd247837662cedad_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:f2a24aa01cbe0d926d4aefe3b12eba21eb5ec7f87276e572a6814c727228624c_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:45cc0d783d1e7874ac73dfbdfe7e03c63b227ab3c4f1e15a0a2f5c97956a76d9_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:6f3eb26734e89375c3e1fb7ac366e12dc0d41bac8f07de9210c7e9845a01eec1_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:768c45fa9f35d98dfe5cfe1ea12f552402bf68ac6e1f828b14310ef59ce57c40_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:b5f1bf30495f6be97c696cf7f90768629cee96f8d106f745bf95fdefddc99592_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:6c85b42ede0f4745ed558bcb03d033c49f56cef17a70c12e5308066124cac6e3_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:091529a93e258a612fd4a98222e6a370ee10b4e97efa791b50f79a2670163d01_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0e8958a22f6771ddfe32b34027c69dbbef65d980c7e465a79d4202d2627994ad_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:5a8b0203ff083113e8b30a123ab30c4bad571f57fb59c1e7e01807b92552504e_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:89bf6a32a0935cacadbc6d23566dce6ca741e404d58c11050638c7b8e868028b_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:077cc953354ea2edd85569a622f97c15d44163d68234e7a9fdee899d25c19cdb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:66285f866090e1bfbedacd592e9d5ea9f2a30b88aa03bc86bc790d6b98a929a4_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:8c80054171d5063457df4bd074674b1824783a101dacb6137da227080aff957c_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:b0f15904251c6665961eef9c944d00f17499f7219351fe213fe7935f62fbf7ac_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:62476ac2fb0096caa9b181f523cc3573ccffe70be1433f08d1d0255b6d3a0640_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:6f632bc9829880a44e2e94084284b52683b4a01dc3315043b0aa32eb344b16cb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:aa3d1cf7853bfe8307efb01f714585f378d1d3d4ed5de7c8808a72e4aeecd4f3_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:bf1d4b2b1ef03e65be59699ce3233a75a34e1777abc182984c7a8efa698a936e_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:141f17d12c748c7ab9e94cfd9db7e2492d3063e7478249d6430ac0d8fcfb8875_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:5909184fe3d37eb45ba3bf55d7b708d818f2a5abfc2949c4a7081a5cd30cea4f_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:6217f0bb4937fa0e0fc0a5c86456fdc1992e169dfedc3d11d5165cef575d4d53_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:d55a55a36a23e7deb83718bd5dcc19b083b84d441add72ea7f4e28935e4717e3_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:0f8e1171f278395f3c72e4d9d3c0492bed15b678963fb2b6182bd65343b85a2e_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:823bb59b1c7d01557c29f9f1e4a4ee39814c38d826b06c3c9de4b8d179078419_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:93c7e9b321c7e9aa4a412a993a6b20412e24772832cc0dd23bbb17aa25f15487_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:9e50b45f81fedab27e896f04b80bacaa01d8370ff5679147f95ad79b61972d83_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:8f145d4e336bd77fcc94f0845f9ebf94563ffd96d56794d96a665c11241df152_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:981917806c7faf31156241cc85577cf375ee566f78adaeadc096d0ba8482b835_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:af3ed91687500d64e2348cca4877c43f73211b8fbd132e7767c3521763185348_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:c05020e5ee5bddc62e38493cd16b6e4ffde7c2248a00d710f32b90a6ee12ceeb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2af86b409540513f6da1afa83110a5cafe8778d2ec16332faa31c964bd5f43f7_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2f3bec76a833a72c7dfa93ed55e55e80e2621c154e5a2f156deaf78d7c6b97b4_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:81a2385be30079500f13f97a18607aa685abd61265bf8fa78bc6ce126341be50_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:fdc8f64f3b82b200a5e31b01b8612069f1aa897014085c1de755394552a1a70a_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:856b9088dbda4e7374daf232602f4bb90b05ad1be1df46d6e363a002f549f4de_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:a107ae2f7b140f2fb2243f33c378228c2f164cfd2d23f57e63f6c424fd400929_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:e21de356b7d879800a96f6c5aeee6bc59a3ed9c58d36503f7089625ce887bb25_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:fcaf6d60d682cf51866948ea3b4846c2993e2801adb69dc745ffa832318f515c_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:11f005939e15d63057bf2f0a988b6baebc275d3e752e9f7696d0f7f5266fd5d6_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:4b4c98be96a932d508fad769eff61bff2a44e13baa60b22b6c543f4a11eb71c2_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:6c87453ffe89e8be752ee40c8a9ccf6894c83be703f13901b1e8b64a4c0e549a_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:c18a1c50a4fc7081c6564d1c4ed4904212b7939a4f1f46afef0a36dc1d76f38e_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:33367b9fdb3addce3302ad35bc10423505fefe3dd27b8b9013b26d66caac2a6c_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:72cbdb061cbcd295be5e66a0eabb409af16ade7f0aa12b04c2d7327e9e1a24ba_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:d0379f9da8cbb5514394a4550ff0d79f90fa691fcced5806296479c7b63353da_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:e99d1d877bd7335736cbaeb4db5b9904369a1d07f6df332c38ad79ff1256b67b_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:06285611aef2528fc92c5cebb66ff4c74fe44d457f43cf9ec2f4a98c3c68d25e_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:25e0f4153eb5bc6fbc6b389d5adc81bfde103070ef58317c3c25ce4144a628d3_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:acd3c0369c18cbfa63a5972ed1721f93f1fcb456963ff855dea2c295baf1cdb8_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:d086075db52f4476aa64d7e2680baa01e99da246275fa9cae0ba4a74de63c7f3_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:07d89c1b524d1451051feb865bc716da2197add90fa0c58c4cf4a82975ec846c_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:6582e647d7dd604e25977ec1579969aa1fcb29ead1a0ea65833531d633bbdd2b_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:75e3aec03dffbd0f40f88a08ff5e0319f4515d73f0bcfae28b5fa526b494afc4_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:f0079e8ae53d84223aea2d3186e7bc6b525b7c03d307cde50cfb9f1bbc18712b_arm64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2489661"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in ws, an open source WebSocket client and server. A remote attacker can exploit this memory exhaustion vulnerability by sending a high volume of exceptionally small fragments and data chunks. This action forces the affected component to allocate and hold structural wrappers that consume excessive memory. Consequently, this leads to process termination and a denial of service (DoS) for the remote peer.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "ws: ws: Denial of Service via memory exhaustion from small WebSocket fragments",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This is an Important denial of service vulnerability in the `ws` WebSocket library. A remote attacker can exploit this flaw by sending a high volume of small, fragmented data, leading to excessive memory consumption and subsequent process termination. This can result in service disruption for Red Hat products that utilize `ws` for WebSocket communication.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:1384e5ba2b7d23119a49d8713826f4c65668bca310589ac7abd0c0d41c7e4c90_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:7f58528b1da9146aa55917324fdf2b375794742b34e5d10ff57f713af60746cd_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:844c3b1499b00aeadfc561642e53792ad80f535efd53b35793ba08b0f26c6d61_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:e1019c30e1d84e66d775d0d6fc7d051803dcbe44823fb2a1914807be39c79dae_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:137ffbb95d463d95da6c350600d968f3cd0e9873bf2e7c6edf952ae3229e9e2b_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:1cccdfd7e90877c27c6d8caea4f1e8ad89bb97c83d97ddf570d4f4ee116f1986_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:71657b82894cfd9e350746f48965e148868a675b9a20dcb7f94a6bc7a5b16ea5_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:881e405e32821ef10cf992c7a633281c1dc45df721fe909048df1689472000ce_ppc64le"
],
"known_not_affected": [
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:8c9a7ebf430b9f4ca200c6c70b049e8456cf88fd8bf0871b42d65e8dc786d451_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:926d965e6fd12ec0d758270fb4c90bbdc1a05e60cc4c895cf9b671a296c9d867_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:e8e807451e3c5d8d0a8575e1280d7125a4ece51547a7b4a5cd247837662cedad_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:f2a24aa01cbe0d926d4aefe3b12eba21eb5ec7f87276e572a6814c727228624c_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:45cc0d783d1e7874ac73dfbdfe7e03c63b227ab3c4f1e15a0a2f5c97956a76d9_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:6f3eb26734e89375c3e1fb7ac366e12dc0d41bac8f07de9210c7e9845a01eec1_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:768c45fa9f35d98dfe5cfe1ea12f552402bf68ac6e1f828b14310ef59ce57c40_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:b5f1bf30495f6be97c696cf7f90768629cee96f8d106f745bf95fdefddc99592_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:6c85b42ede0f4745ed558bcb03d033c49f56cef17a70c12e5308066124cac6e3_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:091529a93e258a612fd4a98222e6a370ee10b4e97efa791b50f79a2670163d01_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0e8958a22f6771ddfe32b34027c69dbbef65d980c7e465a79d4202d2627994ad_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:5a8b0203ff083113e8b30a123ab30c4bad571f57fb59c1e7e01807b92552504e_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:89bf6a32a0935cacadbc6d23566dce6ca741e404d58c11050638c7b8e868028b_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:077cc953354ea2edd85569a622f97c15d44163d68234e7a9fdee899d25c19cdb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:66285f866090e1bfbedacd592e9d5ea9f2a30b88aa03bc86bc790d6b98a929a4_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:8c80054171d5063457df4bd074674b1824783a101dacb6137da227080aff957c_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:b0f15904251c6665961eef9c944d00f17499f7219351fe213fe7935f62fbf7ac_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:62476ac2fb0096caa9b181f523cc3573ccffe70be1433f08d1d0255b6d3a0640_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:6f632bc9829880a44e2e94084284b52683b4a01dc3315043b0aa32eb344b16cb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:aa3d1cf7853bfe8307efb01f714585f378d1d3d4ed5de7c8808a72e4aeecd4f3_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:bf1d4b2b1ef03e65be59699ce3233a75a34e1777abc182984c7a8efa698a936e_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:141f17d12c748c7ab9e94cfd9db7e2492d3063e7478249d6430ac0d8fcfb8875_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:5909184fe3d37eb45ba3bf55d7b708d818f2a5abfc2949c4a7081a5cd30cea4f_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:6217f0bb4937fa0e0fc0a5c86456fdc1992e169dfedc3d11d5165cef575d4d53_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:d55a55a36a23e7deb83718bd5dcc19b083b84d441add72ea7f4e28935e4717e3_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:0f8e1171f278395f3c72e4d9d3c0492bed15b678963fb2b6182bd65343b85a2e_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:823bb59b1c7d01557c29f9f1e4a4ee39814c38d826b06c3c9de4b8d179078419_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:93c7e9b321c7e9aa4a412a993a6b20412e24772832cc0dd23bbb17aa25f15487_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:9e50b45f81fedab27e896f04b80bacaa01d8370ff5679147f95ad79b61972d83_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:8f145d4e336bd77fcc94f0845f9ebf94563ffd96d56794d96a665c11241df152_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:981917806c7faf31156241cc85577cf375ee566f78adaeadc096d0ba8482b835_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:af3ed91687500d64e2348cca4877c43f73211b8fbd132e7767c3521763185348_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:c05020e5ee5bddc62e38493cd16b6e4ffde7c2248a00d710f32b90a6ee12ceeb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2af86b409540513f6da1afa83110a5cafe8778d2ec16332faa31c964bd5f43f7_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2f3bec76a833a72c7dfa93ed55e55e80e2621c154e5a2f156deaf78d7c6b97b4_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:81a2385be30079500f13f97a18607aa685abd61265bf8fa78bc6ce126341be50_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:fdc8f64f3b82b200a5e31b01b8612069f1aa897014085c1de755394552a1a70a_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:856b9088dbda4e7374daf232602f4bb90b05ad1be1df46d6e363a002f549f4de_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:a107ae2f7b140f2fb2243f33c378228c2f164cfd2d23f57e63f6c424fd400929_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:e21de356b7d879800a96f6c5aeee6bc59a3ed9c58d36503f7089625ce887bb25_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:fcaf6d60d682cf51866948ea3b4846c2993e2801adb69dc745ffa832318f515c_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:11f005939e15d63057bf2f0a988b6baebc275d3e752e9f7696d0f7f5266fd5d6_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:4b4c98be96a932d508fad769eff61bff2a44e13baa60b22b6c543f4a11eb71c2_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:6c87453ffe89e8be752ee40c8a9ccf6894c83be703f13901b1e8b64a4c0e549a_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:c18a1c50a4fc7081c6564d1c4ed4904212b7939a4f1f46afef0a36dc1d76f38e_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:33367b9fdb3addce3302ad35bc10423505fefe3dd27b8b9013b26d66caac2a6c_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:72cbdb061cbcd295be5e66a0eabb409af16ade7f0aa12b04c2d7327e9e1a24ba_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:d0379f9da8cbb5514394a4550ff0d79f90fa691fcced5806296479c7b63353da_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:e99d1d877bd7335736cbaeb4db5b9904369a1d07f6df332c38ad79ff1256b67b_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:06285611aef2528fc92c5cebb66ff4c74fe44d457f43cf9ec2f4a98c3c68d25e_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:25e0f4153eb5bc6fbc6b389d5adc81bfde103070ef58317c3c25ce4144a628d3_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:acd3c0369c18cbfa63a5972ed1721f93f1fcb456963ff855dea2c295baf1cdb8_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:d086075db52f4476aa64d7e2680baa01e99da246275fa9cae0ba4a74de63c7f3_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:07d89c1b524d1451051feb865bc716da2197add90fa0c58c4cf4a82975ec846c_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:6582e647d7dd604e25977ec1579969aa1fcb29ead1a0ea65833531d633bbdd2b_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:75e3aec03dffbd0f40f88a08ff5e0319f4515d73f0bcfae28b5fa526b494afc4_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:f0079e8ae53d84223aea2d3186e7bc6b525b7c03d307cde50cfb9f1bbc18712b_arm64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-48779"
},
{
"category": "external",
"summary": "RHBZ#2489661",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2489661"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-48779",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-48779"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-48779",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-48779"
},
{
"category": "external",
"summary": "https://github.com/websockets/ws/commit/86d3e8a5fb0246ed373860c5fbb0de88824a27f7",
"url": "https://github.com/websockets/ws/commit/86d3e8a5fb0246ed373860c5fbb0de88824a27f7"
},
{
"category": "external",
"summary": "https://github.com/websockets/ws/commit/b5372ac67bb97a773727b8e9f5035a8123556d53",
"url": "https://github.com/websockets/ws/commit/b5372ac67bb97a773727b8e9f5035a8123556d53"
},
{
"category": "external",
"summary": "https://github.com/websockets/ws/commit/bca91adf15677e47dbe4f959653452727be28b94",
"url": "https://github.com/websockets/ws/commit/bca91adf15677e47dbe4f959653452727be28b94"
},
{
"category": "external",
"summary": "https://github.com/websockets/ws/commit/fd36cd864fcdf62a08273a99e19a7d975401fee8",
"url": "https://github.com/websockets/ws/commit/fd36cd864fcdf62a08273a99e19a7d975401fee8"
},
{
"category": "external",
"summary": "https://github.com/websockets/ws/security/advisories/GHSA-96hv-2xvq-fx4p",
"url": "https://github.com/websockets/ws/security/advisories/GHSA-96hv-2xvq-fx4p"
}
],
"release_date": "2026-06-16T21:26:22.537000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T17:12:17+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\nFor details on how to apply this update, refer to:\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:1384e5ba2b7d23119a49d8713826f4c65668bca310589ac7abd0c0d41c7e4c90_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:7f58528b1da9146aa55917324fdf2b375794742b34e5d10ff57f713af60746cd_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:844c3b1499b00aeadfc561642e53792ad80f535efd53b35793ba08b0f26c6d61_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:e1019c30e1d84e66d775d0d6fc7d051803dcbe44823fb2a1914807be39c79dae_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:137ffbb95d463d95da6c350600d968f3cd0e9873bf2e7c6edf952ae3229e9e2b_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:1cccdfd7e90877c27c6d8caea4f1e8ad89bb97c83d97ddf570d4f4ee116f1986_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:71657b82894cfd9e350746f48965e148868a675b9a20dcb7f94a6bc7a5b16ea5_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:881e405e32821ef10cf992c7a633281c1dc45df721fe909048df1689472000ce_ppc64le"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36820"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:1384e5ba2b7d23119a49d8713826f4c65668bca310589ac7abd0c0d41c7e4c90_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:7f58528b1da9146aa55917324fdf2b375794742b34e5d10ff57f713af60746cd_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:844c3b1499b00aeadfc561642e53792ad80f535efd53b35793ba08b0f26c6d61_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:e1019c30e1d84e66d775d0d6fc7d051803dcbe44823fb2a1914807be39c79dae_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:8c9a7ebf430b9f4ca200c6c70b049e8456cf88fd8bf0871b42d65e8dc786d451_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:926d965e6fd12ec0d758270fb4c90bbdc1a05e60cc4c895cf9b671a296c9d867_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:e8e807451e3c5d8d0a8575e1280d7125a4ece51547a7b4a5cd247837662cedad_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:f2a24aa01cbe0d926d4aefe3b12eba21eb5ec7f87276e572a6814c727228624c_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:45cc0d783d1e7874ac73dfbdfe7e03c63b227ab3c4f1e15a0a2f5c97956a76d9_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:6f3eb26734e89375c3e1fb7ac366e12dc0d41bac8f07de9210c7e9845a01eec1_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:768c45fa9f35d98dfe5cfe1ea12f552402bf68ac6e1f828b14310ef59ce57c40_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:b5f1bf30495f6be97c696cf7f90768629cee96f8d106f745bf95fdefddc99592_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:137ffbb95d463d95da6c350600d968f3cd0e9873bf2e7c6edf952ae3229e9e2b_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:1cccdfd7e90877c27c6d8caea4f1e8ad89bb97c83d97ddf570d4f4ee116f1986_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:71657b82894cfd9e350746f48965e148868a675b9a20dcb7f94a6bc7a5b16ea5_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:881e405e32821ef10cf992c7a633281c1dc45df721fe909048df1689472000ce_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:6c85b42ede0f4745ed558bcb03d033c49f56cef17a70c12e5308066124cac6e3_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:091529a93e258a612fd4a98222e6a370ee10b4e97efa791b50f79a2670163d01_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0e8958a22f6771ddfe32b34027c69dbbef65d980c7e465a79d4202d2627994ad_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:5a8b0203ff083113e8b30a123ab30c4bad571f57fb59c1e7e01807b92552504e_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:89bf6a32a0935cacadbc6d23566dce6ca741e404d58c11050638c7b8e868028b_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:077cc953354ea2edd85569a622f97c15d44163d68234e7a9fdee899d25c19cdb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:66285f866090e1bfbedacd592e9d5ea9f2a30b88aa03bc86bc790d6b98a929a4_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:8c80054171d5063457df4bd074674b1824783a101dacb6137da227080aff957c_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:b0f15904251c6665961eef9c944d00f17499f7219351fe213fe7935f62fbf7ac_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:62476ac2fb0096caa9b181f523cc3573ccffe70be1433f08d1d0255b6d3a0640_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:6f632bc9829880a44e2e94084284b52683b4a01dc3315043b0aa32eb344b16cb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:aa3d1cf7853bfe8307efb01f714585f378d1d3d4ed5de7c8808a72e4aeecd4f3_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:bf1d4b2b1ef03e65be59699ce3233a75a34e1777abc182984c7a8efa698a936e_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:141f17d12c748c7ab9e94cfd9db7e2492d3063e7478249d6430ac0d8fcfb8875_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:5909184fe3d37eb45ba3bf55d7b708d818f2a5abfc2949c4a7081a5cd30cea4f_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:6217f0bb4937fa0e0fc0a5c86456fdc1992e169dfedc3d11d5165cef575d4d53_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:d55a55a36a23e7deb83718bd5dcc19b083b84d441add72ea7f4e28935e4717e3_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:0f8e1171f278395f3c72e4d9d3c0492bed15b678963fb2b6182bd65343b85a2e_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:823bb59b1c7d01557c29f9f1e4a4ee39814c38d826b06c3c9de4b8d179078419_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:93c7e9b321c7e9aa4a412a993a6b20412e24772832cc0dd23bbb17aa25f15487_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:9e50b45f81fedab27e896f04b80bacaa01d8370ff5679147f95ad79b61972d83_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:8f145d4e336bd77fcc94f0845f9ebf94563ffd96d56794d96a665c11241df152_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:981917806c7faf31156241cc85577cf375ee566f78adaeadc096d0ba8482b835_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:af3ed91687500d64e2348cca4877c43f73211b8fbd132e7767c3521763185348_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:c05020e5ee5bddc62e38493cd16b6e4ffde7c2248a00d710f32b90a6ee12ceeb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2af86b409540513f6da1afa83110a5cafe8778d2ec16332faa31c964bd5f43f7_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2f3bec76a833a72c7dfa93ed55e55e80e2621c154e5a2f156deaf78d7c6b97b4_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:81a2385be30079500f13f97a18607aa685abd61265bf8fa78bc6ce126341be50_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:fdc8f64f3b82b200a5e31b01b8612069f1aa897014085c1de755394552a1a70a_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:856b9088dbda4e7374daf232602f4bb90b05ad1be1df46d6e363a002f549f4de_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:a107ae2f7b140f2fb2243f33c378228c2f164cfd2d23f57e63f6c424fd400929_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:e21de356b7d879800a96f6c5aeee6bc59a3ed9c58d36503f7089625ce887bb25_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:fcaf6d60d682cf51866948ea3b4846c2993e2801adb69dc745ffa832318f515c_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:11f005939e15d63057bf2f0a988b6baebc275d3e752e9f7696d0f7f5266fd5d6_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:4b4c98be96a932d508fad769eff61bff2a44e13baa60b22b6c543f4a11eb71c2_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:6c87453ffe89e8be752ee40c8a9ccf6894c83be703f13901b1e8b64a4c0e549a_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:c18a1c50a4fc7081c6564d1c4ed4904212b7939a4f1f46afef0a36dc1d76f38e_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:33367b9fdb3addce3302ad35bc10423505fefe3dd27b8b9013b26d66caac2a6c_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:72cbdb061cbcd295be5e66a0eabb409af16ade7f0aa12b04c2d7327e9e1a24ba_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:d0379f9da8cbb5514394a4550ff0d79f90fa691fcced5806296479c7b63353da_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:e99d1d877bd7335736cbaeb4db5b9904369a1d07f6df332c38ad79ff1256b67b_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:06285611aef2528fc92c5cebb66ff4c74fe44d457f43cf9ec2f4a98c3c68d25e_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:25e0f4153eb5bc6fbc6b389d5adc81bfde103070ef58317c3c25ce4144a628d3_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:acd3c0369c18cbfa63a5972ed1721f93f1fcb456963ff855dea2c295baf1cdb8_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:d086075db52f4476aa64d7e2680baa01e99da246275fa9cae0ba4a74de63c7f3_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:07d89c1b524d1451051feb865bc716da2197add90fa0c58c4cf4a82975ec846c_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:6582e647d7dd604e25977ec1579969aa1fcb29ead1a0ea65833531d633bbdd2b_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:75e3aec03dffbd0f40f88a08ff5e0319f4515d73f0bcfae28b5fa526b494afc4_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:f0079e8ae53d84223aea2d3186e7bc6b525b7c03d307cde50cfb9f1bbc18712b_arm64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:1384e5ba2b7d23119a49d8713826f4c65668bca310589ac7abd0c0d41c7e4c90_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:7f58528b1da9146aa55917324fdf2b375794742b34e5d10ff57f713af60746cd_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:844c3b1499b00aeadfc561642e53792ad80f535efd53b35793ba08b0f26c6d61_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:e1019c30e1d84e66d775d0d6fc7d051803dcbe44823fb2a1914807be39c79dae_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:8c9a7ebf430b9f4ca200c6c70b049e8456cf88fd8bf0871b42d65e8dc786d451_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:926d965e6fd12ec0d758270fb4c90bbdc1a05e60cc4c895cf9b671a296c9d867_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:e8e807451e3c5d8d0a8575e1280d7125a4ece51547a7b4a5cd247837662cedad_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:f2a24aa01cbe0d926d4aefe3b12eba21eb5ec7f87276e572a6814c727228624c_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:45cc0d783d1e7874ac73dfbdfe7e03c63b227ab3c4f1e15a0a2f5c97956a76d9_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:6f3eb26734e89375c3e1fb7ac366e12dc0d41bac8f07de9210c7e9845a01eec1_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:768c45fa9f35d98dfe5cfe1ea12f552402bf68ac6e1f828b14310ef59ce57c40_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:b5f1bf30495f6be97c696cf7f90768629cee96f8d106f745bf95fdefddc99592_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:137ffbb95d463d95da6c350600d968f3cd0e9873bf2e7c6edf952ae3229e9e2b_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:1cccdfd7e90877c27c6d8caea4f1e8ad89bb97c83d97ddf570d4f4ee116f1986_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:71657b82894cfd9e350746f48965e148868a675b9a20dcb7f94a6bc7a5b16ea5_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:881e405e32821ef10cf992c7a633281c1dc45df721fe909048df1689472000ce_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:6c85b42ede0f4745ed558bcb03d033c49f56cef17a70c12e5308066124cac6e3_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:091529a93e258a612fd4a98222e6a370ee10b4e97efa791b50f79a2670163d01_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0e8958a22f6771ddfe32b34027c69dbbef65d980c7e465a79d4202d2627994ad_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:5a8b0203ff083113e8b30a123ab30c4bad571f57fb59c1e7e01807b92552504e_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:89bf6a32a0935cacadbc6d23566dce6ca741e404d58c11050638c7b8e868028b_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:077cc953354ea2edd85569a622f97c15d44163d68234e7a9fdee899d25c19cdb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:66285f866090e1bfbedacd592e9d5ea9f2a30b88aa03bc86bc790d6b98a929a4_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:8c80054171d5063457df4bd074674b1824783a101dacb6137da227080aff957c_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:b0f15904251c6665961eef9c944d00f17499f7219351fe213fe7935f62fbf7ac_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:62476ac2fb0096caa9b181f523cc3573ccffe70be1433f08d1d0255b6d3a0640_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:6f632bc9829880a44e2e94084284b52683b4a01dc3315043b0aa32eb344b16cb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:aa3d1cf7853bfe8307efb01f714585f378d1d3d4ed5de7c8808a72e4aeecd4f3_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:bf1d4b2b1ef03e65be59699ce3233a75a34e1777abc182984c7a8efa698a936e_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:141f17d12c748c7ab9e94cfd9db7e2492d3063e7478249d6430ac0d8fcfb8875_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:5909184fe3d37eb45ba3bf55d7b708d818f2a5abfc2949c4a7081a5cd30cea4f_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:6217f0bb4937fa0e0fc0a5c86456fdc1992e169dfedc3d11d5165cef575d4d53_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:d55a55a36a23e7deb83718bd5dcc19b083b84d441add72ea7f4e28935e4717e3_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:0f8e1171f278395f3c72e4d9d3c0492bed15b678963fb2b6182bd65343b85a2e_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:823bb59b1c7d01557c29f9f1e4a4ee39814c38d826b06c3c9de4b8d179078419_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:93c7e9b321c7e9aa4a412a993a6b20412e24772832cc0dd23bbb17aa25f15487_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:9e50b45f81fedab27e896f04b80bacaa01d8370ff5679147f95ad79b61972d83_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:8f145d4e336bd77fcc94f0845f9ebf94563ffd96d56794d96a665c11241df152_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:981917806c7faf31156241cc85577cf375ee566f78adaeadc096d0ba8482b835_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:af3ed91687500d64e2348cca4877c43f73211b8fbd132e7767c3521763185348_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:c05020e5ee5bddc62e38493cd16b6e4ffde7c2248a00d710f32b90a6ee12ceeb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2af86b409540513f6da1afa83110a5cafe8778d2ec16332faa31c964bd5f43f7_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2f3bec76a833a72c7dfa93ed55e55e80e2621c154e5a2f156deaf78d7c6b97b4_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:81a2385be30079500f13f97a18607aa685abd61265bf8fa78bc6ce126341be50_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:fdc8f64f3b82b200a5e31b01b8612069f1aa897014085c1de755394552a1a70a_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:856b9088dbda4e7374daf232602f4bb90b05ad1be1df46d6e363a002f549f4de_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:a107ae2f7b140f2fb2243f33c378228c2f164cfd2d23f57e63f6c424fd400929_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:e21de356b7d879800a96f6c5aeee6bc59a3ed9c58d36503f7089625ce887bb25_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:fcaf6d60d682cf51866948ea3b4846c2993e2801adb69dc745ffa832318f515c_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:11f005939e15d63057bf2f0a988b6baebc275d3e752e9f7696d0f7f5266fd5d6_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:4b4c98be96a932d508fad769eff61bff2a44e13baa60b22b6c543f4a11eb71c2_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:6c87453ffe89e8be752ee40c8a9ccf6894c83be703f13901b1e8b64a4c0e549a_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:c18a1c50a4fc7081c6564d1c4ed4904212b7939a4f1f46afef0a36dc1d76f38e_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:33367b9fdb3addce3302ad35bc10423505fefe3dd27b8b9013b26d66caac2a6c_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:72cbdb061cbcd295be5e66a0eabb409af16ade7f0aa12b04c2d7327e9e1a24ba_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:d0379f9da8cbb5514394a4550ff0d79f90fa691fcced5806296479c7b63353da_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:e99d1d877bd7335736cbaeb4db5b9904369a1d07f6df332c38ad79ff1256b67b_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:06285611aef2528fc92c5cebb66ff4c74fe44d457f43cf9ec2f4a98c3c68d25e_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:25e0f4153eb5bc6fbc6b389d5adc81bfde103070ef58317c3c25ce4144a628d3_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:acd3c0369c18cbfa63a5972ed1721f93f1fcb456963ff855dea2c295baf1cdb8_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:d086075db52f4476aa64d7e2680baa01e99da246275fa9cae0ba4a74de63c7f3_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:07d89c1b524d1451051feb865bc716da2197add90fa0c58c4cf4a82975ec846c_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:6582e647d7dd604e25977ec1579969aa1fcb29ead1a0ea65833531d633bbdd2b_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:75e3aec03dffbd0f40f88a08ff5e0319f4515d73f0bcfae28b5fa526b494afc4_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:f0079e8ae53d84223aea2d3186e7bc6b525b7c03d307cde50cfb9f1bbc18712b_arm64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "ws: ws: Denial of Service via memory exhaustion from small WebSocket fragments"
},
{
"cve": "CVE-2026-50559",
"cwe": {
"id": "CWE-551",
"name": "Incorrect Behavior Order: Authorization Before Parsing and Canonicalization"
},
"discovery_date": "2026-06-09T10:55:32.426000+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:1384e5ba2b7d23119a49d8713826f4c65668bca310589ac7abd0c0d41c7e4c90_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:7f58528b1da9146aa55917324fdf2b375794742b34e5d10ff57f713af60746cd_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:844c3b1499b00aeadfc561642e53792ad80f535efd53b35793ba08b0f26c6d61_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:e1019c30e1d84e66d775d0d6fc7d051803dcbe44823fb2a1914807be39c79dae_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:8c9a7ebf430b9f4ca200c6c70b049e8456cf88fd8bf0871b42d65e8dc786d451_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:926d965e6fd12ec0d758270fb4c90bbdc1a05e60cc4c895cf9b671a296c9d867_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:e8e807451e3c5d8d0a8575e1280d7125a4ece51547a7b4a5cd247837662cedad_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:f2a24aa01cbe0d926d4aefe3b12eba21eb5ec7f87276e572a6814c727228624c_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:45cc0d783d1e7874ac73dfbdfe7e03c63b227ab3c4f1e15a0a2f5c97956a76d9_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:6f3eb26734e89375c3e1fb7ac366e12dc0d41bac8f07de9210c7e9845a01eec1_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:768c45fa9f35d98dfe5cfe1ea12f552402bf68ac6e1f828b14310ef59ce57c40_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:b5f1bf30495f6be97c696cf7f90768629cee96f8d106f745bf95fdefddc99592_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:137ffbb95d463d95da6c350600d968f3cd0e9873bf2e7c6edf952ae3229e9e2b_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:1cccdfd7e90877c27c6d8caea4f1e8ad89bb97c83d97ddf570d4f4ee116f1986_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:71657b82894cfd9e350746f48965e148868a675b9a20dcb7f94a6bc7a5b16ea5_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:881e405e32821ef10cf992c7a633281c1dc45df721fe909048df1689472000ce_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:6c85b42ede0f4745ed558bcb03d033c49f56cef17a70c12e5308066124cac6e3_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:091529a93e258a612fd4a98222e6a370ee10b4e97efa791b50f79a2670163d01_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0e8958a22f6771ddfe32b34027c69dbbef65d980c7e465a79d4202d2627994ad_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:5a8b0203ff083113e8b30a123ab30c4bad571f57fb59c1e7e01807b92552504e_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:89bf6a32a0935cacadbc6d23566dce6ca741e404d58c11050638c7b8e868028b_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:077cc953354ea2edd85569a622f97c15d44163d68234e7a9fdee899d25c19cdb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:66285f866090e1bfbedacd592e9d5ea9f2a30b88aa03bc86bc790d6b98a929a4_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:8c80054171d5063457df4bd074674b1824783a101dacb6137da227080aff957c_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:b0f15904251c6665961eef9c944d00f17499f7219351fe213fe7935f62fbf7ac_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:62476ac2fb0096caa9b181f523cc3573ccffe70be1433f08d1d0255b6d3a0640_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:6f632bc9829880a44e2e94084284b52683b4a01dc3315043b0aa32eb344b16cb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:aa3d1cf7853bfe8307efb01f714585f378d1d3d4ed5de7c8808a72e4aeecd4f3_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:bf1d4b2b1ef03e65be59699ce3233a75a34e1777abc182984c7a8efa698a936e_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:0f8e1171f278395f3c72e4d9d3c0492bed15b678963fb2b6182bd65343b85a2e_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:823bb59b1c7d01557c29f9f1e4a4ee39814c38d826b06c3c9de4b8d179078419_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:93c7e9b321c7e9aa4a412a993a6b20412e24772832cc0dd23bbb17aa25f15487_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:9e50b45f81fedab27e896f04b80bacaa01d8370ff5679147f95ad79b61972d83_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:8f145d4e336bd77fcc94f0845f9ebf94563ffd96d56794d96a665c11241df152_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:981917806c7faf31156241cc85577cf375ee566f78adaeadc096d0ba8482b835_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:af3ed91687500d64e2348cca4877c43f73211b8fbd132e7767c3521763185348_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:c05020e5ee5bddc62e38493cd16b6e4ffde7c2248a00d710f32b90a6ee12ceeb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2af86b409540513f6da1afa83110a5cafe8778d2ec16332faa31c964bd5f43f7_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2f3bec76a833a72c7dfa93ed55e55e80e2621c154e5a2f156deaf78d7c6b97b4_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:81a2385be30079500f13f97a18607aa685abd61265bf8fa78bc6ce126341be50_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:fdc8f64f3b82b200a5e31b01b8612069f1aa897014085c1de755394552a1a70a_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:856b9088dbda4e7374daf232602f4bb90b05ad1be1df46d6e363a002f549f4de_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:a107ae2f7b140f2fb2243f33c378228c2f164cfd2d23f57e63f6c424fd400929_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:e21de356b7d879800a96f6c5aeee6bc59a3ed9c58d36503f7089625ce887bb25_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:fcaf6d60d682cf51866948ea3b4846c2993e2801adb69dc745ffa832318f515c_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:11f005939e15d63057bf2f0a988b6baebc275d3e752e9f7696d0f7f5266fd5d6_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:4b4c98be96a932d508fad769eff61bff2a44e13baa60b22b6c543f4a11eb71c2_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:6c87453ffe89e8be752ee40c8a9ccf6894c83be703f13901b1e8b64a4c0e549a_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:c18a1c50a4fc7081c6564d1c4ed4904212b7939a4f1f46afef0a36dc1d76f38e_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:33367b9fdb3addce3302ad35bc10423505fefe3dd27b8b9013b26d66caac2a6c_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:72cbdb061cbcd295be5e66a0eabb409af16ade7f0aa12b04c2d7327e9e1a24ba_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:d0379f9da8cbb5514394a4550ff0d79f90fa691fcced5806296479c7b63353da_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:e99d1d877bd7335736cbaeb4db5b9904369a1d07f6df332c38ad79ff1256b67b_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:06285611aef2528fc92c5cebb66ff4c74fe44d457f43cf9ec2f4a98c3c68d25e_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:25e0f4153eb5bc6fbc6b389d5adc81bfde103070ef58317c3c25ce4144a628d3_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:acd3c0369c18cbfa63a5972ed1721f93f1fcb456963ff855dea2c295baf1cdb8_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:d086075db52f4476aa64d7e2680baa01e99da246275fa9cae0ba4a74de63c7f3_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:07d89c1b524d1451051feb865bc716da2197add90fa0c58c4cf4a82975ec846c_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:6582e647d7dd604e25977ec1579969aa1fcb29ead1a0ea65833531d633bbdd2b_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:75e3aec03dffbd0f40f88a08ff5e0319f4515d73f0bcfae28b5fa526b494afc4_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:f0079e8ae53d84223aea2d3186e7bc6b525b7c03d307cde50cfb9f1bbc18712b_arm64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2486959"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Quarkus. A remote attacker could bypass HTTP path-based authorization policies by using specially crafted encoded semicolons, slashes, or backslashes in HTTP requests. This could allow unauthorized access to protected static resources, leading to information disclosure.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "io.quarkus/quarkus-vertx-http: Quarkus: Authorization bypass in HTTP path-based policies via encoded characters",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This is an Important flaw in Quarkus where HTTP path-based authorization policies can be bypassed by a remote attacker. Specially crafted HTTP requests containing encoded semicolons, slashes, or backslashes can circumvent security controls, allowing unauthorized access to protected static resources and leading to information disclosure. This is critical in deployments where Quarkus applications serve sensitive static content and rely solely on path-based authorization.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:141f17d12c748c7ab9e94cfd9db7e2492d3063e7478249d6430ac0d8fcfb8875_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:5909184fe3d37eb45ba3bf55d7b708d818f2a5abfc2949c4a7081a5cd30cea4f_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:6217f0bb4937fa0e0fc0a5c86456fdc1992e169dfedc3d11d5165cef575d4d53_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:d55a55a36a23e7deb83718bd5dcc19b083b84d441add72ea7f4e28935e4717e3_ppc64le"
],
"known_not_affected": [
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:1384e5ba2b7d23119a49d8713826f4c65668bca310589ac7abd0c0d41c7e4c90_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:7f58528b1da9146aa55917324fdf2b375794742b34e5d10ff57f713af60746cd_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:844c3b1499b00aeadfc561642e53792ad80f535efd53b35793ba08b0f26c6d61_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:e1019c30e1d84e66d775d0d6fc7d051803dcbe44823fb2a1914807be39c79dae_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:8c9a7ebf430b9f4ca200c6c70b049e8456cf88fd8bf0871b42d65e8dc786d451_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:926d965e6fd12ec0d758270fb4c90bbdc1a05e60cc4c895cf9b671a296c9d867_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:e8e807451e3c5d8d0a8575e1280d7125a4ece51547a7b4a5cd247837662cedad_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:f2a24aa01cbe0d926d4aefe3b12eba21eb5ec7f87276e572a6814c727228624c_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:45cc0d783d1e7874ac73dfbdfe7e03c63b227ab3c4f1e15a0a2f5c97956a76d9_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:6f3eb26734e89375c3e1fb7ac366e12dc0d41bac8f07de9210c7e9845a01eec1_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:768c45fa9f35d98dfe5cfe1ea12f552402bf68ac6e1f828b14310ef59ce57c40_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:b5f1bf30495f6be97c696cf7f90768629cee96f8d106f745bf95fdefddc99592_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:137ffbb95d463d95da6c350600d968f3cd0e9873bf2e7c6edf952ae3229e9e2b_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:1cccdfd7e90877c27c6d8caea4f1e8ad89bb97c83d97ddf570d4f4ee116f1986_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:71657b82894cfd9e350746f48965e148868a675b9a20dcb7f94a6bc7a5b16ea5_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:881e405e32821ef10cf992c7a633281c1dc45df721fe909048df1689472000ce_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:6c85b42ede0f4745ed558bcb03d033c49f56cef17a70c12e5308066124cac6e3_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:091529a93e258a612fd4a98222e6a370ee10b4e97efa791b50f79a2670163d01_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0e8958a22f6771ddfe32b34027c69dbbef65d980c7e465a79d4202d2627994ad_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:5a8b0203ff083113e8b30a123ab30c4bad571f57fb59c1e7e01807b92552504e_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:89bf6a32a0935cacadbc6d23566dce6ca741e404d58c11050638c7b8e868028b_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:077cc953354ea2edd85569a622f97c15d44163d68234e7a9fdee899d25c19cdb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:66285f866090e1bfbedacd592e9d5ea9f2a30b88aa03bc86bc790d6b98a929a4_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:8c80054171d5063457df4bd074674b1824783a101dacb6137da227080aff957c_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:b0f15904251c6665961eef9c944d00f17499f7219351fe213fe7935f62fbf7ac_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:62476ac2fb0096caa9b181f523cc3573ccffe70be1433f08d1d0255b6d3a0640_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:6f632bc9829880a44e2e94084284b52683b4a01dc3315043b0aa32eb344b16cb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:aa3d1cf7853bfe8307efb01f714585f378d1d3d4ed5de7c8808a72e4aeecd4f3_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:bf1d4b2b1ef03e65be59699ce3233a75a34e1777abc182984c7a8efa698a936e_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:0f8e1171f278395f3c72e4d9d3c0492bed15b678963fb2b6182bd65343b85a2e_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:823bb59b1c7d01557c29f9f1e4a4ee39814c38d826b06c3c9de4b8d179078419_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:93c7e9b321c7e9aa4a412a993a6b20412e24772832cc0dd23bbb17aa25f15487_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:9e50b45f81fedab27e896f04b80bacaa01d8370ff5679147f95ad79b61972d83_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:8f145d4e336bd77fcc94f0845f9ebf94563ffd96d56794d96a665c11241df152_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:981917806c7faf31156241cc85577cf375ee566f78adaeadc096d0ba8482b835_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:af3ed91687500d64e2348cca4877c43f73211b8fbd132e7767c3521763185348_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:c05020e5ee5bddc62e38493cd16b6e4ffde7c2248a00d710f32b90a6ee12ceeb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2af86b409540513f6da1afa83110a5cafe8778d2ec16332faa31c964bd5f43f7_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2f3bec76a833a72c7dfa93ed55e55e80e2621c154e5a2f156deaf78d7c6b97b4_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:81a2385be30079500f13f97a18607aa685abd61265bf8fa78bc6ce126341be50_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:fdc8f64f3b82b200a5e31b01b8612069f1aa897014085c1de755394552a1a70a_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:856b9088dbda4e7374daf232602f4bb90b05ad1be1df46d6e363a002f549f4de_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:a107ae2f7b140f2fb2243f33c378228c2f164cfd2d23f57e63f6c424fd400929_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:e21de356b7d879800a96f6c5aeee6bc59a3ed9c58d36503f7089625ce887bb25_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:fcaf6d60d682cf51866948ea3b4846c2993e2801adb69dc745ffa832318f515c_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:11f005939e15d63057bf2f0a988b6baebc275d3e752e9f7696d0f7f5266fd5d6_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:4b4c98be96a932d508fad769eff61bff2a44e13baa60b22b6c543f4a11eb71c2_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:6c87453ffe89e8be752ee40c8a9ccf6894c83be703f13901b1e8b64a4c0e549a_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:c18a1c50a4fc7081c6564d1c4ed4904212b7939a4f1f46afef0a36dc1d76f38e_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:33367b9fdb3addce3302ad35bc10423505fefe3dd27b8b9013b26d66caac2a6c_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:72cbdb061cbcd295be5e66a0eabb409af16ade7f0aa12b04c2d7327e9e1a24ba_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:d0379f9da8cbb5514394a4550ff0d79f90fa691fcced5806296479c7b63353da_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:e99d1d877bd7335736cbaeb4db5b9904369a1d07f6df332c38ad79ff1256b67b_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:06285611aef2528fc92c5cebb66ff4c74fe44d457f43cf9ec2f4a98c3c68d25e_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:25e0f4153eb5bc6fbc6b389d5adc81bfde103070ef58317c3c25ce4144a628d3_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:acd3c0369c18cbfa63a5972ed1721f93f1fcb456963ff855dea2c295baf1cdb8_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:d086075db52f4476aa64d7e2680baa01e99da246275fa9cae0ba4a74de63c7f3_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:07d89c1b524d1451051feb865bc716da2197add90fa0c58c4cf4a82975ec846c_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:6582e647d7dd604e25977ec1579969aa1fcb29ead1a0ea65833531d633bbdd2b_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:75e3aec03dffbd0f40f88a08ff5e0319f4515d73f0bcfae28b5fa526b494afc4_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:f0079e8ae53d84223aea2d3186e7bc6b525b7c03d307cde50cfb9f1bbc18712b_arm64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-50559"
},
{
"category": "external",
"summary": "RHBZ#2486959",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2486959"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-50559",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-50559"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-50559",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-50559"
},
{
"category": "external",
"summary": "https://github.com/quarkusio/quarkus/security/advisories/GHSA-qcxp-gm7m-4j5v",
"url": "https://github.com/quarkusio/quarkus/security/advisories/GHSA-qcxp-gm7m-4j5v"
}
],
"release_date": "2026-06-17T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T17:12:17+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\nFor details on how to apply this update, refer to:\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:141f17d12c748c7ab9e94cfd9db7e2492d3063e7478249d6430ac0d8fcfb8875_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:5909184fe3d37eb45ba3bf55d7b708d818f2a5abfc2949c4a7081a5cd30cea4f_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:6217f0bb4937fa0e0fc0a5c86456fdc1992e169dfedc3d11d5165cef575d4d53_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:d55a55a36a23e7deb83718bd5dcc19b083b84d441add72ea7f4e28935e4717e3_ppc64le"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36820"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability.",
"product_ids": [
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:1384e5ba2b7d23119a49d8713826f4c65668bca310589ac7abd0c0d41c7e4c90_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:7f58528b1da9146aa55917324fdf2b375794742b34e5d10ff57f713af60746cd_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:844c3b1499b00aeadfc561642e53792ad80f535efd53b35793ba08b0f26c6d61_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:e1019c30e1d84e66d775d0d6fc7d051803dcbe44823fb2a1914807be39c79dae_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:8c9a7ebf430b9f4ca200c6c70b049e8456cf88fd8bf0871b42d65e8dc786d451_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:926d965e6fd12ec0d758270fb4c90bbdc1a05e60cc4c895cf9b671a296c9d867_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:e8e807451e3c5d8d0a8575e1280d7125a4ece51547a7b4a5cd247837662cedad_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:f2a24aa01cbe0d926d4aefe3b12eba21eb5ec7f87276e572a6814c727228624c_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:45cc0d783d1e7874ac73dfbdfe7e03c63b227ab3c4f1e15a0a2f5c97956a76d9_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:6f3eb26734e89375c3e1fb7ac366e12dc0d41bac8f07de9210c7e9845a01eec1_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:768c45fa9f35d98dfe5cfe1ea12f552402bf68ac6e1f828b14310ef59ce57c40_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:b5f1bf30495f6be97c696cf7f90768629cee96f8d106f745bf95fdefddc99592_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:137ffbb95d463d95da6c350600d968f3cd0e9873bf2e7c6edf952ae3229e9e2b_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:1cccdfd7e90877c27c6d8caea4f1e8ad89bb97c83d97ddf570d4f4ee116f1986_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:71657b82894cfd9e350746f48965e148868a675b9a20dcb7f94a6bc7a5b16ea5_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:881e405e32821ef10cf992c7a633281c1dc45df721fe909048df1689472000ce_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:6c85b42ede0f4745ed558bcb03d033c49f56cef17a70c12e5308066124cac6e3_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:091529a93e258a612fd4a98222e6a370ee10b4e97efa791b50f79a2670163d01_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0e8958a22f6771ddfe32b34027c69dbbef65d980c7e465a79d4202d2627994ad_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:5a8b0203ff083113e8b30a123ab30c4bad571f57fb59c1e7e01807b92552504e_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:89bf6a32a0935cacadbc6d23566dce6ca741e404d58c11050638c7b8e868028b_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:077cc953354ea2edd85569a622f97c15d44163d68234e7a9fdee899d25c19cdb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:66285f866090e1bfbedacd592e9d5ea9f2a30b88aa03bc86bc790d6b98a929a4_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:8c80054171d5063457df4bd074674b1824783a101dacb6137da227080aff957c_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:b0f15904251c6665961eef9c944d00f17499f7219351fe213fe7935f62fbf7ac_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:62476ac2fb0096caa9b181f523cc3573ccffe70be1433f08d1d0255b6d3a0640_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:6f632bc9829880a44e2e94084284b52683b4a01dc3315043b0aa32eb344b16cb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:aa3d1cf7853bfe8307efb01f714585f378d1d3d4ed5de7c8808a72e4aeecd4f3_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:bf1d4b2b1ef03e65be59699ce3233a75a34e1777abc182984c7a8efa698a936e_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:141f17d12c748c7ab9e94cfd9db7e2492d3063e7478249d6430ac0d8fcfb8875_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:5909184fe3d37eb45ba3bf55d7b708d818f2a5abfc2949c4a7081a5cd30cea4f_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:6217f0bb4937fa0e0fc0a5c86456fdc1992e169dfedc3d11d5165cef575d4d53_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:d55a55a36a23e7deb83718bd5dcc19b083b84d441add72ea7f4e28935e4717e3_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:0f8e1171f278395f3c72e4d9d3c0492bed15b678963fb2b6182bd65343b85a2e_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:823bb59b1c7d01557c29f9f1e4a4ee39814c38d826b06c3c9de4b8d179078419_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:93c7e9b321c7e9aa4a412a993a6b20412e24772832cc0dd23bbb17aa25f15487_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:9e50b45f81fedab27e896f04b80bacaa01d8370ff5679147f95ad79b61972d83_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:8f145d4e336bd77fcc94f0845f9ebf94563ffd96d56794d96a665c11241df152_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:981917806c7faf31156241cc85577cf375ee566f78adaeadc096d0ba8482b835_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:af3ed91687500d64e2348cca4877c43f73211b8fbd132e7767c3521763185348_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:c05020e5ee5bddc62e38493cd16b6e4ffde7c2248a00d710f32b90a6ee12ceeb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2af86b409540513f6da1afa83110a5cafe8778d2ec16332faa31c964bd5f43f7_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2f3bec76a833a72c7dfa93ed55e55e80e2621c154e5a2f156deaf78d7c6b97b4_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:81a2385be30079500f13f97a18607aa685abd61265bf8fa78bc6ce126341be50_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:fdc8f64f3b82b200a5e31b01b8612069f1aa897014085c1de755394552a1a70a_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:856b9088dbda4e7374daf232602f4bb90b05ad1be1df46d6e363a002f549f4de_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:a107ae2f7b140f2fb2243f33c378228c2f164cfd2d23f57e63f6c424fd400929_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:e21de356b7d879800a96f6c5aeee6bc59a3ed9c58d36503f7089625ce887bb25_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:fcaf6d60d682cf51866948ea3b4846c2993e2801adb69dc745ffa832318f515c_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:11f005939e15d63057bf2f0a988b6baebc275d3e752e9f7696d0f7f5266fd5d6_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:4b4c98be96a932d508fad769eff61bff2a44e13baa60b22b6c543f4a11eb71c2_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:6c87453ffe89e8be752ee40c8a9ccf6894c83be703f13901b1e8b64a4c0e549a_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:c18a1c50a4fc7081c6564d1c4ed4904212b7939a4f1f46afef0a36dc1d76f38e_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:33367b9fdb3addce3302ad35bc10423505fefe3dd27b8b9013b26d66caac2a6c_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:72cbdb061cbcd295be5e66a0eabb409af16ade7f0aa12b04c2d7327e9e1a24ba_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:d0379f9da8cbb5514394a4550ff0d79f90fa691fcced5806296479c7b63353da_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:e99d1d877bd7335736cbaeb4db5b9904369a1d07f6df332c38ad79ff1256b67b_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:06285611aef2528fc92c5cebb66ff4c74fe44d457f43cf9ec2f4a98c3c68d25e_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:25e0f4153eb5bc6fbc6b389d5adc81bfde103070ef58317c3c25ce4144a628d3_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:acd3c0369c18cbfa63a5972ed1721f93f1fcb456963ff855dea2c295baf1cdb8_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:d086075db52f4476aa64d7e2680baa01e99da246275fa9cae0ba4a74de63c7f3_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:07d89c1b524d1451051feb865bc716da2197add90fa0c58c4cf4a82975ec846c_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:6582e647d7dd604e25977ec1579969aa1fcb29ead1a0ea65833531d633bbdd2b_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:75e3aec03dffbd0f40f88a08ff5e0319f4515d73f0bcfae28b5fa526b494afc4_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:f0079e8ae53d84223aea2d3186e7bc6b525b7c03d307cde50cfb9f1bbc18712b_arm64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:1384e5ba2b7d23119a49d8713826f4c65668bca310589ac7abd0c0d41c7e4c90_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:7f58528b1da9146aa55917324fdf2b375794742b34e5d10ff57f713af60746cd_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:844c3b1499b00aeadfc561642e53792ad80f535efd53b35793ba08b0f26c6d61_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-rhel9@sha256:e1019c30e1d84e66d775d0d6fc7d051803dcbe44823fb2a1914807be39c79dae_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:8c9a7ebf430b9f4ca200c6c70b049e8456cf88fd8bf0871b42d65e8dc786d451_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:926d965e6fd12ec0d758270fb4c90bbdc1a05e60cc4c895cf9b671a296c9d867_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:e8e807451e3c5d8d0a8575e1280d7125a4ece51547a7b4a5cd247837662cedad_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:f2a24aa01cbe0d926d4aefe3b12eba21eb5ec7f87276e572a6814c727228624c_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:45cc0d783d1e7874ac73dfbdfe7e03c63b227ab3c4f1e15a0a2f5c97956a76d9_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:6f3eb26734e89375c3e1fb7ac366e12dc0d41bac8f07de9210c7e9845a01eec1_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:768c45fa9f35d98dfe5cfe1ea12f552402bf68ac6e1f828b14310ef59ce57c40_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/configbump-rhel9@sha256:b5f1bf30495f6be97c696cf7f90768629cee96f8d106f745bf95fdefddc99592_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:137ffbb95d463d95da6c350600d968f3cd0e9873bf2e7c6edf952ae3229e9e2b_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:1cccdfd7e90877c27c6d8caea4f1e8ad89bb97c83d97ddf570d4f4ee116f1986_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:71657b82894cfd9e350746f48965e148868a675b9a20dcb7f94a6bc7a5b16ea5_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/dashboard-rhel9@sha256:881e405e32821ef10cf992c7a633281c1dc45df721fe909048df1689472000ce_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:6c85b42ede0f4745ed558bcb03d033c49f56cef17a70c12e5308066124cac6e3_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:091529a93e258a612fd4a98222e6a370ee10b4e97efa791b50f79a2670163d01_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0e8958a22f6771ddfe32b34027c69dbbef65d980c7e465a79d4202d2627994ad_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:5a8b0203ff083113e8b30a123ab30c4bad571f57fb59c1e7e01807b92552504e_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:89bf6a32a0935cacadbc6d23566dce6ca741e404d58c11050638c7b8e868028b_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:077cc953354ea2edd85569a622f97c15d44163d68234e7a9fdee899d25c19cdb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:66285f866090e1bfbedacd592e9d5ea9f2a30b88aa03bc86bc790d6b98a929a4_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:8c80054171d5063457df4bd074674b1824783a101dacb6137da227080aff957c_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:b0f15904251c6665961eef9c944d00f17499f7219351fe213fe7935f62fbf7ac_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:62476ac2fb0096caa9b181f523cc3573ccffe70be1433f08d1d0255b6d3a0640_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:6f632bc9829880a44e2e94084284b52683b4a01dc3315043b0aa32eb344b16cb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:aa3d1cf7853bfe8307efb01f714585f378d1d3d4ed5de7c8808a72e4aeecd4f3_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:bf1d4b2b1ef03e65be59699ce3233a75a34e1777abc182984c7a8efa698a936e_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:141f17d12c748c7ab9e94cfd9db7e2492d3063e7478249d6430ac0d8fcfb8875_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:5909184fe3d37eb45ba3bf55d7b708d818f2a5abfc2949c4a7081a5cd30cea4f_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:6217f0bb4937fa0e0fc0a5c86456fdc1992e169dfedc3d11d5165cef575d4d53_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:d55a55a36a23e7deb83718bd5dcc19b083b84d441add72ea7f4e28935e4717e3_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:0f8e1171f278395f3c72e4d9d3c0492bed15b678963fb2b6182bd65343b85a2e_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:823bb59b1c7d01557c29f9f1e4a4ee39814c38d826b06c3c9de4b8d179078419_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:93c7e9b321c7e9aa4a412a993a6b20412e24772832cc0dd23bbb17aa25f15487_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/oauth2-proxy-rhel9@sha256:9e50b45f81fedab27e896f04b80bacaa01d8370ff5679147f95ad79b61972d83_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:8f145d4e336bd77fcc94f0845f9ebf94563ffd96d56794d96a665c11241df152_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:981917806c7faf31156241cc85577cf375ee566f78adaeadc096d0ba8482b835_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:af3ed91687500d64e2348cca4877c43f73211b8fbd132e7767c3521763185348_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/openvsx-rhel9@sha256:c05020e5ee5bddc62e38493cd16b6e4ffde7c2248a00d710f32b90a6ee12ceeb_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2af86b409540513f6da1afa83110a5cafe8778d2ec16332faa31c964bd5f43f7_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:2f3bec76a833a72c7dfa93ed55e55e80e2621c154e5a2f156deaf78d7c6b97b4_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:81a2385be30079500f13f97a18607aa685abd61265bf8fa78bc6ce126341be50_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:fdc8f64f3b82b200a5e31b01b8612069f1aa897014085c1de755394552a1a70a_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:856b9088dbda4e7374daf232602f4bb90b05ad1be1df46d6e363a002f549f4de_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:a107ae2f7b140f2fb2243f33c378228c2f164cfd2d23f57e63f6c424fd400929_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:e21de356b7d879800a96f6c5aeee6bc59a3ed9c58d36503f7089625ce887bb25_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/server-rhel9@sha256:fcaf6d60d682cf51866948ea3b4846c2993e2801adb69dc745ffa832318f515c_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:11f005939e15d63057bf2f0a988b6baebc275d3e752e9f7696d0f7f5266fd5d6_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:4b4c98be96a932d508fad769eff61bff2a44e13baa60b22b6c543f4a11eb71c2_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:6c87453ffe89e8be752ee40c8a9ccf6894c83be703f13901b1e8b64a4c0e549a_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/traefik-rhel9@sha256:c18a1c50a4fc7081c6564d1c4ed4904212b7939a4f1f46afef0a36dc1d76f38e_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:33367b9fdb3addce3302ad35bc10423505fefe3dd27b8b9013b26d66caac2a6c_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:72cbdb061cbcd295be5e66a0eabb409af16ade7f0aa12b04c2d7327e9e1a24ba_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:d0379f9da8cbb5514394a4550ff0d79f90fa691fcced5806296479c7b63353da_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel10@sha256:e99d1d877bd7335736cbaeb4db5b9904369a1d07f6df332c38ad79ff1256b67b_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:06285611aef2528fc92c5cebb66ff4c74fe44d457f43cf9ec2f4a98c3c68d25e_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:25e0f4153eb5bc6fbc6b389d5adc81bfde103070ef58317c3c25ce4144a628d3_arm64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:acd3c0369c18cbfa63a5972ed1721f93f1fcb456963ff855dea2c295baf1cdb8_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-base-rhel9@sha256:d086075db52f4476aa64d7e2680baa01e99da246275fa9cae0ba4a74de63c7f3_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:07d89c1b524d1451051feb865bc716da2197add90fa0c58c4cf4a82975ec846c_s390x",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:6582e647d7dd604e25977ec1579969aa1fcb29ead1a0ea65833531d633bbdd2b_amd64",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:75e3aec03dffbd0f40f88a08ff5e0319f4515d73f0bcfae28b5fa526b494afc4_ppc64le",
"Red Hat OpenShift Dev Spaces 3.29:registry.redhat.io/devspaces/udi-rhel9@sha256:f0079e8ae53d84223aea2d3186e7bc6b525b7c03d307cde50cfb9f1bbc18712b_arm64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "io.quarkus/quarkus-vertx-http: Quarkus: Authorization bypass in HTTP path-based policies via encoded characters"
}
]
}
Sightings
| Author | Source | Type | Date | Other |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.