Action not permitted
Modal body text goes here.
Modal Title
Modal Body
CVE-2026-6322 (GCVE-0-2026-6322)
Vulnerability from cvelistv5 – Published: 2026-05-05 10:29 – Updated: 2026-07-08 12:06| Vendor | Product | Version | |
|---|---|---|---|
| fast-uri | fast-uri |
Affected:
0 , < 3.1.2
(semver)
Unaffected: 3.1.2 (semver) |
|
| Red Hat | Red Hat Ansible Automation Platform 2.6 for RHEL 9 |
cpe:/a:redhat:ansible_automation_platform:2.6::el9 cpe:/a:redhat:ansible_automation_platform_developer:2.6::el9 |
|
| Red Hat | Cluster Observability Operator 1.5.0 |
cpe:/a:redhat:cluster_observability_operator:1.5::el9 |
|
| Red Hat | Red Hat Advanced Cluster Management for Kubernetes 2.16 |
cpe:/a:redhat:acm:2.16::el9 |
|
| Red Hat | Red Hat Ansible Automation Platform 2.6 |
cpe:/a:redhat:ansible_automation_platform:2.6::el9 |
|
| Red Hat | Red Hat Developer Hub 1.9 |
cpe:/a:redhat:rhdh:1.9::el9 |
|
| Red Hat | Red Hat Discovery 2 |
cpe:/a:redhat:discovery:2::el9 |
|
| Red Hat | Red Hat OpenShift Container Platform 4.20 |
cpe:/a:redhat:openshift:4.20::el9 |
|
| Red Hat | Red Hat OpenShift Container Platform 4.21 |
cpe:/a:redhat:openshift:4.21::el9 |
|
| Red Hat | Red Hat OpenShift Container Platform 4.22 |
cpe:/a:redhat:openshift:4.22::el9 |
|
| Red Hat | Red Hat Quay 3.10 |
cpe:/a:redhat:quay:3.10::el8 |
|
| Red Hat | Red Hat Quay 3.12 |
cpe:/a:redhat:quay:3.12::el8 |
|
| Red Hat | Red Hat Quay 3.9 |
cpe:/a:redhat:quay:3.9::el8 |
|
| Red Hat | Red Hat Satellite 6.18 |
cpe:/a:redhat:satellite:6.18::el9 |
|
| Red Hat | multicluster engine for Kubernetes 2.11 |
cpe:/a:redhat:multicluster_engine:2.11::el9 |
|
| Red Hat | Confidential Compute Attestation |
cpe:/a:redhat:confidential_compute_attestation:1 |
|
| Red Hat | Migration Toolkit for Applications 8 |
cpe:/a:redhat:migration_toolkit_applications:8 |
|
| Red Hat | Migration Toolkit for Containers |
cpe:/a:redhat:rhmt:1 |
|
| Red Hat | Network Observability Operator |
cpe:/a:redhat:network_observ_optr:1 |
|
| Red Hat | OpenShift Lightspeed |
cpe:/a:redhat:openshift_lightspeed |
|
| Red Hat | OpenShift Pipelines |
cpe:/a:redhat:openshift_pipelines:1 |
|
| Red Hat | OpenShift Serverless |
cpe:/a:redhat:serverless:1 |
|
| Red Hat | Red Hat Ansible Automation Platform 2 |
cpe:/a:redhat:ansible_automation_platform:2 |
|
| Red Hat | Red Hat Build of Podman Desktop |
cpe:/a:redhat:podman_desktop:1 |
|
| Red Hat | Red Hat Build of Podman Desktop - Tech Preview |
cpe:/a:redhat:podman_desktop:0 |
|
| Red Hat | Red Hat Data Grid 8 |
cpe:/a:redhat:jboss_data_grid:8 |
|
| Red Hat | Red Hat Edge Manager 1 |
cpe:/a:redhat:edge_manager:1 |
|
| Red Hat | Red Hat Enterprise Linux 10 |
cpe:/o:redhat:enterprise_linux:10 |
|
| Red Hat | Red Hat Enterprise Linux 9 |
cpe:/o:redhat:enterprise_linux:9 |
|
| Red Hat | Red Hat Enterprise Linux AI (RHEL AI) 3 |
cpe:/a:redhat:enterprise_linux_ai:3 |
|
| Red Hat | Red Hat OpenShift AI (RHOAI) |
cpe:/a:redhat:openshift_ai |
|
| Red Hat | Red Hat OpenShift Container Platform 4 |
cpe:/a:redhat:openshift:4 |
|
| Red Hat | Red Hat Openshift Data Foundation 4 |
cpe:/a:redhat:openshift_data_foundation:4 |
|
| Red Hat | Red Hat OpenShift Dev Spaces |
cpe:/a:redhat:openshift_devspaces:3 |
|
| Red Hat | Red Hat Quay 3 |
cpe:/a:redhat:quay:3 |
|
| Red Hat | Red Hat Satellite 6 |
cpe:/a:redhat:satellite:6 |
|
| Red Hat | Self-service automation portal 2 |
cpe:/a:redhat:ansible_portal:2 |
|
| Red Hat | Cryostat 4 |
cpe:/a:redhat:cryostat:4 |
|
| Red Hat | Red Hat AMQ Broker 7 |
cpe:/a:redhat:amq_broker:7 |
|
| Red Hat | Red Hat build of Apache Camel - HawtIO 4 |
cpe:/a:redhat:apache_camel_hawtio:4 |
|
| Red Hat | Red Hat OpenShift Virtualization 4 |
cpe:/a:redhat:container_native_virtualization:4 |
{
"containers": {
"adp": [
{
"metrics": [
{
"other": {
"content": {
"id": "CVE-2026-6322",
"options": [
{
"Exploitation": "none"
},
{
"Automatable": "yes"
},
{
"Technical Impact": "partial"
}
],
"role": "CISA Coordinator",
"timestamp": "2026-05-05T12:55:25.956279Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"providerMetadata": {
"dateUpdated": "2026-05-05T12:55:43.750Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
},
{
"affected": [
{
"cpes": [
"cpe:/a:redhat:ansible_automation_platform:2.6::el9",
"cpe:/a:redhat:ansible_automation_platform_developer:2.6::el9"
],
"defaultStatus": "affected",
"product": "Red Hat Ansible Automation Platform 2.6 for RHEL 9",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:cluster_observability_operator:1.5::el9"
],
"defaultStatus": "affected",
"product": "Cluster Observability Operator 1.5.0",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:acm:2.16::el9"
],
"defaultStatus": "affected",
"product": "Red Hat Advanced Cluster Management for Kubernetes 2.16",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:ansible_automation_platform:2.6::el9"
],
"defaultStatus": "affected",
"product": "Red Hat Ansible Automation Platform 2.6",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:rhdh:1.9::el9"
],
"defaultStatus": "affected",
"product": "Red Hat Developer Hub 1.9",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:discovery:2::el9"
],
"defaultStatus": "affected",
"product": "Red Hat Discovery 2",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:openshift:4.20::el9"
],
"defaultStatus": "affected",
"product": "Red Hat OpenShift Container Platform 4.20",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:openshift:4.21::el9"
],
"defaultStatus": "affected",
"product": "Red Hat OpenShift Container Platform 4.21",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:openshift:4.22::el9"
],
"defaultStatus": "affected",
"product": "Red Hat OpenShift Container Platform 4.22",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:quay:3.10::el8"
],
"defaultStatus": "affected",
"product": "Red Hat Quay 3.10",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:quay:3.12::el8"
],
"defaultStatus": "affected",
"product": "Red Hat Quay 3.12",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:quay:3.9::el8"
],
"defaultStatus": "affected",
"product": "Red Hat Quay 3.9",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:satellite:6.18::el9"
],
"defaultStatus": "affected",
"product": "Red Hat Satellite 6.18",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:multicluster_engine:2.11::el9"
],
"defaultStatus": "affected",
"product": "multicluster engine for Kubernetes 2.11",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:confidential_compute_attestation:1"
],
"defaultStatus": "affected",
"product": "Confidential Compute Attestation",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:migration_toolkit_applications:8"
],
"defaultStatus": "affected",
"product": "Migration Toolkit for Applications 8",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:rhmt:1"
],
"defaultStatus": "affected",
"product": "Migration Toolkit for Containers",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:network_observ_optr:1"
],
"defaultStatus": "affected",
"product": "Network Observability Operator",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:openshift_lightspeed"
],
"defaultStatus": "affected",
"product": "OpenShift Lightspeed",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:openshift_pipelines:1"
],
"defaultStatus": "affected",
"product": "OpenShift Pipelines",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:serverless:1"
],
"defaultStatus": "affected",
"product": "OpenShift Serverless",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:ansible_automation_platform:2"
],
"defaultStatus": "affected",
"product": "Red Hat Ansible Automation Platform 2",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:podman_desktop:1"
],
"defaultStatus": "affected",
"product": "Red Hat Build of Podman Desktop",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:podman_desktop:0"
],
"defaultStatus": "affected",
"product": "Red Hat Build of Podman Desktop - Tech Preview",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:jboss_data_grid:8"
],
"defaultStatus": "affected",
"product": "Red Hat Data Grid 8",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:edge_manager:1"
],
"defaultStatus": "affected",
"product": "Red Hat Edge Manager 1",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/o:redhat:enterprise_linux:10"
],
"defaultStatus": "affected",
"product": "Red Hat Enterprise Linux 10",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/o:redhat:enterprise_linux:9"
],
"defaultStatus": "affected",
"product": "Red Hat Enterprise Linux 9",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:enterprise_linux_ai:3"
],
"defaultStatus": "affected",
"product": "Red Hat Enterprise Linux AI (RHEL AI) 3",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:openshift_ai"
],
"defaultStatus": "affected",
"product": "Red Hat OpenShift AI (RHOAI)",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:openshift:4"
],
"defaultStatus": "affected",
"product": "Red Hat OpenShift Container Platform 4",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:openshift_data_foundation:4"
],
"defaultStatus": "affected",
"product": "Red Hat Openshift Data Foundation 4",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:openshift_devspaces:3"
],
"defaultStatus": "affected",
"product": "Red Hat OpenShift Dev Spaces",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:quay:3"
],
"defaultStatus": "affected",
"product": "Red Hat Quay 3",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:satellite:6"
],
"defaultStatus": "affected",
"product": "Red Hat Satellite 6",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:ansible_portal:2"
],
"defaultStatus": "affected",
"product": "Self-service automation portal 2",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:cryostat:4"
],
"defaultStatus": "unaffected",
"product": "Cryostat 4",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:amq_broker:7"
],
"defaultStatus": "unaffected",
"product": "Red Hat AMQ Broker 7",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:apache_camel_hawtio:4"
],
"defaultStatus": "unaffected",
"product": "Red Hat build of Apache Camel - HawtIO 4",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:container_native_virtualization:4"
],
"defaultStatus": "unaffected",
"product": "Red Hat OpenShift Virtualization 4",
"vendor": "Red Hat"
}
],
"datePublic": "2026-05-05T10:29:16.378Z",
"descriptions": [
{
"lang": "en",
"value": "A flaw was found in fast-uri. A remote attacker could exploit this vulnerability by crafting a malicious Uniform Resource Identifier (URI) that contains percent-encoded authority delimiters. The fast-uri library incorrectly decodes these delimiters during normalization and then re-emits them as raw separators, which can change the URI\u0027s intended authority. This issue allows applications that perform host allowlist checks, redirect validation, or outbound request routing to be steered to a different authority than specified, potentially bypassing security controls."
}
],
"metrics": [
{
"other": {
"content": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"value": "Important"
},
"type": "Red Hat severity rating"
}
},
{
"cvssV3_1": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"format": "CVSS"
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-140",
"description": "Improper Neutralization of Delimiters",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2026-07-08T12:06:07.830Z",
"orgId": "0b0ca135-0b70-47e7-9f44-1890c2a1c46c",
"shortName": "redhat-SADP"
},
"references": [
{
"tags": [
"vdb-entry",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/security/cve/CVE-2026-6322"
},
{
"name": "RHBZ#2466684",
"tags": [
"issue-tracking",
"x_refsource_REDHAT"
],
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2466684"
},
{
"tags": [
"x_sadp-csaf-vex"
],
"url": "https://security.access.redhat.com/data/csaf/v2/vex/2026/cve-2026-6322.json"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:34160"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:34342"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:25273"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:34374"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:26234"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:29197"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:29800"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:34770"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:29834"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:29796"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:29795"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:33683"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:30076"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:28571"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:26225"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:25271"
}
],
"solutions": [
{
"lang": "en",
"value": "RHSA-2026:34160: Red Hat Ansible Automation Platform 2.6 for RHEL 9"
},
{
"lang": "en",
"value": "RHSA-2026:34342: Cluster Observability Operator 1.5.0"
},
{
"lang": "en",
"value": "RHSA-2026:25273: Red Hat Advanced Cluster Management for Kubernetes 2.16"
},
{
"lang": "en",
"value": "RHSA-2026:34374: Red Hat Ansible Automation Platform 2.6"
},
{
"lang": "en",
"value": "RHSA-2026:26234: Red Hat Developer Hub 1.9"
},
{
"lang": "en",
"value": "RHSA-2026:29197: Red Hat Discovery 2"
},
{
"lang": "en",
"value": "RHSA-2026:29800: Red Hat OpenShift Container Platform 4.20"
},
{
"lang": "en",
"value": "RHSA-2026:34770: Red Hat OpenShift Container Platform 4.21"
},
{
"lang": "en",
"value": "RHSA-2026:29834: Red Hat OpenShift Container Platform 4.21"
},
{
"lang": "en",
"value": "RHSA-2026:29796: Red Hat OpenShift Container Platform 4.22"
},
{
"lang": "en",
"value": "RHSA-2026:29795: Red Hat OpenShift Container Platform 4.22"
},
{
"lang": "en",
"value": "RHSA-2026:33683: Red Hat Quay 3.10"
},
{
"lang": "en",
"value": "RHSA-2026:30076: Red Hat Quay 3.12"
},
{
"lang": "en",
"value": "RHSA-2026:28571: Red Hat Quay 3.9"
},
{
"lang": "en",
"value": "RHSA-2026:26225: Red Hat Satellite 6.18"
},
{
"lang": "en",
"value": "RHSA-2026:25271: multicluster engine for Kubernetes 2.11"
}
],
"timeline": [
{
"lang": "en",
"time": "2026-05-05T11:01:00.332Z",
"value": "Reported to Red Hat."
},
{
"lang": "en",
"time": "2026-05-05T10:29:16.378Z",
"value": "Made public."
}
],
"title": "fast-uri: fast-uri: URI authority bypass due to improper delimiter handling",
"x_adpType": "supplier",
"x_generator": {
"engine": "sadp-cli 1.0.0"
}
}
],
"cna": {
"affected": [
{
"defaultStatus": "unaffected",
"packageURL": "pkg:npm/fast-uri",
"product": "fast-uri",
"vendor": "fast-uri",
"versions": [
{
"lessThan": "3.1.2",
"status": "affected",
"version": "0",
"versionType": "semver"
},
{
"status": "unaffected",
"version": "3.1.2",
"versionType": "semver"
}
]
}
],
"credits": [
{
"lang": "en",
"type": "reporter",
"value": "Jvr"
},
{
"lang": "en",
"type": "remediation developer",
"value": "Matteo Collina"
},
{
"lang": "en",
"type": "remediation developer",
"value": "Ulises Gasc\u00f3n"
},
{
"lang": "en",
"type": "remediation reviewer",
"value": "KaKa"
}
],
"descriptions": [
{
"lang": "en",
"supportingMedia": [
{
"base64": false,
"type": "text/html",
"value": "fast-uri normalize() decoded percent-encoded authority delimiters inside the host component and then re-emitted them as raw delimiters during serialization. A host that combined an allowed domain, an encoded at-sign, and a different domain was re-emitted with the at-sign as a raw userinfo separator, changing the URI\u0027s authority to the second domain. Applications that normalize untrusted URLs before host allowlist checks, redirect validation, or outbound request routing can be steered to a different authority than the input appeared to specify. Versions \u003c= 3.1.1 are affected. Update to 3.1.2 or later."
}
],
"value": "fast-uri normalize() decoded percent-encoded authority delimiters inside the host component and then re-emitted them as raw delimiters during serialization. A host that combined an allowed domain, an encoded at-sign, and a different domain was re-emitted with the at-sign as a raw userinfo separator, changing the URI\u0027s authority to the second domain. Applications that normalize untrusted URLs before host allowlist checks, redirect validation, or outbound request routing can be steered to a different authority than the input appeared to specify. Versions \u003c= 3.1.1 are affected. Update to 3.1.2 or later."
}
],
"metrics": [
{
"cvssV3_1": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"format": "CVSS",
"scenarios": [
{
"lang": "en",
"value": "GENERAL"
}
]
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-436",
"description": "CWE-436: Interpretation Conflict",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2026-05-05T10:29:16.378Z",
"orgId": "ce714d77-add3-4f53-aff5-83d477b104bb",
"shortName": "openjs"
},
"references": [
{
"url": "https://github.com/fastify/fast-uri/security/advisories/GHSA-v39h-62p7-jpjc"
},
{
"url": "https://cna.openjsf.org/security-advisories.html"
}
],
"title": "fast-uri vulnerable to host confusion via percent-encoded authority delimiters",
"x_generator": {
"engine": "cve-kit 1.0.0"
}
}
},
"cveMetadata": {
"assignerOrgId": "ce714d77-add3-4f53-aff5-83d477b104bb",
"assignerShortName": "openjs",
"cveId": "CVE-2026-6322",
"datePublished": "2026-05-05T10:29:16.378Z",
"dateReserved": "2026-04-14T20:28:09.160Z",
"dateUpdated": "2026-07-08T12:06:07.830Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.2",
"vulnerability-lookup:meta": {
"epss": {
"cve": "CVE-2026-6322",
"date": "2026-07-08",
"epss": "0.00475",
"percentile": "0.37668"
},
"nvd": "{\"cve\":{\"id\":\"CVE-2026-6322\",\"sourceIdentifier\":\"ce714d77-add3-4f53-aff5-83d477b104bb\",\"published\":\"2026-05-05T11:16:33.360\",\"lastModified\":\"2026-07-08T13:16:57.100\",\"vulnStatus\":\"Modified\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"fast-uri normalize() decoded percent-encoded authority delimiters inside the host component and then re-emitted them as raw delimiters during serialization. A host that combined an allowed domain, an encoded at-sign, and a different domain was re-emitted with the at-sign as a raw userinfo separator, changing the URI\u0027s authority to the second domain. Applications that normalize untrusted URLs before host allowlist checks, redirect validation, or outbound request routing can be steered to a different authority than the input appeared to specify. Versions \u003c= 3.1.1 are affected. Update to 3.1.2 or later.\"}],\"affected\":[{\"source\":\"ce714d77-add3-4f53-aff5-83d477b104bb\",\"affectedData\":[{\"vendor\":\"fast-uri\",\"product\":\"fast-uri\",\"defaultStatus\":\"unaffected\",\"packageURL\":\"pkg:npm/fast-uri\",\"versions\":[{\"version\":\"0\",\"lessThan\":\"3.1.2\",\"versionType\":\"semver\",\"status\":\"affected\"},{\"version\":\"3.1.2\",\"versionType\":\"semver\",\"status\":\"unaffected\"}]}]},{\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\",\"affectedData\":[{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Ansible Automation Platform 2.6 for RHEL 9\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:ansible_automation_platform:2.6::el9\",\"cpe:/a:redhat:ansible_automation_platform_developer:2.6::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Cluster Observability Operator 1.5.0\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:cluster_observability_operator:1.5::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Advanced Cluster Management for Kubernetes 2.16\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:acm:2.16::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Ansible Automation Platform 2.6\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:ansible_automation_platform:2.6::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Developer Hub 1.9\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:rhdh:1.9::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Discovery 2\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:discovery:2::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat OpenShift Container Platform 4.20\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:openshift:4.20::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat OpenShift Container Platform 4.21\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:openshift:4.21::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat OpenShift Container Platform 4.22\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:openshift:4.22::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Quay 3.10\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:quay:3.10::el8\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Quay 3.12\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:quay:3.12::el8\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Quay 3.9\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:quay:3.9::el8\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Satellite 6.18\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:satellite:6.18::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"multicluster engine for Kubernetes 2.11\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:multicluster_engine:2.11::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Confidential Compute Attestation\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:confidential_compute_attestation:1\"]},{\"vendor\":\"Red Hat\",\"product\":\"Migration Toolkit for Applications 8\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:migration_toolkit_applications:8\"]},{\"vendor\":\"Red Hat\",\"product\":\"Migration Toolkit for Containers\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:rhmt:1\"]},{\"vendor\":\"Red Hat\",\"product\":\"Network Observability Operator\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:network_observ_optr:1\"]},{\"vendor\":\"Red Hat\",\"product\":\"OpenShift Lightspeed\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:openshift_lightspeed\"]},{\"vendor\":\"Red Hat\",\"product\":\"OpenShift Pipelines\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:openshift_pipelines:1\"]},{\"vendor\":\"Red Hat\",\"product\":\"OpenShift Serverless\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:serverless:1\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Ansible Automation Platform 2\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:ansible_automation_platform:2\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Build of Podman Desktop\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:podman_desktop:1\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Build of Podman Desktop - Tech Preview\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:podman_desktop:0\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Data Grid 8\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:jboss_data_grid:8\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Edge Manager 1\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:edge_manager:1\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Enterprise Linux 10\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/o:redhat:enterprise_linux:10\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Enterprise Linux 9\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/o:redhat:enterprise_linux:9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Enterprise Linux AI (RHEL AI) 3\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:enterprise_linux_ai:3\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat OpenShift AI (RHOAI)\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:openshift_ai\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat OpenShift Container Platform 4\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:openshift:4\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Openshift Data Foundation 4\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:openshift_data_foundation:4\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat OpenShift Dev Spaces\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:openshift_devspaces:3\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Quay 3\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:quay:3\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Satellite 6\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:satellite:6\"]},{\"vendor\":\"Red Hat\",\"product\":\"Self-service automation portal 2\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:ansible_portal:2\"]},{\"vendor\":\"Red Hat\",\"product\":\"Cryostat 4\",\"defaultStatus\":\"unaffected\",\"cpes\":[\"cpe:/a:redhat:cryostat:4\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat AMQ Broker 7\",\"defaultStatus\":\"unaffected\",\"cpes\":[\"cpe:/a:redhat:amq_broker:7\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat build of Apache Camel - HawtIO 4\",\"defaultStatus\":\"unaffected\",\"cpes\":[\"cpe:/a:redhat:apache_camel_hawtio:4\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat OpenShift Virtualization 4\",\"defaultStatus\":\"unaffected\",\"cpes\":[\"cpe:/a:redhat:container_native_virtualization:4\"]}]}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"ce714d77-add3-4f53-aff5-83d477b104bb\",\"type\":\"Secondary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N\",\"baseScore\":7.5,\"baseSeverity\":\"HIGH\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"HIGH\",\"availabilityImpact\":\"NONE\"},\"exploitabilityScore\":3.9,\"impactScore\":3.6},{\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\",\"type\":\"Secondary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N\",\"baseScore\":7.5,\"baseSeverity\":\"HIGH\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"HIGH\",\"availabilityImpact\":\"NONE\"},\"exploitabilityScore\":3.9,\"impactScore\":3.6}],\"ssvcV203\":[{\"source\":\"134c704f-9b21-4f2e-91b3-4a467353bcc0\",\"ssvcData\":{\"timestamp\":\"2026-05-05T12:55:25.956279Z\",\"id\":\"CVE-2026-6322\",\"options\":[{\"exploitation\":\"none\"},{\"automatable\":\"yes\"},{\"technicalImpact\":\"partial\"}],\"role\":\"CISA Coordinator\",\"version\":\"2.0.3\"}}]},\"weaknesses\":[{\"source\":\"ce714d77-add3-4f53-aff5-83d477b104bb\",\"type\":\"Secondary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-436\"}]},{\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\",\"type\":\"Secondary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-140\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:openjsf:fast-uri:*:*:*:*:*:node.js:*:*\",\"versionEndExcluding\":\"3.1.2\",\"matchCriteriaId\":\"0A43D369-152F-4AA7-B998-6CB40A81D94D\"}]}]}],\"references\":[{\"url\":\"https://cna.openjsf.org/security-advisories.html\",\"source\":\"ce714d77-add3-4f53-aff5-83d477b104bb\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"https://github.com/fastify/fast-uri/security/advisories/GHSA-v39h-62p7-jpjc\",\"source\":\"ce714d77-add3-4f53-aff5-83d477b104bb\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:25271\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:25273\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:26225\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:26234\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:28571\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:29197\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:29795\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:29796\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:29800\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:29834\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:30076\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:33683\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:34160\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:34342\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:34374\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:34770\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/security/cve/CVE-2026-6322\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://bugzilla.redhat.com/show_bug.cgi?id=2466684\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://security.access.redhat.com/data/csaf/v2/vex/2026/cve-2026-6322.json\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"}]}}",
"vulnrichment": {
"containers": "{\"adp\": [{\"title\": \"fast-uri: fast-uri: URI authority bypass due to improper delimiter handling\", \"metrics\": [{\"other\": {\"type\": \"Red Hat severity rating\", \"content\": {\"value\": \"Important\", \"namespace\": \"https://access.redhat.com/security/updates/classification/\"}}}, {\"format\": \"CVSS\", \"cvssV3_1\": {\"scope\": \"UNCHANGED\", \"version\": \"3.1\", \"baseScore\": 7.5, \"attackVector\": \"NETWORK\", \"baseSeverity\": \"HIGH\", \"vectorString\": \"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N\", \"integrityImpact\": \"HIGH\", \"userInteraction\": \"NONE\", \"attackComplexity\": \"LOW\", \"availabilityImpact\": \"NONE\", \"privilegesRequired\": \"NONE\", \"confidentialityImpact\": \"NONE\"}}], \"affected\": [{\"cpes\": [\"cpe:/a:redhat:ansible_automation_platform:2.6::el9\", \"cpe:/a:redhat:ansible_automation_platform_developer:2.6::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Ansible Automation Platform 2.6 for RHEL 9\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:cluster_observability_operator:1.5::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Cluster Observability Operator 1.5.0\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:acm:2.16::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Advanced Cluster Management for Kubernetes 2.16\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:ansible_automation_platform:2.6::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Ansible Automation Platform 2.6\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:rhdh:1.9::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Developer Hub 1.9\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:discovery:2::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Discovery 2\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift:4.20::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Container Platform 4.20\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift:4.21::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Container Platform 4.21\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift:4.22::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Container Platform 4.22\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:quay:3.10::el8\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Quay 3.10\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:quay:3.12::el8\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Quay 3.12\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:quay:3.9::el8\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Quay 3.9\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:satellite:6.18::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Satellite 6.18\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:multicluster_engine:2.11::el9\"], \"vendor\": \"Red Hat\", \"product\": \"multicluster engine for Kubernetes 2.11\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:confidential_compute_attestation:1\"], \"vendor\": \"Red Hat\", \"product\": \"Confidential Compute Attestation\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:migration_toolkit_applications:8\"], \"vendor\": \"Red Hat\", \"product\": \"Migration Toolkit for Applications 8\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:rhmt:1\"], \"vendor\": \"Red Hat\", \"product\": \"Migration Toolkit for Containers\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:network_observ_optr:1\"], \"vendor\": \"Red Hat\", \"product\": \"Network Observability Operator\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift_lightspeed\"], \"vendor\": \"Red Hat\", \"product\": \"OpenShift Lightspeed\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift_pipelines:1\"], \"vendor\": \"Red Hat\", \"product\": \"OpenShift Pipelines\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:serverless:1\"], \"vendor\": \"Red Hat\", \"product\": \"OpenShift Serverless\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:ansible_automation_platform:2\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Ansible Automation Platform 2\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:podman_desktop:1\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Build of Podman Desktop\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:podman_desktop:0\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Build of Podman Desktop - Tech Preview\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:jboss_data_grid:8\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Data Grid 8\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:edge_manager:1\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Edge Manager 1\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/o:redhat:enterprise_linux:10\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux 10\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/o:redhat:enterprise_linux:9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux 9\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:enterprise_linux_ai:3\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux AI (RHEL AI) 3\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift_ai\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift AI (RHOAI)\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift:4\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Container Platform 4\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift_data_foundation:4\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Openshift Data Foundation 4\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift_devspaces:3\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Dev Spaces\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:quay:3\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Quay 3\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:satellite:6\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Satellite 6\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:ansible_portal:2\"], \"vendor\": \"Red Hat\", \"product\": \"Self-service automation portal 2\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:cryostat:4\"], \"vendor\": \"Red Hat\", \"product\": \"Cryostat 4\", \"defaultStatus\": \"unaffected\"}, {\"cpes\": [\"cpe:/a:redhat:amq_broker:7\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat AMQ Broker 7\", \"defaultStatus\": \"unaffected\"}, {\"cpes\": [\"cpe:/a:redhat:apache_camel_hawtio:4\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat build of Apache Camel - HawtIO 4\", \"defaultStatus\": \"unaffected\"}, {\"cpes\": [\"cpe:/a:redhat:container_native_virtualization:4\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Virtualization 4\", \"defaultStatus\": \"unaffected\"}], \"timeline\": [{\"lang\": \"en\", \"time\": \"2026-05-05T11:01:00.332Z\", \"value\": \"Reported to Red Hat.\"}, {\"lang\": \"en\", \"time\": \"2026-05-05T10:29:16.378Z\", \"value\": \"Made public.\"}], \"solutions\": [{\"lang\": \"en\", \"value\": \"RHSA-2026:34160: Red Hat Ansible Automation Platform 2.6 for RHEL 9\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:34342: Cluster Observability Operator 1.5.0\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:25273: Red Hat Advanced Cluster Management for Kubernetes 2.16\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:34374: Red Hat Ansible Automation Platform 2.6\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:26234: Red Hat Developer Hub 1.9\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:29197: Red Hat Discovery 2\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:29800: Red Hat OpenShift Container Platform 4.20\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:29834: Red Hat OpenShift Container Platform 4.21\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:29796: Red Hat OpenShift Container Platform 4.22\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:29795: Red Hat OpenShift Container Platform 4.22\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:33683: Red Hat Quay 3.10\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:30076: Red Hat Quay 3.12\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:28571: Red Hat Quay 3.9\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:26225: Red Hat Satellite 6.18\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:25271: multicluster engine for Kubernetes 2.11\"}], \"x_adpType\": \"supplier\", \"datePublic\": \"2026-05-05T10:29:16.378Z\", \"references\": [{\"url\": \"https://access.redhat.com/security/cve/CVE-2026-6322\", \"tags\": [\"vdb-entry\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://bugzilla.redhat.com/show_bug.cgi?id=2466684\", \"name\": \"RHBZ#2466684\", \"tags\": [\"issue-tracking\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://security.access.redhat.com/data/csaf/v2/vex/2026/cve-2026-6322.json\", \"tags\": [\"x_sadp-csaf-vex\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:34160\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:34342\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:25273\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:34374\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:26234\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:29197\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:29800\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:29834\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:29796\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:29795\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:33683\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:30076\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:28571\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:26225\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:25271\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}], \"x_generator\": {\"engine\": \"sadp-cli 1.0.0\"}, \"descriptions\": [{\"lang\": \"en\", \"value\": \"A flaw was found in fast-uri. A remote attacker could exploit this vulnerability by crafting a malicious Uniform Resource Identifier (URI) that contains percent-encoded authority delimiters. The fast-uri library incorrectly decodes these delimiters during normalization and then re-emits them as raw separators, which can change the URI\u0027s intended authority. This issue allows applications that perform host allowlist checks, redirect validation, or outbound request routing to be steered to a different authority than specified, potentially bypassing security controls.\"}], \"problemTypes\": [{\"descriptions\": [{\"lang\": \"en\", \"type\": \"CWE\", \"cweId\": \"CWE-140\", \"description\": \"Improper Neutralization of Delimiters\"}]}], \"providerMetadata\": {\"orgId\": \"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\", \"shortName\": \"redhat-SADP\", \"dateUpdated\": \"2026-07-07T12:05:18.105Z\"}}, {\"title\": \"CISA ADP Vulnrichment\", \"metrics\": [{\"other\": {\"type\": \"ssvc\", \"content\": {\"id\": \"CVE-2026-6322\", \"role\": \"CISA Coordinator\", \"options\": [{\"Exploitation\": \"none\"}, {\"Automatable\": \"yes\"}, {\"Technical Impact\": \"partial\"}], \"version\": \"2.0.3\", \"timestamp\": \"2026-05-05T12:55:25.956279Z\"}}}], \"providerMetadata\": {\"orgId\": \"134c704f-9b21-4f2e-91b3-4a467353bcc0\", \"shortName\": \"CISA-ADP\", \"dateUpdated\": \"2026-05-05T12:55:34.327Z\"}}], \"cna\": {\"title\": \"fast-uri vulnerable to host confusion via percent-encoded authority delimiters\", \"credits\": [{\"lang\": \"en\", \"type\": \"reporter\", \"value\": \"Jvr\"}, {\"lang\": \"en\", \"type\": \"remediation developer\", \"value\": \"Matteo Collina\"}, {\"lang\": \"en\", \"type\": \"remediation developer\", \"value\": \"Ulises Gasc\\u00f3n\"}, {\"lang\": \"en\", \"type\": \"remediation reviewer\", \"value\": \"KaKa\"}], \"metrics\": [{\"format\": \"CVSS\", \"cvssV3_1\": {\"version\": \"3.1\", \"baseScore\": 7.5, \"baseSeverity\": \"HIGH\", \"vectorString\": \"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N\"}, \"scenarios\": [{\"lang\": \"en\", \"value\": \"GENERAL\"}]}], \"affected\": [{\"vendor\": \"fast-uri\", \"product\": \"fast-uri\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"3.1.2\", \"versionType\": \"semver\"}, {\"status\": \"unaffected\", \"version\": \"3.1.2\", \"versionType\": \"semver\"}], \"packageURL\": \"pkg:npm/fast-uri\", \"defaultStatus\": \"unaffected\"}], \"references\": [{\"url\": \"https://github.com/fastify/fast-uri/security/advisories/GHSA-v39h-62p7-jpjc\"}, {\"url\": \"https://cna.openjsf.org/security-advisories.html\"}], \"x_generator\": {\"engine\": \"cve-kit 1.0.0\"}, \"descriptions\": [{\"lang\": \"en\", \"value\": \"fast-uri normalize() decoded percent-encoded authority delimiters inside the host component and then re-emitted them as raw delimiters during serialization. A host that combined an allowed domain, an encoded at-sign, and a different domain was re-emitted with the at-sign as a raw userinfo separator, changing the URI\u0027s authority to the second domain. Applications that normalize untrusted URLs before host allowlist checks, redirect validation, or outbound request routing can be steered to a different authority than the input appeared to specify. Versions \u003c= 3.1.1 are affected. Update to 3.1.2 or later.\", \"supportingMedia\": [{\"type\": \"text/html\", \"value\": \"fast-uri normalize() decoded percent-encoded authority delimiters inside the host component and then re-emitted them as raw delimiters during serialization. A host that combined an allowed domain, an encoded at-sign, and a different domain was re-emitted with the at-sign as a raw userinfo separator, changing the URI\u0027s authority to the second domain. Applications that normalize untrusted URLs before host allowlist checks, redirect validation, or outbound request routing can be steered to a different authority than the input appeared to specify. Versions \u003c= 3.1.1 are affected. Update to 3.1.2 or later.\", \"base64\": false}]}], \"problemTypes\": [{\"descriptions\": [{\"lang\": \"en\", \"type\": \"CWE\", \"cweId\": \"CWE-436\", \"description\": \"CWE-436: Interpretation Conflict\"}]}], \"providerMetadata\": {\"orgId\": \"ce714d77-add3-4f53-aff5-83d477b104bb\", \"shortName\": \"openjs\", \"dateUpdated\": \"2026-05-05T10:29:16.378Z\"}}}",
"cveMetadata": "{\"cveId\": \"CVE-2026-6322\", \"state\": \"PUBLISHED\", \"dateUpdated\": \"2026-07-07T12:05:18.105Z\", \"dateReserved\": \"2026-04-14T20:28:09.160Z\", \"assignerOrgId\": \"ce714d77-add3-4f53-aff5-83d477b104bb\", \"datePublished\": \"2026-05-05T10:29:16.378Z\", \"assignerShortName\": \"openjs\"}",
"dataType": "CVE_RECORD",
"dataVersion": "5.2"
}
}
}
RHSA-2026:34770
Vulnerability from csaf_redhat - Published: 2026-07-07 08:46 - Updated: 2026-07-08 21:48A flaw was found in fast-uri. A remote attacker could exploit this vulnerability by crafting a malicious Uniform Resource Identifier (URI) that contains percent-encoded authority delimiters. The fast-uri library incorrectly decodes these delimiters during normalization and then re-emits them as raw separators, which can change the URI's intended authority. This issue allows applications that perform host allowlist checks, redirect validation, or outbound request routing to be steered to a different authority than specified, potentially bypassing security controls.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/nmstate-console-plugin-rhel9@sha256:609cce4a625a7d1c2a83fde70db520fcdc1a4f75b78f96fd42d188f2eb623674_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/nmstate-console-plugin-rhel9@sha256:a06625622d7d52e5c21bec84047a765aeb065309ed9908eb16cf97a25e1017ac_arm64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/nmstate-console-plugin-rhel9@sha256:a40c59091b55f2fb79b9f58aa1ebabfa836cee775d20c3c40341811ae060cf37_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/nmstate-console-plugin-rhel9@sha256:d889210346e1615778eb8346811e00b079b573afb24a0078ec77751bfa27db7b_ppc64le | — |
Vendor Fix
fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ingress-node-firewall-rhel9-operator@sha256:5155030314f2efb0be5a7fe1f4dbf8edfc41af915f7fac7db10a6adbe4a86ac9_ppc64le | — | ||
| Unresolved product id: Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ingress-node-firewall-rhel9-operator@sha256:6f09cbddc2165982085e382db12e5503b16d7a1e79842a19157f4910257f43ef_amd64 | — | ||
| Unresolved product id: Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ingress-node-firewall-rhel9-operator@sha256:94f69160b0ddda0e840a473c1e5f5fcab47eee8567ee4a927f32930b1a0e5f91_s390x | — | ||
| Unresolved product id: Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ingress-node-firewall-rhel9-operator@sha256:a9372f22f3ed5bda5c1d51a7354c6a8b4e0f603367b3c07ec6a0776352a4897f_arm64 | — | ||
| Unresolved product id: Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ingress-node-firewall-rhel9@sha256:38781886f8849ffc36870f3dc44c06e262b9b0524d15251bcc8e81b314ddf728_amd64 | — | ||
| Unresolved product id: Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ingress-node-firewall-rhel9@sha256:64c1a57597fd99e5c2cd0f3627043ab939e06a0163a3fc1554bc66f94edfa686_arm64 | — | ||
| Unresolved product id: Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ingress-node-firewall-rhel9@sha256:b3a2d872463aa43a8c66c754472c84b355930c8618a53d8103627e2985f89efd_s390x | — | ||
| Unresolved product id: Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ingress-node-firewall-rhel9@sha256:f0fbda30bb66a43d1e8127817968af6a407c1e96780ea5e023911496b2bdff32_ppc64le | — | ||
| Unresolved product id: Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/kube-compare-artifacts-rhel9@sha256:277a845f5ffe398935b4fe5c035dba2a41bc23d1abce44893976487abc91514f_amd64 | — | ||
| Unresolved product id: Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/kube-compare-artifacts-rhel9@sha256:392009255b87f893829cba2f90111a2dfb6d70183d1a2e657411ce7aa459934f_ppc64le | — | ||
| Unresolved product id: Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/kube-compare-artifacts-rhel9@sha256:8876c6edf54f10692f7d43d00c4f8ee1d39200db701779c5ec4d6e9e7b0508f6_arm64 | — | ||
| Unresolved product id: Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/kube-compare-artifacts-rhel9@sha256:ceda974d51671b0a78b17826e208ae8519a6509c79ec84ed2ffcfd2ee45a5382_s390x | — | ||
| Unresolved product id: Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/kubernetes-nmstate-rhel9-operator@sha256:6ab82578e1faf15606648c109580ef1f7cc655a75001b6b1e4bf582815407fc9_amd64 | — | ||
| Unresolved product id: Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/kubernetes-nmstate-rhel9-operator@sha256:9bd366998eabe8f3a505fcf0281a3a875d5168ab58926fa1af47216a6944b377_arm64 | — | ||
| Unresolved product id: Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/kubernetes-nmstate-rhel9-operator@sha256:ccbf58a3edb87217efe16de650032ca9bbe162fef07c69468595ec22764c3f04_s390x | — | ||
| Unresolved product id: Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/kubernetes-nmstate-rhel9-operator@sha256:ddbaaa6c78e9f98ea9322fc6e9ea271656eebfcc1bdc46ac9bc0a83c9404ab00_ppc64le | — | ||
| Unresolved product id: Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/metallb-rhel9-operator@sha256:36367c6dac166a814a1a76a822c67602a02aa37dee5ae602d60da867488a757e_amd64 | — | ||
| Unresolved product id: Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/metallb-rhel9-operator@sha256:3e904ee98de7fb1246da992444ee25e4ddd07806f02c2619b65ee75b315e6905_arm64 | — | ||
| Unresolved product id: Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/metallb-rhel9-operator@sha256:aa51df9e1905c0e44f7f6ecd74d6682362975c59911b9e36e905cb52a64096b9_s390x | — | ||
| Unresolved product id: Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/metallb-rhel9-operator@sha256:e9fdcee92e84dad61b213d7a3ffe24318bbbd0b79890c779760761675bf4ce3b_ppc64le | — | ||
| Unresolved product id: Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/metallb-rhel9@sha256:13dfba732da2aba14e5527d2008955134978909ed8823641a21ee2e118b33498_amd64 | — | ||
| Unresolved product id: Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/metallb-rhel9@sha256:338e57453aaf7b4a08df12f351894d109de6ea7926b021510197bea87b5c7284_arm64 | — | ||
| Unresolved product id: Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/metallb-rhel9@sha256:98dcb57b27e6b66e4b4199e33eecfb494218a4e75944eb45e7aad765f27f48bf_ppc64le | — | ||
| Unresolved product id: Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/metallb-rhel9@sha256:b3bc0e1b1a9fa18b3d31f38198f70ee60aecaeb83d65b89806eeb69d78be1a2e_s390x | — | ||
| Unresolved product id: Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-ansible-rhel9-operator@sha256:9a13a11550efc801a742b3c44908941151e051d0d4a81d20d2e8982f79af1559_s390x | — | ||
| Unresolved product id: Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-ansible-rhel9-operator@sha256:edf0c24be41ee871c33b2bd40040101d03c388966ef56bea6ab5fe3e64159efd_amd64 | — | ||
| Unresolved product id: Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-ansible-rhel9-operator@sha256:fb032926e45ec0ebb0ac6fde368797a7c7cfb17efea94e77049a843780d407eb_arm64 | — | ||
| Unresolved product id: Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-ansible-rhel9-operator@sha256:fc9ac010edc301f955073bbb9912e595ce6fd33a62c4b0c11435b9e91ba7ef54_ppc64le | — | ||
| Unresolved product id: Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-aws-efs-csi-driver-container-rhel9@sha256:37150c4d95a762ba377b126f961a2adbba6628db5495dc0ea237b02b81aa51aa_amd64 | — | ||
| Unresolved product id: Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-aws-efs-csi-driver-container-rhel9@sha256:6d03c8e522cc099a72cc92a0ecaff93d52eb590529405888f30196b2946d0e18_arm64 | — | ||
| Unresolved product id: Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-aws-efs-csi-driver-rhel9-operator@sha256:5ab5208bf09cfcadd7f3ecc0dc3dd23656630ff7a1a6eab90de3529db17f3c24_arm64 | — | ||
| Unresolved product id: Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-aws-efs-csi-driver-rhel9-operator@sha256:5d3d03e26113cf4740d2947d9e23c1007615506206c2399644a81e8f343cbaaf_amd64 | — | ||
| Unresolved product id: Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-cloud-event-proxy-rhel9@sha256:382657d2e3f4ee1d32849b509812c51004c015343a1d4ec0106d70b527f5ee12_amd64 | — | ||
| Unresolved product id: Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-cloud-event-proxy-rhel9@sha256:8767026aa89aaa77b06c0b1387bbe677817ff7fb1e965d025e91399dd885959b_arm64 | — | ||
| Unresolved product id: Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-cloud-event-proxy-rhel9@sha256:dc92042cb3802b221e594da9636d090ad795853d161c6d2152ddef7d152d6da8_ppc64le | — | ||
| Unresolved product id: Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-cluster-capacity-rhel9@sha256:2518816e5aa5f22e38bd326f09f33c1a1efdbd310ed1cad1299a621e8054a8d1_s390x | — | ||
| Unresolved product id: Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-cluster-capacity-rhel9@sha256:34d1067f6c432ef0cb087a154e7da91666102b892c30f0fc841f9722a7a8c6f2_ppc64le | — | ||
| Unresolved product id: Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-cluster-capacity-rhel9@sha256:543790697a3c850a48d32e860bb4c9c0d6d5ac937b6b5c3b8954c6f4f3cb39ba_arm64 | — | ||
| Unresolved product id: Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-cluster-capacity-rhel9@sha256:95c176b32fb102f563e6600226582b9c99d39b0431f82bdb433cb9c21b40add6_amd64 | — | ||
| Unresolved product id: Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-cluster-nfd-rhel9-operator@sha256:3691d7ccdba3b713c82729dc32d651a80365d0a4dc9edad6cfe66cc47b7f5199_s390x | — | ||
| Unresolved product id: Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-cluster-nfd-rhel9-operator@sha256:73003ac3bc1c768dfafe6714fd7323c8c941a818cea9e3ef88a2fa7494283a08_amd64 | — | ||
| Unresolved product id: Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-cluster-nfd-rhel9-operator@sha256:abb1a3a0207fc34c9f6c37dd191567c80ea70d577b8fd94943fcebaca535147e_arm64 | — | ||
| Unresolved product id: Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-cluster-nfd-rhel9-operator@sha256:c2b036ed84793e8357e3f46667736e4366d93beb64a22aaf428fdb9e2c9d40c7_ppc64le | — | ||
| Unresolved product id: Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-clusterresourceoverride-rhel9-operator@sha256:1d1dcf4357867bafe3b4a3576ece0b93f0430d659ed65b1abc0744d7a24745b5_ppc64le | — | ||
| Unresolved product id: Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-clusterresourceoverride-rhel9-operator@sha256:71f51894c78898a751821178ffb46f313b83c7de10f0fa036ed9b285d527fc32_arm64 | — | ||
| Unresolved product id: Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-clusterresourceoverride-rhel9-operator@sha256:d21eade3a6125db8cc43e6424ad74230214cc4a46abeb59ba1b2a3c101ac6283_amd64 | — | ||
| Unresolved product id: Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-clusterresourceoverride-rhel9-operator@sha256:dc7984ec2dbdd156dc885ff3d04cfb6dbdc167e6902ec3e4df693ffd2a85ac06_s390x | — | ||
| Unresolved product id: Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-clusterresourceoverride-rhel9@sha256:0bba654bc6ff6f0b2033fcb690493fc9e7a4d1f85588aab90e54ce5b48dc5567_s390x | — | ||
| Unresolved product id: Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-clusterresourceoverride-rhel9@sha256:0c91eec9681f4e16be81eaa6e24d934e87d297da27962b28698727018ea4b2fe_ppc64le | — | ||
| Unresolved product id: Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-clusterresourceoverride-rhel9@sha256:36f60e44d8be2d1d0e8d2c448cea63bdeb39f5c2ac1c1c35151d044dc0b0ee26_amd64 | — | ||
| Unresolved product id: Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-clusterresourceoverride-rhel9@sha256:afdcc56fd0a1fedd3fcd8c9eac4f7e518b0aa54886bbc08b7d8814faaf0e1e36_arm64 | — | ||
| Unresolved product id: Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-dpu-cni-rhel9@sha256:5276191889ae349eaf5a1b1d65f21b429cfc52718600201307151f3556b4b98b_ppc64le | — | ||
| Unresolved product id: Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-dpu-cni-rhel9@sha256:57793b7fd69cd2e464ac3546c1a158827a10f4c9556b1696c3aaadecfac7f37f_s390x | — | ||
| Unresolved product id: Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-dpu-cni-rhel9@sha256:7e45522e22c496fb7cb9a530e169c73c43ca9fde61539abbee4be7f651b98cda_amd64 | — | ||
| Unresolved product id: Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-dpu-cni-rhel9@sha256:8bd989e5443259a6deffb51e7d180c1a221e20bc1f9b2a5f1ff70096b9c9c4f4_arm64 | — | ||
| Unresolved product id: Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-dpu-daemon-rhel9@sha256:6904235bc5934801e8409a5960da09407d820754cbe10edb8cf62ec1484b87b7_s390x | — | ||
| Unresolved product id: Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-dpu-daemon-rhel9@sha256:9440d51ed354698f93e91c380a65daa0e165a13d3cac2818e2533c5f7ef60fa6_amd64 | — | ||
| Unresolved product id: Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-dpu-daemon-rhel9@sha256:a3432a6fe6e2853c8f88968f3ded5adc0dd3efb14f48a34e52b4b18b1aa037ea_ppc64le | — | ||
| Unresolved product id: Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-dpu-daemon-rhel9@sha256:b0d0462ba40d99af32b252319cc05864c45f0758fd1b38581b2690c4940a2c20_arm64 | — | ||
| Unresolved product id: Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-dpu-intel-ipu-p4sdk-rhel9@sha256:9017e22f5fd9703d326059df6cb0c61cfde6840e6f454fcc49c92908236e899e_amd64 | — | ||
| Unresolved product id: Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-dpu-intel-ipu-p4sdk-rhel9@sha256:d48880afd49e5fa069b2be1a9f1ef6786a4d45d63c175fab372d844a64af2821_arm64 | — | ||
| Unresolved product id: Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-dpu-intel-ipu-vsp-rhel9@sha256:1e42bc22e95bfac89c04d820fbc75965965b86fa64ec3b10c2ce49f0d076a118_amd64 | — | ||
| Unresolved product id: Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-dpu-intel-ipu-vsp-rhel9@sha256:a89114e65548d7927d0a8f2db84ad68151f026c092f861bdea1498db84a3da32_arm64 | — | ||
| Unresolved product id: Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-dpu-intel-netsec-vsp-rhel9@sha256:ab420e77f917866e3237122a47a6a6b98805dba9d944aef4f730c8a1d20a0560_arm64 | — | ||
| Unresolved product id: Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-dpu-intel-netsec-vsp-rhel9@sha256:b9080c881c0151460a1286493640e0d1e0c018a81340466ab1c13203310219e6_amd64 | — | ||
| Unresolved product id: Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-dpu-marvell-cp-agent-rhel9@sha256:5d70111632bb020cce18b16a88ee172ed293ea6b0cd0521ee44b619b474b8762_amd64 | — | ||
| Unresolved product id: Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-dpu-marvell-cp-agent-rhel9@sha256:6e51660e597421b36ea9d960a054577d11c66511e4707128fab9e60d4580bdf9_arm64 | — | ||
| Unresolved product id: Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-dpu-marvell-vsp-rhel9@sha256:77c16c7c6cf3e7ed299585a733b04718083579fab41bc7488314b428c416390e_amd64 | — | ||
| Unresolved product id: Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-dpu-marvell-vsp-rhel9@sha256:979c3c3666771f20961ae422e34d63c7c4a1838b937cccfdbe5a3279cbd120a6_arm64 | — | ||
| Unresolved product id: Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-dpu-network-resources-injector-rhel9@sha256:a9a41a126d694f0b1ca797ba28d8899a326ad3a1d40d8be05d6a2f42cac12398_arm64 | — | ||
| Unresolved product id: Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-dpu-network-resources-injector-rhel9@sha256:cd8d332585ebf4f8819cc54c64285f1e2ea127de41e4edff909fddbef4d02c5d_amd64 | — | ||
| Unresolved product id: Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-gcp-filestore-csi-driver-rhel9-operator@sha256:51d776f3327e8828dfed49bb6e6fb421bd8b7bb4ec225298f441d35f4f39b6e3_amd64 | — | ||
| Unresolved product id: Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-gcp-filestore-csi-driver-rhel9-operator@sha256:c0e944e7f3b22eb46ddac4b37f689e2c600dcc84c32b0e966e7251a45c6454e5_arm64 | — | ||
| Unresolved product id: Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-gcp-filestore-csi-driver-rhel9-operator@sha256:de288d5f53fb26030f4359623cafb0743f482c6418d4259563d9d0b974f7cd4c_ppc64le | — | ||
| Unresolved product id: Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-gcp-filestore-csi-driver-rhel9@sha256:a0353e92588be591c35f299f51f6da9e5be0136b3a8b30b7277cf4a46266d1cc_amd64 | — | ||
| Unresolved product id: Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-gcp-filestore-csi-driver-rhel9@sha256:b5fc12bb45b0f049223f4b26e0078f58d97462754ae3ea3bb1673aee5d22b62d_arm64 | — | ||
| Unresolved product id: Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-gcp-filestore-csi-driver-rhel9@sha256:fa28b3271852e969fba812fdd0ed26c6def0669358dc92ebd1628a20756559ef_ppc64le | — | ||
| Unresolved product id: Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-helm-rhel9-operator@sha256:01e0ffb0da07e6a7da267706ee894a2d80b7d909770e22b106294e7662924e1f_ppc64le | — | ||
| Unresolved product id: Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-helm-rhel9-operator@sha256:029e7d3829e93662046330222540af9d57f99bab9a708fb0262b614ba4ec5894_s390x | — | ||
| Unresolved product id: Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-helm-rhel9-operator@sha256:2f7fc2e6130b0504eb6451edeeb4b5815b162428d281aac6afd2f52ac5a04d10_amd64 | — | ||
| Unresolved product id: Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-helm-rhel9-operator@sha256:f30d6e6a77b47b17628bd0216d92173de8e3fc832bf06362eb1c1742bc6c40df_arm64 | — | ||
| Unresolved product id: Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-kubernetes-nmstate-handler-rhel9@sha256:38a05eaa1a557c4971e9da0b8aeeaac34d2e479d0aabe5bef2990d549b03ecfe_arm64 | — | ||
| Unresolved product id: Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-kubernetes-nmstate-handler-rhel9@sha256:49dce6c7de88a1840a20dc713fe6ba74f60f5b4263aeea6f826f3b9b522e96bf_amd64 | — | ||
| Unresolved product id: Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-kubernetes-nmstate-handler-rhel9@sha256:9a5be2cb99904acae97141af03282627a0de72054396a58500ae26fed5a9ff4e_s390x | — | ||
| Unresolved product id: Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-kubernetes-nmstate-handler-rhel9@sha256:d0c7639baee74257b10ef4207ba5bff14554f3153e488567758c55d168d972bd_ppc64le | — | ||
| Unresolved product id: Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-local-storage-diskmaker-rhel9@sha256:975e56e998c4ea82fedf71d019ed0e577e8a29cfe3c412ceeeb93306bf7bb361_s390x | — | ||
| Unresolved product id: Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-local-storage-diskmaker-rhel9@sha256:9fddd5cc3bf03b42a49346f86a0bef2a459a4da632bbfd0e5e3b2e83070e5092_ppc64le | — | ||
| Unresolved product id: Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-local-storage-diskmaker-rhel9@sha256:a1c8c56d4975ec3980441a56fb765cd0031e23d63391dec86d69ab6e7b343bc2_arm64 | — | ||
| Unresolved product id: Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-local-storage-diskmaker-rhel9@sha256:bf694ff952b6220ac1db51a8ff1823ee85b5d0fc6b6127c00b868a017853f53c_amd64 | — | ||
| Unresolved product id: Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-local-storage-mustgather-rhel9@sha256:1e5fa0e4c111c508ddbdf4a4b8b76b6dca44ff0b31ee9e798c3ec8b8c01222b9_ppc64le | — | ||
| Unresolved product id: Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-local-storage-mustgather-rhel9@sha256:30aa075ab2652d4ba186eb80915383b6dd4e7b7215fe5ffeec3c80bb1371b3f2_arm64 | — | ||
| Unresolved product id: Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-local-storage-mustgather-rhel9@sha256:53000c76b406be2af70be4c5258829f004a39a9d520cc020df44d7fa640d05ad_amd64 | — | ||
| Unresolved product id: Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-local-storage-mustgather-rhel9@sha256:86afe7a1545222df4bca1c8620e99b63048152f235f5ca9fddd73cc5bad1b9c4_s390x | — | ||
| Unresolved product id: Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-local-storage-rhel9-operator@sha256:3eb77753a5e2d6ff1023a9cb682b67a04b6dbcc2c6537c4ea18f523aa360a166_ppc64le | — | ||
| Unresolved product id: Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-local-storage-rhel9-operator@sha256:7217e60230edabbeaaa56cc3aceac15421f359a29c3eecfebbfe1582b270d347_s390x | — | ||
| Unresolved product id: Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-local-storage-rhel9-operator@sha256:83e84b70455d419a743df8eee90746745a46cdc52032fc6ac9238d7aca0086de_arm64 | — | ||
| Unresolved product id: Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-local-storage-rhel9-operator@sha256:ce139a228805b636280ed42198c7f93a666004f79d48861ad12edd3045f7c412_amd64 | — | ||
| Unresolved product id: Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-node-feature-discovery-rhel9@sha256:11f6bab6d8a000b25880f1b9395d769bc962aa34393ace4fab4c2d44205b1c95_ppc64le | — | ||
| Unresolved product id: Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-node-feature-discovery-rhel9@sha256:56b2612c509ae4021332da9b4e252304c50234dab408caade568f4573573a998_amd64 | — | ||
| Unresolved product id: Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-node-feature-discovery-rhel9@sha256:d470ef1f28b5233bab28e2b8b0a47fefd47aae8737cd4c6d488453aa6dd06c84_arm64 | — | ||
| Unresolved product id: Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-node-feature-discovery-rhel9@sha256:e12011347e72eb4d2e3f03ab0532132c302e2057a0c4dc177e13d82dcd714e67_s390x | — | ||
| Unresolved product id: Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-ptp-rhel9-operator@sha256:a668793754ce8ef6251e892a37241879a0b29e540983d63b56a4be3f673e6fb3_ppc64le | — | ||
| Unresolved product id: Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-ptp-rhel9-operator@sha256:c32ff4bbb692686b26b68f79f2d3b6f1cea33eeb4ce1b377097d676190226cb7_arm64 | — | ||
| Unresolved product id: Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-ptp-rhel9-operator@sha256:e8fcd2cf5235561386220e84b11b08cbf447f584746b9f6c0f9c46eff5f29364_amd64 | — | ||
| Unresolved product id: Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-ptp-rhel9@sha256:a0e3f44b5fe44c8cb2a8e3745e218deffeb339302dc25b4aa88ae5973052a682_ppc64le | — | ||
| Unresolved product id: Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-ptp-rhel9@sha256:ceffce6ae5d36775df6cfb2b23a8e089e10806c087d88ddcd5822d1e05d1843e_amd64 | — | ||
| Unresolved product id: Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-ptp-rhel9@sha256:f97c24fdcc9bdbd8c0e7807a95d9338d6bd6537edf5afff4b2871ae808b78803_arm64 | — | ||
| Unresolved product id: Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-secrets-store-csi-driver-rhel9-operator@sha256:5b2fb854cfe291704d78db26b17451565065414aac0763661ed2b59831487601_arm64 | — | ||
| Unresolved product id: Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-secrets-store-csi-driver-rhel9-operator@sha256:601ce1c70b7801a8de9e33a4466b299e2f76d544b66860cba94ef0dc69ecf797_s390x | — | ||
| Unresolved product id: Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-secrets-store-csi-driver-rhel9-operator@sha256:86a5601f89c0f47b69e0c1a1950f5d1bf584f3cf90188fbf92d7622dd7ff9156_amd64 | — | ||
| Unresolved product id: Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-secrets-store-csi-driver-rhel9-operator@sha256:dc815adc448c1aea6fd6cf7e4cab7e4361d1f54e10cd88b54701b41dcda11f42_ppc64le | — | ||
| Unresolved product id: Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-secrets-store-csi-driver-rhel9@sha256:007ea9c7d8bcf7729505788e73a3647e85be6d3f8375ced4099e575c4c1a11a5_amd64 | — | ||
| Unresolved product id: Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-secrets-store-csi-driver-rhel9@sha256:1c8bcdd2bb475931744eb16af2c176d7412cc1bb877eea7869dd395dec6f39ac_s390x | — | ||
| Unresolved product id: Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-secrets-store-csi-driver-rhel9@sha256:7d3d14431dbbe405b14de1a84939ff5e4b35d17768c023db144c1e88cf60ad6f_ppc64le | — | ||
| Unresolved product id: Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-secrets-store-csi-driver-rhel9@sha256:8d574539166590373d98289eab070d809068ae59b4c9437893bc5f1a75243e88_arm64 | — | ||
| Unresolved product id: Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-secrets-store-csi-mustgather-rhel9@sha256:37f50cdddd56cd5f6fc6c19d37a9f480ac92308a593f70e90e58dd9f937da438_arm64 | — | ||
| Unresolved product id: Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-secrets-store-csi-mustgather-rhel9@sha256:53aa411cc0b116c6693b7ffec54c51643921be9999f5d7c786e3d8ab6c14185f_s390x | — | ||
| Unresolved product id: Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-secrets-store-csi-mustgather-rhel9@sha256:546942fbfcc68e3f17523eaaae31d5694c545cdf84bb73ce0c2f20bfb0419844_amd64 | — | ||
| Unresolved product id: Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-secrets-store-csi-mustgather-rhel9@sha256:a77e3a3b7f0476f0821b97028cdbd7c784875f3c60a9540ef7ddc123a7994322_ppc64le | — | ||
| Unresolved product id: Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-smb-csi-driver-rhel9-operator@sha256:331ae406cc1d7df8814755f8d7d3b7a28829ba1b14c8f3e54e13ac768a53bea3_ppc64le | — | ||
| Unresolved product id: Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-smb-csi-driver-rhel9-operator@sha256:8c06c9971a1e4d101022419e787f698419d36cfec480f6c991cbd0ee0a1b12e5_arm64 | — | ||
| Unresolved product id: Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-smb-csi-driver-rhel9-operator@sha256:d2b2d32cb77ba179f2af443176194395c23585ee986a79e81ebe85d262783bda_s390x | — | ||
| Unresolved product id: Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-smb-csi-driver-rhel9-operator@sha256:d50822b32fc2d3c2069b5213e13d43e7f376886e7e5189dba36960932eff9af5_amd64 | — | ||
| Unresolved product id: Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-smb-csi-driver-rhel9@sha256:0ec112141b35688b1797ce674654d9c1c9f58ae66cc8feeb0379163644a497dd_amd64 | — | ||
| Unresolved product id: Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-smb-csi-driver-rhel9@sha256:273ac5166b9092848e05ea4bf7a657ecbd6cc1762a5a20146c87cecb3016fe85_ppc64le | — | ||
| Unresolved product id: Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-smb-csi-driver-rhel9@sha256:9593bea00e57e92b51dd05bb5b0e6d62df9a1cb4fc5591f5283b43f02fcdff72_arm64 | — | ||
| Unresolved product id: Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-smb-csi-driver-rhel9@sha256:f365a691fd585664a3f41dd12bf459ba37a628c899f32fcf03ce3915caf6946b_s390x | — | ||
| Unresolved product id: Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-sriov-dp-admission-controller-rhel9@sha256:1e487121455823010b1b43a7a4be96c5b953b5041ba39580e8f2f02a926da56d_ppc64le | — | ||
| Unresolved product id: Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-sriov-dp-admission-controller-rhel9@sha256:6fb389d62e79b243cb0d06d32ee0f824eaf98db2a9bd2e27fce00ec38258c1ae_arm64 | — | ||
| Unresolved product id: Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-sriov-dp-admission-controller-rhel9@sha256:7dfe5b88672cdf77c78c0ffaec725ad2f3e3a5e9bb7b3530a1ed819da338b5a1_s390x | — | ||
| Unresolved product id: Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-sriov-dp-admission-controller-rhel9@sha256:f0f69fcd1cf9ce0cabb42d5c7ff39790f786e12a84cedf7596f13358494c90aa_amd64 | — | ||
| Unresolved product id: Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-sriov-infiniband-cni-rhel9@sha256:37b587093902b17bd69212e43305888bd770d3a21a4eab7bdb682af8bc64b347_amd64 | — | ||
| Unresolved product id: Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-sriov-infiniband-cni-rhel9@sha256:5b69b9c0ab707cfcf11f706adacb764a73c928621716f3fb9914814689369f9f_ppc64le | — | ||
| Unresolved product id: Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-sriov-infiniband-cni-rhel9@sha256:a35e12407b3f4e22c53331f6019435945ee53db9ab67c21062926c120cb491d8_arm64 | — | ||
| Unresolved product id: Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-sriov-infiniband-cni-rhel9@sha256:c033dce54bea495f2cb2f7b297892a1188cd08abc8e5a717db52fc0c3d9df6c2_s390x | — | ||
| Unresolved product id: Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-sriov-network-config-daemon-rhel9@sha256:30dfae75fbdc1f97b9932d88760cce5c2aa1d1bbb61a8a32b3decb66674ca5f6_s390x | — | ||
| Unresolved product id: Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-sriov-network-config-daemon-rhel9@sha256:3b44b97a59a4962da6415c625bf7c76d16f3368d3e955f0c5dcbe05b5f0f5ac4_ppc64le | — | ||
| Unresolved product id: Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-sriov-network-config-daemon-rhel9@sha256:948595a29e50712c7f5847e8211e1200f44d3914f91fd50915ab42d86664bf8f_arm64 | — | ||
| Unresolved product id: Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-sriov-network-config-daemon-rhel9@sha256:cc8d7bbfb8d0afc2e6c225dadf632af79837cb80d23fef983a7c89dc7303aac0_amd64 | — | ||
| Unresolved product id: Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-sriov-network-device-plugin-rhel9@sha256:66f80c9740560af31361fe33c6c182496abd3f1bd1e35c27346b94be370223aa_arm64 | — | ||
| Unresolved product id: Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-sriov-network-device-plugin-rhel9@sha256:8a3ca73990b9c47173dd81929d997d08c219dd7ebca6e2abf8763b9e06b6dcc7_s390x | — | ||
| Unresolved product id: Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-sriov-network-device-plugin-rhel9@sha256:978ba2e085c4683dc1a0b499043095704957c7b5db5012c59dd7cfc355fed1b0_amd64 | — | ||
| Unresolved product id: Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-sriov-network-device-plugin-rhel9@sha256:d4ff686da4afdf216acf3c9ad530844cf989d3fd0ea69456ee13878ca38ab53c_ppc64le | — | ||
| Unresolved product id: Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-sriov-network-metrics-exporter-rhel9@sha256:22889c2ed91e69fe02b98aeba2df75a470a4bc538683d48ac5632b0d049fbae5_ppc64le | — | ||
| Unresolved product id: Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-sriov-network-metrics-exporter-rhel9@sha256:6aff0035aff9f654cbe4fb4437b57af3bef4bc3801aea32e2cd4e32b4910f482_arm64 | — | ||
| Unresolved product id: Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-sriov-network-metrics-exporter-rhel9@sha256:bc31897f905a8a05e063878fdfedf523c9313f6131f03236421ec4e971d5a2cc_amd64 | — | ||
| Unresolved product id: Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-sriov-network-metrics-exporter-rhel9@sha256:f426214060d6c4e61984d2b275489a38098fa6c1977c913bfb17757c34d83147_s390x | — | ||
| Unresolved product id: Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-sriov-network-rhel9-operator@sha256:5112ee38eb67037b9dec616724ba01d32651dfc71bac03e26646ae8e517f4540_ppc64le | — | ||
| Unresolved product id: Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-sriov-network-rhel9-operator@sha256:744c6db730c13b35c8a7eb1c63c87a6fe01f7b4a6137a4cdf6e318afa560fae2_amd64 | — | ||
| Unresolved product id: Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-sriov-network-rhel9-operator@sha256:ad9fffd643b1b7fca4e04dbecd6e3df93b68d1d455ead877fc92931fb893a234_arm64 | — | ||
| Unresolved product id: Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-sriov-network-rhel9-operator@sha256:d2c308d8f6e2174073cf84c0d7baf9b05d78ca8e4e2057009b71758a0771169e_s390x | — | ||
| Unresolved product id: Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-sriov-network-webhook-rhel9@sha256:07240bbb9795a5c405940633d3a2f0fb47f5abbf9b0c87361bdf80dde10ab528_s390x | — | ||
| Unresolved product id: Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-sriov-network-webhook-rhel9@sha256:11b5d71f5f9e512b7feb2aeb79b1874e34e27bb222f576a1f9dda8898630528c_arm64 | — | ||
| Unresolved product id: Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-sriov-network-webhook-rhel9@sha256:7457d5a64900cb13365c55cba14193dd90eb73c11863bedd96b33e1add5f85f3_amd64 | — | ||
| Unresolved product id: Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-sriov-network-webhook-rhel9@sha256:eaa3c056167469c6bb5513e3dde02e5dab49d5b98e1c17ab966ad7313222b1ab_ppc64le | — | ||
| Unresolved product id: Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-sriov-rdma-cni-rhel9@sha256:07fbfd0334aec167fb06ff4eba3053d9cecc00664b9cfea1d18b4b6bdd0814fa_s390x | — | ||
| Unresolved product id: Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-sriov-rdma-cni-rhel9@sha256:18e7e59dbe9ba0498fcb12b6483ef22d4079ea6e1402fba88a6aae000f340e9d_ppc64le | — | ||
| Unresolved product id: Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-sriov-rdma-cni-rhel9@sha256:2433095c43109b0ec3932a9b2b34600271f32bd440f9cc73c43b742b913646d5_amd64 | — | ||
| Unresolved product id: Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-sriov-rdma-cni-rhel9@sha256:75a785f3d554b02952605b3af98f00fcada32117e8d0c3e6fe22f44e7651bc1e_arm64 | — | ||
| Unresolved product id: Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-support-log-gather-rhel9-operator@sha256:10e52003925adc71826622c39efab5fea15638adddc6aef533cf0692ca23f6d4_ppc64le | — | ||
| Unresolved product id: Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-support-log-gather-rhel9-operator@sha256:5b6fcf89b09b265ac65ef49afea5e7cbd786df205ecb5426cb1cda10bc5dcfd6_arm64 | — | ||
| Unresolved product id: Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-support-log-gather-rhel9-operator@sha256:89ab8e96ab53d430ce97e8a80fd4ef35277234391a72723da2a8457be881291e_amd64 | — | ||
| Unresolved product id: Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-support-log-gather-rhel9-operator@sha256:e6ee32452c5a790d4704806161a2b63a29aacc165766295f92762bffbd89d6aa_s390x | — | ||
| Unresolved product id: Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-vertical-pod-autoscaler-rhel9-operator@sha256:54ffc01a3dd2306f78dfdd6097e5c775b3edac36f443099c730c241a45833638_amd64 | — | ||
| Unresolved product id: Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-vertical-pod-autoscaler-rhel9-operator@sha256:a827987893266c281440a48b4229a7f48c1d40bbad3e7f6ed8c84bfaa4c0281c_arm64 | — | ||
| Unresolved product id: Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-vertical-pod-autoscaler-rhel9-operator@sha256:c3b36f187a4b67d4b4df5c7e2bb975832a2709d1891aec41af4d46bc578659ba_ppc64le | — | ||
| Unresolved product id: Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-vertical-pod-autoscaler-rhel9-operator@sha256:ecc3b8fa62455706ee62cb0d1c0226d300f5f15304bafe4e518f2d3ffc928bde_s390x | — | ||
| Unresolved product id: Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-vertical-pod-autoscaler-rhel9@sha256:561f7a4380dc0189b3b219bf7ab9a5b67d0baadcc05d6b1c0864770c928a43d7_amd64 | — | ||
| Unresolved product id: Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-vertical-pod-autoscaler-rhel9@sha256:715fd2f2e998043648963177764e4dcab56f4c73e10c4c2c293445692d835f25_s390x | — | ||
| Unresolved product id: Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-vertical-pod-autoscaler-rhel9@sha256:b3dff747e802382fb5cc9df83b2950eb1773f817e82ea6482f3fc6f52bce0706_ppc64le | — | ||
| Unresolved product id: Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-vertical-pod-autoscaler-rhel9@sha256:f31091c53dcf7f2148c91cc7cfa625ff92940f47f2cc341f0c4f8f6bb8dd4eea_arm64 | — | ||
| Unresolved product id: Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/pf-status-relay-rhel9-operator@sha256:889c8eb5ab957329e63f83bf86199396246fcc79fb841c1d63808d9999aa27fe_ppc64le | — | ||
| Unresolved product id: Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/pf-status-relay-rhel9-operator@sha256:b5a7192ce8bd5d376f73d22a7352ecd9acfa8648a7bb4d18e4c19bbbfaab4e5c_arm64 | — | ||
| Unresolved product id: Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/pf-status-relay-rhel9-operator@sha256:c1e5de1e0068aa168df07192576be90eea2df9c5941cde1260c547d088424d2d_amd64 | — | ||
| Unresolved product id: Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/pf-status-relay-rhel9-operator@sha256:c4ede99f6c9aca2fff295d06dbc9d6f603ab73b323fc0c876ae01a5edf8abc1c_s390x | — | ||
| Unresolved product id: Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/pf-status-relay-rhel9@sha256:355aa8de7d52c60509970f2572b232185505f97c1b3624bdcf8f1bd5b097aa19_arm64 | — | ||
| Unresolved product id: Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/pf-status-relay-rhel9@sha256:8521f8e56aed7158d674c968909d34a4b235cc91c5c8ceeb21217ac8e7e167e3_amd64 | — | ||
| Unresolved product id: Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/pf-status-relay-rhel9@sha256:b95bb5f44309a8b851af6a92c4346edd4017028516ea7e024ffee73fc96e80e0_ppc64le | — | ||
| Unresolved product id: Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/pf-status-relay-rhel9@sha256:e01330406bf0fadd9e81f731ef6514946ffdc7a137726c9ed4d7c1d890d33f46_s390x | — | ||
| Unresolved product id: Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ptp-must-gather-rhel9@sha256:2c8b5c11bb25cf78f3d5bc4a6c8ea2952a681c1d6bc622493e0fb8e7cdd8d338_amd64 | — | ||
| Unresolved product id: Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ptp-must-gather-rhel9@sha256:429969ea012b2a168aa0c3971a26d9bcfb1749c0721c4afc4d9cc8e38aca6b9f_ppc64le | — | ||
| Unresolved product id: Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ptp-must-gather-rhel9@sha256:51770b7af0a378ba8c7580c9e7404bab256f6230a3232e598db33feafc48113e_arm64 | — | ||
| Unresolved product id: Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/sriov-cni-rhel9@sha256:18b649c7e0372f2c0f11d0d2a845c325ca5847e891b6583ce81d6b5ab0cd2399_ppc64le | — | ||
| Unresolved product id: Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/sriov-cni-rhel9@sha256:4217d67066546d6cdede76c350ddb11d0ae35ce151349e88e6b3c2a6e1837bd1_arm64 | — | ||
| Unresolved product id: Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/sriov-cni-rhel9@sha256:cb4c3e8f99e94fe87498dc6a3360d10db9d5735a5d85a10d83a3503861d28c03_amd64 | — | ||
| Unresolved product id: Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/sriov-cni-rhel9@sha256:e4aa72ffa1446d67c99550be24dfaaf4d07e70ca86872f9062aa72db8d139a15_s390x | — |
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Red Hat OpenShift Container Platform release 4.21.23 is now available with updates to packages and images that fix several bugs.\n\nThis release includes a security update for Red Hat OpenShift Container Platform 4.21.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "Red Hat OpenShift Container Platform is Red Hat\u0027s cloud computing Kubernetes application platform solution designed for on-premise or private cloud deployments.\n\nThis advisory contains the RPM packages for Red Hat OpenShift Container Platform 4.21.23. See the following advisory for the container images for this release:\n\nhttps://access.redhat.com/errata/RHSA-2026:34769\n\nSecurity Fix(es):\n\n* fast-uri: fast-uri: URI authority bypass due to improper delimiter handling (CVE-2026-6322)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.\n\nAll OpenShift Container Platform 4.21 users are advised to upgrade to these updated packages and images when they are available in the appropriate release channel. To check for available updates, use the OpenShift CLI (oc) or web console. Instructions for upgrading a cluster are available at https://docs.redhat.com/en/documentation/openshift_container_platform/4.21/html-single/updating_clusters/index#updating-cluster-cli.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2026:34770",
"url": "https://access.redhat.com/errata/RHSA-2026:34770"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-6322",
"url": "https://access.redhat.com/security/cve/CVE-2026-6322"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/",
"url": "https://access.redhat.com/security/updates/classification/"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2026/rhsa-2026_34770.json"
}
],
"title": "Red Hat Security Advisory: OpenShift Container Platform 4.21.23 security and extras update",
"tracking": {
"current_release_date": "2026-07-08T21:48:25+00:00",
"generator": {
"date": "2026-07-08T21:48:25+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "5.3.1"
}
},
"id": "RHSA-2026:34770",
"initial_release_date": "2026-07-07T08:46:26+00:00",
"revision_history": [
{
"date": "2026-07-07T08:46:26+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2026-07-07T08:48:08+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2026-07-08T21:48:25+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat OpenShift Container Platform 4.21",
"product": {
"name": "Red Hat OpenShift Container Platform 4.21",
"product_id": "Red Hat OpenShift Container Platform 4.21",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:openshift:4.21::el9"
}
}
}
],
"category": "product_family",
"name": "Red Hat OpenShift Container Platform"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/openshift4/ose-cloud-event-proxy-rhel9@sha256:8767026aa89aaa77b06c0b1387bbe677817ff7fb1e965d025e91399dd885959b_arm64",
"product": {
"name": "registry.redhat.io/openshift4/ose-cloud-event-proxy-rhel9@sha256:8767026aa89aaa77b06c0b1387bbe677817ff7fb1e965d025e91399dd885959b_arm64",
"product_id": "registry.redhat.io/openshift4/ose-cloud-event-proxy-rhel9@sha256:8767026aa89aaa77b06c0b1387bbe677817ff7fb1e965d025e91399dd885959b_arm64",
"product_identification_helper": {
"purl": "pkg:oci/openshift/ose-cloud-event-proxy-rhel9@sha256%3A8767026aa89aaa77b06c0b1387bbe677817ff7fb1e965d025e91399dd885959b?arch=arm64\u0026repository_url=registry.redhat.io/openshift4/ose-cloud-event-proxy-rhel9\u0026tag=1782859805"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift4/ose-cluster-nfd-rhel9-operator@sha256:abb1a3a0207fc34c9f6c37dd191567c80ea70d577b8fd94943fcebaca535147e_arm64",
"product": {
"name": "registry.redhat.io/openshift4/ose-cluster-nfd-rhel9-operator@sha256:abb1a3a0207fc34c9f6c37dd191567c80ea70d577b8fd94943fcebaca535147e_arm64",
"product_id": "registry.redhat.io/openshift4/ose-cluster-nfd-rhel9-operator@sha256:abb1a3a0207fc34c9f6c37dd191567c80ea70d577b8fd94943fcebaca535147e_arm64",
"product_identification_helper": {
"purl": "pkg:oci/openshift/ose-cluster-nfd-rhel9-operator@sha256%3Aabb1a3a0207fc34c9f6c37dd191567c80ea70d577b8fd94943fcebaca535147e?arch=arm64\u0026repository_url=registry.redhat.io/openshift4/ose-cluster-nfd-rhel9-operator\u0026tag=1782860451"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift4/ose-clusterresourceoverride-rhel9@sha256:afdcc56fd0a1fedd3fcd8c9eac4f7e518b0aa54886bbc08b7d8814faaf0e1e36_arm64",
"product": {
"name": "registry.redhat.io/openshift4/ose-clusterresourceoverride-rhel9@sha256:afdcc56fd0a1fedd3fcd8c9eac4f7e518b0aa54886bbc08b7d8814faaf0e1e36_arm64",
"product_id": "registry.redhat.io/openshift4/ose-clusterresourceoverride-rhel9@sha256:afdcc56fd0a1fedd3fcd8c9eac4f7e518b0aa54886bbc08b7d8814faaf0e1e36_arm64",
"product_identification_helper": {
"purl": "pkg:oci/openshift/ose-clusterresourceoverride-rhel9@sha256%3Aafdcc56fd0a1fedd3fcd8c9eac4f7e518b0aa54886bbc08b7d8814faaf0e1e36?arch=arm64\u0026repository_url=registry.redhat.io/openshift4/ose-clusterresourceoverride-rhel9\u0026tag=1782860748"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift4/ose-clusterresourceoverride-rhel9-operator@sha256:71f51894c78898a751821178ffb46f313b83c7de10f0fa036ed9b285d527fc32_arm64",
"product": {
"name": "registry.redhat.io/openshift4/ose-clusterresourceoverride-rhel9-operator@sha256:71f51894c78898a751821178ffb46f313b83c7de10f0fa036ed9b285d527fc32_arm64",
"product_id": "registry.redhat.io/openshift4/ose-clusterresourceoverride-rhel9-operator@sha256:71f51894c78898a751821178ffb46f313b83c7de10f0fa036ed9b285d527fc32_arm64",
"product_identification_helper": {
"purl": "pkg:oci/openshift/ose-clusterresourceoverride-rhel9-operator@sha256%3A71f51894c78898a751821178ffb46f313b83c7de10f0fa036ed9b285d527fc32?arch=arm64\u0026repository_url=registry.redhat.io/openshift4/ose-clusterresourceoverride-rhel9-operator\u0026tag=1782870830"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift4/ose-dpu-cni-rhel9@sha256:8bd989e5443259a6deffb51e7d180c1a221e20bc1f9b2a5f1ff70096b9c9c4f4_arm64",
"product": {
"name": "registry.redhat.io/openshift4/ose-dpu-cni-rhel9@sha256:8bd989e5443259a6deffb51e7d180c1a221e20bc1f9b2a5f1ff70096b9c9c4f4_arm64",
"product_id": "registry.redhat.io/openshift4/ose-dpu-cni-rhel9@sha256:8bd989e5443259a6deffb51e7d180c1a221e20bc1f9b2a5f1ff70096b9c9c4f4_arm64",
"product_identification_helper": {
"purl": "pkg:oci/openshift/ose-dpu-cni-rhel9@sha256%3A8bd989e5443259a6deffb51e7d180c1a221e20bc1f9b2a5f1ff70096b9c9c4f4?arch=arm64\u0026repository_url=registry.redhat.io/openshift4/ose-dpu-cni-rhel9\u0026tag=1782865367"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift4/ose-dpu-daemon-rhel9@sha256:b0d0462ba40d99af32b252319cc05864c45f0758fd1b38581b2690c4940a2c20_arm64",
"product": {
"name": "registry.redhat.io/openshift4/ose-dpu-daemon-rhel9@sha256:b0d0462ba40d99af32b252319cc05864c45f0758fd1b38581b2690c4940a2c20_arm64",
"product_id": "registry.redhat.io/openshift4/ose-dpu-daemon-rhel9@sha256:b0d0462ba40d99af32b252319cc05864c45f0758fd1b38581b2690c4940a2c20_arm64",
"product_identification_helper": {
"purl": "pkg:oci/openshift/ose-dpu-daemon-rhel9@sha256%3Ab0d0462ba40d99af32b252319cc05864c45f0758fd1b38581b2690c4940a2c20?arch=arm64\u0026repository_url=registry.redhat.io/openshift4/ose-dpu-daemon-rhel9\u0026tag=1782864733"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift4/ose-dpu-intel-ipu-p4sdk-rhel9@sha256:d48880afd49e5fa069b2be1a9f1ef6786a4d45d63c175fab372d844a64af2821_arm64",
"product": {
"name": "registry.redhat.io/openshift4/ose-dpu-intel-ipu-p4sdk-rhel9@sha256:d48880afd49e5fa069b2be1a9f1ef6786a4d45d63c175fab372d844a64af2821_arm64",
"product_id": "registry.redhat.io/openshift4/ose-dpu-intel-ipu-p4sdk-rhel9@sha256:d48880afd49e5fa069b2be1a9f1ef6786a4d45d63c175fab372d844a64af2821_arm64",
"product_identification_helper": {
"purl": "pkg:oci/openshift/ose-dpu-intel-ipu-p4sdk-rhel9@sha256%3Ad48880afd49e5fa069b2be1a9f1ef6786a4d45d63c175fab372d844a64af2821?arch=arm64\u0026repository_url=registry.redhat.io/openshift4/ose-dpu-intel-ipu-p4sdk-rhel9\u0026tag=1782899480"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift4/ose-dpu-intel-ipu-vsp-rhel9@sha256:a89114e65548d7927d0a8f2db84ad68151f026c092f861bdea1498db84a3da32_arm64",
"product": {
"name": "registry.redhat.io/openshift4/ose-dpu-intel-ipu-vsp-rhel9@sha256:a89114e65548d7927d0a8f2db84ad68151f026c092f861bdea1498db84a3da32_arm64",
"product_id": "registry.redhat.io/openshift4/ose-dpu-intel-ipu-vsp-rhel9@sha256:a89114e65548d7927d0a8f2db84ad68151f026c092f861bdea1498db84a3da32_arm64",
"product_identification_helper": {
"purl": "pkg:oci/openshift/ose-dpu-intel-ipu-vsp-rhel9@sha256%3Aa89114e65548d7927d0a8f2db84ad68151f026c092f861bdea1498db84a3da32?arch=arm64\u0026repository_url=registry.redhat.io/openshift4/ose-dpu-intel-ipu-vsp-rhel9\u0026tag=1782859767"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift4/ose-dpu-intel-netsec-vsp-rhel9@sha256:ab420e77f917866e3237122a47a6a6b98805dba9d944aef4f730c8a1d20a0560_arm64",
"product": {
"name": "registry.redhat.io/openshift4/ose-dpu-intel-netsec-vsp-rhel9@sha256:ab420e77f917866e3237122a47a6a6b98805dba9d944aef4f730c8a1d20a0560_arm64",
"product_id": "registry.redhat.io/openshift4/ose-dpu-intel-netsec-vsp-rhel9@sha256:ab420e77f917866e3237122a47a6a6b98805dba9d944aef4f730c8a1d20a0560_arm64",
"product_identification_helper": {
"purl": "pkg:oci/openshift/ose-dpu-intel-netsec-vsp-rhel9@sha256%3Aab420e77f917866e3237122a47a6a6b98805dba9d944aef4f730c8a1d20a0560?arch=arm64\u0026repository_url=registry.redhat.io/openshift4/ose-dpu-intel-netsec-vsp-rhel9\u0026tag=1782859788"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift4/ose-dpu-marvell-cp-agent-rhel9@sha256:6e51660e597421b36ea9d960a054577d11c66511e4707128fab9e60d4580bdf9_arm64",
"product": {
"name": "registry.redhat.io/openshift4/ose-dpu-marvell-cp-agent-rhel9@sha256:6e51660e597421b36ea9d960a054577d11c66511e4707128fab9e60d4580bdf9_arm64",
"product_id": "registry.redhat.io/openshift4/ose-dpu-marvell-cp-agent-rhel9@sha256:6e51660e597421b36ea9d960a054577d11c66511e4707128fab9e60d4580bdf9_arm64",
"product_identification_helper": {
"purl": "pkg:oci/openshift/ose-dpu-marvell-cp-agent-rhel9@sha256%3A6e51660e597421b36ea9d960a054577d11c66511e4707128fab9e60d4580bdf9?arch=arm64\u0026repository_url=registry.redhat.io/openshift4/ose-dpu-marvell-cp-agent-rhel9\u0026tag=1782860002"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift4/ose-dpu-marvell-vsp-rhel9@sha256:979c3c3666771f20961ae422e34d63c7c4a1838b937cccfdbe5a3279cbd120a6_arm64",
"product": {
"name": "registry.redhat.io/openshift4/ose-dpu-marvell-vsp-rhel9@sha256:979c3c3666771f20961ae422e34d63c7c4a1838b937cccfdbe5a3279cbd120a6_arm64",
"product_id": "registry.redhat.io/openshift4/ose-dpu-marvell-vsp-rhel9@sha256:979c3c3666771f20961ae422e34d63c7c4a1838b937cccfdbe5a3279cbd120a6_arm64",
"product_identification_helper": {
"purl": "pkg:oci/openshift/ose-dpu-marvell-vsp-rhel9@sha256%3A979c3c3666771f20961ae422e34d63c7c4a1838b937cccfdbe5a3279cbd120a6?arch=arm64\u0026repository_url=registry.redhat.io/openshift4/ose-dpu-marvell-vsp-rhel9\u0026tag=1782859791"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift4/ose-dpu-network-resources-injector-rhel9@sha256:a9a41a126d694f0b1ca797ba28d8899a326ad3a1d40d8be05d6a2f42cac12398_arm64",
"product": {
"name": "registry.redhat.io/openshift4/ose-dpu-network-resources-injector-rhel9@sha256:a9a41a126d694f0b1ca797ba28d8899a326ad3a1d40d8be05d6a2f42cac12398_arm64",
"product_id": "registry.redhat.io/openshift4/ose-dpu-network-resources-injector-rhel9@sha256:a9a41a126d694f0b1ca797ba28d8899a326ad3a1d40d8be05d6a2f42cac12398_arm64",
"product_identification_helper": {
"purl": "pkg:oci/openshift/ose-dpu-network-resources-injector-rhel9@sha256%3Aa9a41a126d694f0b1ca797ba28d8899a326ad3a1d40d8be05d6a2f42cac12398?arch=arm64\u0026repository_url=registry.redhat.io/openshift4/ose-dpu-network-resources-injector-rhel9\u0026tag=1782859784"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift4/ose-sriov-infiniband-cni-rhel9@sha256:a35e12407b3f4e22c53331f6019435945ee53db9ab67c21062926c120cb491d8_arm64",
"product": {
"name": "registry.redhat.io/openshift4/ose-sriov-infiniband-cni-rhel9@sha256:a35e12407b3f4e22c53331f6019435945ee53db9ab67c21062926c120cb491d8_arm64",
"product_id": "registry.redhat.io/openshift4/ose-sriov-infiniband-cni-rhel9@sha256:a35e12407b3f4e22c53331f6019435945ee53db9ab67c21062926c120cb491d8_arm64",
"product_identification_helper": {
"purl": "pkg:oci/openshift/ose-sriov-infiniband-cni-rhel9@sha256%3Aa35e12407b3f4e22c53331f6019435945ee53db9ab67c21062926c120cb491d8?arch=arm64\u0026repository_url=registry.redhat.io/openshift4/ose-sriov-infiniband-cni-rhel9\u0026tag=1782861437"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift4/ingress-node-firewall-rhel9@sha256:64c1a57597fd99e5c2cd0f3627043ab939e06a0163a3fc1554bc66f94edfa686_arm64",
"product": {
"name": "registry.redhat.io/openshift4/ingress-node-firewall-rhel9@sha256:64c1a57597fd99e5c2cd0f3627043ab939e06a0163a3fc1554bc66f94edfa686_arm64",
"product_id": "registry.redhat.io/openshift4/ingress-node-firewall-rhel9@sha256:64c1a57597fd99e5c2cd0f3627043ab939e06a0163a3fc1554bc66f94edfa686_arm64",
"product_identification_helper": {
"purl": "pkg:oci/openshift/ingress-node-firewall-rhel9@sha256%3A64c1a57597fd99e5c2cd0f3627043ab939e06a0163a3fc1554bc66f94edfa686?arch=arm64\u0026repository_url=registry.redhat.io/openshift4/ingress-node-firewall-rhel9\u0026tag=1782865693"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift4/ingress-node-firewall-rhel9-operator@sha256:a9372f22f3ed5bda5c1d51a7354c6a8b4e0f603367b3c07ec6a0776352a4897f_arm64",
"product": {
"name": "registry.redhat.io/openshift4/ingress-node-firewall-rhel9-operator@sha256:a9372f22f3ed5bda5c1d51a7354c6a8b4e0f603367b3c07ec6a0776352a4897f_arm64",
"product_id": "registry.redhat.io/openshift4/ingress-node-firewall-rhel9-operator@sha256:a9372f22f3ed5bda5c1d51a7354c6a8b4e0f603367b3c07ec6a0776352a4897f_arm64",
"product_identification_helper": {
"purl": "pkg:oci/openshift/ingress-node-firewall-rhel9-operator@sha256%3Aa9372f22f3ed5bda5c1d51a7354c6a8b4e0f603367b3c07ec6a0776352a4897f?arch=arm64\u0026repository_url=registry.redhat.io/openshift4/ingress-node-firewall-rhel9-operator\u0026tag=1782863031"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift4/kube-compare-artifacts-rhel9@sha256:8876c6edf54f10692f7d43d00c4f8ee1d39200db701779c5ec4d6e9e7b0508f6_arm64",
"product": {
"name": "registry.redhat.io/openshift4/kube-compare-artifacts-rhel9@sha256:8876c6edf54f10692f7d43d00c4f8ee1d39200db701779c5ec4d6e9e7b0508f6_arm64",
"product_id": "registry.redhat.io/openshift4/kube-compare-artifacts-rhel9@sha256:8876c6edf54f10692f7d43d00c4f8ee1d39200db701779c5ec4d6e9e7b0508f6_arm64",
"product_identification_helper": {
"purl": "pkg:oci/openshift/kube-compare-artifacts-rhel9@sha256%3A8876c6edf54f10692f7d43d00c4f8ee1d39200db701779c5ec4d6e9e7b0508f6?arch=arm64\u0026repository_url=registry.redhat.io/openshift4/kube-compare-artifacts-rhel9\u0026tag=1782870058"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift4/ose-ptp-rhel9@sha256:f97c24fdcc9bdbd8c0e7807a95d9338d6bd6537edf5afff4b2871ae808b78803_arm64",
"product": {
"name": "registry.redhat.io/openshift4/ose-ptp-rhel9@sha256:f97c24fdcc9bdbd8c0e7807a95d9338d6bd6537edf5afff4b2871ae808b78803_arm64",
"product_id": "registry.redhat.io/openshift4/ose-ptp-rhel9@sha256:f97c24fdcc9bdbd8c0e7807a95d9338d6bd6537edf5afff4b2871ae808b78803_arm64",
"product_identification_helper": {
"purl": "pkg:oci/openshift/ose-ptp-rhel9@sha256%3Af97c24fdcc9bdbd8c0e7807a95d9338d6bd6537edf5afff4b2871ae808b78803?arch=arm64\u0026repository_url=registry.redhat.io/openshift4/ose-ptp-rhel9\u0026tag=1782860086"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift4/ose-local-storage-diskmaker-rhel9@sha256:a1c8c56d4975ec3980441a56fb765cd0031e23d63391dec86d69ab6e7b343bc2_arm64",
"product": {
"name": "registry.redhat.io/openshift4/ose-local-storage-diskmaker-rhel9@sha256:a1c8c56d4975ec3980441a56fb765cd0031e23d63391dec86d69ab6e7b343bc2_arm64",
"product_id": "registry.redhat.io/openshift4/ose-local-storage-diskmaker-rhel9@sha256:a1c8c56d4975ec3980441a56fb765cd0031e23d63391dec86d69ab6e7b343bc2_arm64",
"product_identification_helper": {
"purl": "pkg:oci/openshift/ose-local-storage-diskmaker-rhel9@sha256%3Aa1c8c56d4975ec3980441a56fb765cd0031e23d63391dec86d69ab6e7b343bc2?arch=arm64\u0026repository_url=registry.redhat.io/openshift4/ose-local-storage-diskmaker-rhel9\u0026tag=1782860589"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift4/ose-local-storage-mustgather-rhel9@sha256:30aa075ab2652d4ba186eb80915383b6dd4e7b7215fe5ffeec3c80bb1371b3f2_arm64",
"product": {
"name": "registry.redhat.io/openshift4/ose-local-storage-mustgather-rhel9@sha256:30aa075ab2652d4ba186eb80915383b6dd4e7b7215fe5ffeec3c80bb1371b3f2_arm64",
"product_id": "registry.redhat.io/openshift4/ose-local-storage-mustgather-rhel9@sha256:30aa075ab2652d4ba186eb80915383b6dd4e7b7215fe5ffeec3c80bb1371b3f2_arm64",
"product_identification_helper": {
"purl": "pkg:oci/openshift/ose-local-storage-mustgather-rhel9@sha256%3A30aa075ab2652d4ba186eb80915383b6dd4e7b7215fe5ffeec3c80bb1371b3f2?arch=arm64\u0026repository_url=registry.redhat.io/openshift4/ose-local-storage-mustgather-rhel9\u0026tag=1782899473"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift4/ose-local-storage-rhel9-operator@sha256:83e84b70455d419a743df8eee90746745a46cdc52032fc6ac9238d7aca0086de_arm64",
"product": {
"name": "registry.redhat.io/openshift4/ose-local-storage-rhel9-operator@sha256:83e84b70455d419a743df8eee90746745a46cdc52032fc6ac9238d7aca0086de_arm64",
"product_id": "registry.redhat.io/openshift4/ose-local-storage-rhel9-operator@sha256:83e84b70455d419a743df8eee90746745a46cdc52032fc6ac9238d7aca0086de_arm64",
"product_identification_helper": {
"purl": "pkg:oci/openshift/ose-local-storage-rhel9-operator@sha256%3A83e84b70455d419a743df8eee90746745a46cdc52032fc6ac9238d7aca0086de?arch=arm64\u0026repository_url=registry.redhat.io/openshift4/ose-local-storage-rhel9-operator\u0026tag=1782899520"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift4/nmstate-console-plugin-rhel9@sha256:a06625622d7d52e5c21bec84047a765aeb065309ed9908eb16cf97a25e1017ac_arm64",
"product": {
"name": "registry.redhat.io/openshift4/nmstate-console-plugin-rhel9@sha256:a06625622d7d52e5c21bec84047a765aeb065309ed9908eb16cf97a25e1017ac_arm64",
"product_id": "registry.redhat.io/openshift4/nmstate-console-plugin-rhel9@sha256:a06625622d7d52e5c21bec84047a765aeb065309ed9908eb16cf97a25e1017ac_arm64",
"product_identification_helper": {
"purl": "pkg:oci/openshift/nmstate-console-plugin-rhel9@sha256%3Aa06625622d7d52e5c21bec84047a765aeb065309ed9908eb16cf97a25e1017ac?arch=arm64\u0026repository_url=registry.redhat.io/openshift4/nmstate-console-plugin-rhel9\u0026tag=1782914001"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift4/ose-node-feature-discovery-rhel9@sha256:d470ef1f28b5233bab28e2b8b0a47fefd47aae8737cd4c6d488453aa6dd06c84_arm64",
"product": {
"name": "registry.redhat.io/openshift4/ose-node-feature-discovery-rhel9@sha256:d470ef1f28b5233bab28e2b8b0a47fefd47aae8737cd4c6d488453aa6dd06c84_arm64",
"product_id": "registry.redhat.io/openshift4/ose-node-feature-discovery-rhel9@sha256:d470ef1f28b5233bab28e2b8b0a47fefd47aae8737cd4c6d488453aa6dd06c84_arm64",
"product_identification_helper": {
"purl": "pkg:oci/openshift/ose-node-feature-discovery-rhel9@sha256%3Ad470ef1f28b5233bab28e2b8b0a47fefd47aae8737cd4c6d488453aa6dd06c84?arch=arm64\u0026repository_url=registry.redhat.io/openshift4/ose-node-feature-discovery-rhel9\u0026tag=1782865290"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift4/ose-ansible-rhel9-operator@sha256:fb032926e45ec0ebb0ac6fde368797a7c7cfb17efea94e77049a843780d407eb_arm64",
"product": {
"name": "registry.redhat.io/openshift4/ose-ansible-rhel9-operator@sha256:fb032926e45ec0ebb0ac6fde368797a7c7cfb17efea94e77049a843780d407eb_arm64",
"product_id": "registry.redhat.io/openshift4/ose-ansible-rhel9-operator@sha256:fb032926e45ec0ebb0ac6fde368797a7c7cfb17efea94e77049a843780d407eb_arm64",
"product_identification_helper": {
"purl": "pkg:oci/openshift/ose-ansible-rhel9-operator@sha256%3Afb032926e45ec0ebb0ac6fde368797a7c7cfb17efea94e77049a843780d407eb?arch=arm64\u0026repository_url=registry.redhat.io/openshift4/ose-ansible-rhel9-operator\u0026tag=1782913003"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift4/ose-cluster-capacity-rhel9@sha256:543790697a3c850a48d32e860bb4c9c0d6d5ac937b6b5c3b8954c6f4f3cb39ba_arm64",
"product": {
"name": "registry.redhat.io/openshift4/ose-cluster-capacity-rhel9@sha256:543790697a3c850a48d32e860bb4c9c0d6d5ac937b6b5c3b8954c6f4f3cb39ba_arm64",
"product_id": "registry.redhat.io/openshift4/ose-cluster-capacity-rhel9@sha256:543790697a3c850a48d32e860bb4c9c0d6d5ac937b6b5c3b8954c6f4f3cb39ba_arm64",
"product_identification_helper": {
"purl": "pkg:oci/openshift/ose-cluster-capacity-rhel9@sha256%3A543790697a3c850a48d32e860bb4c9c0d6d5ac937b6b5c3b8954c6f4f3cb39ba?arch=arm64\u0026repository_url=registry.redhat.io/openshift4/ose-cluster-capacity-rhel9\u0026tag=1782899556"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift4/ose-helm-rhel9-operator@sha256:f30d6e6a77b47b17628bd0216d92173de8e3fc832bf06362eb1c1742bc6c40df_arm64",
"product": {
"name": "registry.redhat.io/openshift4/ose-helm-rhel9-operator@sha256:f30d6e6a77b47b17628bd0216d92173de8e3fc832bf06362eb1c1742bc6c40df_arm64",
"product_id": "registry.redhat.io/openshift4/ose-helm-rhel9-operator@sha256:f30d6e6a77b47b17628bd0216d92173de8e3fc832bf06362eb1c1742bc6c40df_arm64",
"product_identification_helper": {
"purl": "pkg:oci/openshift/ose-helm-rhel9-operator@sha256%3Af30d6e6a77b47b17628bd0216d92173de8e3fc832bf06362eb1c1742bc6c40df?arch=arm64\u0026repository_url=registry.redhat.io/openshift4/ose-helm-rhel9-operator\u0026tag=1782861356"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift4/ose-kubernetes-nmstate-handler-rhel9@sha256:38a05eaa1a557c4971e9da0b8aeeaac34d2e479d0aabe5bef2990d549b03ecfe_arm64",
"product": {
"name": "registry.redhat.io/openshift4/ose-kubernetes-nmstate-handler-rhel9@sha256:38a05eaa1a557c4971e9da0b8aeeaac34d2e479d0aabe5bef2990d549b03ecfe_arm64",
"product_id": "registry.redhat.io/openshift4/ose-kubernetes-nmstate-handler-rhel9@sha256:38a05eaa1a557c4971e9da0b8aeeaac34d2e479d0aabe5bef2990d549b03ecfe_arm64",
"product_identification_helper": {
"purl": "pkg:oci/openshift/ose-kubernetes-nmstate-handler-rhel9@sha256%3A38a05eaa1a557c4971e9da0b8aeeaac34d2e479d0aabe5bef2990d549b03ecfe?arch=arm64\u0026repository_url=registry.redhat.io/openshift4/ose-kubernetes-nmstate-handler-rhel9\u0026tag=1782865881"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift4/kubernetes-nmstate-rhel9-operator@sha256:9bd366998eabe8f3a505fcf0281a3a875d5168ab58926fa1af47216a6944b377_arm64",
"product": {
"name": "registry.redhat.io/openshift4/kubernetes-nmstate-rhel9-operator@sha256:9bd366998eabe8f3a505fcf0281a3a875d5168ab58926fa1af47216a6944b377_arm64",
"product_id": "registry.redhat.io/openshift4/kubernetes-nmstate-rhel9-operator@sha256:9bd366998eabe8f3a505fcf0281a3a875d5168ab58926fa1af47216a6944b377_arm64",
"product_identification_helper": {
"purl": "pkg:oci/openshift/kubernetes-nmstate-rhel9-operator@sha256%3A9bd366998eabe8f3a505fcf0281a3a875d5168ab58926fa1af47216a6944b377?arch=arm64\u0026repository_url=registry.redhat.io/openshift4/kubernetes-nmstate-rhel9-operator\u0026tag=1782912957"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift4/ose-aws-efs-csi-driver-container-rhel9@sha256:6d03c8e522cc099a72cc92a0ecaff93d52eb590529405888f30196b2946d0e18_arm64",
"product": {
"name": "registry.redhat.io/openshift4/ose-aws-efs-csi-driver-container-rhel9@sha256:6d03c8e522cc099a72cc92a0ecaff93d52eb590529405888f30196b2946d0e18_arm64",
"product_id": "registry.redhat.io/openshift4/ose-aws-efs-csi-driver-container-rhel9@sha256:6d03c8e522cc099a72cc92a0ecaff93d52eb590529405888f30196b2946d0e18_arm64",
"product_identification_helper": {
"purl": "pkg:oci/openshift/ose-aws-efs-csi-driver-container-rhel9@sha256%3A6d03c8e522cc099a72cc92a0ecaff93d52eb590529405888f30196b2946d0e18?arch=arm64\u0026repository_url=registry.redhat.io/openshift4/ose-aws-efs-csi-driver-container-rhel9\u0026tag=1782900200"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift4/ose-aws-efs-csi-driver-rhel9-operator@sha256:5ab5208bf09cfcadd7f3ecc0dc3dd23656630ff7a1a6eab90de3529db17f3c24_arm64",
"product": {
"name": "registry.redhat.io/openshift4/ose-aws-efs-csi-driver-rhel9-operator@sha256:5ab5208bf09cfcadd7f3ecc0dc3dd23656630ff7a1a6eab90de3529db17f3c24_arm64",
"product_id": "registry.redhat.io/openshift4/ose-aws-efs-csi-driver-rhel9-operator@sha256:5ab5208bf09cfcadd7f3ecc0dc3dd23656630ff7a1a6eab90de3529db17f3c24_arm64",
"product_identification_helper": {
"purl": "pkg:oci/openshift/ose-aws-efs-csi-driver-rhel9-operator@sha256%3A5ab5208bf09cfcadd7f3ecc0dc3dd23656630ff7a1a6eab90de3529db17f3c24?arch=arm64\u0026repository_url=registry.redhat.io/openshift4/ose-aws-efs-csi-driver-rhel9-operator\u0026tag=1782912961"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift4/ose-gcp-filestore-csi-driver-rhel9@sha256:b5fc12bb45b0f049223f4b26e0078f58d97462754ae3ea3bb1673aee5d22b62d_arm64",
"product": {
"name": "registry.redhat.io/openshift4/ose-gcp-filestore-csi-driver-rhel9@sha256:b5fc12bb45b0f049223f4b26e0078f58d97462754ae3ea3bb1673aee5d22b62d_arm64",
"product_id": "registry.redhat.io/openshift4/ose-gcp-filestore-csi-driver-rhel9@sha256:b5fc12bb45b0f049223f4b26e0078f58d97462754ae3ea3bb1673aee5d22b62d_arm64",
"product_identification_helper": {
"purl": "pkg:oci/openshift/ose-gcp-filestore-csi-driver-rhel9@sha256%3Ab5fc12bb45b0f049223f4b26e0078f58d97462754ae3ea3bb1673aee5d22b62d?arch=arm64\u0026repository_url=registry.redhat.io/openshift4/ose-gcp-filestore-csi-driver-rhel9\u0026tag=1782859782"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift4/ose-gcp-filestore-csi-driver-rhel9-operator@sha256:c0e944e7f3b22eb46ddac4b37f689e2c600dcc84c32b0e966e7251a45c6454e5_arm64",
"product": {
"name": "registry.redhat.io/openshift4/ose-gcp-filestore-csi-driver-rhel9-operator@sha256:c0e944e7f3b22eb46ddac4b37f689e2c600dcc84c32b0e966e7251a45c6454e5_arm64",
"product_id": "registry.redhat.io/openshift4/ose-gcp-filestore-csi-driver-rhel9-operator@sha256:c0e944e7f3b22eb46ddac4b37f689e2c600dcc84c32b0e966e7251a45c6454e5_arm64",
"product_identification_helper": {
"purl": "pkg:oci/openshift/ose-gcp-filestore-csi-driver-rhel9-operator@sha256%3Ac0e944e7f3b22eb46ddac4b37f689e2c600dcc84c32b0e966e7251a45c6454e5?arch=arm64\u0026repository_url=registry.redhat.io/openshift4/ose-gcp-filestore-csi-driver-rhel9-operator\u0026tag=1782859743"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift4/metallb-rhel9@sha256:338e57453aaf7b4a08df12f351894d109de6ea7926b021510197bea87b5c7284_arm64",
"product": {
"name": "registry.redhat.io/openshift4/metallb-rhel9@sha256:338e57453aaf7b4a08df12f351894d109de6ea7926b021510197bea87b5c7284_arm64",
"product_id": "registry.redhat.io/openshift4/metallb-rhel9@sha256:338e57453aaf7b4a08df12f351894d109de6ea7926b021510197bea87b5c7284_arm64",
"product_identification_helper": {
"purl": "pkg:oci/openshift/metallb-rhel9@sha256%3A338e57453aaf7b4a08df12f351894d109de6ea7926b021510197bea87b5c7284?arch=arm64\u0026repository_url=registry.redhat.io/openshift4/metallb-rhel9\u0026tag=1782865760"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift4/metallb-rhel9-operator@sha256:3e904ee98de7fb1246da992444ee25e4ddd07806f02c2619b65ee75b315e6905_arm64",
"product": {
"name": "registry.redhat.io/openshift4/metallb-rhel9-operator@sha256:3e904ee98de7fb1246da992444ee25e4ddd07806f02c2619b65ee75b315e6905_arm64",
"product_id": "registry.redhat.io/openshift4/metallb-rhel9-operator@sha256:3e904ee98de7fb1246da992444ee25e4ddd07806f02c2619b65ee75b315e6905_arm64",
"product_identification_helper": {
"purl": "pkg:oci/openshift/metallb-rhel9-operator@sha256%3A3e904ee98de7fb1246da992444ee25e4ddd07806f02c2619b65ee75b315e6905?arch=arm64\u0026repository_url=registry.redhat.io/openshift4/metallb-rhel9-operator\u0026tag=1782859819"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift4/ose-secrets-store-csi-driver-rhel9@sha256:8d574539166590373d98289eab070d809068ae59b4c9437893bc5f1a75243e88_arm64",
"product": {
"name": "registry.redhat.io/openshift4/ose-secrets-store-csi-driver-rhel9@sha256:8d574539166590373d98289eab070d809068ae59b4c9437893bc5f1a75243e88_arm64",
"product_id": "registry.redhat.io/openshift4/ose-secrets-store-csi-driver-rhel9@sha256:8d574539166590373d98289eab070d809068ae59b4c9437893bc5f1a75243e88_arm64",
"product_identification_helper": {
"purl": "pkg:oci/openshift/ose-secrets-store-csi-driver-rhel9@sha256%3A8d574539166590373d98289eab070d809068ae59b4c9437893bc5f1a75243e88?arch=arm64\u0026repository_url=registry.redhat.io/openshift4/ose-secrets-store-csi-driver-rhel9\u0026tag=1782861433"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift4/ose-secrets-store-csi-driver-rhel9-operator@sha256:5b2fb854cfe291704d78db26b17451565065414aac0763661ed2b59831487601_arm64",
"product": {
"name": "registry.redhat.io/openshift4/ose-secrets-store-csi-driver-rhel9-operator@sha256:5b2fb854cfe291704d78db26b17451565065414aac0763661ed2b59831487601_arm64",
"product_id": "registry.redhat.io/openshift4/ose-secrets-store-csi-driver-rhel9-operator@sha256:5b2fb854cfe291704d78db26b17451565065414aac0763661ed2b59831487601_arm64",
"product_identification_helper": {
"purl": "pkg:oci/openshift/ose-secrets-store-csi-driver-rhel9-operator@sha256%3A5b2fb854cfe291704d78db26b17451565065414aac0763661ed2b59831487601?arch=arm64\u0026repository_url=registry.redhat.io/openshift4/ose-secrets-store-csi-driver-rhel9-operator\u0026tag=1782868696"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift4/ose-secrets-store-csi-mustgather-rhel9@sha256:37f50cdddd56cd5f6fc6c19d37a9f480ac92308a593f70e90e58dd9f937da438_arm64",
"product": {
"name": "registry.redhat.io/openshift4/ose-secrets-store-csi-mustgather-rhel9@sha256:37f50cdddd56cd5f6fc6c19d37a9f480ac92308a593f70e90e58dd9f937da438_arm64",
"product_id": "registry.redhat.io/openshift4/ose-secrets-store-csi-mustgather-rhel9@sha256:37f50cdddd56cd5f6fc6c19d37a9f480ac92308a593f70e90e58dd9f937da438_arm64",
"product_identification_helper": {
"purl": "pkg:oci/openshift/ose-secrets-store-csi-mustgather-rhel9@sha256%3A37f50cdddd56cd5f6fc6c19d37a9f480ac92308a593f70e90e58dd9f937da438?arch=arm64\u0026repository_url=registry.redhat.io/openshift4/ose-secrets-store-csi-mustgather-rhel9\u0026tag=1782870287"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift4/ose-smb-csi-driver-rhel9@sha256:9593bea00e57e92b51dd05bb5b0e6d62df9a1cb4fc5591f5283b43f02fcdff72_arm64",
"product": {
"name": "registry.redhat.io/openshift4/ose-smb-csi-driver-rhel9@sha256:9593bea00e57e92b51dd05bb5b0e6d62df9a1cb4fc5591f5283b43f02fcdff72_arm64",
"product_id": "registry.redhat.io/openshift4/ose-smb-csi-driver-rhel9@sha256:9593bea00e57e92b51dd05bb5b0e6d62df9a1cb4fc5591f5283b43f02fcdff72_arm64",
"product_identification_helper": {
"purl": "pkg:oci/openshift/ose-smb-csi-driver-rhel9@sha256%3A9593bea00e57e92b51dd05bb5b0e6d62df9a1cb4fc5591f5283b43f02fcdff72?arch=arm64\u0026repository_url=registry.redhat.io/openshift4/ose-smb-csi-driver-rhel9\u0026tag=1782863077"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift4/ose-smb-csi-driver-rhel9-operator@sha256:8c06c9971a1e4d101022419e787f698419d36cfec480f6c991cbd0ee0a1b12e5_arm64",
"product": {
"name": "registry.redhat.io/openshift4/ose-smb-csi-driver-rhel9-operator@sha256:8c06c9971a1e4d101022419e787f698419d36cfec480f6c991cbd0ee0a1b12e5_arm64",
"product_id": "registry.redhat.io/openshift4/ose-smb-csi-driver-rhel9-operator@sha256:8c06c9971a1e4d101022419e787f698419d36cfec480f6c991cbd0ee0a1b12e5_arm64",
"product_identification_helper": {
"purl": "pkg:oci/openshift/ose-smb-csi-driver-rhel9-operator@sha256%3A8c06c9971a1e4d101022419e787f698419d36cfec480f6c991cbd0ee0a1b12e5?arch=arm64\u0026repository_url=registry.redhat.io/openshift4/ose-smb-csi-driver-rhel9-operator\u0026tag=1782864535"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift4/ose-sriov-network-metrics-exporter-rhel9@sha256:6aff0035aff9f654cbe4fb4437b57af3bef4bc3801aea32e2cd4e32b4910f482_arm64",
"product": {
"name": "registry.redhat.io/openshift4/ose-sriov-network-metrics-exporter-rhel9@sha256:6aff0035aff9f654cbe4fb4437b57af3bef4bc3801aea32e2cd4e32b4910f482_arm64",
"product_id": "registry.redhat.io/openshift4/ose-sriov-network-metrics-exporter-rhel9@sha256:6aff0035aff9f654cbe4fb4437b57af3bef4bc3801aea32e2cd4e32b4910f482_arm64",
"product_identification_helper": {
"purl": "pkg:oci/openshift/ose-sriov-network-metrics-exporter-rhel9@sha256%3A6aff0035aff9f654cbe4fb4437b57af3bef4bc3801aea32e2cd4e32b4910f482?arch=arm64\u0026repository_url=registry.redhat.io/openshift4/ose-sriov-network-metrics-exporter-rhel9\u0026tag=1782860065"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift4/ose-sriov-rdma-cni-rhel9@sha256:75a785f3d554b02952605b3af98f00fcada32117e8d0c3e6fe22f44e7651bc1e_arm64",
"product": {
"name": "registry.redhat.io/openshift4/ose-sriov-rdma-cni-rhel9@sha256:75a785f3d554b02952605b3af98f00fcada32117e8d0c3e6fe22f44e7651bc1e_arm64",
"product_id": "registry.redhat.io/openshift4/ose-sriov-rdma-cni-rhel9@sha256:75a785f3d554b02952605b3af98f00fcada32117e8d0c3e6fe22f44e7651bc1e_arm64",
"product_identification_helper": {
"purl": "pkg:oci/openshift/ose-sriov-rdma-cni-rhel9@sha256%3A75a785f3d554b02952605b3af98f00fcada32117e8d0c3e6fe22f44e7651bc1e?arch=arm64\u0026repository_url=registry.redhat.io/openshift4/ose-sriov-rdma-cni-rhel9\u0026tag=1782865833"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift4/ose-support-log-gather-rhel9-operator@sha256:5b6fcf89b09b265ac65ef49afea5e7cbd786df205ecb5426cb1cda10bc5dcfd6_arm64",
"product": {
"name": "registry.redhat.io/openshift4/ose-support-log-gather-rhel9-operator@sha256:5b6fcf89b09b265ac65ef49afea5e7cbd786df205ecb5426cb1cda10bc5dcfd6_arm64",
"product_id": "registry.redhat.io/openshift4/ose-support-log-gather-rhel9-operator@sha256:5b6fcf89b09b265ac65ef49afea5e7cbd786df205ecb5426cb1cda10bc5dcfd6_arm64",
"product_identification_helper": {
"purl": "pkg:oci/openshift/ose-support-log-gather-rhel9-operator@sha256%3A5b6fcf89b09b265ac65ef49afea5e7cbd786df205ecb5426cb1cda10bc5dcfd6?arch=arm64\u0026repository_url=registry.redhat.io/openshift4/ose-support-log-gather-rhel9-operator\u0026tag=1782861312"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift4/pf-status-relay-rhel9@sha256:355aa8de7d52c60509970f2572b232185505f97c1b3624bdcf8f1bd5b097aa19_arm64",
"product": {
"name": "registry.redhat.io/openshift4/pf-status-relay-rhel9@sha256:355aa8de7d52c60509970f2572b232185505f97c1b3624bdcf8f1bd5b097aa19_arm64",
"product_id": "registry.redhat.io/openshift4/pf-status-relay-rhel9@sha256:355aa8de7d52c60509970f2572b232185505f97c1b3624bdcf8f1bd5b097aa19_arm64",
"product_identification_helper": {
"purl": "pkg:oci/openshift/pf-status-relay-rhel9@sha256%3A355aa8de7d52c60509970f2572b232185505f97c1b3624bdcf8f1bd5b097aa19?arch=arm64\u0026repository_url=registry.redhat.io/openshift4/pf-status-relay-rhel9\u0026tag=1782860696"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift4/pf-status-relay-rhel9-operator@sha256:b5a7192ce8bd5d376f73d22a7352ecd9acfa8648a7bb4d18e4c19bbbfaab4e5c_arm64",
"product": {
"name": "registry.redhat.io/openshift4/pf-status-relay-rhel9-operator@sha256:b5a7192ce8bd5d376f73d22a7352ecd9acfa8648a7bb4d18e4c19bbbfaab4e5c_arm64",
"product_id": "registry.redhat.io/openshift4/pf-status-relay-rhel9-operator@sha256:b5a7192ce8bd5d376f73d22a7352ecd9acfa8648a7bb4d18e4c19bbbfaab4e5c_arm64",
"product_identification_helper": {
"purl": "pkg:oci/openshift/pf-status-relay-rhel9-operator@sha256%3Ab5a7192ce8bd5d376f73d22a7352ecd9acfa8648a7bb4d18e4c19bbbfaab4e5c?arch=arm64\u0026repository_url=registry.redhat.io/openshift4/pf-status-relay-rhel9-operator\u0026tag=1782861043"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift4/ose-ptp-rhel9-operator@sha256:c32ff4bbb692686b26b68f79f2d3b6f1cea33eeb4ce1b377097d676190226cb7_arm64",
"product": {
"name": "registry.redhat.io/openshift4/ose-ptp-rhel9-operator@sha256:c32ff4bbb692686b26b68f79f2d3b6f1cea33eeb4ce1b377097d676190226cb7_arm64",
"product_id": "registry.redhat.io/openshift4/ose-ptp-rhel9-operator@sha256:c32ff4bbb692686b26b68f79f2d3b6f1cea33eeb4ce1b377097d676190226cb7_arm64",
"product_identification_helper": {
"purl": "pkg:oci/openshift/ose-ptp-rhel9-operator@sha256%3Ac32ff4bbb692686b26b68f79f2d3b6f1cea33eeb4ce1b377097d676190226cb7?arch=arm64\u0026repository_url=registry.redhat.io/openshift4/ose-ptp-rhel9-operator\u0026tag=1782860249"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift4/ptp-must-gather-rhel9@sha256:51770b7af0a378ba8c7580c9e7404bab256f6230a3232e598db33feafc48113e_arm64",
"product": {
"name": "registry.redhat.io/openshift4/ptp-must-gather-rhel9@sha256:51770b7af0a378ba8c7580c9e7404bab256f6230a3232e598db33feafc48113e_arm64",
"product_id": "registry.redhat.io/openshift4/ptp-must-gather-rhel9@sha256:51770b7af0a378ba8c7580c9e7404bab256f6230a3232e598db33feafc48113e_arm64",
"product_identification_helper": {
"purl": "pkg:oci/openshift/ptp-must-gather-rhel9@sha256%3A51770b7af0a378ba8c7580c9e7404bab256f6230a3232e598db33feafc48113e?arch=arm64\u0026repository_url=registry.redhat.io/openshift4/ptp-must-gather-rhel9\u0026tag=1782868715"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift4/sriov-cni-rhel9@sha256:4217d67066546d6cdede76c350ddb11d0ae35ce151349e88e6b3c2a6e1837bd1_arm64",
"product": {
"name": "registry.redhat.io/openshift4/sriov-cni-rhel9@sha256:4217d67066546d6cdede76c350ddb11d0ae35ce151349e88e6b3c2a6e1837bd1_arm64",
"product_id": "registry.redhat.io/openshift4/sriov-cni-rhel9@sha256:4217d67066546d6cdede76c350ddb11d0ae35ce151349e88e6b3c2a6e1837bd1_arm64",
"product_identification_helper": {
"purl": "pkg:oci/openshift/sriov-cni-rhel9@sha256%3A4217d67066546d6cdede76c350ddb11d0ae35ce151349e88e6b3c2a6e1837bd1?arch=arm64\u0026repository_url=registry.redhat.io/openshift4/sriov-cni-rhel9\u0026tag=1782899525"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift4/ose-sriov-dp-admission-controller-rhel9@sha256:6fb389d62e79b243cb0d06d32ee0f824eaf98db2a9bd2e27fce00ec38258c1ae_arm64",
"product": {
"name": "registry.redhat.io/openshift4/ose-sriov-dp-admission-controller-rhel9@sha256:6fb389d62e79b243cb0d06d32ee0f824eaf98db2a9bd2e27fce00ec38258c1ae_arm64",
"product_id": "registry.redhat.io/openshift4/ose-sriov-dp-admission-controller-rhel9@sha256:6fb389d62e79b243cb0d06d32ee0f824eaf98db2a9bd2e27fce00ec38258c1ae_arm64",
"product_identification_helper": {
"purl": "pkg:oci/openshift/ose-sriov-dp-admission-controller-rhel9@sha256%3A6fb389d62e79b243cb0d06d32ee0f824eaf98db2a9bd2e27fce00ec38258c1ae?arch=arm64\u0026repository_url=registry.redhat.io/openshift4/ose-sriov-dp-admission-controller-rhel9\u0026tag=1782865092"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift4/ose-sriov-network-config-daemon-rhel9@sha256:948595a29e50712c7f5847e8211e1200f44d3914f91fd50915ab42d86664bf8f_arm64",
"product": {
"name": "registry.redhat.io/openshift4/ose-sriov-network-config-daemon-rhel9@sha256:948595a29e50712c7f5847e8211e1200f44d3914f91fd50915ab42d86664bf8f_arm64",
"product_id": "registry.redhat.io/openshift4/ose-sriov-network-config-daemon-rhel9@sha256:948595a29e50712c7f5847e8211e1200f44d3914f91fd50915ab42d86664bf8f_arm64",
"product_identification_helper": {
"purl": "pkg:oci/openshift/ose-sriov-network-config-daemon-rhel9@sha256%3A948595a29e50712c7f5847e8211e1200f44d3914f91fd50915ab42d86664bf8f?arch=arm64\u0026repository_url=registry.redhat.io/openshift4/ose-sriov-network-config-daemon-rhel9\u0026tag=1782865976"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift4/ose-sriov-network-device-plugin-rhel9@sha256:66f80c9740560af31361fe33c6c182496abd3f1bd1e35c27346b94be370223aa_arm64",
"product": {
"name": "registry.redhat.io/openshift4/ose-sriov-network-device-plugin-rhel9@sha256:66f80c9740560af31361fe33c6c182496abd3f1bd1e35c27346b94be370223aa_arm64",
"product_id": "registry.redhat.io/openshift4/ose-sriov-network-device-plugin-rhel9@sha256:66f80c9740560af31361fe33c6c182496abd3f1bd1e35c27346b94be370223aa_arm64",
"product_identification_helper": {
"purl": "pkg:oci/openshift/ose-sriov-network-device-plugin-rhel9@sha256%3A66f80c9740560af31361fe33c6c182496abd3f1bd1e35c27346b94be370223aa?arch=arm64\u0026repository_url=registry.redhat.io/openshift4/ose-sriov-network-device-plugin-rhel9\u0026tag=1782864415"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift4/ose-sriov-network-rhel9-operator@sha256:ad9fffd643b1b7fca4e04dbecd6e3df93b68d1d455ead877fc92931fb893a234_arm64",
"product": {
"name": "registry.redhat.io/openshift4/ose-sriov-network-rhel9-operator@sha256:ad9fffd643b1b7fca4e04dbecd6e3df93b68d1d455ead877fc92931fb893a234_arm64",
"product_id": "registry.redhat.io/openshift4/ose-sriov-network-rhel9-operator@sha256:ad9fffd643b1b7fca4e04dbecd6e3df93b68d1d455ead877fc92931fb893a234_arm64",
"product_identification_helper": {
"purl": "pkg:oci/openshift/ose-sriov-network-rhel9-operator@sha256%3Aad9fffd643b1b7fca4e04dbecd6e3df93b68d1d455ead877fc92931fb893a234?arch=arm64\u0026repository_url=registry.redhat.io/openshift4/ose-sriov-network-rhel9-operator\u0026tag=1782899535"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift4/ose-sriov-network-webhook-rhel9@sha256:11b5d71f5f9e512b7feb2aeb79b1874e34e27bb222f576a1f9dda8898630528c_arm64",
"product": {
"name": "registry.redhat.io/openshift4/ose-sriov-network-webhook-rhel9@sha256:11b5d71f5f9e512b7feb2aeb79b1874e34e27bb222f576a1f9dda8898630528c_arm64",
"product_id": "registry.redhat.io/openshift4/ose-sriov-network-webhook-rhel9@sha256:11b5d71f5f9e512b7feb2aeb79b1874e34e27bb222f576a1f9dda8898630528c_arm64",
"product_identification_helper": {
"purl": "pkg:oci/openshift/ose-sriov-network-webhook-rhel9@sha256%3A11b5d71f5f9e512b7feb2aeb79b1874e34e27bb222f576a1f9dda8898630528c?arch=arm64\u0026repository_url=registry.redhat.io/openshift4/ose-sriov-network-webhook-rhel9\u0026tag=1782860279"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift4/ose-vertical-pod-autoscaler-rhel9@sha256:f31091c53dcf7f2148c91cc7cfa625ff92940f47f2cc341f0c4f8f6bb8dd4eea_arm64",
"product": {
"name": "registry.redhat.io/openshift4/ose-vertical-pod-autoscaler-rhel9@sha256:f31091c53dcf7f2148c91cc7cfa625ff92940f47f2cc341f0c4f8f6bb8dd4eea_arm64",
"product_id": "registry.redhat.io/openshift4/ose-vertical-pod-autoscaler-rhel9@sha256:f31091c53dcf7f2148c91cc7cfa625ff92940f47f2cc341f0c4f8f6bb8dd4eea_arm64",
"product_identification_helper": {
"purl": "pkg:oci/openshift/ose-vertical-pod-autoscaler-rhel9@sha256%3Af31091c53dcf7f2148c91cc7cfa625ff92940f47f2cc341f0c4f8f6bb8dd4eea?arch=arm64\u0026repository_url=registry.redhat.io/openshift4/ose-vertical-pod-autoscaler-rhel9\u0026tag=1782864761"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift4/ose-vertical-pod-autoscaler-rhel9-operator@sha256:a827987893266c281440a48b4229a7f48c1d40bbad3e7f6ed8c84bfaa4c0281c_arm64",
"product": {
"name": "registry.redhat.io/openshift4/ose-vertical-pod-autoscaler-rhel9-operator@sha256:a827987893266c281440a48b4229a7f48c1d40bbad3e7f6ed8c84bfaa4c0281c_arm64",
"product_id": "registry.redhat.io/openshift4/ose-vertical-pod-autoscaler-rhel9-operator@sha256:a827987893266c281440a48b4229a7f48c1d40bbad3e7f6ed8c84bfaa4c0281c_arm64",
"product_identification_helper": {
"purl": "pkg:oci/openshift/ose-vertical-pod-autoscaler-rhel9-operator@sha256%3Aa827987893266c281440a48b4229a7f48c1d40bbad3e7f6ed8c84bfaa4c0281c?arch=arm64\u0026repository_url=registry.redhat.io/openshift4/ose-vertical-pod-autoscaler-rhel9-operator\u0026tag=1782860470"
}
}
}
],
"category": "architecture",
"name": "arm64"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/openshift4/ose-cloud-event-proxy-rhel9@sha256:dc92042cb3802b221e594da9636d090ad795853d161c6d2152ddef7d152d6da8_ppc64le",
"product": {
"name": "registry.redhat.io/openshift4/ose-cloud-event-proxy-rhel9@sha256:dc92042cb3802b221e594da9636d090ad795853d161c6d2152ddef7d152d6da8_ppc64le",
"product_id": "registry.redhat.io/openshift4/ose-cloud-event-proxy-rhel9@sha256:dc92042cb3802b221e594da9636d090ad795853d161c6d2152ddef7d152d6da8_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/openshift/ose-cloud-event-proxy-rhel9@sha256%3Adc92042cb3802b221e594da9636d090ad795853d161c6d2152ddef7d152d6da8?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift4/ose-cloud-event-proxy-rhel9\u0026tag=1782859805"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift4/ose-cluster-nfd-rhel9-operator@sha256:c2b036ed84793e8357e3f46667736e4366d93beb64a22aaf428fdb9e2c9d40c7_ppc64le",
"product": {
"name": "registry.redhat.io/openshift4/ose-cluster-nfd-rhel9-operator@sha256:c2b036ed84793e8357e3f46667736e4366d93beb64a22aaf428fdb9e2c9d40c7_ppc64le",
"product_id": "registry.redhat.io/openshift4/ose-cluster-nfd-rhel9-operator@sha256:c2b036ed84793e8357e3f46667736e4366d93beb64a22aaf428fdb9e2c9d40c7_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/openshift/ose-cluster-nfd-rhel9-operator@sha256%3Ac2b036ed84793e8357e3f46667736e4366d93beb64a22aaf428fdb9e2c9d40c7?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift4/ose-cluster-nfd-rhel9-operator\u0026tag=1782860451"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift4/ose-clusterresourceoverride-rhel9@sha256:0c91eec9681f4e16be81eaa6e24d934e87d297da27962b28698727018ea4b2fe_ppc64le",
"product": {
"name": "registry.redhat.io/openshift4/ose-clusterresourceoverride-rhel9@sha256:0c91eec9681f4e16be81eaa6e24d934e87d297da27962b28698727018ea4b2fe_ppc64le",
"product_id": "registry.redhat.io/openshift4/ose-clusterresourceoverride-rhel9@sha256:0c91eec9681f4e16be81eaa6e24d934e87d297da27962b28698727018ea4b2fe_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/openshift/ose-clusterresourceoverride-rhel9@sha256%3A0c91eec9681f4e16be81eaa6e24d934e87d297da27962b28698727018ea4b2fe?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift4/ose-clusterresourceoverride-rhel9\u0026tag=1782860748"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift4/ose-clusterresourceoverride-rhel9-operator@sha256:1d1dcf4357867bafe3b4a3576ece0b93f0430d659ed65b1abc0744d7a24745b5_ppc64le",
"product": {
"name": "registry.redhat.io/openshift4/ose-clusterresourceoverride-rhel9-operator@sha256:1d1dcf4357867bafe3b4a3576ece0b93f0430d659ed65b1abc0744d7a24745b5_ppc64le",
"product_id": "registry.redhat.io/openshift4/ose-clusterresourceoverride-rhel9-operator@sha256:1d1dcf4357867bafe3b4a3576ece0b93f0430d659ed65b1abc0744d7a24745b5_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/openshift/ose-clusterresourceoverride-rhel9-operator@sha256%3A1d1dcf4357867bafe3b4a3576ece0b93f0430d659ed65b1abc0744d7a24745b5?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift4/ose-clusterresourceoverride-rhel9-operator\u0026tag=1782870830"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift4/ose-dpu-cni-rhel9@sha256:5276191889ae349eaf5a1b1d65f21b429cfc52718600201307151f3556b4b98b_ppc64le",
"product": {
"name": "registry.redhat.io/openshift4/ose-dpu-cni-rhel9@sha256:5276191889ae349eaf5a1b1d65f21b429cfc52718600201307151f3556b4b98b_ppc64le",
"product_id": "registry.redhat.io/openshift4/ose-dpu-cni-rhel9@sha256:5276191889ae349eaf5a1b1d65f21b429cfc52718600201307151f3556b4b98b_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/openshift/ose-dpu-cni-rhel9@sha256%3A5276191889ae349eaf5a1b1d65f21b429cfc52718600201307151f3556b4b98b?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift4/ose-dpu-cni-rhel9\u0026tag=1782865367"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift4/ose-dpu-daemon-rhel9@sha256:a3432a6fe6e2853c8f88968f3ded5adc0dd3efb14f48a34e52b4b18b1aa037ea_ppc64le",
"product": {
"name": "registry.redhat.io/openshift4/ose-dpu-daemon-rhel9@sha256:a3432a6fe6e2853c8f88968f3ded5adc0dd3efb14f48a34e52b4b18b1aa037ea_ppc64le",
"product_id": "registry.redhat.io/openshift4/ose-dpu-daemon-rhel9@sha256:a3432a6fe6e2853c8f88968f3ded5adc0dd3efb14f48a34e52b4b18b1aa037ea_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/openshift/ose-dpu-daemon-rhel9@sha256%3Aa3432a6fe6e2853c8f88968f3ded5adc0dd3efb14f48a34e52b4b18b1aa037ea?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift4/ose-dpu-daemon-rhel9\u0026tag=1782864733"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift4/ose-sriov-infiniband-cni-rhel9@sha256:5b69b9c0ab707cfcf11f706adacb764a73c928621716f3fb9914814689369f9f_ppc64le",
"product": {
"name": "registry.redhat.io/openshift4/ose-sriov-infiniband-cni-rhel9@sha256:5b69b9c0ab707cfcf11f706adacb764a73c928621716f3fb9914814689369f9f_ppc64le",
"product_id": "registry.redhat.io/openshift4/ose-sriov-infiniband-cni-rhel9@sha256:5b69b9c0ab707cfcf11f706adacb764a73c928621716f3fb9914814689369f9f_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/openshift/ose-sriov-infiniband-cni-rhel9@sha256%3A5b69b9c0ab707cfcf11f706adacb764a73c928621716f3fb9914814689369f9f?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift4/ose-sriov-infiniband-cni-rhel9\u0026tag=1782861437"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift4/ingress-node-firewall-rhel9@sha256:f0fbda30bb66a43d1e8127817968af6a407c1e96780ea5e023911496b2bdff32_ppc64le",
"product": {
"name": "registry.redhat.io/openshift4/ingress-node-firewall-rhel9@sha256:f0fbda30bb66a43d1e8127817968af6a407c1e96780ea5e023911496b2bdff32_ppc64le",
"product_id": "registry.redhat.io/openshift4/ingress-node-firewall-rhel9@sha256:f0fbda30bb66a43d1e8127817968af6a407c1e96780ea5e023911496b2bdff32_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/openshift/ingress-node-firewall-rhel9@sha256%3Af0fbda30bb66a43d1e8127817968af6a407c1e96780ea5e023911496b2bdff32?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift4/ingress-node-firewall-rhel9\u0026tag=1782865693"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift4/ingress-node-firewall-rhel9-operator@sha256:5155030314f2efb0be5a7fe1f4dbf8edfc41af915f7fac7db10a6adbe4a86ac9_ppc64le",
"product": {
"name": "registry.redhat.io/openshift4/ingress-node-firewall-rhel9-operator@sha256:5155030314f2efb0be5a7fe1f4dbf8edfc41af915f7fac7db10a6adbe4a86ac9_ppc64le",
"product_id": "registry.redhat.io/openshift4/ingress-node-firewall-rhel9-operator@sha256:5155030314f2efb0be5a7fe1f4dbf8edfc41af915f7fac7db10a6adbe4a86ac9_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/openshift/ingress-node-firewall-rhel9-operator@sha256%3A5155030314f2efb0be5a7fe1f4dbf8edfc41af915f7fac7db10a6adbe4a86ac9?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift4/ingress-node-firewall-rhel9-operator\u0026tag=1782863031"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift4/kube-compare-artifacts-rhel9@sha256:392009255b87f893829cba2f90111a2dfb6d70183d1a2e657411ce7aa459934f_ppc64le",
"product": {
"name": "registry.redhat.io/openshift4/kube-compare-artifacts-rhel9@sha256:392009255b87f893829cba2f90111a2dfb6d70183d1a2e657411ce7aa459934f_ppc64le",
"product_id": "registry.redhat.io/openshift4/kube-compare-artifacts-rhel9@sha256:392009255b87f893829cba2f90111a2dfb6d70183d1a2e657411ce7aa459934f_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/openshift/kube-compare-artifacts-rhel9@sha256%3A392009255b87f893829cba2f90111a2dfb6d70183d1a2e657411ce7aa459934f?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift4/kube-compare-artifacts-rhel9\u0026tag=1782870058"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift4/ose-ptp-rhel9@sha256:a0e3f44b5fe44c8cb2a8e3745e218deffeb339302dc25b4aa88ae5973052a682_ppc64le",
"product": {
"name": "registry.redhat.io/openshift4/ose-ptp-rhel9@sha256:a0e3f44b5fe44c8cb2a8e3745e218deffeb339302dc25b4aa88ae5973052a682_ppc64le",
"product_id": "registry.redhat.io/openshift4/ose-ptp-rhel9@sha256:a0e3f44b5fe44c8cb2a8e3745e218deffeb339302dc25b4aa88ae5973052a682_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/openshift/ose-ptp-rhel9@sha256%3Aa0e3f44b5fe44c8cb2a8e3745e218deffeb339302dc25b4aa88ae5973052a682?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift4/ose-ptp-rhel9\u0026tag=1782860086"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift4/ose-local-storage-diskmaker-rhel9@sha256:9fddd5cc3bf03b42a49346f86a0bef2a459a4da632bbfd0e5e3b2e83070e5092_ppc64le",
"product": {
"name": "registry.redhat.io/openshift4/ose-local-storage-diskmaker-rhel9@sha256:9fddd5cc3bf03b42a49346f86a0bef2a459a4da632bbfd0e5e3b2e83070e5092_ppc64le",
"product_id": "registry.redhat.io/openshift4/ose-local-storage-diskmaker-rhel9@sha256:9fddd5cc3bf03b42a49346f86a0bef2a459a4da632bbfd0e5e3b2e83070e5092_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/openshift/ose-local-storage-diskmaker-rhel9@sha256%3A9fddd5cc3bf03b42a49346f86a0bef2a459a4da632bbfd0e5e3b2e83070e5092?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift4/ose-local-storage-diskmaker-rhel9\u0026tag=1782860589"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift4/ose-local-storage-mustgather-rhel9@sha256:1e5fa0e4c111c508ddbdf4a4b8b76b6dca44ff0b31ee9e798c3ec8b8c01222b9_ppc64le",
"product": {
"name": "registry.redhat.io/openshift4/ose-local-storage-mustgather-rhel9@sha256:1e5fa0e4c111c508ddbdf4a4b8b76b6dca44ff0b31ee9e798c3ec8b8c01222b9_ppc64le",
"product_id": "registry.redhat.io/openshift4/ose-local-storage-mustgather-rhel9@sha256:1e5fa0e4c111c508ddbdf4a4b8b76b6dca44ff0b31ee9e798c3ec8b8c01222b9_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/openshift/ose-local-storage-mustgather-rhel9@sha256%3A1e5fa0e4c111c508ddbdf4a4b8b76b6dca44ff0b31ee9e798c3ec8b8c01222b9?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift4/ose-local-storage-mustgather-rhel9\u0026tag=1782899473"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift4/ose-local-storage-rhel9-operator@sha256:3eb77753a5e2d6ff1023a9cb682b67a04b6dbcc2c6537c4ea18f523aa360a166_ppc64le",
"product": {
"name": "registry.redhat.io/openshift4/ose-local-storage-rhel9-operator@sha256:3eb77753a5e2d6ff1023a9cb682b67a04b6dbcc2c6537c4ea18f523aa360a166_ppc64le",
"product_id": "registry.redhat.io/openshift4/ose-local-storage-rhel9-operator@sha256:3eb77753a5e2d6ff1023a9cb682b67a04b6dbcc2c6537c4ea18f523aa360a166_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/openshift/ose-local-storage-rhel9-operator@sha256%3A3eb77753a5e2d6ff1023a9cb682b67a04b6dbcc2c6537c4ea18f523aa360a166?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift4/ose-local-storage-rhel9-operator\u0026tag=1782899520"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift4/nmstate-console-plugin-rhel9@sha256:d889210346e1615778eb8346811e00b079b573afb24a0078ec77751bfa27db7b_ppc64le",
"product": {
"name": "registry.redhat.io/openshift4/nmstate-console-plugin-rhel9@sha256:d889210346e1615778eb8346811e00b079b573afb24a0078ec77751bfa27db7b_ppc64le",
"product_id": "registry.redhat.io/openshift4/nmstate-console-plugin-rhel9@sha256:d889210346e1615778eb8346811e00b079b573afb24a0078ec77751bfa27db7b_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/openshift/nmstate-console-plugin-rhel9@sha256%3Ad889210346e1615778eb8346811e00b079b573afb24a0078ec77751bfa27db7b?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift4/nmstate-console-plugin-rhel9\u0026tag=1782914001"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift4/ose-node-feature-discovery-rhel9@sha256:11f6bab6d8a000b25880f1b9395d769bc962aa34393ace4fab4c2d44205b1c95_ppc64le",
"product": {
"name": "registry.redhat.io/openshift4/ose-node-feature-discovery-rhel9@sha256:11f6bab6d8a000b25880f1b9395d769bc962aa34393ace4fab4c2d44205b1c95_ppc64le",
"product_id": "registry.redhat.io/openshift4/ose-node-feature-discovery-rhel9@sha256:11f6bab6d8a000b25880f1b9395d769bc962aa34393ace4fab4c2d44205b1c95_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/openshift/ose-node-feature-discovery-rhel9@sha256%3A11f6bab6d8a000b25880f1b9395d769bc962aa34393ace4fab4c2d44205b1c95?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift4/ose-node-feature-discovery-rhel9\u0026tag=1782865290"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift4/ose-ansible-rhel9-operator@sha256:fc9ac010edc301f955073bbb9912e595ce6fd33a62c4b0c11435b9e91ba7ef54_ppc64le",
"product": {
"name": "registry.redhat.io/openshift4/ose-ansible-rhel9-operator@sha256:fc9ac010edc301f955073bbb9912e595ce6fd33a62c4b0c11435b9e91ba7ef54_ppc64le",
"product_id": "registry.redhat.io/openshift4/ose-ansible-rhel9-operator@sha256:fc9ac010edc301f955073bbb9912e595ce6fd33a62c4b0c11435b9e91ba7ef54_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/openshift/ose-ansible-rhel9-operator@sha256%3Afc9ac010edc301f955073bbb9912e595ce6fd33a62c4b0c11435b9e91ba7ef54?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift4/ose-ansible-rhel9-operator\u0026tag=1782913003"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift4/ose-cluster-capacity-rhel9@sha256:34d1067f6c432ef0cb087a154e7da91666102b892c30f0fc841f9722a7a8c6f2_ppc64le",
"product": {
"name": "registry.redhat.io/openshift4/ose-cluster-capacity-rhel9@sha256:34d1067f6c432ef0cb087a154e7da91666102b892c30f0fc841f9722a7a8c6f2_ppc64le",
"product_id": "registry.redhat.io/openshift4/ose-cluster-capacity-rhel9@sha256:34d1067f6c432ef0cb087a154e7da91666102b892c30f0fc841f9722a7a8c6f2_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/openshift/ose-cluster-capacity-rhel9@sha256%3A34d1067f6c432ef0cb087a154e7da91666102b892c30f0fc841f9722a7a8c6f2?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift4/ose-cluster-capacity-rhel9\u0026tag=1782899556"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift4/ose-helm-rhel9-operator@sha256:01e0ffb0da07e6a7da267706ee894a2d80b7d909770e22b106294e7662924e1f_ppc64le",
"product": {
"name": "registry.redhat.io/openshift4/ose-helm-rhel9-operator@sha256:01e0ffb0da07e6a7da267706ee894a2d80b7d909770e22b106294e7662924e1f_ppc64le",
"product_id": "registry.redhat.io/openshift4/ose-helm-rhel9-operator@sha256:01e0ffb0da07e6a7da267706ee894a2d80b7d909770e22b106294e7662924e1f_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/openshift/ose-helm-rhel9-operator@sha256%3A01e0ffb0da07e6a7da267706ee894a2d80b7d909770e22b106294e7662924e1f?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift4/ose-helm-rhel9-operator\u0026tag=1782861356"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift4/ose-kubernetes-nmstate-handler-rhel9@sha256:d0c7639baee74257b10ef4207ba5bff14554f3153e488567758c55d168d972bd_ppc64le",
"product": {
"name": "registry.redhat.io/openshift4/ose-kubernetes-nmstate-handler-rhel9@sha256:d0c7639baee74257b10ef4207ba5bff14554f3153e488567758c55d168d972bd_ppc64le",
"product_id": "registry.redhat.io/openshift4/ose-kubernetes-nmstate-handler-rhel9@sha256:d0c7639baee74257b10ef4207ba5bff14554f3153e488567758c55d168d972bd_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/openshift/ose-kubernetes-nmstate-handler-rhel9@sha256%3Ad0c7639baee74257b10ef4207ba5bff14554f3153e488567758c55d168d972bd?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift4/ose-kubernetes-nmstate-handler-rhel9\u0026tag=1782865881"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift4/kubernetes-nmstate-rhel9-operator@sha256:ddbaaa6c78e9f98ea9322fc6e9ea271656eebfcc1bdc46ac9bc0a83c9404ab00_ppc64le",
"product": {
"name": "registry.redhat.io/openshift4/kubernetes-nmstate-rhel9-operator@sha256:ddbaaa6c78e9f98ea9322fc6e9ea271656eebfcc1bdc46ac9bc0a83c9404ab00_ppc64le",
"product_id": "registry.redhat.io/openshift4/kubernetes-nmstate-rhel9-operator@sha256:ddbaaa6c78e9f98ea9322fc6e9ea271656eebfcc1bdc46ac9bc0a83c9404ab00_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/openshift/kubernetes-nmstate-rhel9-operator@sha256%3Addbaaa6c78e9f98ea9322fc6e9ea271656eebfcc1bdc46ac9bc0a83c9404ab00?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift4/kubernetes-nmstate-rhel9-operator\u0026tag=1782912957"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift4/ose-gcp-filestore-csi-driver-rhel9@sha256:fa28b3271852e969fba812fdd0ed26c6def0669358dc92ebd1628a20756559ef_ppc64le",
"product": {
"name": "registry.redhat.io/openshift4/ose-gcp-filestore-csi-driver-rhel9@sha256:fa28b3271852e969fba812fdd0ed26c6def0669358dc92ebd1628a20756559ef_ppc64le",
"product_id": "registry.redhat.io/openshift4/ose-gcp-filestore-csi-driver-rhel9@sha256:fa28b3271852e969fba812fdd0ed26c6def0669358dc92ebd1628a20756559ef_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/openshift/ose-gcp-filestore-csi-driver-rhel9@sha256%3Afa28b3271852e969fba812fdd0ed26c6def0669358dc92ebd1628a20756559ef?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift4/ose-gcp-filestore-csi-driver-rhel9\u0026tag=1782859782"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift4/ose-gcp-filestore-csi-driver-rhel9-operator@sha256:de288d5f53fb26030f4359623cafb0743f482c6418d4259563d9d0b974f7cd4c_ppc64le",
"product": {
"name": "registry.redhat.io/openshift4/ose-gcp-filestore-csi-driver-rhel9-operator@sha256:de288d5f53fb26030f4359623cafb0743f482c6418d4259563d9d0b974f7cd4c_ppc64le",
"product_id": "registry.redhat.io/openshift4/ose-gcp-filestore-csi-driver-rhel9-operator@sha256:de288d5f53fb26030f4359623cafb0743f482c6418d4259563d9d0b974f7cd4c_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/openshift/ose-gcp-filestore-csi-driver-rhel9-operator@sha256%3Ade288d5f53fb26030f4359623cafb0743f482c6418d4259563d9d0b974f7cd4c?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift4/ose-gcp-filestore-csi-driver-rhel9-operator\u0026tag=1782859743"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift4/metallb-rhel9@sha256:98dcb57b27e6b66e4b4199e33eecfb494218a4e75944eb45e7aad765f27f48bf_ppc64le",
"product": {
"name": "registry.redhat.io/openshift4/metallb-rhel9@sha256:98dcb57b27e6b66e4b4199e33eecfb494218a4e75944eb45e7aad765f27f48bf_ppc64le",
"product_id": "registry.redhat.io/openshift4/metallb-rhel9@sha256:98dcb57b27e6b66e4b4199e33eecfb494218a4e75944eb45e7aad765f27f48bf_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/openshift/metallb-rhel9@sha256%3A98dcb57b27e6b66e4b4199e33eecfb494218a4e75944eb45e7aad765f27f48bf?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift4/metallb-rhel9\u0026tag=1782865760"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift4/metallb-rhel9-operator@sha256:e9fdcee92e84dad61b213d7a3ffe24318bbbd0b79890c779760761675bf4ce3b_ppc64le",
"product": {
"name": "registry.redhat.io/openshift4/metallb-rhel9-operator@sha256:e9fdcee92e84dad61b213d7a3ffe24318bbbd0b79890c779760761675bf4ce3b_ppc64le",
"product_id": "registry.redhat.io/openshift4/metallb-rhel9-operator@sha256:e9fdcee92e84dad61b213d7a3ffe24318bbbd0b79890c779760761675bf4ce3b_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/openshift/metallb-rhel9-operator@sha256%3Ae9fdcee92e84dad61b213d7a3ffe24318bbbd0b79890c779760761675bf4ce3b?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift4/metallb-rhel9-operator\u0026tag=1782859819"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift4/ose-secrets-store-csi-driver-rhel9@sha256:7d3d14431dbbe405b14de1a84939ff5e4b35d17768c023db144c1e88cf60ad6f_ppc64le",
"product": {
"name": "registry.redhat.io/openshift4/ose-secrets-store-csi-driver-rhel9@sha256:7d3d14431dbbe405b14de1a84939ff5e4b35d17768c023db144c1e88cf60ad6f_ppc64le",
"product_id": "registry.redhat.io/openshift4/ose-secrets-store-csi-driver-rhel9@sha256:7d3d14431dbbe405b14de1a84939ff5e4b35d17768c023db144c1e88cf60ad6f_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/openshift/ose-secrets-store-csi-driver-rhel9@sha256%3A7d3d14431dbbe405b14de1a84939ff5e4b35d17768c023db144c1e88cf60ad6f?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift4/ose-secrets-store-csi-driver-rhel9\u0026tag=1782861433"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift4/ose-secrets-store-csi-driver-rhel9-operator@sha256:dc815adc448c1aea6fd6cf7e4cab7e4361d1f54e10cd88b54701b41dcda11f42_ppc64le",
"product": {
"name": "registry.redhat.io/openshift4/ose-secrets-store-csi-driver-rhel9-operator@sha256:dc815adc448c1aea6fd6cf7e4cab7e4361d1f54e10cd88b54701b41dcda11f42_ppc64le",
"product_id": "registry.redhat.io/openshift4/ose-secrets-store-csi-driver-rhel9-operator@sha256:dc815adc448c1aea6fd6cf7e4cab7e4361d1f54e10cd88b54701b41dcda11f42_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/openshift/ose-secrets-store-csi-driver-rhel9-operator@sha256%3Adc815adc448c1aea6fd6cf7e4cab7e4361d1f54e10cd88b54701b41dcda11f42?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift4/ose-secrets-store-csi-driver-rhel9-operator\u0026tag=1782868696"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift4/ose-secrets-store-csi-mustgather-rhel9@sha256:a77e3a3b7f0476f0821b97028cdbd7c784875f3c60a9540ef7ddc123a7994322_ppc64le",
"product": {
"name": "registry.redhat.io/openshift4/ose-secrets-store-csi-mustgather-rhel9@sha256:a77e3a3b7f0476f0821b97028cdbd7c784875f3c60a9540ef7ddc123a7994322_ppc64le",
"product_id": "registry.redhat.io/openshift4/ose-secrets-store-csi-mustgather-rhel9@sha256:a77e3a3b7f0476f0821b97028cdbd7c784875f3c60a9540ef7ddc123a7994322_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/openshift/ose-secrets-store-csi-mustgather-rhel9@sha256%3Aa77e3a3b7f0476f0821b97028cdbd7c784875f3c60a9540ef7ddc123a7994322?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift4/ose-secrets-store-csi-mustgather-rhel9\u0026tag=1782870287"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift4/ose-smb-csi-driver-rhel9@sha256:273ac5166b9092848e05ea4bf7a657ecbd6cc1762a5a20146c87cecb3016fe85_ppc64le",
"product": {
"name": "registry.redhat.io/openshift4/ose-smb-csi-driver-rhel9@sha256:273ac5166b9092848e05ea4bf7a657ecbd6cc1762a5a20146c87cecb3016fe85_ppc64le",
"product_id": "registry.redhat.io/openshift4/ose-smb-csi-driver-rhel9@sha256:273ac5166b9092848e05ea4bf7a657ecbd6cc1762a5a20146c87cecb3016fe85_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/openshift/ose-smb-csi-driver-rhel9@sha256%3A273ac5166b9092848e05ea4bf7a657ecbd6cc1762a5a20146c87cecb3016fe85?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift4/ose-smb-csi-driver-rhel9\u0026tag=1782863077"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift4/ose-smb-csi-driver-rhel9-operator@sha256:331ae406cc1d7df8814755f8d7d3b7a28829ba1b14c8f3e54e13ac768a53bea3_ppc64le",
"product": {
"name": "registry.redhat.io/openshift4/ose-smb-csi-driver-rhel9-operator@sha256:331ae406cc1d7df8814755f8d7d3b7a28829ba1b14c8f3e54e13ac768a53bea3_ppc64le",
"product_id": "registry.redhat.io/openshift4/ose-smb-csi-driver-rhel9-operator@sha256:331ae406cc1d7df8814755f8d7d3b7a28829ba1b14c8f3e54e13ac768a53bea3_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/openshift/ose-smb-csi-driver-rhel9-operator@sha256%3A331ae406cc1d7df8814755f8d7d3b7a28829ba1b14c8f3e54e13ac768a53bea3?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift4/ose-smb-csi-driver-rhel9-operator\u0026tag=1782864535"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift4/ose-sriov-network-metrics-exporter-rhel9@sha256:22889c2ed91e69fe02b98aeba2df75a470a4bc538683d48ac5632b0d049fbae5_ppc64le",
"product": {
"name": "registry.redhat.io/openshift4/ose-sriov-network-metrics-exporter-rhel9@sha256:22889c2ed91e69fe02b98aeba2df75a470a4bc538683d48ac5632b0d049fbae5_ppc64le",
"product_id": "registry.redhat.io/openshift4/ose-sriov-network-metrics-exporter-rhel9@sha256:22889c2ed91e69fe02b98aeba2df75a470a4bc538683d48ac5632b0d049fbae5_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/openshift/ose-sriov-network-metrics-exporter-rhel9@sha256%3A22889c2ed91e69fe02b98aeba2df75a470a4bc538683d48ac5632b0d049fbae5?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift4/ose-sriov-network-metrics-exporter-rhel9\u0026tag=1782860065"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift4/ose-sriov-rdma-cni-rhel9@sha256:18e7e59dbe9ba0498fcb12b6483ef22d4079ea6e1402fba88a6aae000f340e9d_ppc64le",
"product": {
"name": "registry.redhat.io/openshift4/ose-sriov-rdma-cni-rhel9@sha256:18e7e59dbe9ba0498fcb12b6483ef22d4079ea6e1402fba88a6aae000f340e9d_ppc64le",
"product_id": "registry.redhat.io/openshift4/ose-sriov-rdma-cni-rhel9@sha256:18e7e59dbe9ba0498fcb12b6483ef22d4079ea6e1402fba88a6aae000f340e9d_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/openshift/ose-sriov-rdma-cni-rhel9@sha256%3A18e7e59dbe9ba0498fcb12b6483ef22d4079ea6e1402fba88a6aae000f340e9d?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift4/ose-sriov-rdma-cni-rhel9\u0026tag=1782865833"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift4/ose-support-log-gather-rhel9-operator@sha256:10e52003925adc71826622c39efab5fea15638adddc6aef533cf0692ca23f6d4_ppc64le",
"product": {
"name": "registry.redhat.io/openshift4/ose-support-log-gather-rhel9-operator@sha256:10e52003925adc71826622c39efab5fea15638adddc6aef533cf0692ca23f6d4_ppc64le",
"product_id": "registry.redhat.io/openshift4/ose-support-log-gather-rhel9-operator@sha256:10e52003925adc71826622c39efab5fea15638adddc6aef533cf0692ca23f6d4_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/openshift/ose-support-log-gather-rhel9-operator@sha256%3A10e52003925adc71826622c39efab5fea15638adddc6aef533cf0692ca23f6d4?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift4/ose-support-log-gather-rhel9-operator\u0026tag=1782861312"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift4/pf-status-relay-rhel9@sha256:b95bb5f44309a8b851af6a92c4346edd4017028516ea7e024ffee73fc96e80e0_ppc64le",
"product": {
"name": "registry.redhat.io/openshift4/pf-status-relay-rhel9@sha256:b95bb5f44309a8b851af6a92c4346edd4017028516ea7e024ffee73fc96e80e0_ppc64le",
"product_id": "registry.redhat.io/openshift4/pf-status-relay-rhel9@sha256:b95bb5f44309a8b851af6a92c4346edd4017028516ea7e024ffee73fc96e80e0_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/openshift/pf-status-relay-rhel9@sha256%3Ab95bb5f44309a8b851af6a92c4346edd4017028516ea7e024ffee73fc96e80e0?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift4/pf-status-relay-rhel9\u0026tag=1782860696"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift4/pf-status-relay-rhel9-operator@sha256:889c8eb5ab957329e63f83bf86199396246fcc79fb841c1d63808d9999aa27fe_ppc64le",
"product": {
"name": "registry.redhat.io/openshift4/pf-status-relay-rhel9-operator@sha256:889c8eb5ab957329e63f83bf86199396246fcc79fb841c1d63808d9999aa27fe_ppc64le",
"product_id": "registry.redhat.io/openshift4/pf-status-relay-rhel9-operator@sha256:889c8eb5ab957329e63f83bf86199396246fcc79fb841c1d63808d9999aa27fe_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/openshift/pf-status-relay-rhel9-operator@sha256%3A889c8eb5ab957329e63f83bf86199396246fcc79fb841c1d63808d9999aa27fe?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift4/pf-status-relay-rhel9-operator\u0026tag=1782861043"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift4/ose-ptp-rhel9-operator@sha256:a668793754ce8ef6251e892a37241879a0b29e540983d63b56a4be3f673e6fb3_ppc64le",
"product": {
"name": "registry.redhat.io/openshift4/ose-ptp-rhel9-operator@sha256:a668793754ce8ef6251e892a37241879a0b29e540983d63b56a4be3f673e6fb3_ppc64le",
"product_id": "registry.redhat.io/openshift4/ose-ptp-rhel9-operator@sha256:a668793754ce8ef6251e892a37241879a0b29e540983d63b56a4be3f673e6fb3_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/openshift/ose-ptp-rhel9-operator@sha256%3Aa668793754ce8ef6251e892a37241879a0b29e540983d63b56a4be3f673e6fb3?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift4/ose-ptp-rhel9-operator\u0026tag=1782860249"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift4/ptp-must-gather-rhel9@sha256:429969ea012b2a168aa0c3971a26d9bcfb1749c0721c4afc4d9cc8e38aca6b9f_ppc64le",
"product": {
"name": "registry.redhat.io/openshift4/ptp-must-gather-rhel9@sha256:429969ea012b2a168aa0c3971a26d9bcfb1749c0721c4afc4d9cc8e38aca6b9f_ppc64le",
"product_id": "registry.redhat.io/openshift4/ptp-must-gather-rhel9@sha256:429969ea012b2a168aa0c3971a26d9bcfb1749c0721c4afc4d9cc8e38aca6b9f_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/openshift/ptp-must-gather-rhel9@sha256%3A429969ea012b2a168aa0c3971a26d9bcfb1749c0721c4afc4d9cc8e38aca6b9f?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift4/ptp-must-gather-rhel9\u0026tag=1782868715"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift4/sriov-cni-rhel9@sha256:18b649c7e0372f2c0f11d0d2a845c325ca5847e891b6583ce81d6b5ab0cd2399_ppc64le",
"product": {
"name": "registry.redhat.io/openshift4/sriov-cni-rhel9@sha256:18b649c7e0372f2c0f11d0d2a845c325ca5847e891b6583ce81d6b5ab0cd2399_ppc64le",
"product_id": "registry.redhat.io/openshift4/sriov-cni-rhel9@sha256:18b649c7e0372f2c0f11d0d2a845c325ca5847e891b6583ce81d6b5ab0cd2399_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/openshift/sriov-cni-rhel9@sha256%3A18b649c7e0372f2c0f11d0d2a845c325ca5847e891b6583ce81d6b5ab0cd2399?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift4/sriov-cni-rhel9\u0026tag=1782899525"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift4/ose-sriov-dp-admission-controller-rhel9@sha256:1e487121455823010b1b43a7a4be96c5b953b5041ba39580e8f2f02a926da56d_ppc64le",
"product": {
"name": "registry.redhat.io/openshift4/ose-sriov-dp-admission-controller-rhel9@sha256:1e487121455823010b1b43a7a4be96c5b953b5041ba39580e8f2f02a926da56d_ppc64le",
"product_id": "registry.redhat.io/openshift4/ose-sriov-dp-admission-controller-rhel9@sha256:1e487121455823010b1b43a7a4be96c5b953b5041ba39580e8f2f02a926da56d_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/openshift/ose-sriov-dp-admission-controller-rhel9@sha256%3A1e487121455823010b1b43a7a4be96c5b953b5041ba39580e8f2f02a926da56d?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift4/ose-sriov-dp-admission-controller-rhel9\u0026tag=1782865092"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift4/ose-sriov-network-config-daemon-rhel9@sha256:3b44b97a59a4962da6415c625bf7c76d16f3368d3e955f0c5dcbe05b5f0f5ac4_ppc64le",
"product": {
"name": "registry.redhat.io/openshift4/ose-sriov-network-config-daemon-rhel9@sha256:3b44b97a59a4962da6415c625bf7c76d16f3368d3e955f0c5dcbe05b5f0f5ac4_ppc64le",
"product_id": "registry.redhat.io/openshift4/ose-sriov-network-config-daemon-rhel9@sha256:3b44b97a59a4962da6415c625bf7c76d16f3368d3e955f0c5dcbe05b5f0f5ac4_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/openshift/ose-sriov-network-config-daemon-rhel9@sha256%3A3b44b97a59a4962da6415c625bf7c76d16f3368d3e955f0c5dcbe05b5f0f5ac4?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift4/ose-sriov-network-config-daemon-rhel9\u0026tag=1782865976"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift4/ose-sriov-network-device-plugin-rhel9@sha256:d4ff686da4afdf216acf3c9ad530844cf989d3fd0ea69456ee13878ca38ab53c_ppc64le",
"product": {
"name": "registry.redhat.io/openshift4/ose-sriov-network-device-plugin-rhel9@sha256:d4ff686da4afdf216acf3c9ad530844cf989d3fd0ea69456ee13878ca38ab53c_ppc64le",
"product_id": "registry.redhat.io/openshift4/ose-sriov-network-device-plugin-rhel9@sha256:d4ff686da4afdf216acf3c9ad530844cf989d3fd0ea69456ee13878ca38ab53c_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/openshift/ose-sriov-network-device-plugin-rhel9@sha256%3Ad4ff686da4afdf216acf3c9ad530844cf989d3fd0ea69456ee13878ca38ab53c?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift4/ose-sriov-network-device-plugin-rhel9\u0026tag=1782864415"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift4/ose-sriov-network-rhel9-operator@sha256:5112ee38eb67037b9dec616724ba01d32651dfc71bac03e26646ae8e517f4540_ppc64le",
"product": {
"name": "registry.redhat.io/openshift4/ose-sriov-network-rhel9-operator@sha256:5112ee38eb67037b9dec616724ba01d32651dfc71bac03e26646ae8e517f4540_ppc64le",
"product_id": "registry.redhat.io/openshift4/ose-sriov-network-rhel9-operator@sha256:5112ee38eb67037b9dec616724ba01d32651dfc71bac03e26646ae8e517f4540_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/openshift/ose-sriov-network-rhel9-operator@sha256%3A5112ee38eb67037b9dec616724ba01d32651dfc71bac03e26646ae8e517f4540?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift4/ose-sriov-network-rhel9-operator\u0026tag=1782899535"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift4/ose-sriov-network-webhook-rhel9@sha256:eaa3c056167469c6bb5513e3dde02e5dab49d5b98e1c17ab966ad7313222b1ab_ppc64le",
"product": {
"name": "registry.redhat.io/openshift4/ose-sriov-network-webhook-rhel9@sha256:eaa3c056167469c6bb5513e3dde02e5dab49d5b98e1c17ab966ad7313222b1ab_ppc64le",
"product_id": "registry.redhat.io/openshift4/ose-sriov-network-webhook-rhel9@sha256:eaa3c056167469c6bb5513e3dde02e5dab49d5b98e1c17ab966ad7313222b1ab_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/openshift/ose-sriov-network-webhook-rhel9@sha256%3Aeaa3c056167469c6bb5513e3dde02e5dab49d5b98e1c17ab966ad7313222b1ab?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift4/ose-sriov-network-webhook-rhel9\u0026tag=1782860279"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift4/ose-vertical-pod-autoscaler-rhel9@sha256:b3dff747e802382fb5cc9df83b2950eb1773f817e82ea6482f3fc6f52bce0706_ppc64le",
"product": {
"name": "registry.redhat.io/openshift4/ose-vertical-pod-autoscaler-rhel9@sha256:b3dff747e802382fb5cc9df83b2950eb1773f817e82ea6482f3fc6f52bce0706_ppc64le",
"product_id": "registry.redhat.io/openshift4/ose-vertical-pod-autoscaler-rhel9@sha256:b3dff747e802382fb5cc9df83b2950eb1773f817e82ea6482f3fc6f52bce0706_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/openshift/ose-vertical-pod-autoscaler-rhel9@sha256%3Ab3dff747e802382fb5cc9df83b2950eb1773f817e82ea6482f3fc6f52bce0706?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift4/ose-vertical-pod-autoscaler-rhel9\u0026tag=1782864761"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift4/ose-vertical-pod-autoscaler-rhel9-operator@sha256:c3b36f187a4b67d4b4df5c7e2bb975832a2709d1891aec41af4d46bc578659ba_ppc64le",
"product": {
"name": "registry.redhat.io/openshift4/ose-vertical-pod-autoscaler-rhel9-operator@sha256:c3b36f187a4b67d4b4df5c7e2bb975832a2709d1891aec41af4d46bc578659ba_ppc64le",
"product_id": "registry.redhat.io/openshift4/ose-vertical-pod-autoscaler-rhel9-operator@sha256:c3b36f187a4b67d4b4df5c7e2bb975832a2709d1891aec41af4d46bc578659ba_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/openshift/ose-vertical-pod-autoscaler-rhel9-operator@sha256%3Ac3b36f187a4b67d4b4df5c7e2bb975832a2709d1891aec41af4d46bc578659ba?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift4/ose-vertical-pod-autoscaler-rhel9-operator\u0026tag=1782860470"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/openshift4/ose-cloud-event-proxy-rhel9@sha256:382657d2e3f4ee1d32849b509812c51004c015343a1d4ec0106d70b527f5ee12_amd64",
"product": {
"name": "registry.redhat.io/openshift4/ose-cloud-event-proxy-rhel9@sha256:382657d2e3f4ee1d32849b509812c51004c015343a1d4ec0106d70b527f5ee12_amd64",
"product_id": "registry.redhat.io/openshift4/ose-cloud-event-proxy-rhel9@sha256:382657d2e3f4ee1d32849b509812c51004c015343a1d4ec0106d70b527f5ee12_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openshift/ose-cloud-event-proxy-rhel9@sha256%3A382657d2e3f4ee1d32849b509812c51004c015343a1d4ec0106d70b527f5ee12?arch=amd64\u0026repository_url=registry.redhat.io/openshift4/ose-cloud-event-proxy-rhel9\u0026tag=1782859805"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift4/ose-cluster-nfd-rhel9-operator@sha256:73003ac3bc1c768dfafe6714fd7323c8c941a818cea9e3ef88a2fa7494283a08_amd64",
"product": {
"name": "registry.redhat.io/openshift4/ose-cluster-nfd-rhel9-operator@sha256:73003ac3bc1c768dfafe6714fd7323c8c941a818cea9e3ef88a2fa7494283a08_amd64",
"product_id": "registry.redhat.io/openshift4/ose-cluster-nfd-rhel9-operator@sha256:73003ac3bc1c768dfafe6714fd7323c8c941a818cea9e3ef88a2fa7494283a08_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openshift/ose-cluster-nfd-rhel9-operator@sha256%3A73003ac3bc1c768dfafe6714fd7323c8c941a818cea9e3ef88a2fa7494283a08?arch=amd64\u0026repository_url=registry.redhat.io/openshift4/ose-cluster-nfd-rhel9-operator\u0026tag=1782860451"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift4/ose-clusterresourceoverride-rhel9@sha256:36f60e44d8be2d1d0e8d2c448cea63bdeb39f5c2ac1c1c35151d044dc0b0ee26_amd64",
"product": {
"name": "registry.redhat.io/openshift4/ose-clusterresourceoverride-rhel9@sha256:36f60e44d8be2d1d0e8d2c448cea63bdeb39f5c2ac1c1c35151d044dc0b0ee26_amd64",
"product_id": "registry.redhat.io/openshift4/ose-clusterresourceoverride-rhel9@sha256:36f60e44d8be2d1d0e8d2c448cea63bdeb39f5c2ac1c1c35151d044dc0b0ee26_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openshift/ose-clusterresourceoverride-rhel9@sha256%3A36f60e44d8be2d1d0e8d2c448cea63bdeb39f5c2ac1c1c35151d044dc0b0ee26?arch=amd64\u0026repository_url=registry.redhat.io/openshift4/ose-clusterresourceoverride-rhel9\u0026tag=1782860748"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift4/ose-clusterresourceoverride-rhel9-operator@sha256:d21eade3a6125db8cc43e6424ad74230214cc4a46abeb59ba1b2a3c101ac6283_amd64",
"product": {
"name": "registry.redhat.io/openshift4/ose-clusterresourceoverride-rhel9-operator@sha256:d21eade3a6125db8cc43e6424ad74230214cc4a46abeb59ba1b2a3c101ac6283_amd64",
"product_id": "registry.redhat.io/openshift4/ose-clusterresourceoverride-rhel9-operator@sha256:d21eade3a6125db8cc43e6424ad74230214cc4a46abeb59ba1b2a3c101ac6283_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openshift/ose-clusterresourceoverride-rhel9-operator@sha256%3Ad21eade3a6125db8cc43e6424ad74230214cc4a46abeb59ba1b2a3c101ac6283?arch=amd64\u0026repository_url=registry.redhat.io/openshift4/ose-clusterresourceoverride-rhel9-operator\u0026tag=1782870830"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift4/ose-dpu-cni-rhel9@sha256:7e45522e22c496fb7cb9a530e169c73c43ca9fde61539abbee4be7f651b98cda_amd64",
"product": {
"name": "registry.redhat.io/openshift4/ose-dpu-cni-rhel9@sha256:7e45522e22c496fb7cb9a530e169c73c43ca9fde61539abbee4be7f651b98cda_amd64",
"product_id": "registry.redhat.io/openshift4/ose-dpu-cni-rhel9@sha256:7e45522e22c496fb7cb9a530e169c73c43ca9fde61539abbee4be7f651b98cda_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openshift/ose-dpu-cni-rhel9@sha256%3A7e45522e22c496fb7cb9a530e169c73c43ca9fde61539abbee4be7f651b98cda?arch=amd64\u0026repository_url=registry.redhat.io/openshift4/ose-dpu-cni-rhel9\u0026tag=1782865367"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift4/ose-dpu-daemon-rhel9@sha256:9440d51ed354698f93e91c380a65daa0e165a13d3cac2818e2533c5f7ef60fa6_amd64",
"product": {
"name": "registry.redhat.io/openshift4/ose-dpu-daemon-rhel9@sha256:9440d51ed354698f93e91c380a65daa0e165a13d3cac2818e2533c5f7ef60fa6_amd64",
"product_id": "registry.redhat.io/openshift4/ose-dpu-daemon-rhel9@sha256:9440d51ed354698f93e91c380a65daa0e165a13d3cac2818e2533c5f7ef60fa6_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openshift/ose-dpu-daemon-rhel9@sha256%3A9440d51ed354698f93e91c380a65daa0e165a13d3cac2818e2533c5f7ef60fa6?arch=amd64\u0026repository_url=registry.redhat.io/openshift4/ose-dpu-daemon-rhel9\u0026tag=1782864733"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift4/ose-dpu-intel-ipu-p4sdk-rhel9@sha256:9017e22f5fd9703d326059df6cb0c61cfde6840e6f454fcc49c92908236e899e_amd64",
"product": {
"name": "registry.redhat.io/openshift4/ose-dpu-intel-ipu-p4sdk-rhel9@sha256:9017e22f5fd9703d326059df6cb0c61cfde6840e6f454fcc49c92908236e899e_amd64",
"product_id": "registry.redhat.io/openshift4/ose-dpu-intel-ipu-p4sdk-rhel9@sha256:9017e22f5fd9703d326059df6cb0c61cfde6840e6f454fcc49c92908236e899e_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openshift/ose-dpu-intel-ipu-p4sdk-rhel9@sha256%3A9017e22f5fd9703d326059df6cb0c61cfde6840e6f454fcc49c92908236e899e?arch=amd64\u0026repository_url=registry.redhat.io/openshift4/ose-dpu-intel-ipu-p4sdk-rhel9\u0026tag=1782899480"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift4/ose-dpu-intel-ipu-vsp-rhel9@sha256:1e42bc22e95bfac89c04d820fbc75965965b86fa64ec3b10c2ce49f0d076a118_amd64",
"product": {
"name": "registry.redhat.io/openshift4/ose-dpu-intel-ipu-vsp-rhel9@sha256:1e42bc22e95bfac89c04d820fbc75965965b86fa64ec3b10c2ce49f0d076a118_amd64",
"product_id": "registry.redhat.io/openshift4/ose-dpu-intel-ipu-vsp-rhel9@sha256:1e42bc22e95bfac89c04d820fbc75965965b86fa64ec3b10c2ce49f0d076a118_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openshift/ose-dpu-intel-ipu-vsp-rhel9@sha256%3A1e42bc22e95bfac89c04d820fbc75965965b86fa64ec3b10c2ce49f0d076a118?arch=amd64\u0026repository_url=registry.redhat.io/openshift4/ose-dpu-intel-ipu-vsp-rhel9\u0026tag=1782859767"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift4/ose-dpu-intel-netsec-vsp-rhel9@sha256:b9080c881c0151460a1286493640e0d1e0c018a81340466ab1c13203310219e6_amd64",
"product": {
"name": "registry.redhat.io/openshift4/ose-dpu-intel-netsec-vsp-rhel9@sha256:b9080c881c0151460a1286493640e0d1e0c018a81340466ab1c13203310219e6_amd64",
"product_id": "registry.redhat.io/openshift4/ose-dpu-intel-netsec-vsp-rhel9@sha256:b9080c881c0151460a1286493640e0d1e0c018a81340466ab1c13203310219e6_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openshift/ose-dpu-intel-netsec-vsp-rhel9@sha256%3Ab9080c881c0151460a1286493640e0d1e0c018a81340466ab1c13203310219e6?arch=amd64\u0026repository_url=registry.redhat.io/openshift4/ose-dpu-intel-netsec-vsp-rhel9\u0026tag=1782859788"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift4/ose-dpu-marvell-cp-agent-rhel9@sha256:5d70111632bb020cce18b16a88ee172ed293ea6b0cd0521ee44b619b474b8762_amd64",
"product": {
"name": "registry.redhat.io/openshift4/ose-dpu-marvell-cp-agent-rhel9@sha256:5d70111632bb020cce18b16a88ee172ed293ea6b0cd0521ee44b619b474b8762_amd64",
"product_id": "registry.redhat.io/openshift4/ose-dpu-marvell-cp-agent-rhel9@sha256:5d70111632bb020cce18b16a88ee172ed293ea6b0cd0521ee44b619b474b8762_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openshift/ose-dpu-marvell-cp-agent-rhel9@sha256%3A5d70111632bb020cce18b16a88ee172ed293ea6b0cd0521ee44b619b474b8762?arch=amd64\u0026repository_url=registry.redhat.io/openshift4/ose-dpu-marvell-cp-agent-rhel9\u0026tag=1782860002"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift4/ose-dpu-marvell-vsp-rhel9@sha256:77c16c7c6cf3e7ed299585a733b04718083579fab41bc7488314b428c416390e_amd64",
"product": {
"name": "registry.redhat.io/openshift4/ose-dpu-marvell-vsp-rhel9@sha256:77c16c7c6cf3e7ed299585a733b04718083579fab41bc7488314b428c416390e_amd64",
"product_id": "registry.redhat.io/openshift4/ose-dpu-marvell-vsp-rhel9@sha256:77c16c7c6cf3e7ed299585a733b04718083579fab41bc7488314b428c416390e_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openshift/ose-dpu-marvell-vsp-rhel9@sha256%3A77c16c7c6cf3e7ed299585a733b04718083579fab41bc7488314b428c416390e?arch=amd64\u0026repository_url=registry.redhat.io/openshift4/ose-dpu-marvell-vsp-rhel9\u0026tag=1782859791"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift4/ose-dpu-network-resources-injector-rhel9@sha256:cd8d332585ebf4f8819cc54c64285f1e2ea127de41e4edff909fddbef4d02c5d_amd64",
"product": {
"name": "registry.redhat.io/openshift4/ose-dpu-network-resources-injector-rhel9@sha256:cd8d332585ebf4f8819cc54c64285f1e2ea127de41e4edff909fddbef4d02c5d_amd64",
"product_id": "registry.redhat.io/openshift4/ose-dpu-network-resources-injector-rhel9@sha256:cd8d332585ebf4f8819cc54c64285f1e2ea127de41e4edff909fddbef4d02c5d_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openshift/ose-dpu-network-resources-injector-rhel9@sha256%3Acd8d332585ebf4f8819cc54c64285f1e2ea127de41e4edff909fddbef4d02c5d?arch=amd64\u0026repository_url=registry.redhat.io/openshift4/ose-dpu-network-resources-injector-rhel9\u0026tag=1782859784"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift4/ose-sriov-infiniband-cni-rhel9@sha256:37b587093902b17bd69212e43305888bd770d3a21a4eab7bdb682af8bc64b347_amd64",
"product": {
"name": "registry.redhat.io/openshift4/ose-sriov-infiniband-cni-rhel9@sha256:37b587093902b17bd69212e43305888bd770d3a21a4eab7bdb682af8bc64b347_amd64",
"product_id": "registry.redhat.io/openshift4/ose-sriov-infiniband-cni-rhel9@sha256:37b587093902b17bd69212e43305888bd770d3a21a4eab7bdb682af8bc64b347_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openshift/ose-sriov-infiniband-cni-rhel9@sha256%3A37b587093902b17bd69212e43305888bd770d3a21a4eab7bdb682af8bc64b347?arch=amd64\u0026repository_url=registry.redhat.io/openshift4/ose-sriov-infiniband-cni-rhel9\u0026tag=1782861437"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift4/ingress-node-firewall-rhel9@sha256:38781886f8849ffc36870f3dc44c06e262b9b0524d15251bcc8e81b314ddf728_amd64",
"product": {
"name": "registry.redhat.io/openshift4/ingress-node-firewall-rhel9@sha256:38781886f8849ffc36870f3dc44c06e262b9b0524d15251bcc8e81b314ddf728_amd64",
"product_id": "registry.redhat.io/openshift4/ingress-node-firewall-rhel9@sha256:38781886f8849ffc36870f3dc44c06e262b9b0524d15251bcc8e81b314ddf728_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openshift/ingress-node-firewall-rhel9@sha256%3A38781886f8849ffc36870f3dc44c06e262b9b0524d15251bcc8e81b314ddf728?arch=amd64\u0026repository_url=registry.redhat.io/openshift4/ingress-node-firewall-rhel9\u0026tag=1782865693"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift4/ingress-node-firewall-rhel9-operator@sha256:6f09cbddc2165982085e382db12e5503b16d7a1e79842a19157f4910257f43ef_amd64",
"product": {
"name": "registry.redhat.io/openshift4/ingress-node-firewall-rhel9-operator@sha256:6f09cbddc2165982085e382db12e5503b16d7a1e79842a19157f4910257f43ef_amd64",
"product_id": "registry.redhat.io/openshift4/ingress-node-firewall-rhel9-operator@sha256:6f09cbddc2165982085e382db12e5503b16d7a1e79842a19157f4910257f43ef_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openshift/ingress-node-firewall-rhel9-operator@sha256%3A6f09cbddc2165982085e382db12e5503b16d7a1e79842a19157f4910257f43ef?arch=amd64\u0026repository_url=registry.redhat.io/openshift4/ingress-node-firewall-rhel9-operator\u0026tag=1782863031"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift4/kube-compare-artifacts-rhel9@sha256:277a845f5ffe398935b4fe5c035dba2a41bc23d1abce44893976487abc91514f_amd64",
"product": {
"name": "registry.redhat.io/openshift4/kube-compare-artifacts-rhel9@sha256:277a845f5ffe398935b4fe5c035dba2a41bc23d1abce44893976487abc91514f_amd64",
"product_id": "registry.redhat.io/openshift4/kube-compare-artifacts-rhel9@sha256:277a845f5ffe398935b4fe5c035dba2a41bc23d1abce44893976487abc91514f_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openshift/kube-compare-artifacts-rhel9@sha256%3A277a845f5ffe398935b4fe5c035dba2a41bc23d1abce44893976487abc91514f?arch=amd64\u0026repository_url=registry.redhat.io/openshift4/kube-compare-artifacts-rhel9\u0026tag=1782870058"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift4/ose-ptp-rhel9@sha256:ceffce6ae5d36775df6cfb2b23a8e089e10806c087d88ddcd5822d1e05d1843e_amd64",
"product": {
"name": "registry.redhat.io/openshift4/ose-ptp-rhel9@sha256:ceffce6ae5d36775df6cfb2b23a8e089e10806c087d88ddcd5822d1e05d1843e_amd64",
"product_id": "registry.redhat.io/openshift4/ose-ptp-rhel9@sha256:ceffce6ae5d36775df6cfb2b23a8e089e10806c087d88ddcd5822d1e05d1843e_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openshift/ose-ptp-rhel9@sha256%3Aceffce6ae5d36775df6cfb2b23a8e089e10806c087d88ddcd5822d1e05d1843e?arch=amd64\u0026repository_url=registry.redhat.io/openshift4/ose-ptp-rhel9\u0026tag=1782860086"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift4/ose-local-storage-diskmaker-rhel9@sha256:bf694ff952b6220ac1db51a8ff1823ee85b5d0fc6b6127c00b868a017853f53c_amd64",
"product": {
"name": "registry.redhat.io/openshift4/ose-local-storage-diskmaker-rhel9@sha256:bf694ff952b6220ac1db51a8ff1823ee85b5d0fc6b6127c00b868a017853f53c_amd64",
"product_id": "registry.redhat.io/openshift4/ose-local-storage-diskmaker-rhel9@sha256:bf694ff952b6220ac1db51a8ff1823ee85b5d0fc6b6127c00b868a017853f53c_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openshift/ose-local-storage-diskmaker-rhel9@sha256%3Abf694ff952b6220ac1db51a8ff1823ee85b5d0fc6b6127c00b868a017853f53c?arch=amd64\u0026repository_url=registry.redhat.io/openshift4/ose-local-storage-diskmaker-rhel9\u0026tag=1782860589"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift4/ose-local-storage-mustgather-rhel9@sha256:53000c76b406be2af70be4c5258829f004a39a9d520cc020df44d7fa640d05ad_amd64",
"product": {
"name": "registry.redhat.io/openshift4/ose-local-storage-mustgather-rhel9@sha256:53000c76b406be2af70be4c5258829f004a39a9d520cc020df44d7fa640d05ad_amd64",
"product_id": "registry.redhat.io/openshift4/ose-local-storage-mustgather-rhel9@sha256:53000c76b406be2af70be4c5258829f004a39a9d520cc020df44d7fa640d05ad_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openshift/ose-local-storage-mustgather-rhel9@sha256%3A53000c76b406be2af70be4c5258829f004a39a9d520cc020df44d7fa640d05ad?arch=amd64\u0026repository_url=registry.redhat.io/openshift4/ose-local-storage-mustgather-rhel9\u0026tag=1782899473"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift4/ose-local-storage-rhel9-operator@sha256:ce139a228805b636280ed42198c7f93a666004f79d48861ad12edd3045f7c412_amd64",
"product": {
"name": "registry.redhat.io/openshift4/ose-local-storage-rhel9-operator@sha256:ce139a228805b636280ed42198c7f93a666004f79d48861ad12edd3045f7c412_amd64",
"product_id": "registry.redhat.io/openshift4/ose-local-storage-rhel9-operator@sha256:ce139a228805b636280ed42198c7f93a666004f79d48861ad12edd3045f7c412_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openshift/ose-local-storage-rhel9-operator@sha256%3Ace139a228805b636280ed42198c7f93a666004f79d48861ad12edd3045f7c412?arch=amd64\u0026repository_url=registry.redhat.io/openshift4/ose-local-storage-rhel9-operator\u0026tag=1782899520"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift4/nmstate-console-plugin-rhel9@sha256:a40c59091b55f2fb79b9f58aa1ebabfa836cee775d20c3c40341811ae060cf37_amd64",
"product": {
"name": "registry.redhat.io/openshift4/nmstate-console-plugin-rhel9@sha256:a40c59091b55f2fb79b9f58aa1ebabfa836cee775d20c3c40341811ae060cf37_amd64",
"product_id": "registry.redhat.io/openshift4/nmstate-console-plugin-rhel9@sha256:a40c59091b55f2fb79b9f58aa1ebabfa836cee775d20c3c40341811ae060cf37_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openshift/nmstate-console-plugin-rhel9@sha256%3Aa40c59091b55f2fb79b9f58aa1ebabfa836cee775d20c3c40341811ae060cf37?arch=amd64\u0026repository_url=registry.redhat.io/openshift4/nmstate-console-plugin-rhel9\u0026tag=1782914001"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift4/ose-node-feature-discovery-rhel9@sha256:56b2612c509ae4021332da9b4e252304c50234dab408caade568f4573573a998_amd64",
"product": {
"name": "registry.redhat.io/openshift4/ose-node-feature-discovery-rhel9@sha256:56b2612c509ae4021332da9b4e252304c50234dab408caade568f4573573a998_amd64",
"product_id": "registry.redhat.io/openshift4/ose-node-feature-discovery-rhel9@sha256:56b2612c509ae4021332da9b4e252304c50234dab408caade568f4573573a998_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openshift/ose-node-feature-discovery-rhel9@sha256%3A56b2612c509ae4021332da9b4e252304c50234dab408caade568f4573573a998?arch=amd64\u0026repository_url=registry.redhat.io/openshift4/ose-node-feature-discovery-rhel9\u0026tag=1782865290"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift4/ose-ansible-rhel9-operator@sha256:edf0c24be41ee871c33b2bd40040101d03c388966ef56bea6ab5fe3e64159efd_amd64",
"product": {
"name": "registry.redhat.io/openshift4/ose-ansible-rhel9-operator@sha256:edf0c24be41ee871c33b2bd40040101d03c388966ef56bea6ab5fe3e64159efd_amd64",
"product_id": "registry.redhat.io/openshift4/ose-ansible-rhel9-operator@sha256:edf0c24be41ee871c33b2bd40040101d03c388966ef56bea6ab5fe3e64159efd_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openshift/ose-ansible-rhel9-operator@sha256%3Aedf0c24be41ee871c33b2bd40040101d03c388966ef56bea6ab5fe3e64159efd?arch=amd64\u0026repository_url=registry.redhat.io/openshift4/ose-ansible-rhel9-operator\u0026tag=1782913003"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift4/ose-cluster-capacity-rhel9@sha256:95c176b32fb102f563e6600226582b9c99d39b0431f82bdb433cb9c21b40add6_amd64",
"product": {
"name": "registry.redhat.io/openshift4/ose-cluster-capacity-rhel9@sha256:95c176b32fb102f563e6600226582b9c99d39b0431f82bdb433cb9c21b40add6_amd64",
"product_id": "registry.redhat.io/openshift4/ose-cluster-capacity-rhel9@sha256:95c176b32fb102f563e6600226582b9c99d39b0431f82bdb433cb9c21b40add6_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openshift/ose-cluster-capacity-rhel9@sha256%3A95c176b32fb102f563e6600226582b9c99d39b0431f82bdb433cb9c21b40add6?arch=amd64\u0026repository_url=registry.redhat.io/openshift4/ose-cluster-capacity-rhel9\u0026tag=1782899556"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift4/ose-helm-rhel9-operator@sha256:2f7fc2e6130b0504eb6451edeeb4b5815b162428d281aac6afd2f52ac5a04d10_amd64",
"product": {
"name": "registry.redhat.io/openshift4/ose-helm-rhel9-operator@sha256:2f7fc2e6130b0504eb6451edeeb4b5815b162428d281aac6afd2f52ac5a04d10_amd64",
"product_id": "registry.redhat.io/openshift4/ose-helm-rhel9-operator@sha256:2f7fc2e6130b0504eb6451edeeb4b5815b162428d281aac6afd2f52ac5a04d10_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openshift/ose-helm-rhel9-operator@sha256%3A2f7fc2e6130b0504eb6451edeeb4b5815b162428d281aac6afd2f52ac5a04d10?arch=amd64\u0026repository_url=registry.redhat.io/openshift4/ose-helm-rhel9-operator\u0026tag=1782861356"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift4/ose-kubernetes-nmstate-handler-rhel9@sha256:49dce6c7de88a1840a20dc713fe6ba74f60f5b4263aeea6f826f3b9b522e96bf_amd64",
"product": {
"name": "registry.redhat.io/openshift4/ose-kubernetes-nmstate-handler-rhel9@sha256:49dce6c7de88a1840a20dc713fe6ba74f60f5b4263aeea6f826f3b9b522e96bf_amd64",
"product_id": "registry.redhat.io/openshift4/ose-kubernetes-nmstate-handler-rhel9@sha256:49dce6c7de88a1840a20dc713fe6ba74f60f5b4263aeea6f826f3b9b522e96bf_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openshift/ose-kubernetes-nmstate-handler-rhel9@sha256%3A49dce6c7de88a1840a20dc713fe6ba74f60f5b4263aeea6f826f3b9b522e96bf?arch=amd64\u0026repository_url=registry.redhat.io/openshift4/ose-kubernetes-nmstate-handler-rhel9\u0026tag=1782865881"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift4/kubernetes-nmstate-rhel9-operator@sha256:6ab82578e1faf15606648c109580ef1f7cc655a75001b6b1e4bf582815407fc9_amd64",
"product": {
"name": "registry.redhat.io/openshift4/kubernetes-nmstate-rhel9-operator@sha256:6ab82578e1faf15606648c109580ef1f7cc655a75001b6b1e4bf582815407fc9_amd64",
"product_id": "registry.redhat.io/openshift4/kubernetes-nmstate-rhel9-operator@sha256:6ab82578e1faf15606648c109580ef1f7cc655a75001b6b1e4bf582815407fc9_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openshift/kubernetes-nmstate-rhel9-operator@sha256%3A6ab82578e1faf15606648c109580ef1f7cc655a75001b6b1e4bf582815407fc9?arch=amd64\u0026repository_url=registry.redhat.io/openshift4/kubernetes-nmstate-rhel9-operator\u0026tag=1782912957"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift4/ose-aws-efs-csi-driver-container-rhel9@sha256:37150c4d95a762ba377b126f961a2adbba6628db5495dc0ea237b02b81aa51aa_amd64",
"product": {
"name": "registry.redhat.io/openshift4/ose-aws-efs-csi-driver-container-rhel9@sha256:37150c4d95a762ba377b126f961a2adbba6628db5495dc0ea237b02b81aa51aa_amd64",
"product_id": "registry.redhat.io/openshift4/ose-aws-efs-csi-driver-container-rhel9@sha256:37150c4d95a762ba377b126f961a2adbba6628db5495dc0ea237b02b81aa51aa_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openshift/ose-aws-efs-csi-driver-container-rhel9@sha256%3A37150c4d95a762ba377b126f961a2adbba6628db5495dc0ea237b02b81aa51aa?arch=amd64\u0026repository_url=registry.redhat.io/openshift4/ose-aws-efs-csi-driver-container-rhel9\u0026tag=1782900200"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift4/ose-aws-efs-csi-driver-rhel9-operator@sha256:5d3d03e26113cf4740d2947d9e23c1007615506206c2399644a81e8f343cbaaf_amd64",
"product": {
"name": "registry.redhat.io/openshift4/ose-aws-efs-csi-driver-rhel9-operator@sha256:5d3d03e26113cf4740d2947d9e23c1007615506206c2399644a81e8f343cbaaf_amd64",
"product_id": "registry.redhat.io/openshift4/ose-aws-efs-csi-driver-rhel9-operator@sha256:5d3d03e26113cf4740d2947d9e23c1007615506206c2399644a81e8f343cbaaf_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openshift/ose-aws-efs-csi-driver-rhel9-operator@sha256%3A5d3d03e26113cf4740d2947d9e23c1007615506206c2399644a81e8f343cbaaf?arch=amd64\u0026repository_url=registry.redhat.io/openshift4/ose-aws-efs-csi-driver-rhel9-operator\u0026tag=1782912961"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift4/ose-gcp-filestore-csi-driver-rhel9@sha256:a0353e92588be591c35f299f51f6da9e5be0136b3a8b30b7277cf4a46266d1cc_amd64",
"product": {
"name": "registry.redhat.io/openshift4/ose-gcp-filestore-csi-driver-rhel9@sha256:a0353e92588be591c35f299f51f6da9e5be0136b3a8b30b7277cf4a46266d1cc_amd64",
"product_id": "registry.redhat.io/openshift4/ose-gcp-filestore-csi-driver-rhel9@sha256:a0353e92588be591c35f299f51f6da9e5be0136b3a8b30b7277cf4a46266d1cc_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openshift/ose-gcp-filestore-csi-driver-rhel9@sha256%3Aa0353e92588be591c35f299f51f6da9e5be0136b3a8b30b7277cf4a46266d1cc?arch=amd64\u0026repository_url=registry.redhat.io/openshift4/ose-gcp-filestore-csi-driver-rhel9\u0026tag=1782859782"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift4/ose-gcp-filestore-csi-driver-rhel9-operator@sha256:51d776f3327e8828dfed49bb6e6fb421bd8b7bb4ec225298f441d35f4f39b6e3_amd64",
"product": {
"name": "registry.redhat.io/openshift4/ose-gcp-filestore-csi-driver-rhel9-operator@sha256:51d776f3327e8828dfed49bb6e6fb421bd8b7bb4ec225298f441d35f4f39b6e3_amd64",
"product_id": "registry.redhat.io/openshift4/ose-gcp-filestore-csi-driver-rhel9-operator@sha256:51d776f3327e8828dfed49bb6e6fb421bd8b7bb4ec225298f441d35f4f39b6e3_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openshift/ose-gcp-filestore-csi-driver-rhel9-operator@sha256%3A51d776f3327e8828dfed49bb6e6fb421bd8b7bb4ec225298f441d35f4f39b6e3?arch=amd64\u0026repository_url=registry.redhat.io/openshift4/ose-gcp-filestore-csi-driver-rhel9-operator\u0026tag=1782859743"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift4/metallb-rhel9@sha256:13dfba732da2aba14e5527d2008955134978909ed8823641a21ee2e118b33498_amd64",
"product": {
"name": "registry.redhat.io/openshift4/metallb-rhel9@sha256:13dfba732da2aba14e5527d2008955134978909ed8823641a21ee2e118b33498_amd64",
"product_id": "registry.redhat.io/openshift4/metallb-rhel9@sha256:13dfba732da2aba14e5527d2008955134978909ed8823641a21ee2e118b33498_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openshift/metallb-rhel9@sha256%3A13dfba732da2aba14e5527d2008955134978909ed8823641a21ee2e118b33498?arch=amd64\u0026repository_url=registry.redhat.io/openshift4/metallb-rhel9\u0026tag=1782865760"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift4/metallb-rhel9-operator@sha256:36367c6dac166a814a1a76a822c67602a02aa37dee5ae602d60da867488a757e_amd64",
"product": {
"name": "registry.redhat.io/openshift4/metallb-rhel9-operator@sha256:36367c6dac166a814a1a76a822c67602a02aa37dee5ae602d60da867488a757e_amd64",
"product_id": "registry.redhat.io/openshift4/metallb-rhel9-operator@sha256:36367c6dac166a814a1a76a822c67602a02aa37dee5ae602d60da867488a757e_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openshift/metallb-rhel9-operator@sha256%3A36367c6dac166a814a1a76a822c67602a02aa37dee5ae602d60da867488a757e?arch=amd64\u0026repository_url=registry.redhat.io/openshift4/metallb-rhel9-operator\u0026tag=1782859819"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift4/ose-secrets-store-csi-driver-rhel9@sha256:007ea9c7d8bcf7729505788e73a3647e85be6d3f8375ced4099e575c4c1a11a5_amd64",
"product": {
"name": "registry.redhat.io/openshift4/ose-secrets-store-csi-driver-rhel9@sha256:007ea9c7d8bcf7729505788e73a3647e85be6d3f8375ced4099e575c4c1a11a5_amd64",
"product_id": "registry.redhat.io/openshift4/ose-secrets-store-csi-driver-rhel9@sha256:007ea9c7d8bcf7729505788e73a3647e85be6d3f8375ced4099e575c4c1a11a5_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openshift/ose-secrets-store-csi-driver-rhel9@sha256%3A007ea9c7d8bcf7729505788e73a3647e85be6d3f8375ced4099e575c4c1a11a5?arch=amd64\u0026repository_url=registry.redhat.io/openshift4/ose-secrets-store-csi-driver-rhel9\u0026tag=1782861433"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift4/ose-secrets-store-csi-driver-rhel9-operator@sha256:86a5601f89c0f47b69e0c1a1950f5d1bf584f3cf90188fbf92d7622dd7ff9156_amd64",
"product": {
"name": "registry.redhat.io/openshift4/ose-secrets-store-csi-driver-rhel9-operator@sha256:86a5601f89c0f47b69e0c1a1950f5d1bf584f3cf90188fbf92d7622dd7ff9156_amd64",
"product_id": "registry.redhat.io/openshift4/ose-secrets-store-csi-driver-rhel9-operator@sha256:86a5601f89c0f47b69e0c1a1950f5d1bf584f3cf90188fbf92d7622dd7ff9156_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openshift/ose-secrets-store-csi-driver-rhel9-operator@sha256%3A86a5601f89c0f47b69e0c1a1950f5d1bf584f3cf90188fbf92d7622dd7ff9156?arch=amd64\u0026repository_url=registry.redhat.io/openshift4/ose-secrets-store-csi-driver-rhel9-operator\u0026tag=1782868696"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift4/ose-secrets-store-csi-mustgather-rhel9@sha256:546942fbfcc68e3f17523eaaae31d5694c545cdf84bb73ce0c2f20bfb0419844_amd64",
"product": {
"name": "registry.redhat.io/openshift4/ose-secrets-store-csi-mustgather-rhel9@sha256:546942fbfcc68e3f17523eaaae31d5694c545cdf84bb73ce0c2f20bfb0419844_amd64",
"product_id": "registry.redhat.io/openshift4/ose-secrets-store-csi-mustgather-rhel9@sha256:546942fbfcc68e3f17523eaaae31d5694c545cdf84bb73ce0c2f20bfb0419844_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openshift/ose-secrets-store-csi-mustgather-rhel9@sha256%3A546942fbfcc68e3f17523eaaae31d5694c545cdf84bb73ce0c2f20bfb0419844?arch=amd64\u0026repository_url=registry.redhat.io/openshift4/ose-secrets-store-csi-mustgather-rhel9\u0026tag=1782870287"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift4/ose-smb-csi-driver-rhel9@sha256:0ec112141b35688b1797ce674654d9c1c9f58ae66cc8feeb0379163644a497dd_amd64",
"product": {
"name": "registry.redhat.io/openshift4/ose-smb-csi-driver-rhel9@sha256:0ec112141b35688b1797ce674654d9c1c9f58ae66cc8feeb0379163644a497dd_amd64",
"product_id": "registry.redhat.io/openshift4/ose-smb-csi-driver-rhel9@sha256:0ec112141b35688b1797ce674654d9c1c9f58ae66cc8feeb0379163644a497dd_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openshift/ose-smb-csi-driver-rhel9@sha256%3A0ec112141b35688b1797ce674654d9c1c9f58ae66cc8feeb0379163644a497dd?arch=amd64\u0026repository_url=registry.redhat.io/openshift4/ose-smb-csi-driver-rhel9\u0026tag=1782863077"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift4/ose-smb-csi-driver-rhel9-operator@sha256:d50822b32fc2d3c2069b5213e13d43e7f376886e7e5189dba36960932eff9af5_amd64",
"product": {
"name": "registry.redhat.io/openshift4/ose-smb-csi-driver-rhel9-operator@sha256:d50822b32fc2d3c2069b5213e13d43e7f376886e7e5189dba36960932eff9af5_amd64",
"product_id": "registry.redhat.io/openshift4/ose-smb-csi-driver-rhel9-operator@sha256:d50822b32fc2d3c2069b5213e13d43e7f376886e7e5189dba36960932eff9af5_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openshift/ose-smb-csi-driver-rhel9-operator@sha256%3Ad50822b32fc2d3c2069b5213e13d43e7f376886e7e5189dba36960932eff9af5?arch=amd64\u0026repository_url=registry.redhat.io/openshift4/ose-smb-csi-driver-rhel9-operator\u0026tag=1782864535"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift4/ose-sriov-network-metrics-exporter-rhel9@sha256:bc31897f905a8a05e063878fdfedf523c9313f6131f03236421ec4e971d5a2cc_amd64",
"product": {
"name": "registry.redhat.io/openshift4/ose-sriov-network-metrics-exporter-rhel9@sha256:bc31897f905a8a05e063878fdfedf523c9313f6131f03236421ec4e971d5a2cc_amd64",
"product_id": "registry.redhat.io/openshift4/ose-sriov-network-metrics-exporter-rhel9@sha256:bc31897f905a8a05e063878fdfedf523c9313f6131f03236421ec4e971d5a2cc_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openshift/ose-sriov-network-metrics-exporter-rhel9@sha256%3Abc31897f905a8a05e063878fdfedf523c9313f6131f03236421ec4e971d5a2cc?arch=amd64\u0026repository_url=registry.redhat.io/openshift4/ose-sriov-network-metrics-exporter-rhel9\u0026tag=1782860065"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift4/ose-sriov-rdma-cni-rhel9@sha256:2433095c43109b0ec3932a9b2b34600271f32bd440f9cc73c43b742b913646d5_amd64",
"product": {
"name": "registry.redhat.io/openshift4/ose-sriov-rdma-cni-rhel9@sha256:2433095c43109b0ec3932a9b2b34600271f32bd440f9cc73c43b742b913646d5_amd64",
"product_id": "registry.redhat.io/openshift4/ose-sriov-rdma-cni-rhel9@sha256:2433095c43109b0ec3932a9b2b34600271f32bd440f9cc73c43b742b913646d5_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openshift/ose-sriov-rdma-cni-rhel9@sha256%3A2433095c43109b0ec3932a9b2b34600271f32bd440f9cc73c43b742b913646d5?arch=amd64\u0026repository_url=registry.redhat.io/openshift4/ose-sriov-rdma-cni-rhel9\u0026tag=1782865833"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift4/ose-support-log-gather-rhel9-operator@sha256:89ab8e96ab53d430ce97e8a80fd4ef35277234391a72723da2a8457be881291e_amd64",
"product": {
"name": "registry.redhat.io/openshift4/ose-support-log-gather-rhel9-operator@sha256:89ab8e96ab53d430ce97e8a80fd4ef35277234391a72723da2a8457be881291e_amd64",
"product_id": "registry.redhat.io/openshift4/ose-support-log-gather-rhel9-operator@sha256:89ab8e96ab53d430ce97e8a80fd4ef35277234391a72723da2a8457be881291e_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openshift/ose-support-log-gather-rhel9-operator@sha256%3A89ab8e96ab53d430ce97e8a80fd4ef35277234391a72723da2a8457be881291e?arch=amd64\u0026repository_url=registry.redhat.io/openshift4/ose-support-log-gather-rhel9-operator\u0026tag=1782861312"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift4/pf-status-relay-rhel9@sha256:8521f8e56aed7158d674c968909d34a4b235cc91c5c8ceeb21217ac8e7e167e3_amd64",
"product": {
"name": "registry.redhat.io/openshift4/pf-status-relay-rhel9@sha256:8521f8e56aed7158d674c968909d34a4b235cc91c5c8ceeb21217ac8e7e167e3_amd64",
"product_id": "registry.redhat.io/openshift4/pf-status-relay-rhel9@sha256:8521f8e56aed7158d674c968909d34a4b235cc91c5c8ceeb21217ac8e7e167e3_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openshift/pf-status-relay-rhel9@sha256%3A8521f8e56aed7158d674c968909d34a4b235cc91c5c8ceeb21217ac8e7e167e3?arch=amd64\u0026repository_url=registry.redhat.io/openshift4/pf-status-relay-rhel9\u0026tag=1782860696"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift4/pf-status-relay-rhel9-operator@sha256:c1e5de1e0068aa168df07192576be90eea2df9c5941cde1260c547d088424d2d_amd64",
"product": {
"name": "registry.redhat.io/openshift4/pf-status-relay-rhel9-operator@sha256:c1e5de1e0068aa168df07192576be90eea2df9c5941cde1260c547d088424d2d_amd64",
"product_id": "registry.redhat.io/openshift4/pf-status-relay-rhel9-operator@sha256:c1e5de1e0068aa168df07192576be90eea2df9c5941cde1260c547d088424d2d_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openshift/pf-status-relay-rhel9-operator@sha256%3Ac1e5de1e0068aa168df07192576be90eea2df9c5941cde1260c547d088424d2d?arch=amd64\u0026repository_url=registry.redhat.io/openshift4/pf-status-relay-rhel9-operator\u0026tag=1782861043"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift4/ose-ptp-rhel9-operator@sha256:e8fcd2cf5235561386220e84b11b08cbf447f584746b9f6c0f9c46eff5f29364_amd64",
"product": {
"name": "registry.redhat.io/openshift4/ose-ptp-rhel9-operator@sha256:e8fcd2cf5235561386220e84b11b08cbf447f584746b9f6c0f9c46eff5f29364_amd64",
"product_id": "registry.redhat.io/openshift4/ose-ptp-rhel9-operator@sha256:e8fcd2cf5235561386220e84b11b08cbf447f584746b9f6c0f9c46eff5f29364_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openshift/ose-ptp-rhel9-operator@sha256%3Ae8fcd2cf5235561386220e84b11b08cbf447f584746b9f6c0f9c46eff5f29364?arch=amd64\u0026repository_url=registry.redhat.io/openshift4/ose-ptp-rhel9-operator\u0026tag=1782860249"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift4/ptp-must-gather-rhel9@sha256:2c8b5c11bb25cf78f3d5bc4a6c8ea2952a681c1d6bc622493e0fb8e7cdd8d338_amd64",
"product": {
"name": "registry.redhat.io/openshift4/ptp-must-gather-rhel9@sha256:2c8b5c11bb25cf78f3d5bc4a6c8ea2952a681c1d6bc622493e0fb8e7cdd8d338_amd64",
"product_id": "registry.redhat.io/openshift4/ptp-must-gather-rhel9@sha256:2c8b5c11bb25cf78f3d5bc4a6c8ea2952a681c1d6bc622493e0fb8e7cdd8d338_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openshift/ptp-must-gather-rhel9@sha256%3A2c8b5c11bb25cf78f3d5bc4a6c8ea2952a681c1d6bc622493e0fb8e7cdd8d338?arch=amd64\u0026repository_url=registry.redhat.io/openshift4/ptp-must-gather-rhel9\u0026tag=1782868715"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift4/sriov-cni-rhel9@sha256:cb4c3e8f99e94fe87498dc6a3360d10db9d5735a5d85a10d83a3503861d28c03_amd64",
"product": {
"name": "registry.redhat.io/openshift4/sriov-cni-rhel9@sha256:cb4c3e8f99e94fe87498dc6a3360d10db9d5735a5d85a10d83a3503861d28c03_amd64",
"product_id": "registry.redhat.io/openshift4/sriov-cni-rhel9@sha256:cb4c3e8f99e94fe87498dc6a3360d10db9d5735a5d85a10d83a3503861d28c03_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openshift/sriov-cni-rhel9@sha256%3Acb4c3e8f99e94fe87498dc6a3360d10db9d5735a5d85a10d83a3503861d28c03?arch=amd64\u0026repository_url=registry.redhat.io/openshift4/sriov-cni-rhel9\u0026tag=1782899525"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift4/ose-sriov-dp-admission-controller-rhel9@sha256:f0f69fcd1cf9ce0cabb42d5c7ff39790f786e12a84cedf7596f13358494c90aa_amd64",
"product": {
"name": "registry.redhat.io/openshift4/ose-sriov-dp-admission-controller-rhel9@sha256:f0f69fcd1cf9ce0cabb42d5c7ff39790f786e12a84cedf7596f13358494c90aa_amd64",
"product_id": "registry.redhat.io/openshift4/ose-sriov-dp-admission-controller-rhel9@sha256:f0f69fcd1cf9ce0cabb42d5c7ff39790f786e12a84cedf7596f13358494c90aa_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openshift/ose-sriov-dp-admission-controller-rhel9@sha256%3Af0f69fcd1cf9ce0cabb42d5c7ff39790f786e12a84cedf7596f13358494c90aa?arch=amd64\u0026repository_url=registry.redhat.io/openshift4/ose-sriov-dp-admission-controller-rhel9\u0026tag=1782865092"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift4/ose-sriov-network-config-daemon-rhel9@sha256:cc8d7bbfb8d0afc2e6c225dadf632af79837cb80d23fef983a7c89dc7303aac0_amd64",
"product": {
"name": "registry.redhat.io/openshift4/ose-sriov-network-config-daemon-rhel9@sha256:cc8d7bbfb8d0afc2e6c225dadf632af79837cb80d23fef983a7c89dc7303aac0_amd64",
"product_id": "registry.redhat.io/openshift4/ose-sriov-network-config-daemon-rhel9@sha256:cc8d7bbfb8d0afc2e6c225dadf632af79837cb80d23fef983a7c89dc7303aac0_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openshift/ose-sriov-network-config-daemon-rhel9@sha256%3Acc8d7bbfb8d0afc2e6c225dadf632af79837cb80d23fef983a7c89dc7303aac0?arch=amd64\u0026repository_url=registry.redhat.io/openshift4/ose-sriov-network-config-daemon-rhel9\u0026tag=1782865976"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift4/ose-sriov-network-device-plugin-rhel9@sha256:978ba2e085c4683dc1a0b499043095704957c7b5db5012c59dd7cfc355fed1b0_amd64",
"product": {
"name": "registry.redhat.io/openshift4/ose-sriov-network-device-plugin-rhel9@sha256:978ba2e085c4683dc1a0b499043095704957c7b5db5012c59dd7cfc355fed1b0_amd64",
"product_id": "registry.redhat.io/openshift4/ose-sriov-network-device-plugin-rhel9@sha256:978ba2e085c4683dc1a0b499043095704957c7b5db5012c59dd7cfc355fed1b0_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openshift/ose-sriov-network-device-plugin-rhel9@sha256%3A978ba2e085c4683dc1a0b499043095704957c7b5db5012c59dd7cfc355fed1b0?arch=amd64\u0026repository_url=registry.redhat.io/openshift4/ose-sriov-network-device-plugin-rhel9\u0026tag=1782864415"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift4/ose-sriov-network-rhel9-operator@sha256:744c6db730c13b35c8a7eb1c63c87a6fe01f7b4a6137a4cdf6e318afa560fae2_amd64",
"product": {
"name": "registry.redhat.io/openshift4/ose-sriov-network-rhel9-operator@sha256:744c6db730c13b35c8a7eb1c63c87a6fe01f7b4a6137a4cdf6e318afa560fae2_amd64",
"product_id": "registry.redhat.io/openshift4/ose-sriov-network-rhel9-operator@sha256:744c6db730c13b35c8a7eb1c63c87a6fe01f7b4a6137a4cdf6e318afa560fae2_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openshift/ose-sriov-network-rhel9-operator@sha256%3A744c6db730c13b35c8a7eb1c63c87a6fe01f7b4a6137a4cdf6e318afa560fae2?arch=amd64\u0026repository_url=registry.redhat.io/openshift4/ose-sriov-network-rhel9-operator\u0026tag=1782899535"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift4/ose-sriov-network-webhook-rhel9@sha256:7457d5a64900cb13365c55cba14193dd90eb73c11863bedd96b33e1add5f85f3_amd64",
"product": {
"name": "registry.redhat.io/openshift4/ose-sriov-network-webhook-rhel9@sha256:7457d5a64900cb13365c55cba14193dd90eb73c11863bedd96b33e1add5f85f3_amd64",
"product_id": "registry.redhat.io/openshift4/ose-sriov-network-webhook-rhel9@sha256:7457d5a64900cb13365c55cba14193dd90eb73c11863bedd96b33e1add5f85f3_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openshift/ose-sriov-network-webhook-rhel9@sha256%3A7457d5a64900cb13365c55cba14193dd90eb73c11863bedd96b33e1add5f85f3?arch=amd64\u0026repository_url=registry.redhat.io/openshift4/ose-sriov-network-webhook-rhel9\u0026tag=1782860279"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift4/ose-vertical-pod-autoscaler-rhel9@sha256:561f7a4380dc0189b3b219bf7ab9a5b67d0baadcc05d6b1c0864770c928a43d7_amd64",
"product": {
"name": "registry.redhat.io/openshift4/ose-vertical-pod-autoscaler-rhel9@sha256:561f7a4380dc0189b3b219bf7ab9a5b67d0baadcc05d6b1c0864770c928a43d7_amd64",
"product_id": "registry.redhat.io/openshift4/ose-vertical-pod-autoscaler-rhel9@sha256:561f7a4380dc0189b3b219bf7ab9a5b67d0baadcc05d6b1c0864770c928a43d7_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openshift/ose-vertical-pod-autoscaler-rhel9@sha256%3A561f7a4380dc0189b3b219bf7ab9a5b67d0baadcc05d6b1c0864770c928a43d7?arch=amd64\u0026repository_url=registry.redhat.io/openshift4/ose-vertical-pod-autoscaler-rhel9\u0026tag=1782864761"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift4/ose-vertical-pod-autoscaler-rhel9-operator@sha256:54ffc01a3dd2306f78dfdd6097e5c775b3edac36f443099c730c241a45833638_amd64",
"product": {
"name": "registry.redhat.io/openshift4/ose-vertical-pod-autoscaler-rhel9-operator@sha256:54ffc01a3dd2306f78dfdd6097e5c775b3edac36f443099c730c241a45833638_amd64",
"product_id": "registry.redhat.io/openshift4/ose-vertical-pod-autoscaler-rhel9-operator@sha256:54ffc01a3dd2306f78dfdd6097e5c775b3edac36f443099c730c241a45833638_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openshift/ose-vertical-pod-autoscaler-rhel9-operator@sha256%3A54ffc01a3dd2306f78dfdd6097e5c775b3edac36f443099c730c241a45833638?arch=amd64\u0026repository_url=registry.redhat.io/openshift4/ose-vertical-pod-autoscaler-rhel9-operator\u0026tag=1782860470"
}
}
}
],
"category": "architecture",
"name": "amd64"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/openshift4/ose-cluster-nfd-rhel9-operator@sha256:3691d7ccdba3b713c82729dc32d651a80365d0a4dc9edad6cfe66cc47b7f5199_s390x",
"product": {
"name": "registry.redhat.io/openshift4/ose-cluster-nfd-rhel9-operator@sha256:3691d7ccdba3b713c82729dc32d651a80365d0a4dc9edad6cfe66cc47b7f5199_s390x",
"product_id": "registry.redhat.io/openshift4/ose-cluster-nfd-rhel9-operator@sha256:3691d7ccdba3b713c82729dc32d651a80365d0a4dc9edad6cfe66cc47b7f5199_s390x",
"product_identification_helper": {
"purl": "pkg:oci/openshift/ose-cluster-nfd-rhel9-operator@sha256%3A3691d7ccdba3b713c82729dc32d651a80365d0a4dc9edad6cfe66cc47b7f5199?arch=s390x\u0026repository_url=registry.redhat.io/openshift4/ose-cluster-nfd-rhel9-operator\u0026tag=1782860451"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift4/ose-clusterresourceoverride-rhel9@sha256:0bba654bc6ff6f0b2033fcb690493fc9e7a4d1f85588aab90e54ce5b48dc5567_s390x",
"product": {
"name": "registry.redhat.io/openshift4/ose-clusterresourceoverride-rhel9@sha256:0bba654bc6ff6f0b2033fcb690493fc9e7a4d1f85588aab90e54ce5b48dc5567_s390x",
"product_id": "registry.redhat.io/openshift4/ose-clusterresourceoverride-rhel9@sha256:0bba654bc6ff6f0b2033fcb690493fc9e7a4d1f85588aab90e54ce5b48dc5567_s390x",
"product_identification_helper": {
"purl": "pkg:oci/openshift/ose-clusterresourceoverride-rhel9@sha256%3A0bba654bc6ff6f0b2033fcb690493fc9e7a4d1f85588aab90e54ce5b48dc5567?arch=s390x\u0026repository_url=registry.redhat.io/openshift4/ose-clusterresourceoverride-rhel9\u0026tag=1782860748"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift4/ose-clusterresourceoverride-rhel9-operator@sha256:dc7984ec2dbdd156dc885ff3d04cfb6dbdc167e6902ec3e4df693ffd2a85ac06_s390x",
"product": {
"name": "registry.redhat.io/openshift4/ose-clusterresourceoverride-rhel9-operator@sha256:dc7984ec2dbdd156dc885ff3d04cfb6dbdc167e6902ec3e4df693ffd2a85ac06_s390x",
"product_id": "registry.redhat.io/openshift4/ose-clusterresourceoverride-rhel9-operator@sha256:dc7984ec2dbdd156dc885ff3d04cfb6dbdc167e6902ec3e4df693ffd2a85ac06_s390x",
"product_identification_helper": {
"purl": "pkg:oci/openshift/ose-clusterresourceoverride-rhel9-operator@sha256%3Adc7984ec2dbdd156dc885ff3d04cfb6dbdc167e6902ec3e4df693ffd2a85ac06?arch=s390x\u0026repository_url=registry.redhat.io/openshift4/ose-clusterresourceoverride-rhel9-operator\u0026tag=1782870830"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift4/ose-dpu-cni-rhel9@sha256:57793b7fd69cd2e464ac3546c1a158827a10f4c9556b1696c3aaadecfac7f37f_s390x",
"product": {
"name": "registry.redhat.io/openshift4/ose-dpu-cni-rhel9@sha256:57793b7fd69cd2e464ac3546c1a158827a10f4c9556b1696c3aaadecfac7f37f_s390x",
"product_id": "registry.redhat.io/openshift4/ose-dpu-cni-rhel9@sha256:57793b7fd69cd2e464ac3546c1a158827a10f4c9556b1696c3aaadecfac7f37f_s390x",
"product_identification_helper": {
"purl": "pkg:oci/openshift/ose-dpu-cni-rhel9@sha256%3A57793b7fd69cd2e464ac3546c1a158827a10f4c9556b1696c3aaadecfac7f37f?arch=s390x\u0026repository_url=registry.redhat.io/openshift4/ose-dpu-cni-rhel9\u0026tag=1782865367"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift4/ose-dpu-daemon-rhel9@sha256:6904235bc5934801e8409a5960da09407d820754cbe10edb8cf62ec1484b87b7_s390x",
"product": {
"name": "registry.redhat.io/openshift4/ose-dpu-daemon-rhel9@sha256:6904235bc5934801e8409a5960da09407d820754cbe10edb8cf62ec1484b87b7_s390x",
"product_id": "registry.redhat.io/openshift4/ose-dpu-daemon-rhel9@sha256:6904235bc5934801e8409a5960da09407d820754cbe10edb8cf62ec1484b87b7_s390x",
"product_identification_helper": {
"purl": "pkg:oci/openshift/ose-dpu-daemon-rhel9@sha256%3A6904235bc5934801e8409a5960da09407d820754cbe10edb8cf62ec1484b87b7?arch=s390x\u0026repository_url=registry.redhat.io/openshift4/ose-dpu-daemon-rhel9\u0026tag=1782864733"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift4/ose-sriov-infiniband-cni-rhel9@sha256:c033dce54bea495f2cb2f7b297892a1188cd08abc8e5a717db52fc0c3d9df6c2_s390x",
"product": {
"name": "registry.redhat.io/openshift4/ose-sriov-infiniband-cni-rhel9@sha256:c033dce54bea495f2cb2f7b297892a1188cd08abc8e5a717db52fc0c3d9df6c2_s390x",
"product_id": "registry.redhat.io/openshift4/ose-sriov-infiniband-cni-rhel9@sha256:c033dce54bea495f2cb2f7b297892a1188cd08abc8e5a717db52fc0c3d9df6c2_s390x",
"product_identification_helper": {
"purl": "pkg:oci/openshift/ose-sriov-infiniband-cni-rhel9@sha256%3Ac033dce54bea495f2cb2f7b297892a1188cd08abc8e5a717db52fc0c3d9df6c2?arch=s390x\u0026repository_url=registry.redhat.io/openshift4/ose-sriov-infiniband-cni-rhel9\u0026tag=1782861437"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift4/ingress-node-firewall-rhel9@sha256:b3a2d872463aa43a8c66c754472c84b355930c8618a53d8103627e2985f89efd_s390x",
"product": {
"name": "registry.redhat.io/openshift4/ingress-node-firewall-rhel9@sha256:b3a2d872463aa43a8c66c754472c84b355930c8618a53d8103627e2985f89efd_s390x",
"product_id": "registry.redhat.io/openshift4/ingress-node-firewall-rhel9@sha256:b3a2d872463aa43a8c66c754472c84b355930c8618a53d8103627e2985f89efd_s390x",
"product_identification_helper": {
"purl": "pkg:oci/openshift/ingress-node-firewall-rhel9@sha256%3Ab3a2d872463aa43a8c66c754472c84b355930c8618a53d8103627e2985f89efd?arch=s390x\u0026repository_url=registry.redhat.io/openshift4/ingress-node-firewall-rhel9\u0026tag=1782865693"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift4/ingress-node-firewall-rhel9-operator@sha256:94f69160b0ddda0e840a473c1e5f5fcab47eee8567ee4a927f32930b1a0e5f91_s390x",
"product": {
"name": "registry.redhat.io/openshift4/ingress-node-firewall-rhel9-operator@sha256:94f69160b0ddda0e840a473c1e5f5fcab47eee8567ee4a927f32930b1a0e5f91_s390x",
"product_id": "registry.redhat.io/openshift4/ingress-node-firewall-rhel9-operator@sha256:94f69160b0ddda0e840a473c1e5f5fcab47eee8567ee4a927f32930b1a0e5f91_s390x",
"product_identification_helper": {
"purl": "pkg:oci/openshift/ingress-node-firewall-rhel9-operator@sha256%3A94f69160b0ddda0e840a473c1e5f5fcab47eee8567ee4a927f32930b1a0e5f91?arch=s390x\u0026repository_url=registry.redhat.io/openshift4/ingress-node-firewall-rhel9-operator\u0026tag=1782863031"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift4/ose-local-storage-rhel9-operator@sha256:7217e60230edabbeaaa56cc3aceac15421f359a29c3eecfebbfe1582b270d347_s390x",
"product": {
"name": "registry.redhat.io/openshift4/ose-local-storage-rhel9-operator@sha256:7217e60230edabbeaaa56cc3aceac15421f359a29c3eecfebbfe1582b270d347_s390x",
"product_id": "registry.redhat.io/openshift4/ose-local-storage-rhel9-operator@sha256:7217e60230edabbeaaa56cc3aceac15421f359a29c3eecfebbfe1582b270d347_s390x",
"product_identification_helper": {
"purl": "pkg:oci/openshift/ose-local-storage-rhel9-operator@sha256%3A7217e60230edabbeaaa56cc3aceac15421f359a29c3eecfebbfe1582b270d347?arch=s390x\u0026repository_url=registry.redhat.io/openshift4/ose-local-storage-rhel9-operator\u0026tag=1782899520"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift4/kube-compare-artifacts-rhel9@sha256:ceda974d51671b0a78b17826e208ae8519a6509c79ec84ed2ffcfd2ee45a5382_s390x",
"product": {
"name": "registry.redhat.io/openshift4/kube-compare-artifacts-rhel9@sha256:ceda974d51671b0a78b17826e208ae8519a6509c79ec84ed2ffcfd2ee45a5382_s390x",
"product_id": "registry.redhat.io/openshift4/kube-compare-artifacts-rhel9@sha256:ceda974d51671b0a78b17826e208ae8519a6509c79ec84ed2ffcfd2ee45a5382_s390x",
"product_identification_helper": {
"purl": "pkg:oci/openshift/kube-compare-artifacts-rhel9@sha256%3Aceda974d51671b0a78b17826e208ae8519a6509c79ec84ed2ffcfd2ee45a5382?arch=s390x\u0026repository_url=registry.redhat.io/openshift4/kube-compare-artifacts-rhel9\u0026tag=1782870058"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift4/ose-local-storage-diskmaker-rhel9@sha256:975e56e998c4ea82fedf71d019ed0e577e8a29cfe3c412ceeeb93306bf7bb361_s390x",
"product": {
"name": "registry.redhat.io/openshift4/ose-local-storage-diskmaker-rhel9@sha256:975e56e998c4ea82fedf71d019ed0e577e8a29cfe3c412ceeeb93306bf7bb361_s390x",
"product_id": "registry.redhat.io/openshift4/ose-local-storage-diskmaker-rhel9@sha256:975e56e998c4ea82fedf71d019ed0e577e8a29cfe3c412ceeeb93306bf7bb361_s390x",
"product_identification_helper": {
"purl": "pkg:oci/openshift/ose-local-storage-diskmaker-rhel9@sha256%3A975e56e998c4ea82fedf71d019ed0e577e8a29cfe3c412ceeeb93306bf7bb361?arch=s390x\u0026repository_url=registry.redhat.io/openshift4/ose-local-storage-diskmaker-rhel9\u0026tag=1782860589"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift4/ose-local-storage-mustgather-rhel9@sha256:86afe7a1545222df4bca1c8620e99b63048152f235f5ca9fddd73cc5bad1b9c4_s390x",
"product": {
"name": "registry.redhat.io/openshift4/ose-local-storage-mustgather-rhel9@sha256:86afe7a1545222df4bca1c8620e99b63048152f235f5ca9fddd73cc5bad1b9c4_s390x",
"product_id": "registry.redhat.io/openshift4/ose-local-storage-mustgather-rhel9@sha256:86afe7a1545222df4bca1c8620e99b63048152f235f5ca9fddd73cc5bad1b9c4_s390x",
"product_identification_helper": {
"purl": "pkg:oci/openshift/ose-local-storage-mustgather-rhel9@sha256%3A86afe7a1545222df4bca1c8620e99b63048152f235f5ca9fddd73cc5bad1b9c4?arch=s390x\u0026repository_url=registry.redhat.io/openshift4/ose-local-storage-mustgather-rhel9\u0026tag=1782899473"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift4/nmstate-console-plugin-rhel9@sha256:609cce4a625a7d1c2a83fde70db520fcdc1a4f75b78f96fd42d188f2eb623674_s390x",
"product": {
"name": "registry.redhat.io/openshift4/nmstate-console-plugin-rhel9@sha256:609cce4a625a7d1c2a83fde70db520fcdc1a4f75b78f96fd42d188f2eb623674_s390x",
"product_id": "registry.redhat.io/openshift4/nmstate-console-plugin-rhel9@sha256:609cce4a625a7d1c2a83fde70db520fcdc1a4f75b78f96fd42d188f2eb623674_s390x",
"product_identification_helper": {
"purl": "pkg:oci/openshift/nmstate-console-plugin-rhel9@sha256%3A609cce4a625a7d1c2a83fde70db520fcdc1a4f75b78f96fd42d188f2eb623674?arch=s390x\u0026repository_url=registry.redhat.io/openshift4/nmstate-console-plugin-rhel9\u0026tag=1782914001"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift4/ose-node-feature-discovery-rhel9@sha256:e12011347e72eb4d2e3f03ab0532132c302e2057a0c4dc177e13d82dcd714e67_s390x",
"product": {
"name": "registry.redhat.io/openshift4/ose-node-feature-discovery-rhel9@sha256:e12011347e72eb4d2e3f03ab0532132c302e2057a0c4dc177e13d82dcd714e67_s390x",
"product_id": "registry.redhat.io/openshift4/ose-node-feature-discovery-rhel9@sha256:e12011347e72eb4d2e3f03ab0532132c302e2057a0c4dc177e13d82dcd714e67_s390x",
"product_identification_helper": {
"purl": "pkg:oci/openshift/ose-node-feature-discovery-rhel9@sha256%3Ae12011347e72eb4d2e3f03ab0532132c302e2057a0c4dc177e13d82dcd714e67?arch=s390x\u0026repository_url=registry.redhat.io/openshift4/ose-node-feature-discovery-rhel9\u0026tag=1782865290"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift4/ose-ansible-rhel9-operator@sha256:9a13a11550efc801a742b3c44908941151e051d0d4a81d20d2e8982f79af1559_s390x",
"product": {
"name": "registry.redhat.io/openshift4/ose-ansible-rhel9-operator@sha256:9a13a11550efc801a742b3c44908941151e051d0d4a81d20d2e8982f79af1559_s390x",
"product_id": "registry.redhat.io/openshift4/ose-ansible-rhel9-operator@sha256:9a13a11550efc801a742b3c44908941151e051d0d4a81d20d2e8982f79af1559_s390x",
"product_identification_helper": {
"purl": "pkg:oci/openshift/ose-ansible-rhel9-operator@sha256%3A9a13a11550efc801a742b3c44908941151e051d0d4a81d20d2e8982f79af1559?arch=s390x\u0026repository_url=registry.redhat.io/openshift4/ose-ansible-rhel9-operator\u0026tag=1782913003"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift4/ose-cluster-capacity-rhel9@sha256:2518816e5aa5f22e38bd326f09f33c1a1efdbd310ed1cad1299a621e8054a8d1_s390x",
"product": {
"name": "registry.redhat.io/openshift4/ose-cluster-capacity-rhel9@sha256:2518816e5aa5f22e38bd326f09f33c1a1efdbd310ed1cad1299a621e8054a8d1_s390x",
"product_id": "registry.redhat.io/openshift4/ose-cluster-capacity-rhel9@sha256:2518816e5aa5f22e38bd326f09f33c1a1efdbd310ed1cad1299a621e8054a8d1_s390x",
"product_identification_helper": {
"purl": "pkg:oci/openshift/ose-cluster-capacity-rhel9@sha256%3A2518816e5aa5f22e38bd326f09f33c1a1efdbd310ed1cad1299a621e8054a8d1?arch=s390x\u0026repository_url=registry.redhat.io/openshift4/ose-cluster-capacity-rhel9\u0026tag=1782899556"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift4/ose-helm-rhel9-operator@sha256:029e7d3829e93662046330222540af9d57f99bab9a708fb0262b614ba4ec5894_s390x",
"product": {
"name": "registry.redhat.io/openshift4/ose-helm-rhel9-operator@sha256:029e7d3829e93662046330222540af9d57f99bab9a708fb0262b614ba4ec5894_s390x",
"product_id": "registry.redhat.io/openshift4/ose-helm-rhel9-operator@sha256:029e7d3829e93662046330222540af9d57f99bab9a708fb0262b614ba4ec5894_s390x",
"product_identification_helper": {
"purl": "pkg:oci/openshift/ose-helm-rhel9-operator@sha256%3A029e7d3829e93662046330222540af9d57f99bab9a708fb0262b614ba4ec5894?arch=s390x\u0026repository_url=registry.redhat.io/openshift4/ose-helm-rhel9-operator\u0026tag=1782861356"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift4/ose-kubernetes-nmstate-handler-rhel9@sha256:9a5be2cb99904acae97141af03282627a0de72054396a58500ae26fed5a9ff4e_s390x",
"product": {
"name": "registry.redhat.io/openshift4/ose-kubernetes-nmstate-handler-rhel9@sha256:9a5be2cb99904acae97141af03282627a0de72054396a58500ae26fed5a9ff4e_s390x",
"product_id": "registry.redhat.io/openshift4/ose-kubernetes-nmstate-handler-rhel9@sha256:9a5be2cb99904acae97141af03282627a0de72054396a58500ae26fed5a9ff4e_s390x",
"product_identification_helper": {
"purl": "pkg:oci/openshift/ose-kubernetes-nmstate-handler-rhel9@sha256%3A9a5be2cb99904acae97141af03282627a0de72054396a58500ae26fed5a9ff4e?arch=s390x\u0026repository_url=registry.redhat.io/openshift4/ose-kubernetes-nmstate-handler-rhel9\u0026tag=1782865881"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift4/kubernetes-nmstate-rhel9-operator@sha256:ccbf58a3edb87217efe16de650032ca9bbe162fef07c69468595ec22764c3f04_s390x",
"product": {
"name": "registry.redhat.io/openshift4/kubernetes-nmstate-rhel9-operator@sha256:ccbf58a3edb87217efe16de650032ca9bbe162fef07c69468595ec22764c3f04_s390x",
"product_id": "registry.redhat.io/openshift4/kubernetes-nmstate-rhel9-operator@sha256:ccbf58a3edb87217efe16de650032ca9bbe162fef07c69468595ec22764c3f04_s390x",
"product_identification_helper": {
"purl": "pkg:oci/openshift/kubernetes-nmstate-rhel9-operator@sha256%3Accbf58a3edb87217efe16de650032ca9bbe162fef07c69468595ec22764c3f04?arch=s390x\u0026repository_url=registry.redhat.io/openshift4/kubernetes-nmstate-rhel9-operator\u0026tag=1782912957"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift4/metallb-rhel9@sha256:b3bc0e1b1a9fa18b3d31f38198f70ee60aecaeb83d65b89806eeb69d78be1a2e_s390x",
"product": {
"name": "registry.redhat.io/openshift4/metallb-rhel9@sha256:b3bc0e1b1a9fa18b3d31f38198f70ee60aecaeb83d65b89806eeb69d78be1a2e_s390x",
"product_id": "registry.redhat.io/openshift4/metallb-rhel9@sha256:b3bc0e1b1a9fa18b3d31f38198f70ee60aecaeb83d65b89806eeb69d78be1a2e_s390x",
"product_identification_helper": {
"purl": "pkg:oci/openshift/metallb-rhel9@sha256%3Ab3bc0e1b1a9fa18b3d31f38198f70ee60aecaeb83d65b89806eeb69d78be1a2e?arch=s390x\u0026repository_url=registry.redhat.io/openshift4/metallb-rhel9\u0026tag=1782865760"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift4/metallb-rhel9-operator@sha256:aa51df9e1905c0e44f7f6ecd74d6682362975c59911b9e36e905cb52a64096b9_s390x",
"product": {
"name": "registry.redhat.io/openshift4/metallb-rhel9-operator@sha256:aa51df9e1905c0e44f7f6ecd74d6682362975c59911b9e36e905cb52a64096b9_s390x",
"product_id": "registry.redhat.io/openshift4/metallb-rhel9-operator@sha256:aa51df9e1905c0e44f7f6ecd74d6682362975c59911b9e36e905cb52a64096b9_s390x",
"product_identification_helper": {
"purl": "pkg:oci/openshift/metallb-rhel9-operator@sha256%3Aaa51df9e1905c0e44f7f6ecd74d6682362975c59911b9e36e905cb52a64096b9?arch=s390x\u0026repository_url=registry.redhat.io/openshift4/metallb-rhel9-operator\u0026tag=1782859819"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift4/ose-secrets-store-csi-driver-rhel9@sha256:1c8bcdd2bb475931744eb16af2c176d7412cc1bb877eea7869dd395dec6f39ac_s390x",
"product": {
"name": "registry.redhat.io/openshift4/ose-secrets-store-csi-driver-rhel9@sha256:1c8bcdd2bb475931744eb16af2c176d7412cc1bb877eea7869dd395dec6f39ac_s390x",
"product_id": "registry.redhat.io/openshift4/ose-secrets-store-csi-driver-rhel9@sha256:1c8bcdd2bb475931744eb16af2c176d7412cc1bb877eea7869dd395dec6f39ac_s390x",
"product_identification_helper": {
"purl": "pkg:oci/openshift/ose-secrets-store-csi-driver-rhel9@sha256%3A1c8bcdd2bb475931744eb16af2c176d7412cc1bb877eea7869dd395dec6f39ac?arch=s390x\u0026repository_url=registry.redhat.io/openshift4/ose-secrets-store-csi-driver-rhel9\u0026tag=1782861433"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift4/pf-status-relay-rhel9-operator@sha256:c4ede99f6c9aca2fff295d06dbc9d6f603ab73b323fc0c876ae01a5edf8abc1c_s390x",
"product": {
"name": "registry.redhat.io/openshift4/pf-status-relay-rhel9-operator@sha256:c4ede99f6c9aca2fff295d06dbc9d6f603ab73b323fc0c876ae01a5edf8abc1c_s390x",
"product_id": "registry.redhat.io/openshift4/pf-status-relay-rhel9-operator@sha256:c4ede99f6c9aca2fff295d06dbc9d6f603ab73b323fc0c876ae01a5edf8abc1c_s390x",
"product_identification_helper": {
"purl": "pkg:oci/openshift/pf-status-relay-rhel9-operator@sha256%3Ac4ede99f6c9aca2fff295d06dbc9d6f603ab73b323fc0c876ae01a5edf8abc1c?arch=s390x\u0026repository_url=registry.redhat.io/openshift4/pf-status-relay-rhel9-operator\u0026tag=1782861043"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift4/ose-secrets-store-csi-driver-rhel9-operator@sha256:601ce1c70b7801a8de9e33a4466b299e2f76d544b66860cba94ef0dc69ecf797_s390x",
"product": {
"name": "registry.redhat.io/openshift4/ose-secrets-store-csi-driver-rhel9-operator@sha256:601ce1c70b7801a8de9e33a4466b299e2f76d544b66860cba94ef0dc69ecf797_s390x",
"product_id": "registry.redhat.io/openshift4/ose-secrets-store-csi-driver-rhel9-operator@sha256:601ce1c70b7801a8de9e33a4466b299e2f76d544b66860cba94ef0dc69ecf797_s390x",
"product_identification_helper": {
"purl": "pkg:oci/openshift/ose-secrets-store-csi-driver-rhel9-operator@sha256%3A601ce1c70b7801a8de9e33a4466b299e2f76d544b66860cba94ef0dc69ecf797?arch=s390x\u0026repository_url=registry.redhat.io/openshift4/ose-secrets-store-csi-driver-rhel9-operator\u0026tag=1782868696"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift4/ose-secrets-store-csi-mustgather-rhel9@sha256:53aa411cc0b116c6693b7ffec54c51643921be9999f5d7c786e3d8ab6c14185f_s390x",
"product": {
"name": "registry.redhat.io/openshift4/ose-secrets-store-csi-mustgather-rhel9@sha256:53aa411cc0b116c6693b7ffec54c51643921be9999f5d7c786e3d8ab6c14185f_s390x",
"product_id": "registry.redhat.io/openshift4/ose-secrets-store-csi-mustgather-rhel9@sha256:53aa411cc0b116c6693b7ffec54c51643921be9999f5d7c786e3d8ab6c14185f_s390x",
"product_identification_helper": {
"purl": "pkg:oci/openshift/ose-secrets-store-csi-mustgather-rhel9@sha256%3A53aa411cc0b116c6693b7ffec54c51643921be9999f5d7c786e3d8ab6c14185f?arch=s390x\u0026repository_url=registry.redhat.io/openshift4/ose-secrets-store-csi-mustgather-rhel9\u0026tag=1782870287"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift4/ose-smb-csi-driver-rhel9@sha256:f365a691fd585664a3f41dd12bf459ba37a628c899f32fcf03ce3915caf6946b_s390x",
"product": {
"name": "registry.redhat.io/openshift4/ose-smb-csi-driver-rhel9@sha256:f365a691fd585664a3f41dd12bf459ba37a628c899f32fcf03ce3915caf6946b_s390x",
"product_id": "registry.redhat.io/openshift4/ose-smb-csi-driver-rhel9@sha256:f365a691fd585664a3f41dd12bf459ba37a628c899f32fcf03ce3915caf6946b_s390x",
"product_identification_helper": {
"purl": "pkg:oci/openshift/ose-smb-csi-driver-rhel9@sha256%3Af365a691fd585664a3f41dd12bf459ba37a628c899f32fcf03ce3915caf6946b?arch=s390x\u0026repository_url=registry.redhat.io/openshift4/ose-smb-csi-driver-rhel9\u0026tag=1782863077"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift4/ose-smb-csi-driver-rhel9-operator@sha256:d2b2d32cb77ba179f2af443176194395c23585ee986a79e81ebe85d262783bda_s390x",
"product": {
"name": "registry.redhat.io/openshift4/ose-smb-csi-driver-rhel9-operator@sha256:d2b2d32cb77ba179f2af443176194395c23585ee986a79e81ebe85d262783bda_s390x",
"product_id": "registry.redhat.io/openshift4/ose-smb-csi-driver-rhel9-operator@sha256:d2b2d32cb77ba179f2af443176194395c23585ee986a79e81ebe85d262783bda_s390x",
"product_identification_helper": {
"purl": "pkg:oci/openshift/ose-smb-csi-driver-rhel9-operator@sha256%3Ad2b2d32cb77ba179f2af443176194395c23585ee986a79e81ebe85d262783bda?arch=s390x\u0026repository_url=registry.redhat.io/openshift4/ose-smb-csi-driver-rhel9-operator\u0026tag=1782864535"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift4/ose-sriov-network-metrics-exporter-rhel9@sha256:f426214060d6c4e61984d2b275489a38098fa6c1977c913bfb17757c34d83147_s390x",
"product": {
"name": "registry.redhat.io/openshift4/ose-sriov-network-metrics-exporter-rhel9@sha256:f426214060d6c4e61984d2b275489a38098fa6c1977c913bfb17757c34d83147_s390x",
"product_id": "registry.redhat.io/openshift4/ose-sriov-network-metrics-exporter-rhel9@sha256:f426214060d6c4e61984d2b275489a38098fa6c1977c913bfb17757c34d83147_s390x",
"product_identification_helper": {
"purl": "pkg:oci/openshift/ose-sriov-network-metrics-exporter-rhel9@sha256%3Af426214060d6c4e61984d2b275489a38098fa6c1977c913bfb17757c34d83147?arch=s390x\u0026repository_url=registry.redhat.io/openshift4/ose-sriov-network-metrics-exporter-rhel9\u0026tag=1782860065"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift4/ose-sriov-rdma-cni-rhel9@sha256:07fbfd0334aec167fb06ff4eba3053d9cecc00664b9cfea1d18b4b6bdd0814fa_s390x",
"product": {
"name": "registry.redhat.io/openshift4/ose-sriov-rdma-cni-rhel9@sha256:07fbfd0334aec167fb06ff4eba3053d9cecc00664b9cfea1d18b4b6bdd0814fa_s390x",
"product_id": "registry.redhat.io/openshift4/ose-sriov-rdma-cni-rhel9@sha256:07fbfd0334aec167fb06ff4eba3053d9cecc00664b9cfea1d18b4b6bdd0814fa_s390x",
"product_identification_helper": {
"purl": "pkg:oci/openshift/ose-sriov-rdma-cni-rhel9@sha256%3A07fbfd0334aec167fb06ff4eba3053d9cecc00664b9cfea1d18b4b6bdd0814fa?arch=s390x\u0026repository_url=registry.redhat.io/openshift4/ose-sriov-rdma-cni-rhel9\u0026tag=1782865833"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift4/ose-support-log-gather-rhel9-operator@sha256:e6ee32452c5a790d4704806161a2b63a29aacc165766295f92762bffbd89d6aa_s390x",
"product": {
"name": "registry.redhat.io/openshift4/ose-support-log-gather-rhel9-operator@sha256:e6ee32452c5a790d4704806161a2b63a29aacc165766295f92762bffbd89d6aa_s390x",
"product_id": "registry.redhat.io/openshift4/ose-support-log-gather-rhel9-operator@sha256:e6ee32452c5a790d4704806161a2b63a29aacc165766295f92762bffbd89d6aa_s390x",
"product_identification_helper": {
"purl": "pkg:oci/openshift/ose-support-log-gather-rhel9-operator@sha256%3Ae6ee32452c5a790d4704806161a2b63a29aacc165766295f92762bffbd89d6aa?arch=s390x\u0026repository_url=registry.redhat.io/openshift4/ose-support-log-gather-rhel9-operator\u0026tag=1782861312"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift4/pf-status-relay-rhel9@sha256:e01330406bf0fadd9e81f731ef6514946ffdc7a137726c9ed4d7c1d890d33f46_s390x",
"product": {
"name": "registry.redhat.io/openshift4/pf-status-relay-rhel9@sha256:e01330406bf0fadd9e81f731ef6514946ffdc7a137726c9ed4d7c1d890d33f46_s390x",
"product_id": "registry.redhat.io/openshift4/pf-status-relay-rhel9@sha256:e01330406bf0fadd9e81f731ef6514946ffdc7a137726c9ed4d7c1d890d33f46_s390x",
"product_identification_helper": {
"purl": "pkg:oci/openshift/pf-status-relay-rhel9@sha256%3Ae01330406bf0fadd9e81f731ef6514946ffdc7a137726c9ed4d7c1d890d33f46?arch=s390x\u0026repository_url=registry.redhat.io/openshift4/pf-status-relay-rhel9\u0026tag=1782860696"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift4/sriov-cni-rhel9@sha256:e4aa72ffa1446d67c99550be24dfaaf4d07e70ca86872f9062aa72db8d139a15_s390x",
"product": {
"name": "registry.redhat.io/openshift4/sriov-cni-rhel9@sha256:e4aa72ffa1446d67c99550be24dfaaf4d07e70ca86872f9062aa72db8d139a15_s390x",
"product_id": "registry.redhat.io/openshift4/sriov-cni-rhel9@sha256:e4aa72ffa1446d67c99550be24dfaaf4d07e70ca86872f9062aa72db8d139a15_s390x",
"product_identification_helper": {
"purl": "pkg:oci/openshift/sriov-cni-rhel9@sha256%3Ae4aa72ffa1446d67c99550be24dfaaf4d07e70ca86872f9062aa72db8d139a15?arch=s390x\u0026repository_url=registry.redhat.io/openshift4/sriov-cni-rhel9\u0026tag=1782899525"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift4/ose-sriov-dp-admission-controller-rhel9@sha256:7dfe5b88672cdf77c78c0ffaec725ad2f3e3a5e9bb7b3530a1ed819da338b5a1_s390x",
"product": {
"name": "registry.redhat.io/openshift4/ose-sriov-dp-admission-controller-rhel9@sha256:7dfe5b88672cdf77c78c0ffaec725ad2f3e3a5e9bb7b3530a1ed819da338b5a1_s390x",
"product_id": "registry.redhat.io/openshift4/ose-sriov-dp-admission-controller-rhel9@sha256:7dfe5b88672cdf77c78c0ffaec725ad2f3e3a5e9bb7b3530a1ed819da338b5a1_s390x",
"product_identification_helper": {
"purl": "pkg:oci/openshift/ose-sriov-dp-admission-controller-rhel9@sha256%3A7dfe5b88672cdf77c78c0ffaec725ad2f3e3a5e9bb7b3530a1ed819da338b5a1?arch=s390x\u0026repository_url=registry.redhat.io/openshift4/ose-sriov-dp-admission-controller-rhel9\u0026tag=1782865092"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift4/ose-sriov-network-config-daemon-rhel9@sha256:30dfae75fbdc1f97b9932d88760cce5c2aa1d1bbb61a8a32b3decb66674ca5f6_s390x",
"product": {
"name": "registry.redhat.io/openshift4/ose-sriov-network-config-daemon-rhel9@sha256:30dfae75fbdc1f97b9932d88760cce5c2aa1d1bbb61a8a32b3decb66674ca5f6_s390x",
"product_id": "registry.redhat.io/openshift4/ose-sriov-network-config-daemon-rhel9@sha256:30dfae75fbdc1f97b9932d88760cce5c2aa1d1bbb61a8a32b3decb66674ca5f6_s390x",
"product_identification_helper": {
"purl": "pkg:oci/openshift/ose-sriov-network-config-daemon-rhel9@sha256%3A30dfae75fbdc1f97b9932d88760cce5c2aa1d1bbb61a8a32b3decb66674ca5f6?arch=s390x\u0026repository_url=registry.redhat.io/openshift4/ose-sriov-network-config-daemon-rhel9\u0026tag=1782865976"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift4/ose-sriov-network-device-plugin-rhel9@sha256:8a3ca73990b9c47173dd81929d997d08c219dd7ebca6e2abf8763b9e06b6dcc7_s390x",
"product": {
"name": "registry.redhat.io/openshift4/ose-sriov-network-device-plugin-rhel9@sha256:8a3ca73990b9c47173dd81929d997d08c219dd7ebca6e2abf8763b9e06b6dcc7_s390x",
"product_id": "registry.redhat.io/openshift4/ose-sriov-network-device-plugin-rhel9@sha256:8a3ca73990b9c47173dd81929d997d08c219dd7ebca6e2abf8763b9e06b6dcc7_s390x",
"product_identification_helper": {
"purl": "pkg:oci/openshift/ose-sriov-network-device-plugin-rhel9@sha256%3A8a3ca73990b9c47173dd81929d997d08c219dd7ebca6e2abf8763b9e06b6dcc7?arch=s390x\u0026repository_url=registry.redhat.io/openshift4/ose-sriov-network-device-plugin-rhel9\u0026tag=1782864415"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift4/ose-sriov-network-rhel9-operator@sha256:d2c308d8f6e2174073cf84c0d7baf9b05d78ca8e4e2057009b71758a0771169e_s390x",
"product": {
"name": "registry.redhat.io/openshift4/ose-sriov-network-rhel9-operator@sha256:d2c308d8f6e2174073cf84c0d7baf9b05d78ca8e4e2057009b71758a0771169e_s390x",
"product_id": "registry.redhat.io/openshift4/ose-sriov-network-rhel9-operator@sha256:d2c308d8f6e2174073cf84c0d7baf9b05d78ca8e4e2057009b71758a0771169e_s390x",
"product_identification_helper": {
"purl": "pkg:oci/openshift/ose-sriov-network-rhel9-operator@sha256%3Ad2c308d8f6e2174073cf84c0d7baf9b05d78ca8e4e2057009b71758a0771169e?arch=s390x\u0026repository_url=registry.redhat.io/openshift4/ose-sriov-network-rhel9-operator\u0026tag=1782899535"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift4/ose-sriov-network-webhook-rhel9@sha256:07240bbb9795a5c405940633d3a2f0fb47f5abbf9b0c87361bdf80dde10ab528_s390x",
"product": {
"name": "registry.redhat.io/openshift4/ose-sriov-network-webhook-rhel9@sha256:07240bbb9795a5c405940633d3a2f0fb47f5abbf9b0c87361bdf80dde10ab528_s390x",
"product_id": "registry.redhat.io/openshift4/ose-sriov-network-webhook-rhel9@sha256:07240bbb9795a5c405940633d3a2f0fb47f5abbf9b0c87361bdf80dde10ab528_s390x",
"product_identification_helper": {
"purl": "pkg:oci/openshift/ose-sriov-network-webhook-rhel9@sha256%3A07240bbb9795a5c405940633d3a2f0fb47f5abbf9b0c87361bdf80dde10ab528?arch=s390x\u0026repository_url=registry.redhat.io/openshift4/ose-sriov-network-webhook-rhel9\u0026tag=1782860279"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift4/ose-vertical-pod-autoscaler-rhel9@sha256:715fd2f2e998043648963177764e4dcab56f4c73e10c4c2c293445692d835f25_s390x",
"product": {
"name": "registry.redhat.io/openshift4/ose-vertical-pod-autoscaler-rhel9@sha256:715fd2f2e998043648963177764e4dcab56f4c73e10c4c2c293445692d835f25_s390x",
"product_id": "registry.redhat.io/openshift4/ose-vertical-pod-autoscaler-rhel9@sha256:715fd2f2e998043648963177764e4dcab56f4c73e10c4c2c293445692d835f25_s390x",
"product_identification_helper": {
"purl": "pkg:oci/openshift/ose-vertical-pod-autoscaler-rhel9@sha256%3A715fd2f2e998043648963177764e4dcab56f4c73e10c4c2c293445692d835f25?arch=s390x\u0026repository_url=registry.redhat.io/openshift4/ose-vertical-pod-autoscaler-rhel9\u0026tag=1782864761"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift4/ose-vertical-pod-autoscaler-rhel9-operator@sha256:ecc3b8fa62455706ee62cb0d1c0226d300f5f15304bafe4e518f2d3ffc928bde_s390x",
"product": {
"name": "registry.redhat.io/openshift4/ose-vertical-pod-autoscaler-rhel9-operator@sha256:ecc3b8fa62455706ee62cb0d1c0226d300f5f15304bafe4e518f2d3ffc928bde_s390x",
"product_id": "registry.redhat.io/openshift4/ose-vertical-pod-autoscaler-rhel9-operator@sha256:ecc3b8fa62455706ee62cb0d1c0226d300f5f15304bafe4e518f2d3ffc928bde_s390x",
"product_identification_helper": {
"purl": "pkg:oci/openshift/ose-vertical-pod-autoscaler-rhel9-operator@sha256%3Aecc3b8fa62455706ee62cb0d1c0226d300f5f15304bafe4e518f2d3ffc928bde?arch=s390x\u0026repository_url=registry.redhat.io/openshift4/ose-vertical-pod-autoscaler-rhel9-operator\u0026tag=1782860470"
}
}
}
],
"category": "architecture",
"name": "s390x"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift4/ingress-node-firewall-rhel9-operator@sha256:5155030314f2efb0be5a7fe1f4dbf8edfc41af915f7fac7db10a6adbe4a86ac9_ppc64le as a component of Red Hat OpenShift Container Platform 4.21",
"product_id": "Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ingress-node-firewall-rhel9-operator@sha256:5155030314f2efb0be5a7fe1f4dbf8edfc41af915f7fac7db10a6adbe4a86ac9_ppc64le"
},
"product_reference": "registry.redhat.io/openshift4/ingress-node-firewall-rhel9-operator@sha256:5155030314f2efb0be5a7fe1f4dbf8edfc41af915f7fac7db10a6adbe4a86ac9_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift Container Platform 4.21"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift4/ingress-node-firewall-rhel9-operator@sha256:6f09cbddc2165982085e382db12e5503b16d7a1e79842a19157f4910257f43ef_amd64 as a component of Red Hat OpenShift Container Platform 4.21",
"product_id": "Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ingress-node-firewall-rhel9-operator@sha256:6f09cbddc2165982085e382db12e5503b16d7a1e79842a19157f4910257f43ef_amd64"
},
"product_reference": "registry.redhat.io/openshift4/ingress-node-firewall-rhel9-operator@sha256:6f09cbddc2165982085e382db12e5503b16d7a1e79842a19157f4910257f43ef_amd64",
"relates_to_product_reference": "Red Hat OpenShift Container Platform 4.21"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift4/ingress-node-firewall-rhel9-operator@sha256:94f69160b0ddda0e840a473c1e5f5fcab47eee8567ee4a927f32930b1a0e5f91_s390x as a component of Red Hat OpenShift Container Platform 4.21",
"product_id": "Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ingress-node-firewall-rhel9-operator@sha256:94f69160b0ddda0e840a473c1e5f5fcab47eee8567ee4a927f32930b1a0e5f91_s390x"
},
"product_reference": "registry.redhat.io/openshift4/ingress-node-firewall-rhel9-operator@sha256:94f69160b0ddda0e840a473c1e5f5fcab47eee8567ee4a927f32930b1a0e5f91_s390x",
"relates_to_product_reference": "Red Hat OpenShift Container Platform 4.21"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift4/ingress-node-firewall-rhel9-operator@sha256:a9372f22f3ed5bda5c1d51a7354c6a8b4e0f603367b3c07ec6a0776352a4897f_arm64 as a component of Red Hat OpenShift Container Platform 4.21",
"product_id": "Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ingress-node-firewall-rhel9-operator@sha256:a9372f22f3ed5bda5c1d51a7354c6a8b4e0f603367b3c07ec6a0776352a4897f_arm64"
},
"product_reference": "registry.redhat.io/openshift4/ingress-node-firewall-rhel9-operator@sha256:a9372f22f3ed5bda5c1d51a7354c6a8b4e0f603367b3c07ec6a0776352a4897f_arm64",
"relates_to_product_reference": "Red Hat OpenShift Container Platform 4.21"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift4/ingress-node-firewall-rhel9@sha256:38781886f8849ffc36870f3dc44c06e262b9b0524d15251bcc8e81b314ddf728_amd64 as a component of Red Hat OpenShift Container Platform 4.21",
"product_id": "Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ingress-node-firewall-rhel9@sha256:38781886f8849ffc36870f3dc44c06e262b9b0524d15251bcc8e81b314ddf728_amd64"
},
"product_reference": "registry.redhat.io/openshift4/ingress-node-firewall-rhel9@sha256:38781886f8849ffc36870f3dc44c06e262b9b0524d15251bcc8e81b314ddf728_amd64",
"relates_to_product_reference": "Red Hat OpenShift Container Platform 4.21"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift4/ingress-node-firewall-rhel9@sha256:64c1a57597fd99e5c2cd0f3627043ab939e06a0163a3fc1554bc66f94edfa686_arm64 as a component of Red Hat OpenShift Container Platform 4.21",
"product_id": "Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ingress-node-firewall-rhel9@sha256:64c1a57597fd99e5c2cd0f3627043ab939e06a0163a3fc1554bc66f94edfa686_arm64"
},
"product_reference": "registry.redhat.io/openshift4/ingress-node-firewall-rhel9@sha256:64c1a57597fd99e5c2cd0f3627043ab939e06a0163a3fc1554bc66f94edfa686_arm64",
"relates_to_product_reference": "Red Hat OpenShift Container Platform 4.21"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift4/ingress-node-firewall-rhel9@sha256:b3a2d872463aa43a8c66c754472c84b355930c8618a53d8103627e2985f89efd_s390x as a component of Red Hat OpenShift Container Platform 4.21",
"product_id": "Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ingress-node-firewall-rhel9@sha256:b3a2d872463aa43a8c66c754472c84b355930c8618a53d8103627e2985f89efd_s390x"
},
"product_reference": "registry.redhat.io/openshift4/ingress-node-firewall-rhel9@sha256:b3a2d872463aa43a8c66c754472c84b355930c8618a53d8103627e2985f89efd_s390x",
"relates_to_product_reference": "Red Hat OpenShift Container Platform 4.21"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift4/ingress-node-firewall-rhel9@sha256:f0fbda30bb66a43d1e8127817968af6a407c1e96780ea5e023911496b2bdff32_ppc64le as a component of Red Hat OpenShift Container Platform 4.21",
"product_id": "Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ingress-node-firewall-rhel9@sha256:f0fbda30bb66a43d1e8127817968af6a407c1e96780ea5e023911496b2bdff32_ppc64le"
},
"product_reference": "registry.redhat.io/openshift4/ingress-node-firewall-rhel9@sha256:f0fbda30bb66a43d1e8127817968af6a407c1e96780ea5e023911496b2bdff32_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift Container Platform 4.21"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift4/kube-compare-artifacts-rhel9@sha256:277a845f5ffe398935b4fe5c035dba2a41bc23d1abce44893976487abc91514f_amd64 as a component of Red Hat OpenShift Container Platform 4.21",
"product_id": "Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/kube-compare-artifacts-rhel9@sha256:277a845f5ffe398935b4fe5c035dba2a41bc23d1abce44893976487abc91514f_amd64"
},
"product_reference": "registry.redhat.io/openshift4/kube-compare-artifacts-rhel9@sha256:277a845f5ffe398935b4fe5c035dba2a41bc23d1abce44893976487abc91514f_amd64",
"relates_to_product_reference": "Red Hat OpenShift Container Platform 4.21"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift4/kube-compare-artifacts-rhel9@sha256:392009255b87f893829cba2f90111a2dfb6d70183d1a2e657411ce7aa459934f_ppc64le as a component of Red Hat OpenShift Container Platform 4.21",
"product_id": "Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/kube-compare-artifacts-rhel9@sha256:392009255b87f893829cba2f90111a2dfb6d70183d1a2e657411ce7aa459934f_ppc64le"
},
"product_reference": "registry.redhat.io/openshift4/kube-compare-artifacts-rhel9@sha256:392009255b87f893829cba2f90111a2dfb6d70183d1a2e657411ce7aa459934f_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift Container Platform 4.21"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift4/kube-compare-artifacts-rhel9@sha256:8876c6edf54f10692f7d43d00c4f8ee1d39200db701779c5ec4d6e9e7b0508f6_arm64 as a component of Red Hat OpenShift Container Platform 4.21",
"product_id": "Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/kube-compare-artifacts-rhel9@sha256:8876c6edf54f10692f7d43d00c4f8ee1d39200db701779c5ec4d6e9e7b0508f6_arm64"
},
"product_reference": "registry.redhat.io/openshift4/kube-compare-artifacts-rhel9@sha256:8876c6edf54f10692f7d43d00c4f8ee1d39200db701779c5ec4d6e9e7b0508f6_arm64",
"relates_to_product_reference": "Red Hat OpenShift Container Platform 4.21"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift4/kube-compare-artifacts-rhel9@sha256:ceda974d51671b0a78b17826e208ae8519a6509c79ec84ed2ffcfd2ee45a5382_s390x as a component of Red Hat OpenShift Container Platform 4.21",
"product_id": "Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/kube-compare-artifacts-rhel9@sha256:ceda974d51671b0a78b17826e208ae8519a6509c79ec84ed2ffcfd2ee45a5382_s390x"
},
"product_reference": "registry.redhat.io/openshift4/kube-compare-artifacts-rhel9@sha256:ceda974d51671b0a78b17826e208ae8519a6509c79ec84ed2ffcfd2ee45a5382_s390x",
"relates_to_product_reference": "Red Hat OpenShift Container Platform 4.21"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift4/kubernetes-nmstate-rhel9-operator@sha256:6ab82578e1faf15606648c109580ef1f7cc655a75001b6b1e4bf582815407fc9_amd64 as a component of Red Hat OpenShift Container Platform 4.21",
"product_id": "Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/kubernetes-nmstate-rhel9-operator@sha256:6ab82578e1faf15606648c109580ef1f7cc655a75001b6b1e4bf582815407fc9_amd64"
},
"product_reference": "registry.redhat.io/openshift4/kubernetes-nmstate-rhel9-operator@sha256:6ab82578e1faf15606648c109580ef1f7cc655a75001b6b1e4bf582815407fc9_amd64",
"relates_to_product_reference": "Red Hat OpenShift Container Platform 4.21"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift4/kubernetes-nmstate-rhel9-operator@sha256:9bd366998eabe8f3a505fcf0281a3a875d5168ab58926fa1af47216a6944b377_arm64 as a component of Red Hat OpenShift Container Platform 4.21",
"product_id": "Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/kubernetes-nmstate-rhel9-operator@sha256:9bd366998eabe8f3a505fcf0281a3a875d5168ab58926fa1af47216a6944b377_arm64"
},
"product_reference": "registry.redhat.io/openshift4/kubernetes-nmstate-rhel9-operator@sha256:9bd366998eabe8f3a505fcf0281a3a875d5168ab58926fa1af47216a6944b377_arm64",
"relates_to_product_reference": "Red Hat OpenShift Container Platform 4.21"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift4/kubernetes-nmstate-rhel9-operator@sha256:ccbf58a3edb87217efe16de650032ca9bbe162fef07c69468595ec22764c3f04_s390x as a component of Red Hat OpenShift Container Platform 4.21",
"product_id": "Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/kubernetes-nmstate-rhel9-operator@sha256:ccbf58a3edb87217efe16de650032ca9bbe162fef07c69468595ec22764c3f04_s390x"
},
"product_reference": "registry.redhat.io/openshift4/kubernetes-nmstate-rhel9-operator@sha256:ccbf58a3edb87217efe16de650032ca9bbe162fef07c69468595ec22764c3f04_s390x",
"relates_to_product_reference": "Red Hat OpenShift Container Platform 4.21"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift4/kubernetes-nmstate-rhel9-operator@sha256:ddbaaa6c78e9f98ea9322fc6e9ea271656eebfcc1bdc46ac9bc0a83c9404ab00_ppc64le as a component of Red Hat OpenShift Container Platform 4.21",
"product_id": "Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/kubernetes-nmstate-rhel9-operator@sha256:ddbaaa6c78e9f98ea9322fc6e9ea271656eebfcc1bdc46ac9bc0a83c9404ab00_ppc64le"
},
"product_reference": "registry.redhat.io/openshift4/kubernetes-nmstate-rhel9-operator@sha256:ddbaaa6c78e9f98ea9322fc6e9ea271656eebfcc1bdc46ac9bc0a83c9404ab00_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift Container Platform 4.21"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift4/metallb-rhel9-operator@sha256:36367c6dac166a814a1a76a822c67602a02aa37dee5ae602d60da867488a757e_amd64 as a component of Red Hat OpenShift Container Platform 4.21",
"product_id": "Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/metallb-rhel9-operator@sha256:36367c6dac166a814a1a76a822c67602a02aa37dee5ae602d60da867488a757e_amd64"
},
"product_reference": "registry.redhat.io/openshift4/metallb-rhel9-operator@sha256:36367c6dac166a814a1a76a822c67602a02aa37dee5ae602d60da867488a757e_amd64",
"relates_to_product_reference": "Red Hat OpenShift Container Platform 4.21"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift4/metallb-rhel9-operator@sha256:3e904ee98de7fb1246da992444ee25e4ddd07806f02c2619b65ee75b315e6905_arm64 as a component of Red Hat OpenShift Container Platform 4.21",
"product_id": "Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/metallb-rhel9-operator@sha256:3e904ee98de7fb1246da992444ee25e4ddd07806f02c2619b65ee75b315e6905_arm64"
},
"product_reference": "registry.redhat.io/openshift4/metallb-rhel9-operator@sha256:3e904ee98de7fb1246da992444ee25e4ddd07806f02c2619b65ee75b315e6905_arm64",
"relates_to_product_reference": "Red Hat OpenShift Container Platform 4.21"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift4/metallb-rhel9-operator@sha256:aa51df9e1905c0e44f7f6ecd74d6682362975c59911b9e36e905cb52a64096b9_s390x as a component of Red Hat OpenShift Container Platform 4.21",
"product_id": "Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/metallb-rhel9-operator@sha256:aa51df9e1905c0e44f7f6ecd74d6682362975c59911b9e36e905cb52a64096b9_s390x"
},
"product_reference": "registry.redhat.io/openshift4/metallb-rhel9-operator@sha256:aa51df9e1905c0e44f7f6ecd74d6682362975c59911b9e36e905cb52a64096b9_s390x",
"relates_to_product_reference": "Red Hat OpenShift Container Platform 4.21"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift4/metallb-rhel9-operator@sha256:e9fdcee92e84dad61b213d7a3ffe24318bbbd0b79890c779760761675bf4ce3b_ppc64le as a component of Red Hat OpenShift Container Platform 4.21",
"product_id": "Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/metallb-rhel9-operator@sha256:e9fdcee92e84dad61b213d7a3ffe24318bbbd0b79890c779760761675bf4ce3b_ppc64le"
},
"product_reference": "registry.redhat.io/openshift4/metallb-rhel9-operator@sha256:e9fdcee92e84dad61b213d7a3ffe24318bbbd0b79890c779760761675bf4ce3b_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift Container Platform 4.21"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift4/metallb-rhel9@sha256:13dfba732da2aba14e5527d2008955134978909ed8823641a21ee2e118b33498_amd64 as a component of Red Hat OpenShift Container Platform 4.21",
"product_id": "Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/metallb-rhel9@sha256:13dfba732da2aba14e5527d2008955134978909ed8823641a21ee2e118b33498_amd64"
},
"product_reference": "registry.redhat.io/openshift4/metallb-rhel9@sha256:13dfba732da2aba14e5527d2008955134978909ed8823641a21ee2e118b33498_amd64",
"relates_to_product_reference": "Red Hat OpenShift Container Platform 4.21"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift4/metallb-rhel9@sha256:338e57453aaf7b4a08df12f351894d109de6ea7926b021510197bea87b5c7284_arm64 as a component of Red Hat OpenShift Container Platform 4.21",
"product_id": "Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/metallb-rhel9@sha256:338e57453aaf7b4a08df12f351894d109de6ea7926b021510197bea87b5c7284_arm64"
},
"product_reference": "registry.redhat.io/openshift4/metallb-rhel9@sha256:338e57453aaf7b4a08df12f351894d109de6ea7926b021510197bea87b5c7284_arm64",
"relates_to_product_reference": "Red Hat OpenShift Container Platform 4.21"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift4/metallb-rhel9@sha256:98dcb57b27e6b66e4b4199e33eecfb494218a4e75944eb45e7aad765f27f48bf_ppc64le as a component of Red Hat OpenShift Container Platform 4.21",
"product_id": "Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/metallb-rhel9@sha256:98dcb57b27e6b66e4b4199e33eecfb494218a4e75944eb45e7aad765f27f48bf_ppc64le"
},
"product_reference": "registry.redhat.io/openshift4/metallb-rhel9@sha256:98dcb57b27e6b66e4b4199e33eecfb494218a4e75944eb45e7aad765f27f48bf_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift Container Platform 4.21"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift4/metallb-rhel9@sha256:b3bc0e1b1a9fa18b3d31f38198f70ee60aecaeb83d65b89806eeb69d78be1a2e_s390x as a component of Red Hat OpenShift Container Platform 4.21",
"product_id": "Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/metallb-rhel9@sha256:b3bc0e1b1a9fa18b3d31f38198f70ee60aecaeb83d65b89806eeb69d78be1a2e_s390x"
},
"product_reference": "registry.redhat.io/openshift4/metallb-rhel9@sha256:b3bc0e1b1a9fa18b3d31f38198f70ee60aecaeb83d65b89806eeb69d78be1a2e_s390x",
"relates_to_product_reference": "Red Hat OpenShift Container Platform 4.21"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift4/nmstate-console-plugin-rhel9@sha256:609cce4a625a7d1c2a83fde70db520fcdc1a4f75b78f96fd42d188f2eb623674_s390x as a component of Red Hat OpenShift Container Platform 4.21",
"product_id": "Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/nmstate-console-plugin-rhel9@sha256:609cce4a625a7d1c2a83fde70db520fcdc1a4f75b78f96fd42d188f2eb623674_s390x"
},
"product_reference": "registry.redhat.io/openshift4/nmstate-console-plugin-rhel9@sha256:609cce4a625a7d1c2a83fde70db520fcdc1a4f75b78f96fd42d188f2eb623674_s390x",
"relates_to_product_reference": "Red Hat OpenShift Container Platform 4.21"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift4/nmstate-console-plugin-rhel9@sha256:a06625622d7d52e5c21bec84047a765aeb065309ed9908eb16cf97a25e1017ac_arm64 as a component of Red Hat OpenShift Container Platform 4.21",
"product_id": "Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/nmstate-console-plugin-rhel9@sha256:a06625622d7d52e5c21bec84047a765aeb065309ed9908eb16cf97a25e1017ac_arm64"
},
"product_reference": "registry.redhat.io/openshift4/nmstate-console-plugin-rhel9@sha256:a06625622d7d52e5c21bec84047a765aeb065309ed9908eb16cf97a25e1017ac_arm64",
"relates_to_product_reference": "Red Hat OpenShift Container Platform 4.21"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift4/nmstate-console-plugin-rhel9@sha256:a40c59091b55f2fb79b9f58aa1ebabfa836cee775d20c3c40341811ae060cf37_amd64 as a component of Red Hat OpenShift Container Platform 4.21",
"product_id": "Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/nmstate-console-plugin-rhel9@sha256:a40c59091b55f2fb79b9f58aa1ebabfa836cee775d20c3c40341811ae060cf37_amd64"
},
"product_reference": "registry.redhat.io/openshift4/nmstate-console-plugin-rhel9@sha256:a40c59091b55f2fb79b9f58aa1ebabfa836cee775d20c3c40341811ae060cf37_amd64",
"relates_to_product_reference": "Red Hat OpenShift Container Platform 4.21"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift4/nmstate-console-plugin-rhel9@sha256:d889210346e1615778eb8346811e00b079b573afb24a0078ec77751bfa27db7b_ppc64le as a component of Red Hat OpenShift Container Platform 4.21",
"product_id": "Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/nmstate-console-plugin-rhel9@sha256:d889210346e1615778eb8346811e00b079b573afb24a0078ec77751bfa27db7b_ppc64le"
},
"product_reference": "registry.redhat.io/openshift4/nmstate-console-plugin-rhel9@sha256:d889210346e1615778eb8346811e00b079b573afb24a0078ec77751bfa27db7b_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift Container Platform 4.21"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift4/ose-ansible-rhel9-operator@sha256:9a13a11550efc801a742b3c44908941151e051d0d4a81d20d2e8982f79af1559_s390x as a component of Red Hat OpenShift Container Platform 4.21",
"product_id": "Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-ansible-rhel9-operator@sha256:9a13a11550efc801a742b3c44908941151e051d0d4a81d20d2e8982f79af1559_s390x"
},
"product_reference": "registry.redhat.io/openshift4/ose-ansible-rhel9-operator@sha256:9a13a11550efc801a742b3c44908941151e051d0d4a81d20d2e8982f79af1559_s390x",
"relates_to_product_reference": "Red Hat OpenShift Container Platform 4.21"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift4/ose-ansible-rhel9-operator@sha256:edf0c24be41ee871c33b2bd40040101d03c388966ef56bea6ab5fe3e64159efd_amd64 as a component of Red Hat OpenShift Container Platform 4.21",
"product_id": "Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-ansible-rhel9-operator@sha256:edf0c24be41ee871c33b2bd40040101d03c388966ef56bea6ab5fe3e64159efd_amd64"
},
"product_reference": "registry.redhat.io/openshift4/ose-ansible-rhel9-operator@sha256:edf0c24be41ee871c33b2bd40040101d03c388966ef56bea6ab5fe3e64159efd_amd64",
"relates_to_product_reference": "Red Hat OpenShift Container Platform 4.21"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift4/ose-ansible-rhel9-operator@sha256:fb032926e45ec0ebb0ac6fde368797a7c7cfb17efea94e77049a843780d407eb_arm64 as a component of Red Hat OpenShift Container Platform 4.21",
"product_id": "Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-ansible-rhel9-operator@sha256:fb032926e45ec0ebb0ac6fde368797a7c7cfb17efea94e77049a843780d407eb_arm64"
},
"product_reference": "registry.redhat.io/openshift4/ose-ansible-rhel9-operator@sha256:fb032926e45ec0ebb0ac6fde368797a7c7cfb17efea94e77049a843780d407eb_arm64",
"relates_to_product_reference": "Red Hat OpenShift Container Platform 4.21"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift4/ose-ansible-rhel9-operator@sha256:fc9ac010edc301f955073bbb9912e595ce6fd33a62c4b0c11435b9e91ba7ef54_ppc64le as a component of Red Hat OpenShift Container Platform 4.21",
"product_id": "Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-ansible-rhel9-operator@sha256:fc9ac010edc301f955073bbb9912e595ce6fd33a62c4b0c11435b9e91ba7ef54_ppc64le"
},
"product_reference": "registry.redhat.io/openshift4/ose-ansible-rhel9-operator@sha256:fc9ac010edc301f955073bbb9912e595ce6fd33a62c4b0c11435b9e91ba7ef54_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift Container Platform 4.21"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift4/ose-aws-efs-csi-driver-container-rhel9@sha256:37150c4d95a762ba377b126f961a2adbba6628db5495dc0ea237b02b81aa51aa_amd64 as a component of Red Hat OpenShift Container Platform 4.21",
"product_id": "Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-aws-efs-csi-driver-container-rhel9@sha256:37150c4d95a762ba377b126f961a2adbba6628db5495dc0ea237b02b81aa51aa_amd64"
},
"product_reference": "registry.redhat.io/openshift4/ose-aws-efs-csi-driver-container-rhel9@sha256:37150c4d95a762ba377b126f961a2adbba6628db5495dc0ea237b02b81aa51aa_amd64",
"relates_to_product_reference": "Red Hat OpenShift Container Platform 4.21"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift4/ose-aws-efs-csi-driver-container-rhel9@sha256:6d03c8e522cc099a72cc92a0ecaff93d52eb590529405888f30196b2946d0e18_arm64 as a component of Red Hat OpenShift Container Platform 4.21",
"product_id": "Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-aws-efs-csi-driver-container-rhel9@sha256:6d03c8e522cc099a72cc92a0ecaff93d52eb590529405888f30196b2946d0e18_arm64"
},
"product_reference": "registry.redhat.io/openshift4/ose-aws-efs-csi-driver-container-rhel9@sha256:6d03c8e522cc099a72cc92a0ecaff93d52eb590529405888f30196b2946d0e18_arm64",
"relates_to_product_reference": "Red Hat OpenShift Container Platform 4.21"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift4/ose-aws-efs-csi-driver-rhel9-operator@sha256:5ab5208bf09cfcadd7f3ecc0dc3dd23656630ff7a1a6eab90de3529db17f3c24_arm64 as a component of Red Hat OpenShift Container Platform 4.21",
"product_id": "Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-aws-efs-csi-driver-rhel9-operator@sha256:5ab5208bf09cfcadd7f3ecc0dc3dd23656630ff7a1a6eab90de3529db17f3c24_arm64"
},
"product_reference": "registry.redhat.io/openshift4/ose-aws-efs-csi-driver-rhel9-operator@sha256:5ab5208bf09cfcadd7f3ecc0dc3dd23656630ff7a1a6eab90de3529db17f3c24_arm64",
"relates_to_product_reference": "Red Hat OpenShift Container Platform 4.21"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift4/ose-aws-efs-csi-driver-rhel9-operator@sha256:5d3d03e26113cf4740d2947d9e23c1007615506206c2399644a81e8f343cbaaf_amd64 as a component of Red Hat OpenShift Container Platform 4.21",
"product_id": "Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-aws-efs-csi-driver-rhel9-operator@sha256:5d3d03e26113cf4740d2947d9e23c1007615506206c2399644a81e8f343cbaaf_amd64"
},
"product_reference": "registry.redhat.io/openshift4/ose-aws-efs-csi-driver-rhel9-operator@sha256:5d3d03e26113cf4740d2947d9e23c1007615506206c2399644a81e8f343cbaaf_amd64",
"relates_to_product_reference": "Red Hat OpenShift Container Platform 4.21"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift4/ose-cloud-event-proxy-rhel9@sha256:382657d2e3f4ee1d32849b509812c51004c015343a1d4ec0106d70b527f5ee12_amd64 as a component of Red Hat OpenShift Container Platform 4.21",
"product_id": "Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-cloud-event-proxy-rhel9@sha256:382657d2e3f4ee1d32849b509812c51004c015343a1d4ec0106d70b527f5ee12_amd64"
},
"product_reference": "registry.redhat.io/openshift4/ose-cloud-event-proxy-rhel9@sha256:382657d2e3f4ee1d32849b509812c51004c015343a1d4ec0106d70b527f5ee12_amd64",
"relates_to_product_reference": "Red Hat OpenShift Container Platform 4.21"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift4/ose-cloud-event-proxy-rhel9@sha256:8767026aa89aaa77b06c0b1387bbe677817ff7fb1e965d025e91399dd885959b_arm64 as a component of Red Hat OpenShift Container Platform 4.21",
"product_id": "Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-cloud-event-proxy-rhel9@sha256:8767026aa89aaa77b06c0b1387bbe677817ff7fb1e965d025e91399dd885959b_arm64"
},
"product_reference": "registry.redhat.io/openshift4/ose-cloud-event-proxy-rhel9@sha256:8767026aa89aaa77b06c0b1387bbe677817ff7fb1e965d025e91399dd885959b_arm64",
"relates_to_product_reference": "Red Hat OpenShift Container Platform 4.21"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift4/ose-cloud-event-proxy-rhel9@sha256:dc92042cb3802b221e594da9636d090ad795853d161c6d2152ddef7d152d6da8_ppc64le as a component of Red Hat OpenShift Container Platform 4.21",
"product_id": "Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-cloud-event-proxy-rhel9@sha256:dc92042cb3802b221e594da9636d090ad795853d161c6d2152ddef7d152d6da8_ppc64le"
},
"product_reference": "registry.redhat.io/openshift4/ose-cloud-event-proxy-rhel9@sha256:dc92042cb3802b221e594da9636d090ad795853d161c6d2152ddef7d152d6da8_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift Container Platform 4.21"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift4/ose-cluster-capacity-rhel9@sha256:2518816e5aa5f22e38bd326f09f33c1a1efdbd310ed1cad1299a621e8054a8d1_s390x as a component of Red Hat OpenShift Container Platform 4.21",
"product_id": "Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-cluster-capacity-rhel9@sha256:2518816e5aa5f22e38bd326f09f33c1a1efdbd310ed1cad1299a621e8054a8d1_s390x"
},
"product_reference": "registry.redhat.io/openshift4/ose-cluster-capacity-rhel9@sha256:2518816e5aa5f22e38bd326f09f33c1a1efdbd310ed1cad1299a621e8054a8d1_s390x",
"relates_to_product_reference": "Red Hat OpenShift Container Platform 4.21"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift4/ose-cluster-capacity-rhel9@sha256:34d1067f6c432ef0cb087a154e7da91666102b892c30f0fc841f9722a7a8c6f2_ppc64le as a component of Red Hat OpenShift Container Platform 4.21",
"product_id": "Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-cluster-capacity-rhel9@sha256:34d1067f6c432ef0cb087a154e7da91666102b892c30f0fc841f9722a7a8c6f2_ppc64le"
},
"product_reference": "registry.redhat.io/openshift4/ose-cluster-capacity-rhel9@sha256:34d1067f6c432ef0cb087a154e7da91666102b892c30f0fc841f9722a7a8c6f2_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift Container Platform 4.21"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift4/ose-cluster-capacity-rhel9@sha256:543790697a3c850a48d32e860bb4c9c0d6d5ac937b6b5c3b8954c6f4f3cb39ba_arm64 as a component of Red Hat OpenShift Container Platform 4.21",
"product_id": "Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-cluster-capacity-rhel9@sha256:543790697a3c850a48d32e860bb4c9c0d6d5ac937b6b5c3b8954c6f4f3cb39ba_arm64"
},
"product_reference": "registry.redhat.io/openshift4/ose-cluster-capacity-rhel9@sha256:543790697a3c850a48d32e860bb4c9c0d6d5ac937b6b5c3b8954c6f4f3cb39ba_arm64",
"relates_to_product_reference": "Red Hat OpenShift Container Platform 4.21"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift4/ose-cluster-capacity-rhel9@sha256:95c176b32fb102f563e6600226582b9c99d39b0431f82bdb433cb9c21b40add6_amd64 as a component of Red Hat OpenShift Container Platform 4.21",
"product_id": "Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-cluster-capacity-rhel9@sha256:95c176b32fb102f563e6600226582b9c99d39b0431f82bdb433cb9c21b40add6_amd64"
},
"product_reference": "registry.redhat.io/openshift4/ose-cluster-capacity-rhel9@sha256:95c176b32fb102f563e6600226582b9c99d39b0431f82bdb433cb9c21b40add6_amd64",
"relates_to_product_reference": "Red Hat OpenShift Container Platform 4.21"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift4/ose-cluster-nfd-rhel9-operator@sha256:3691d7ccdba3b713c82729dc32d651a80365d0a4dc9edad6cfe66cc47b7f5199_s390x as a component of Red Hat OpenShift Container Platform 4.21",
"product_id": "Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-cluster-nfd-rhel9-operator@sha256:3691d7ccdba3b713c82729dc32d651a80365d0a4dc9edad6cfe66cc47b7f5199_s390x"
},
"product_reference": "registry.redhat.io/openshift4/ose-cluster-nfd-rhel9-operator@sha256:3691d7ccdba3b713c82729dc32d651a80365d0a4dc9edad6cfe66cc47b7f5199_s390x",
"relates_to_product_reference": "Red Hat OpenShift Container Platform 4.21"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift4/ose-cluster-nfd-rhel9-operator@sha256:73003ac3bc1c768dfafe6714fd7323c8c941a818cea9e3ef88a2fa7494283a08_amd64 as a component of Red Hat OpenShift Container Platform 4.21",
"product_id": "Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-cluster-nfd-rhel9-operator@sha256:73003ac3bc1c768dfafe6714fd7323c8c941a818cea9e3ef88a2fa7494283a08_amd64"
},
"product_reference": "registry.redhat.io/openshift4/ose-cluster-nfd-rhel9-operator@sha256:73003ac3bc1c768dfafe6714fd7323c8c941a818cea9e3ef88a2fa7494283a08_amd64",
"relates_to_product_reference": "Red Hat OpenShift Container Platform 4.21"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift4/ose-cluster-nfd-rhel9-operator@sha256:abb1a3a0207fc34c9f6c37dd191567c80ea70d577b8fd94943fcebaca535147e_arm64 as a component of Red Hat OpenShift Container Platform 4.21",
"product_id": "Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-cluster-nfd-rhel9-operator@sha256:abb1a3a0207fc34c9f6c37dd191567c80ea70d577b8fd94943fcebaca535147e_arm64"
},
"product_reference": "registry.redhat.io/openshift4/ose-cluster-nfd-rhel9-operator@sha256:abb1a3a0207fc34c9f6c37dd191567c80ea70d577b8fd94943fcebaca535147e_arm64",
"relates_to_product_reference": "Red Hat OpenShift Container Platform 4.21"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift4/ose-cluster-nfd-rhel9-operator@sha256:c2b036ed84793e8357e3f46667736e4366d93beb64a22aaf428fdb9e2c9d40c7_ppc64le as a component of Red Hat OpenShift Container Platform 4.21",
"product_id": "Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-cluster-nfd-rhel9-operator@sha256:c2b036ed84793e8357e3f46667736e4366d93beb64a22aaf428fdb9e2c9d40c7_ppc64le"
},
"product_reference": "registry.redhat.io/openshift4/ose-cluster-nfd-rhel9-operator@sha256:c2b036ed84793e8357e3f46667736e4366d93beb64a22aaf428fdb9e2c9d40c7_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift Container Platform 4.21"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift4/ose-clusterresourceoverride-rhel9-operator@sha256:1d1dcf4357867bafe3b4a3576ece0b93f0430d659ed65b1abc0744d7a24745b5_ppc64le as a component of Red Hat OpenShift Container Platform 4.21",
"product_id": "Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-clusterresourceoverride-rhel9-operator@sha256:1d1dcf4357867bafe3b4a3576ece0b93f0430d659ed65b1abc0744d7a24745b5_ppc64le"
},
"product_reference": "registry.redhat.io/openshift4/ose-clusterresourceoverride-rhel9-operator@sha256:1d1dcf4357867bafe3b4a3576ece0b93f0430d659ed65b1abc0744d7a24745b5_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift Container Platform 4.21"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift4/ose-clusterresourceoverride-rhel9-operator@sha256:71f51894c78898a751821178ffb46f313b83c7de10f0fa036ed9b285d527fc32_arm64 as a component of Red Hat OpenShift Container Platform 4.21",
"product_id": "Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-clusterresourceoverride-rhel9-operator@sha256:71f51894c78898a751821178ffb46f313b83c7de10f0fa036ed9b285d527fc32_arm64"
},
"product_reference": "registry.redhat.io/openshift4/ose-clusterresourceoverride-rhel9-operator@sha256:71f51894c78898a751821178ffb46f313b83c7de10f0fa036ed9b285d527fc32_arm64",
"relates_to_product_reference": "Red Hat OpenShift Container Platform 4.21"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift4/ose-clusterresourceoverride-rhel9-operator@sha256:d21eade3a6125db8cc43e6424ad74230214cc4a46abeb59ba1b2a3c101ac6283_amd64 as a component of Red Hat OpenShift Container Platform 4.21",
"product_id": "Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-clusterresourceoverride-rhel9-operator@sha256:d21eade3a6125db8cc43e6424ad74230214cc4a46abeb59ba1b2a3c101ac6283_amd64"
},
"product_reference": "registry.redhat.io/openshift4/ose-clusterresourceoverride-rhel9-operator@sha256:d21eade3a6125db8cc43e6424ad74230214cc4a46abeb59ba1b2a3c101ac6283_amd64",
"relates_to_product_reference": "Red Hat OpenShift Container Platform 4.21"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift4/ose-clusterresourceoverride-rhel9-operator@sha256:dc7984ec2dbdd156dc885ff3d04cfb6dbdc167e6902ec3e4df693ffd2a85ac06_s390x as a component of Red Hat OpenShift Container Platform 4.21",
"product_id": "Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-clusterresourceoverride-rhel9-operator@sha256:dc7984ec2dbdd156dc885ff3d04cfb6dbdc167e6902ec3e4df693ffd2a85ac06_s390x"
},
"product_reference": "registry.redhat.io/openshift4/ose-clusterresourceoverride-rhel9-operator@sha256:dc7984ec2dbdd156dc885ff3d04cfb6dbdc167e6902ec3e4df693ffd2a85ac06_s390x",
"relates_to_product_reference": "Red Hat OpenShift Container Platform 4.21"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift4/ose-clusterresourceoverride-rhel9@sha256:0bba654bc6ff6f0b2033fcb690493fc9e7a4d1f85588aab90e54ce5b48dc5567_s390x as a component of Red Hat OpenShift Container Platform 4.21",
"product_id": "Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-clusterresourceoverride-rhel9@sha256:0bba654bc6ff6f0b2033fcb690493fc9e7a4d1f85588aab90e54ce5b48dc5567_s390x"
},
"product_reference": "registry.redhat.io/openshift4/ose-clusterresourceoverride-rhel9@sha256:0bba654bc6ff6f0b2033fcb690493fc9e7a4d1f85588aab90e54ce5b48dc5567_s390x",
"relates_to_product_reference": "Red Hat OpenShift Container Platform 4.21"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift4/ose-clusterresourceoverride-rhel9@sha256:0c91eec9681f4e16be81eaa6e24d934e87d297da27962b28698727018ea4b2fe_ppc64le as a component of Red Hat OpenShift Container Platform 4.21",
"product_id": "Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-clusterresourceoverride-rhel9@sha256:0c91eec9681f4e16be81eaa6e24d934e87d297da27962b28698727018ea4b2fe_ppc64le"
},
"product_reference": "registry.redhat.io/openshift4/ose-clusterresourceoverride-rhel9@sha256:0c91eec9681f4e16be81eaa6e24d934e87d297da27962b28698727018ea4b2fe_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift Container Platform 4.21"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift4/ose-clusterresourceoverride-rhel9@sha256:36f60e44d8be2d1d0e8d2c448cea63bdeb39f5c2ac1c1c35151d044dc0b0ee26_amd64 as a component of Red Hat OpenShift Container Platform 4.21",
"product_id": "Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-clusterresourceoverride-rhel9@sha256:36f60e44d8be2d1d0e8d2c448cea63bdeb39f5c2ac1c1c35151d044dc0b0ee26_amd64"
},
"product_reference": "registry.redhat.io/openshift4/ose-clusterresourceoverride-rhel9@sha256:36f60e44d8be2d1d0e8d2c448cea63bdeb39f5c2ac1c1c35151d044dc0b0ee26_amd64",
"relates_to_product_reference": "Red Hat OpenShift Container Platform 4.21"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift4/ose-clusterresourceoverride-rhel9@sha256:afdcc56fd0a1fedd3fcd8c9eac4f7e518b0aa54886bbc08b7d8814faaf0e1e36_arm64 as a component of Red Hat OpenShift Container Platform 4.21",
"product_id": "Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-clusterresourceoverride-rhel9@sha256:afdcc56fd0a1fedd3fcd8c9eac4f7e518b0aa54886bbc08b7d8814faaf0e1e36_arm64"
},
"product_reference": "registry.redhat.io/openshift4/ose-clusterresourceoverride-rhel9@sha256:afdcc56fd0a1fedd3fcd8c9eac4f7e518b0aa54886bbc08b7d8814faaf0e1e36_arm64",
"relates_to_product_reference": "Red Hat OpenShift Container Platform 4.21"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift4/ose-dpu-cni-rhel9@sha256:5276191889ae349eaf5a1b1d65f21b429cfc52718600201307151f3556b4b98b_ppc64le as a component of Red Hat OpenShift Container Platform 4.21",
"product_id": "Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-dpu-cni-rhel9@sha256:5276191889ae349eaf5a1b1d65f21b429cfc52718600201307151f3556b4b98b_ppc64le"
},
"product_reference": "registry.redhat.io/openshift4/ose-dpu-cni-rhel9@sha256:5276191889ae349eaf5a1b1d65f21b429cfc52718600201307151f3556b4b98b_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift Container Platform 4.21"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift4/ose-dpu-cni-rhel9@sha256:57793b7fd69cd2e464ac3546c1a158827a10f4c9556b1696c3aaadecfac7f37f_s390x as a component of Red Hat OpenShift Container Platform 4.21",
"product_id": "Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-dpu-cni-rhel9@sha256:57793b7fd69cd2e464ac3546c1a158827a10f4c9556b1696c3aaadecfac7f37f_s390x"
},
"product_reference": "registry.redhat.io/openshift4/ose-dpu-cni-rhel9@sha256:57793b7fd69cd2e464ac3546c1a158827a10f4c9556b1696c3aaadecfac7f37f_s390x",
"relates_to_product_reference": "Red Hat OpenShift Container Platform 4.21"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift4/ose-dpu-cni-rhel9@sha256:7e45522e22c496fb7cb9a530e169c73c43ca9fde61539abbee4be7f651b98cda_amd64 as a component of Red Hat OpenShift Container Platform 4.21",
"product_id": "Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-dpu-cni-rhel9@sha256:7e45522e22c496fb7cb9a530e169c73c43ca9fde61539abbee4be7f651b98cda_amd64"
},
"product_reference": "registry.redhat.io/openshift4/ose-dpu-cni-rhel9@sha256:7e45522e22c496fb7cb9a530e169c73c43ca9fde61539abbee4be7f651b98cda_amd64",
"relates_to_product_reference": "Red Hat OpenShift Container Platform 4.21"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift4/ose-dpu-cni-rhel9@sha256:8bd989e5443259a6deffb51e7d180c1a221e20bc1f9b2a5f1ff70096b9c9c4f4_arm64 as a component of Red Hat OpenShift Container Platform 4.21",
"product_id": "Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-dpu-cni-rhel9@sha256:8bd989e5443259a6deffb51e7d180c1a221e20bc1f9b2a5f1ff70096b9c9c4f4_arm64"
},
"product_reference": "registry.redhat.io/openshift4/ose-dpu-cni-rhel9@sha256:8bd989e5443259a6deffb51e7d180c1a221e20bc1f9b2a5f1ff70096b9c9c4f4_arm64",
"relates_to_product_reference": "Red Hat OpenShift Container Platform 4.21"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift4/ose-dpu-daemon-rhel9@sha256:6904235bc5934801e8409a5960da09407d820754cbe10edb8cf62ec1484b87b7_s390x as a component of Red Hat OpenShift Container Platform 4.21",
"product_id": "Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-dpu-daemon-rhel9@sha256:6904235bc5934801e8409a5960da09407d820754cbe10edb8cf62ec1484b87b7_s390x"
},
"product_reference": "registry.redhat.io/openshift4/ose-dpu-daemon-rhel9@sha256:6904235bc5934801e8409a5960da09407d820754cbe10edb8cf62ec1484b87b7_s390x",
"relates_to_product_reference": "Red Hat OpenShift Container Platform 4.21"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift4/ose-dpu-daemon-rhel9@sha256:9440d51ed354698f93e91c380a65daa0e165a13d3cac2818e2533c5f7ef60fa6_amd64 as a component of Red Hat OpenShift Container Platform 4.21",
"product_id": "Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-dpu-daemon-rhel9@sha256:9440d51ed354698f93e91c380a65daa0e165a13d3cac2818e2533c5f7ef60fa6_amd64"
},
"product_reference": "registry.redhat.io/openshift4/ose-dpu-daemon-rhel9@sha256:9440d51ed354698f93e91c380a65daa0e165a13d3cac2818e2533c5f7ef60fa6_amd64",
"relates_to_product_reference": "Red Hat OpenShift Container Platform 4.21"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift4/ose-dpu-daemon-rhel9@sha256:a3432a6fe6e2853c8f88968f3ded5adc0dd3efb14f48a34e52b4b18b1aa037ea_ppc64le as a component of Red Hat OpenShift Container Platform 4.21",
"product_id": "Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-dpu-daemon-rhel9@sha256:a3432a6fe6e2853c8f88968f3ded5adc0dd3efb14f48a34e52b4b18b1aa037ea_ppc64le"
},
"product_reference": "registry.redhat.io/openshift4/ose-dpu-daemon-rhel9@sha256:a3432a6fe6e2853c8f88968f3ded5adc0dd3efb14f48a34e52b4b18b1aa037ea_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift Container Platform 4.21"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift4/ose-dpu-daemon-rhel9@sha256:b0d0462ba40d99af32b252319cc05864c45f0758fd1b38581b2690c4940a2c20_arm64 as a component of Red Hat OpenShift Container Platform 4.21",
"product_id": "Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-dpu-daemon-rhel9@sha256:b0d0462ba40d99af32b252319cc05864c45f0758fd1b38581b2690c4940a2c20_arm64"
},
"product_reference": "registry.redhat.io/openshift4/ose-dpu-daemon-rhel9@sha256:b0d0462ba40d99af32b252319cc05864c45f0758fd1b38581b2690c4940a2c20_arm64",
"relates_to_product_reference": "Red Hat OpenShift Container Platform 4.21"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift4/ose-dpu-intel-ipu-p4sdk-rhel9@sha256:9017e22f5fd9703d326059df6cb0c61cfde6840e6f454fcc49c92908236e899e_amd64 as a component of Red Hat OpenShift Container Platform 4.21",
"product_id": "Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-dpu-intel-ipu-p4sdk-rhel9@sha256:9017e22f5fd9703d326059df6cb0c61cfde6840e6f454fcc49c92908236e899e_amd64"
},
"product_reference": "registry.redhat.io/openshift4/ose-dpu-intel-ipu-p4sdk-rhel9@sha256:9017e22f5fd9703d326059df6cb0c61cfde6840e6f454fcc49c92908236e899e_amd64",
"relates_to_product_reference": "Red Hat OpenShift Container Platform 4.21"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift4/ose-dpu-intel-ipu-p4sdk-rhel9@sha256:d48880afd49e5fa069b2be1a9f1ef6786a4d45d63c175fab372d844a64af2821_arm64 as a component of Red Hat OpenShift Container Platform 4.21",
"product_id": "Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-dpu-intel-ipu-p4sdk-rhel9@sha256:d48880afd49e5fa069b2be1a9f1ef6786a4d45d63c175fab372d844a64af2821_arm64"
},
"product_reference": "registry.redhat.io/openshift4/ose-dpu-intel-ipu-p4sdk-rhel9@sha256:d48880afd49e5fa069b2be1a9f1ef6786a4d45d63c175fab372d844a64af2821_arm64",
"relates_to_product_reference": "Red Hat OpenShift Container Platform 4.21"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift4/ose-dpu-intel-ipu-vsp-rhel9@sha256:1e42bc22e95bfac89c04d820fbc75965965b86fa64ec3b10c2ce49f0d076a118_amd64 as a component of Red Hat OpenShift Container Platform 4.21",
"product_id": "Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-dpu-intel-ipu-vsp-rhel9@sha256:1e42bc22e95bfac89c04d820fbc75965965b86fa64ec3b10c2ce49f0d076a118_amd64"
},
"product_reference": "registry.redhat.io/openshift4/ose-dpu-intel-ipu-vsp-rhel9@sha256:1e42bc22e95bfac89c04d820fbc75965965b86fa64ec3b10c2ce49f0d076a118_amd64",
"relates_to_product_reference": "Red Hat OpenShift Container Platform 4.21"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift4/ose-dpu-intel-ipu-vsp-rhel9@sha256:a89114e65548d7927d0a8f2db84ad68151f026c092f861bdea1498db84a3da32_arm64 as a component of Red Hat OpenShift Container Platform 4.21",
"product_id": "Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-dpu-intel-ipu-vsp-rhel9@sha256:a89114e65548d7927d0a8f2db84ad68151f026c092f861bdea1498db84a3da32_arm64"
},
"product_reference": "registry.redhat.io/openshift4/ose-dpu-intel-ipu-vsp-rhel9@sha256:a89114e65548d7927d0a8f2db84ad68151f026c092f861bdea1498db84a3da32_arm64",
"relates_to_product_reference": "Red Hat OpenShift Container Platform 4.21"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift4/ose-dpu-intel-netsec-vsp-rhel9@sha256:ab420e77f917866e3237122a47a6a6b98805dba9d944aef4f730c8a1d20a0560_arm64 as a component of Red Hat OpenShift Container Platform 4.21",
"product_id": "Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-dpu-intel-netsec-vsp-rhel9@sha256:ab420e77f917866e3237122a47a6a6b98805dba9d944aef4f730c8a1d20a0560_arm64"
},
"product_reference": "registry.redhat.io/openshift4/ose-dpu-intel-netsec-vsp-rhel9@sha256:ab420e77f917866e3237122a47a6a6b98805dba9d944aef4f730c8a1d20a0560_arm64",
"relates_to_product_reference": "Red Hat OpenShift Container Platform 4.21"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift4/ose-dpu-intel-netsec-vsp-rhel9@sha256:b9080c881c0151460a1286493640e0d1e0c018a81340466ab1c13203310219e6_amd64 as a component of Red Hat OpenShift Container Platform 4.21",
"product_id": "Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-dpu-intel-netsec-vsp-rhel9@sha256:b9080c881c0151460a1286493640e0d1e0c018a81340466ab1c13203310219e6_amd64"
},
"product_reference": "registry.redhat.io/openshift4/ose-dpu-intel-netsec-vsp-rhel9@sha256:b9080c881c0151460a1286493640e0d1e0c018a81340466ab1c13203310219e6_amd64",
"relates_to_product_reference": "Red Hat OpenShift Container Platform 4.21"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift4/ose-dpu-marvell-cp-agent-rhel9@sha256:5d70111632bb020cce18b16a88ee172ed293ea6b0cd0521ee44b619b474b8762_amd64 as a component of Red Hat OpenShift Container Platform 4.21",
"product_id": "Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-dpu-marvell-cp-agent-rhel9@sha256:5d70111632bb020cce18b16a88ee172ed293ea6b0cd0521ee44b619b474b8762_amd64"
},
"product_reference": "registry.redhat.io/openshift4/ose-dpu-marvell-cp-agent-rhel9@sha256:5d70111632bb020cce18b16a88ee172ed293ea6b0cd0521ee44b619b474b8762_amd64",
"relates_to_product_reference": "Red Hat OpenShift Container Platform 4.21"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift4/ose-dpu-marvell-cp-agent-rhel9@sha256:6e51660e597421b36ea9d960a054577d11c66511e4707128fab9e60d4580bdf9_arm64 as a component of Red Hat OpenShift Container Platform 4.21",
"product_id": "Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-dpu-marvell-cp-agent-rhel9@sha256:6e51660e597421b36ea9d960a054577d11c66511e4707128fab9e60d4580bdf9_arm64"
},
"product_reference": "registry.redhat.io/openshift4/ose-dpu-marvell-cp-agent-rhel9@sha256:6e51660e597421b36ea9d960a054577d11c66511e4707128fab9e60d4580bdf9_arm64",
"relates_to_product_reference": "Red Hat OpenShift Container Platform 4.21"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift4/ose-dpu-marvell-vsp-rhel9@sha256:77c16c7c6cf3e7ed299585a733b04718083579fab41bc7488314b428c416390e_amd64 as a component of Red Hat OpenShift Container Platform 4.21",
"product_id": "Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-dpu-marvell-vsp-rhel9@sha256:77c16c7c6cf3e7ed299585a733b04718083579fab41bc7488314b428c416390e_amd64"
},
"product_reference": "registry.redhat.io/openshift4/ose-dpu-marvell-vsp-rhel9@sha256:77c16c7c6cf3e7ed299585a733b04718083579fab41bc7488314b428c416390e_amd64",
"relates_to_product_reference": "Red Hat OpenShift Container Platform 4.21"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift4/ose-dpu-marvell-vsp-rhel9@sha256:979c3c3666771f20961ae422e34d63c7c4a1838b937cccfdbe5a3279cbd120a6_arm64 as a component of Red Hat OpenShift Container Platform 4.21",
"product_id": "Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-dpu-marvell-vsp-rhel9@sha256:979c3c3666771f20961ae422e34d63c7c4a1838b937cccfdbe5a3279cbd120a6_arm64"
},
"product_reference": "registry.redhat.io/openshift4/ose-dpu-marvell-vsp-rhel9@sha256:979c3c3666771f20961ae422e34d63c7c4a1838b937cccfdbe5a3279cbd120a6_arm64",
"relates_to_product_reference": "Red Hat OpenShift Container Platform 4.21"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift4/ose-dpu-network-resources-injector-rhel9@sha256:a9a41a126d694f0b1ca797ba28d8899a326ad3a1d40d8be05d6a2f42cac12398_arm64 as a component of Red Hat OpenShift Container Platform 4.21",
"product_id": "Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-dpu-network-resources-injector-rhel9@sha256:a9a41a126d694f0b1ca797ba28d8899a326ad3a1d40d8be05d6a2f42cac12398_arm64"
},
"product_reference": "registry.redhat.io/openshift4/ose-dpu-network-resources-injector-rhel9@sha256:a9a41a126d694f0b1ca797ba28d8899a326ad3a1d40d8be05d6a2f42cac12398_arm64",
"relates_to_product_reference": "Red Hat OpenShift Container Platform 4.21"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift4/ose-dpu-network-resources-injector-rhel9@sha256:cd8d332585ebf4f8819cc54c64285f1e2ea127de41e4edff909fddbef4d02c5d_amd64 as a component of Red Hat OpenShift Container Platform 4.21",
"product_id": "Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-dpu-network-resources-injector-rhel9@sha256:cd8d332585ebf4f8819cc54c64285f1e2ea127de41e4edff909fddbef4d02c5d_amd64"
},
"product_reference": "registry.redhat.io/openshift4/ose-dpu-network-resources-injector-rhel9@sha256:cd8d332585ebf4f8819cc54c64285f1e2ea127de41e4edff909fddbef4d02c5d_amd64",
"relates_to_product_reference": "Red Hat OpenShift Container Platform 4.21"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift4/ose-gcp-filestore-csi-driver-rhel9-operator@sha256:51d776f3327e8828dfed49bb6e6fb421bd8b7bb4ec225298f441d35f4f39b6e3_amd64 as a component of Red Hat OpenShift Container Platform 4.21",
"product_id": "Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-gcp-filestore-csi-driver-rhel9-operator@sha256:51d776f3327e8828dfed49bb6e6fb421bd8b7bb4ec225298f441d35f4f39b6e3_amd64"
},
"product_reference": "registry.redhat.io/openshift4/ose-gcp-filestore-csi-driver-rhel9-operator@sha256:51d776f3327e8828dfed49bb6e6fb421bd8b7bb4ec225298f441d35f4f39b6e3_amd64",
"relates_to_product_reference": "Red Hat OpenShift Container Platform 4.21"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift4/ose-gcp-filestore-csi-driver-rhel9-operator@sha256:c0e944e7f3b22eb46ddac4b37f689e2c600dcc84c32b0e966e7251a45c6454e5_arm64 as a component of Red Hat OpenShift Container Platform 4.21",
"product_id": "Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-gcp-filestore-csi-driver-rhel9-operator@sha256:c0e944e7f3b22eb46ddac4b37f689e2c600dcc84c32b0e966e7251a45c6454e5_arm64"
},
"product_reference": "registry.redhat.io/openshift4/ose-gcp-filestore-csi-driver-rhel9-operator@sha256:c0e944e7f3b22eb46ddac4b37f689e2c600dcc84c32b0e966e7251a45c6454e5_arm64",
"relates_to_product_reference": "Red Hat OpenShift Container Platform 4.21"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift4/ose-gcp-filestore-csi-driver-rhel9-operator@sha256:de288d5f53fb26030f4359623cafb0743f482c6418d4259563d9d0b974f7cd4c_ppc64le as a component of Red Hat OpenShift Container Platform 4.21",
"product_id": "Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-gcp-filestore-csi-driver-rhel9-operator@sha256:de288d5f53fb26030f4359623cafb0743f482c6418d4259563d9d0b974f7cd4c_ppc64le"
},
"product_reference": "registry.redhat.io/openshift4/ose-gcp-filestore-csi-driver-rhel9-operator@sha256:de288d5f53fb26030f4359623cafb0743f482c6418d4259563d9d0b974f7cd4c_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift Container Platform 4.21"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift4/ose-gcp-filestore-csi-driver-rhel9@sha256:a0353e92588be591c35f299f51f6da9e5be0136b3a8b30b7277cf4a46266d1cc_amd64 as a component of Red Hat OpenShift Container Platform 4.21",
"product_id": "Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-gcp-filestore-csi-driver-rhel9@sha256:a0353e92588be591c35f299f51f6da9e5be0136b3a8b30b7277cf4a46266d1cc_amd64"
},
"product_reference": "registry.redhat.io/openshift4/ose-gcp-filestore-csi-driver-rhel9@sha256:a0353e92588be591c35f299f51f6da9e5be0136b3a8b30b7277cf4a46266d1cc_amd64",
"relates_to_product_reference": "Red Hat OpenShift Container Platform 4.21"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift4/ose-gcp-filestore-csi-driver-rhel9@sha256:b5fc12bb45b0f049223f4b26e0078f58d97462754ae3ea3bb1673aee5d22b62d_arm64 as a component of Red Hat OpenShift Container Platform 4.21",
"product_id": "Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-gcp-filestore-csi-driver-rhel9@sha256:b5fc12bb45b0f049223f4b26e0078f58d97462754ae3ea3bb1673aee5d22b62d_arm64"
},
"product_reference": "registry.redhat.io/openshift4/ose-gcp-filestore-csi-driver-rhel9@sha256:b5fc12bb45b0f049223f4b26e0078f58d97462754ae3ea3bb1673aee5d22b62d_arm64",
"relates_to_product_reference": "Red Hat OpenShift Container Platform 4.21"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift4/ose-gcp-filestore-csi-driver-rhel9@sha256:fa28b3271852e969fba812fdd0ed26c6def0669358dc92ebd1628a20756559ef_ppc64le as a component of Red Hat OpenShift Container Platform 4.21",
"product_id": "Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-gcp-filestore-csi-driver-rhel9@sha256:fa28b3271852e969fba812fdd0ed26c6def0669358dc92ebd1628a20756559ef_ppc64le"
},
"product_reference": "registry.redhat.io/openshift4/ose-gcp-filestore-csi-driver-rhel9@sha256:fa28b3271852e969fba812fdd0ed26c6def0669358dc92ebd1628a20756559ef_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift Container Platform 4.21"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift4/ose-helm-rhel9-operator@sha256:01e0ffb0da07e6a7da267706ee894a2d80b7d909770e22b106294e7662924e1f_ppc64le as a component of Red Hat OpenShift Container Platform 4.21",
"product_id": "Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-helm-rhel9-operator@sha256:01e0ffb0da07e6a7da267706ee894a2d80b7d909770e22b106294e7662924e1f_ppc64le"
},
"product_reference": "registry.redhat.io/openshift4/ose-helm-rhel9-operator@sha256:01e0ffb0da07e6a7da267706ee894a2d80b7d909770e22b106294e7662924e1f_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift Container Platform 4.21"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift4/ose-helm-rhel9-operator@sha256:029e7d3829e93662046330222540af9d57f99bab9a708fb0262b614ba4ec5894_s390x as a component of Red Hat OpenShift Container Platform 4.21",
"product_id": "Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-helm-rhel9-operator@sha256:029e7d3829e93662046330222540af9d57f99bab9a708fb0262b614ba4ec5894_s390x"
},
"product_reference": "registry.redhat.io/openshift4/ose-helm-rhel9-operator@sha256:029e7d3829e93662046330222540af9d57f99bab9a708fb0262b614ba4ec5894_s390x",
"relates_to_product_reference": "Red Hat OpenShift Container Platform 4.21"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift4/ose-helm-rhel9-operator@sha256:2f7fc2e6130b0504eb6451edeeb4b5815b162428d281aac6afd2f52ac5a04d10_amd64 as a component of Red Hat OpenShift Container Platform 4.21",
"product_id": "Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-helm-rhel9-operator@sha256:2f7fc2e6130b0504eb6451edeeb4b5815b162428d281aac6afd2f52ac5a04d10_amd64"
},
"product_reference": "registry.redhat.io/openshift4/ose-helm-rhel9-operator@sha256:2f7fc2e6130b0504eb6451edeeb4b5815b162428d281aac6afd2f52ac5a04d10_amd64",
"relates_to_product_reference": "Red Hat OpenShift Container Platform 4.21"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift4/ose-helm-rhel9-operator@sha256:f30d6e6a77b47b17628bd0216d92173de8e3fc832bf06362eb1c1742bc6c40df_arm64 as a component of Red Hat OpenShift Container Platform 4.21",
"product_id": "Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-helm-rhel9-operator@sha256:f30d6e6a77b47b17628bd0216d92173de8e3fc832bf06362eb1c1742bc6c40df_arm64"
},
"product_reference": "registry.redhat.io/openshift4/ose-helm-rhel9-operator@sha256:f30d6e6a77b47b17628bd0216d92173de8e3fc832bf06362eb1c1742bc6c40df_arm64",
"relates_to_product_reference": "Red Hat OpenShift Container Platform 4.21"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift4/ose-kubernetes-nmstate-handler-rhel9@sha256:38a05eaa1a557c4971e9da0b8aeeaac34d2e479d0aabe5bef2990d549b03ecfe_arm64 as a component of Red Hat OpenShift Container Platform 4.21",
"product_id": "Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-kubernetes-nmstate-handler-rhel9@sha256:38a05eaa1a557c4971e9da0b8aeeaac34d2e479d0aabe5bef2990d549b03ecfe_arm64"
},
"product_reference": "registry.redhat.io/openshift4/ose-kubernetes-nmstate-handler-rhel9@sha256:38a05eaa1a557c4971e9da0b8aeeaac34d2e479d0aabe5bef2990d549b03ecfe_arm64",
"relates_to_product_reference": "Red Hat OpenShift Container Platform 4.21"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift4/ose-kubernetes-nmstate-handler-rhel9@sha256:49dce6c7de88a1840a20dc713fe6ba74f60f5b4263aeea6f826f3b9b522e96bf_amd64 as a component of Red Hat OpenShift Container Platform 4.21",
"product_id": "Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-kubernetes-nmstate-handler-rhel9@sha256:49dce6c7de88a1840a20dc713fe6ba74f60f5b4263aeea6f826f3b9b522e96bf_amd64"
},
"product_reference": "registry.redhat.io/openshift4/ose-kubernetes-nmstate-handler-rhel9@sha256:49dce6c7de88a1840a20dc713fe6ba74f60f5b4263aeea6f826f3b9b522e96bf_amd64",
"relates_to_product_reference": "Red Hat OpenShift Container Platform 4.21"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift4/ose-kubernetes-nmstate-handler-rhel9@sha256:9a5be2cb99904acae97141af03282627a0de72054396a58500ae26fed5a9ff4e_s390x as a component of Red Hat OpenShift Container Platform 4.21",
"product_id": "Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-kubernetes-nmstate-handler-rhel9@sha256:9a5be2cb99904acae97141af03282627a0de72054396a58500ae26fed5a9ff4e_s390x"
},
"product_reference": "registry.redhat.io/openshift4/ose-kubernetes-nmstate-handler-rhel9@sha256:9a5be2cb99904acae97141af03282627a0de72054396a58500ae26fed5a9ff4e_s390x",
"relates_to_product_reference": "Red Hat OpenShift Container Platform 4.21"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift4/ose-kubernetes-nmstate-handler-rhel9@sha256:d0c7639baee74257b10ef4207ba5bff14554f3153e488567758c55d168d972bd_ppc64le as a component of Red Hat OpenShift Container Platform 4.21",
"product_id": "Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-kubernetes-nmstate-handler-rhel9@sha256:d0c7639baee74257b10ef4207ba5bff14554f3153e488567758c55d168d972bd_ppc64le"
},
"product_reference": "registry.redhat.io/openshift4/ose-kubernetes-nmstate-handler-rhel9@sha256:d0c7639baee74257b10ef4207ba5bff14554f3153e488567758c55d168d972bd_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift Container Platform 4.21"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift4/ose-local-storage-diskmaker-rhel9@sha256:975e56e998c4ea82fedf71d019ed0e577e8a29cfe3c412ceeeb93306bf7bb361_s390x as a component of Red Hat OpenShift Container Platform 4.21",
"product_id": "Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-local-storage-diskmaker-rhel9@sha256:975e56e998c4ea82fedf71d019ed0e577e8a29cfe3c412ceeeb93306bf7bb361_s390x"
},
"product_reference": "registry.redhat.io/openshift4/ose-local-storage-diskmaker-rhel9@sha256:975e56e998c4ea82fedf71d019ed0e577e8a29cfe3c412ceeeb93306bf7bb361_s390x",
"relates_to_product_reference": "Red Hat OpenShift Container Platform 4.21"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift4/ose-local-storage-diskmaker-rhel9@sha256:9fddd5cc3bf03b42a49346f86a0bef2a459a4da632bbfd0e5e3b2e83070e5092_ppc64le as a component of Red Hat OpenShift Container Platform 4.21",
"product_id": "Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-local-storage-diskmaker-rhel9@sha256:9fddd5cc3bf03b42a49346f86a0bef2a459a4da632bbfd0e5e3b2e83070e5092_ppc64le"
},
"product_reference": "registry.redhat.io/openshift4/ose-local-storage-diskmaker-rhel9@sha256:9fddd5cc3bf03b42a49346f86a0bef2a459a4da632bbfd0e5e3b2e83070e5092_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift Container Platform 4.21"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift4/ose-local-storage-diskmaker-rhel9@sha256:a1c8c56d4975ec3980441a56fb765cd0031e23d63391dec86d69ab6e7b343bc2_arm64 as a component of Red Hat OpenShift Container Platform 4.21",
"product_id": "Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-local-storage-diskmaker-rhel9@sha256:a1c8c56d4975ec3980441a56fb765cd0031e23d63391dec86d69ab6e7b343bc2_arm64"
},
"product_reference": "registry.redhat.io/openshift4/ose-local-storage-diskmaker-rhel9@sha256:a1c8c56d4975ec3980441a56fb765cd0031e23d63391dec86d69ab6e7b343bc2_arm64",
"relates_to_product_reference": "Red Hat OpenShift Container Platform 4.21"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift4/ose-local-storage-diskmaker-rhel9@sha256:bf694ff952b6220ac1db51a8ff1823ee85b5d0fc6b6127c00b868a017853f53c_amd64 as a component of Red Hat OpenShift Container Platform 4.21",
"product_id": "Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-local-storage-diskmaker-rhel9@sha256:bf694ff952b6220ac1db51a8ff1823ee85b5d0fc6b6127c00b868a017853f53c_amd64"
},
"product_reference": "registry.redhat.io/openshift4/ose-local-storage-diskmaker-rhel9@sha256:bf694ff952b6220ac1db51a8ff1823ee85b5d0fc6b6127c00b868a017853f53c_amd64",
"relates_to_product_reference": "Red Hat OpenShift Container Platform 4.21"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift4/ose-local-storage-mustgather-rhel9@sha256:1e5fa0e4c111c508ddbdf4a4b8b76b6dca44ff0b31ee9e798c3ec8b8c01222b9_ppc64le as a component of Red Hat OpenShift Container Platform 4.21",
"product_id": "Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-local-storage-mustgather-rhel9@sha256:1e5fa0e4c111c508ddbdf4a4b8b76b6dca44ff0b31ee9e798c3ec8b8c01222b9_ppc64le"
},
"product_reference": "registry.redhat.io/openshift4/ose-local-storage-mustgather-rhel9@sha256:1e5fa0e4c111c508ddbdf4a4b8b76b6dca44ff0b31ee9e798c3ec8b8c01222b9_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift Container Platform 4.21"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift4/ose-local-storage-mustgather-rhel9@sha256:30aa075ab2652d4ba186eb80915383b6dd4e7b7215fe5ffeec3c80bb1371b3f2_arm64 as a component of Red Hat OpenShift Container Platform 4.21",
"product_id": "Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-local-storage-mustgather-rhel9@sha256:30aa075ab2652d4ba186eb80915383b6dd4e7b7215fe5ffeec3c80bb1371b3f2_arm64"
},
"product_reference": "registry.redhat.io/openshift4/ose-local-storage-mustgather-rhel9@sha256:30aa075ab2652d4ba186eb80915383b6dd4e7b7215fe5ffeec3c80bb1371b3f2_arm64",
"relates_to_product_reference": "Red Hat OpenShift Container Platform 4.21"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift4/ose-local-storage-mustgather-rhel9@sha256:53000c76b406be2af70be4c5258829f004a39a9d520cc020df44d7fa640d05ad_amd64 as a component of Red Hat OpenShift Container Platform 4.21",
"product_id": "Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-local-storage-mustgather-rhel9@sha256:53000c76b406be2af70be4c5258829f004a39a9d520cc020df44d7fa640d05ad_amd64"
},
"product_reference": "registry.redhat.io/openshift4/ose-local-storage-mustgather-rhel9@sha256:53000c76b406be2af70be4c5258829f004a39a9d520cc020df44d7fa640d05ad_amd64",
"relates_to_product_reference": "Red Hat OpenShift Container Platform 4.21"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift4/ose-local-storage-mustgather-rhel9@sha256:86afe7a1545222df4bca1c8620e99b63048152f235f5ca9fddd73cc5bad1b9c4_s390x as a component of Red Hat OpenShift Container Platform 4.21",
"product_id": "Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-local-storage-mustgather-rhel9@sha256:86afe7a1545222df4bca1c8620e99b63048152f235f5ca9fddd73cc5bad1b9c4_s390x"
},
"product_reference": "registry.redhat.io/openshift4/ose-local-storage-mustgather-rhel9@sha256:86afe7a1545222df4bca1c8620e99b63048152f235f5ca9fddd73cc5bad1b9c4_s390x",
"relates_to_product_reference": "Red Hat OpenShift Container Platform 4.21"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift4/ose-local-storage-rhel9-operator@sha256:3eb77753a5e2d6ff1023a9cb682b67a04b6dbcc2c6537c4ea18f523aa360a166_ppc64le as a component of Red Hat OpenShift Container Platform 4.21",
"product_id": "Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-local-storage-rhel9-operator@sha256:3eb77753a5e2d6ff1023a9cb682b67a04b6dbcc2c6537c4ea18f523aa360a166_ppc64le"
},
"product_reference": "registry.redhat.io/openshift4/ose-local-storage-rhel9-operator@sha256:3eb77753a5e2d6ff1023a9cb682b67a04b6dbcc2c6537c4ea18f523aa360a166_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift Container Platform 4.21"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift4/ose-local-storage-rhel9-operator@sha256:7217e60230edabbeaaa56cc3aceac15421f359a29c3eecfebbfe1582b270d347_s390x as a component of Red Hat OpenShift Container Platform 4.21",
"product_id": "Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-local-storage-rhel9-operator@sha256:7217e60230edabbeaaa56cc3aceac15421f359a29c3eecfebbfe1582b270d347_s390x"
},
"product_reference": "registry.redhat.io/openshift4/ose-local-storage-rhel9-operator@sha256:7217e60230edabbeaaa56cc3aceac15421f359a29c3eecfebbfe1582b270d347_s390x",
"relates_to_product_reference": "Red Hat OpenShift Container Platform 4.21"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift4/ose-local-storage-rhel9-operator@sha256:83e84b70455d419a743df8eee90746745a46cdc52032fc6ac9238d7aca0086de_arm64 as a component of Red Hat OpenShift Container Platform 4.21",
"product_id": "Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-local-storage-rhel9-operator@sha256:83e84b70455d419a743df8eee90746745a46cdc52032fc6ac9238d7aca0086de_arm64"
},
"product_reference": "registry.redhat.io/openshift4/ose-local-storage-rhel9-operator@sha256:83e84b70455d419a743df8eee90746745a46cdc52032fc6ac9238d7aca0086de_arm64",
"relates_to_product_reference": "Red Hat OpenShift Container Platform 4.21"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift4/ose-local-storage-rhel9-operator@sha256:ce139a228805b636280ed42198c7f93a666004f79d48861ad12edd3045f7c412_amd64 as a component of Red Hat OpenShift Container Platform 4.21",
"product_id": "Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-local-storage-rhel9-operator@sha256:ce139a228805b636280ed42198c7f93a666004f79d48861ad12edd3045f7c412_amd64"
},
"product_reference": "registry.redhat.io/openshift4/ose-local-storage-rhel9-operator@sha256:ce139a228805b636280ed42198c7f93a666004f79d48861ad12edd3045f7c412_amd64",
"relates_to_product_reference": "Red Hat OpenShift Container Platform 4.21"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift4/ose-node-feature-discovery-rhel9@sha256:11f6bab6d8a000b25880f1b9395d769bc962aa34393ace4fab4c2d44205b1c95_ppc64le as a component of Red Hat OpenShift Container Platform 4.21",
"product_id": "Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-node-feature-discovery-rhel9@sha256:11f6bab6d8a000b25880f1b9395d769bc962aa34393ace4fab4c2d44205b1c95_ppc64le"
},
"product_reference": "registry.redhat.io/openshift4/ose-node-feature-discovery-rhel9@sha256:11f6bab6d8a000b25880f1b9395d769bc962aa34393ace4fab4c2d44205b1c95_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift Container Platform 4.21"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift4/ose-node-feature-discovery-rhel9@sha256:56b2612c509ae4021332da9b4e252304c50234dab408caade568f4573573a998_amd64 as a component of Red Hat OpenShift Container Platform 4.21",
"product_id": "Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-node-feature-discovery-rhel9@sha256:56b2612c509ae4021332da9b4e252304c50234dab408caade568f4573573a998_amd64"
},
"product_reference": "registry.redhat.io/openshift4/ose-node-feature-discovery-rhel9@sha256:56b2612c509ae4021332da9b4e252304c50234dab408caade568f4573573a998_amd64",
"relates_to_product_reference": "Red Hat OpenShift Container Platform 4.21"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift4/ose-node-feature-discovery-rhel9@sha256:d470ef1f28b5233bab28e2b8b0a47fefd47aae8737cd4c6d488453aa6dd06c84_arm64 as a component of Red Hat OpenShift Container Platform 4.21",
"product_id": "Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-node-feature-discovery-rhel9@sha256:d470ef1f28b5233bab28e2b8b0a47fefd47aae8737cd4c6d488453aa6dd06c84_arm64"
},
"product_reference": "registry.redhat.io/openshift4/ose-node-feature-discovery-rhel9@sha256:d470ef1f28b5233bab28e2b8b0a47fefd47aae8737cd4c6d488453aa6dd06c84_arm64",
"relates_to_product_reference": "Red Hat OpenShift Container Platform 4.21"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift4/ose-node-feature-discovery-rhel9@sha256:e12011347e72eb4d2e3f03ab0532132c302e2057a0c4dc177e13d82dcd714e67_s390x as a component of Red Hat OpenShift Container Platform 4.21",
"product_id": "Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-node-feature-discovery-rhel9@sha256:e12011347e72eb4d2e3f03ab0532132c302e2057a0c4dc177e13d82dcd714e67_s390x"
},
"product_reference": "registry.redhat.io/openshift4/ose-node-feature-discovery-rhel9@sha256:e12011347e72eb4d2e3f03ab0532132c302e2057a0c4dc177e13d82dcd714e67_s390x",
"relates_to_product_reference": "Red Hat OpenShift Container Platform 4.21"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift4/ose-ptp-rhel9-operator@sha256:a668793754ce8ef6251e892a37241879a0b29e540983d63b56a4be3f673e6fb3_ppc64le as a component of Red Hat OpenShift Container Platform 4.21",
"product_id": "Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-ptp-rhel9-operator@sha256:a668793754ce8ef6251e892a37241879a0b29e540983d63b56a4be3f673e6fb3_ppc64le"
},
"product_reference": "registry.redhat.io/openshift4/ose-ptp-rhel9-operator@sha256:a668793754ce8ef6251e892a37241879a0b29e540983d63b56a4be3f673e6fb3_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift Container Platform 4.21"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift4/ose-ptp-rhel9-operator@sha256:c32ff4bbb692686b26b68f79f2d3b6f1cea33eeb4ce1b377097d676190226cb7_arm64 as a component of Red Hat OpenShift Container Platform 4.21",
"product_id": "Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-ptp-rhel9-operator@sha256:c32ff4bbb692686b26b68f79f2d3b6f1cea33eeb4ce1b377097d676190226cb7_arm64"
},
"product_reference": "registry.redhat.io/openshift4/ose-ptp-rhel9-operator@sha256:c32ff4bbb692686b26b68f79f2d3b6f1cea33eeb4ce1b377097d676190226cb7_arm64",
"relates_to_product_reference": "Red Hat OpenShift Container Platform 4.21"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift4/ose-ptp-rhel9-operator@sha256:e8fcd2cf5235561386220e84b11b08cbf447f584746b9f6c0f9c46eff5f29364_amd64 as a component of Red Hat OpenShift Container Platform 4.21",
"product_id": "Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-ptp-rhel9-operator@sha256:e8fcd2cf5235561386220e84b11b08cbf447f584746b9f6c0f9c46eff5f29364_amd64"
},
"product_reference": "registry.redhat.io/openshift4/ose-ptp-rhel9-operator@sha256:e8fcd2cf5235561386220e84b11b08cbf447f584746b9f6c0f9c46eff5f29364_amd64",
"relates_to_product_reference": "Red Hat OpenShift Container Platform 4.21"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift4/ose-ptp-rhel9@sha256:a0e3f44b5fe44c8cb2a8e3745e218deffeb339302dc25b4aa88ae5973052a682_ppc64le as a component of Red Hat OpenShift Container Platform 4.21",
"product_id": "Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-ptp-rhel9@sha256:a0e3f44b5fe44c8cb2a8e3745e218deffeb339302dc25b4aa88ae5973052a682_ppc64le"
},
"product_reference": "registry.redhat.io/openshift4/ose-ptp-rhel9@sha256:a0e3f44b5fe44c8cb2a8e3745e218deffeb339302dc25b4aa88ae5973052a682_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift Container Platform 4.21"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift4/ose-ptp-rhel9@sha256:ceffce6ae5d36775df6cfb2b23a8e089e10806c087d88ddcd5822d1e05d1843e_amd64 as a component of Red Hat OpenShift Container Platform 4.21",
"product_id": "Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-ptp-rhel9@sha256:ceffce6ae5d36775df6cfb2b23a8e089e10806c087d88ddcd5822d1e05d1843e_amd64"
},
"product_reference": "registry.redhat.io/openshift4/ose-ptp-rhel9@sha256:ceffce6ae5d36775df6cfb2b23a8e089e10806c087d88ddcd5822d1e05d1843e_amd64",
"relates_to_product_reference": "Red Hat OpenShift Container Platform 4.21"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift4/ose-ptp-rhel9@sha256:f97c24fdcc9bdbd8c0e7807a95d9338d6bd6537edf5afff4b2871ae808b78803_arm64 as a component of Red Hat OpenShift Container Platform 4.21",
"product_id": "Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-ptp-rhel9@sha256:f97c24fdcc9bdbd8c0e7807a95d9338d6bd6537edf5afff4b2871ae808b78803_arm64"
},
"product_reference": "registry.redhat.io/openshift4/ose-ptp-rhel9@sha256:f97c24fdcc9bdbd8c0e7807a95d9338d6bd6537edf5afff4b2871ae808b78803_arm64",
"relates_to_product_reference": "Red Hat OpenShift Container Platform 4.21"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift4/ose-secrets-store-csi-driver-rhel9-operator@sha256:5b2fb854cfe291704d78db26b17451565065414aac0763661ed2b59831487601_arm64 as a component of Red Hat OpenShift Container Platform 4.21",
"product_id": "Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-secrets-store-csi-driver-rhel9-operator@sha256:5b2fb854cfe291704d78db26b17451565065414aac0763661ed2b59831487601_arm64"
},
"product_reference": "registry.redhat.io/openshift4/ose-secrets-store-csi-driver-rhel9-operator@sha256:5b2fb854cfe291704d78db26b17451565065414aac0763661ed2b59831487601_arm64",
"relates_to_product_reference": "Red Hat OpenShift Container Platform 4.21"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift4/ose-secrets-store-csi-driver-rhel9-operator@sha256:601ce1c70b7801a8de9e33a4466b299e2f76d544b66860cba94ef0dc69ecf797_s390x as a component of Red Hat OpenShift Container Platform 4.21",
"product_id": "Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-secrets-store-csi-driver-rhel9-operator@sha256:601ce1c70b7801a8de9e33a4466b299e2f76d544b66860cba94ef0dc69ecf797_s390x"
},
"product_reference": "registry.redhat.io/openshift4/ose-secrets-store-csi-driver-rhel9-operator@sha256:601ce1c70b7801a8de9e33a4466b299e2f76d544b66860cba94ef0dc69ecf797_s390x",
"relates_to_product_reference": "Red Hat OpenShift Container Platform 4.21"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift4/ose-secrets-store-csi-driver-rhel9-operator@sha256:86a5601f89c0f47b69e0c1a1950f5d1bf584f3cf90188fbf92d7622dd7ff9156_amd64 as a component of Red Hat OpenShift Container Platform 4.21",
"product_id": "Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-secrets-store-csi-driver-rhel9-operator@sha256:86a5601f89c0f47b69e0c1a1950f5d1bf584f3cf90188fbf92d7622dd7ff9156_amd64"
},
"product_reference": "registry.redhat.io/openshift4/ose-secrets-store-csi-driver-rhel9-operator@sha256:86a5601f89c0f47b69e0c1a1950f5d1bf584f3cf90188fbf92d7622dd7ff9156_amd64",
"relates_to_product_reference": "Red Hat OpenShift Container Platform 4.21"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift4/ose-secrets-store-csi-driver-rhel9-operator@sha256:dc815adc448c1aea6fd6cf7e4cab7e4361d1f54e10cd88b54701b41dcda11f42_ppc64le as a component of Red Hat OpenShift Container Platform 4.21",
"product_id": "Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-secrets-store-csi-driver-rhel9-operator@sha256:dc815adc448c1aea6fd6cf7e4cab7e4361d1f54e10cd88b54701b41dcda11f42_ppc64le"
},
"product_reference": "registry.redhat.io/openshift4/ose-secrets-store-csi-driver-rhel9-operator@sha256:dc815adc448c1aea6fd6cf7e4cab7e4361d1f54e10cd88b54701b41dcda11f42_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift Container Platform 4.21"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift4/ose-secrets-store-csi-driver-rhel9@sha256:007ea9c7d8bcf7729505788e73a3647e85be6d3f8375ced4099e575c4c1a11a5_amd64 as a component of Red Hat OpenShift Container Platform 4.21",
"product_id": "Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-secrets-store-csi-driver-rhel9@sha256:007ea9c7d8bcf7729505788e73a3647e85be6d3f8375ced4099e575c4c1a11a5_amd64"
},
"product_reference": "registry.redhat.io/openshift4/ose-secrets-store-csi-driver-rhel9@sha256:007ea9c7d8bcf7729505788e73a3647e85be6d3f8375ced4099e575c4c1a11a5_amd64",
"relates_to_product_reference": "Red Hat OpenShift Container Platform 4.21"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift4/ose-secrets-store-csi-driver-rhel9@sha256:1c8bcdd2bb475931744eb16af2c176d7412cc1bb877eea7869dd395dec6f39ac_s390x as a component of Red Hat OpenShift Container Platform 4.21",
"product_id": "Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-secrets-store-csi-driver-rhel9@sha256:1c8bcdd2bb475931744eb16af2c176d7412cc1bb877eea7869dd395dec6f39ac_s390x"
},
"product_reference": "registry.redhat.io/openshift4/ose-secrets-store-csi-driver-rhel9@sha256:1c8bcdd2bb475931744eb16af2c176d7412cc1bb877eea7869dd395dec6f39ac_s390x",
"relates_to_product_reference": "Red Hat OpenShift Container Platform 4.21"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift4/ose-secrets-store-csi-driver-rhel9@sha256:7d3d14431dbbe405b14de1a84939ff5e4b35d17768c023db144c1e88cf60ad6f_ppc64le as a component of Red Hat OpenShift Container Platform 4.21",
"product_id": "Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-secrets-store-csi-driver-rhel9@sha256:7d3d14431dbbe405b14de1a84939ff5e4b35d17768c023db144c1e88cf60ad6f_ppc64le"
},
"product_reference": "registry.redhat.io/openshift4/ose-secrets-store-csi-driver-rhel9@sha256:7d3d14431dbbe405b14de1a84939ff5e4b35d17768c023db144c1e88cf60ad6f_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift Container Platform 4.21"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift4/ose-secrets-store-csi-driver-rhel9@sha256:8d574539166590373d98289eab070d809068ae59b4c9437893bc5f1a75243e88_arm64 as a component of Red Hat OpenShift Container Platform 4.21",
"product_id": "Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-secrets-store-csi-driver-rhel9@sha256:8d574539166590373d98289eab070d809068ae59b4c9437893bc5f1a75243e88_arm64"
},
"product_reference": "registry.redhat.io/openshift4/ose-secrets-store-csi-driver-rhel9@sha256:8d574539166590373d98289eab070d809068ae59b4c9437893bc5f1a75243e88_arm64",
"relates_to_product_reference": "Red Hat OpenShift Container Platform 4.21"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift4/ose-secrets-store-csi-mustgather-rhel9@sha256:37f50cdddd56cd5f6fc6c19d37a9f480ac92308a593f70e90e58dd9f937da438_arm64 as a component of Red Hat OpenShift Container Platform 4.21",
"product_id": "Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-secrets-store-csi-mustgather-rhel9@sha256:37f50cdddd56cd5f6fc6c19d37a9f480ac92308a593f70e90e58dd9f937da438_arm64"
},
"product_reference": "registry.redhat.io/openshift4/ose-secrets-store-csi-mustgather-rhel9@sha256:37f50cdddd56cd5f6fc6c19d37a9f480ac92308a593f70e90e58dd9f937da438_arm64",
"relates_to_product_reference": "Red Hat OpenShift Container Platform 4.21"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift4/ose-secrets-store-csi-mustgather-rhel9@sha256:53aa411cc0b116c6693b7ffec54c51643921be9999f5d7c786e3d8ab6c14185f_s390x as a component of Red Hat OpenShift Container Platform 4.21",
"product_id": "Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-secrets-store-csi-mustgather-rhel9@sha256:53aa411cc0b116c6693b7ffec54c51643921be9999f5d7c786e3d8ab6c14185f_s390x"
},
"product_reference": "registry.redhat.io/openshift4/ose-secrets-store-csi-mustgather-rhel9@sha256:53aa411cc0b116c6693b7ffec54c51643921be9999f5d7c786e3d8ab6c14185f_s390x",
"relates_to_product_reference": "Red Hat OpenShift Container Platform 4.21"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift4/ose-secrets-store-csi-mustgather-rhel9@sha256:546942fbfcc68e3f17523eaaae31d5694c545cdf84bb73ce0c2f20bfb0419844_amd64 as a component of Red Hat OpenShift Container Platform 4.21",
"product_id": "Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-secrets-store-csi-mustgather-rhel9@sha256:546942fbfcc68e3f17523eaaae31d5694c545cdf84bb73ce0c2f20bfb0419844_amd64"
},
"product_reference": "registry.redhat.io/openshift4/ose-secrets-store-csi-mustgather-rhel9@sha256:546942fbfcc68e3f17523eaaae31d5694c545cdf84bb73ce0c2f20bfb0419844_amd64",
"relates_to_product_reference": "Red Hat OpenShift Container Platform 4.21"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift4/ose-secrets-store-csi-mustgather-rhel9@sha256:a77e3a3b7f0476f0821b97028cdbd7c784875f3c60a9540ef7ddc123a7994322_ppc64le as a component of Red Hat OpenShift Container Platform 4.21",
"product_id": "Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-secrets-store-csi-mustgather-rhel9@sha256:a77e3a3b7f0476f0821b97028cdbd7c784875f3c60a9540ef7ddc123a7994322_ppc64le"
},
"product_reference": "registry.redhat.io/openshift4/ose-secrets-store-csi-mustgather-rhel9@sha256:a77e3a3b7f0476f0821b97028cdbd7c784875f3c60a9540ef7ddc123a7994322_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift Container Platform 4.21"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift4/ose-smb-csi-driver-rhel9-operator@sha256:331ae406cc1d7df8814755f8d7d3b7a28829ba1b14c8f3e54e13ac768a53bea3_ppc64le as a component of Red Hat OpenShift Container Platform 4.21",
"product_id": "Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-smb-csi-driver-rhel9-operator@sha256:331ae406cc1d7df8814755f8d7d3b7a28829ba1b14c8f3e54e13ac768a53bea3_ppc64le"
},
"product_reference": "registry.redhat.io/openshift4/ose-smb-csi-driver-rhel9-operator@sha256:331ae406cc1d7df8814755f8d7d3b7a28829ba1b14c8f3e54e13ac768a53bea3_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift Container Platform 4.21"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift4/ose-smb-csi-driver-rhel9-operator@sha256:8c06c9971a1e4d101022419e787f698419d36cfec480f6c991cbd0ee0a1b12e5_arm64 as a component of Red Hat OpenShift Container Platform 4.21",
"product_id": "Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-smb-csi-driver-rhel9-operator@sha256:8c06c9971a1e4d101022419e787f698419d36cfec480f6c991cbd0ee0a1b12e5_arm64"
},
"product_reference": "registry.redhat.io/openshift4/ose-smb-csi-driver-rhel9-operator@sha256:8c06c9971a1e4d101022419e787f698419d36cfec480f6c991cbd0ee0a1b12e5_arm64",
"relates_to_product_reference": "Red Hat OpenShift Container Platform 4.21"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift4/ose-smb-csi-driver-rhel9-operator@sha256:d2b2d32cb77ba179f2af443176194395c23585ee986a79e81ebe85d262783bda_s390x as a component of Red Hat OpenShift Container Platform 4.21",
"product_id": "Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-smb-csi-driver-rhel9-operator@sha256:d2b2d32cb77ba179f2af443176194395c23585ee986a79e81ebe85d262783bda_s390x"
},
"product_reference": "registry.redhat.io/openshift4/ose-smb-csi-driver-rhel9-operator@sha256:d2b2d32cb77ba179f2af443176194395c23585ee986a79e81ebe85d262783bda_s390x",
"relates_to_product_reference": "Red Hat OpenShift Container Platform 4.21"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift4/ose-smb-csi-driver-rhel9-operator@sha256:d50822b32fc2d3c2069b5213e13d43e7f376886e7e5189dba36960932eff9af5_amd64 as a component of Red Hat OpenShift Container Platform 4.21",
"product_id": "Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-smb-csi-driver-rhel9-operator@sha256:d50822b32fc2d3c2069b5213e13d43e7f376886e7e5189dba36960932eff9af5_amd64"
},
"product_reference": "registry.redhat.io/openshift4/ose-smb-csi-driver-rhel9-operator@sha256:d50822b32fc2d3c2069b5213e13d43e7f376886e7e5189dba36960932eff9af5_amd64",
"relates_to_product_reference": "Red Hat OpenShift Container Platform 4.21"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift4/ose-smb-csi-driver-rhel9@sha256:0ec112141b35688b1797ce674654d9c1c9f58ae66cc8feeb0379163644a497dd_amd64 as a component of Red Hat OpenShift Container Platform 4.21",
"product_id": "Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-smb-csi-driver-rhel9@sha256:0ec112141b35688b1797ce674654d9c1c9f58ae66cc8feeb0379163644a497dd_amd64"
},
"product_reference": "registry.redhat.io/openshift4/ose-smb-csi-driver-rhel9@sha256:0ec112141b35688b1797ce674654d9c1c9f58ae66cc8feeb0379163644a497dd_amd64",
"relates_to_product_reference": "Red Hat OpenShift Container Platform 4.21"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift4/ose-smb-csi-driver-rhel9@sha256:273ac5166b9092848e05ea4bf7a657ecbd6cc1762a5a20146c87cecb3016fe85_ppc64le as a component of Red Hat OpenShift Container Platform 4.21",
"product_id": "Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-smb-csi-driver-rhel9@sha256:273ac5166b9092848e05ea4bf7a657ecbd6cc1762a5a20146c87cecb3016fe85_ppc64le"
},
"product_reference": "registry.redhat.io/openshift4/ose-smb-csi-driver-rhel9@sha256:273ac5166b9092848e05ea4bf7a657ecbd6cc1762a5a20146c87cecb3016fe85_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift Container Platform 4.21"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift4/ose-smb-csi-driver-rhel9@sha256:9593bea00e57e92b51dd05bb5b0e6d62df9a1cb4fc5591f5283b43f02fcdff72_arm64 as a component of Red Hat OpenShift Container Platform 4.21",
"product_id": "Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-smb-csi-driver-rhel9@sha256:9593bea00e57e92b51dd05bb5b0e6d62df9a1cb4fc5591f5283b43f02fcdff72_arm64"
},
"product_reference": "registry.redhat.io/openshift4/ose-smb-csi-driver-rhel9@sha256:9593bea00e57e92b51dd05bb5b0e6d62df9a1cb4fc5591f5283b43f02fcdff72_arm64",
"relates_to_product_reference": "Red Hat OpenShift Container Platform 4.21"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift4/ose-smb-csi-driver-rhel9@sha256:f365a691fd585664a3f41dd12bf459ba37a628c899f32fcf03ce3915caf6946b_s390x as a component of Red Hat OpenShift Container Platform 4.21",
"product_id": "Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-smb-csi-driver-rhel9@sha256:f365a691fd585664a3f41dd12bf459ba37a628c899f32fcf03ce3915caf6946b_s390x"
},
"product_reference": "registry.redhat.io/openshift4/ose-smb-csi-driver-rhel9@sha256:f365a691fd585664a3f41dd12bf459ba37a628c899f32fcf03ce3915caf6946b_s390x",
"relates_to_product_reference": "Red Hat OpenShift Container Platform 4.21"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift4/ose-sriov-dp-admission-controller-rhel9@sha256:1e487121455823010b1b43a7a4be96c5b953b5041ba39580e8f2f02a926da56d_ppc64le as a component of Red Hat OpenShift Container Platform 4.21",
"product_id": "Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-sriov-dp-admission-controller-rhel9@sha256:1e487121455823010b1b43a7a4be96c5b953b5041ba39580e8f2f02a926da56d_ppc64le"
},
"product_reference": "registry.redhat.io/openshift4/ose-sriov-dp-admission-controller-rhel9@sha256:1e487121455823010b1b43a7a4be96c5b953b5041ba39580e8f2f02a926da56d_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift Container Platform 4.21"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift4/ose-sriov-dp-admission-controller-rhel9@sha256:6fb389d62e79b243cb0d06d32ee0f824eaf98db2a9bd2e27fce00ec38258c1ae_arm64 as a component of Red Hat OpenShift Container Platform 4.21",
"product_id": "Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-sriov-dp-admission-controller-rhel9@sha256:6fb389d62e79b243cb0d06d32ee0f824eaf98db2a9bd2e27fce00ec38258c1ae_arm64"
},
"product_reference": "registry.redhat.io/openshift4/ose-sriov-dp-admission-controller-rhel9@sha256:6fb389d62e79b243cb0d06d32ee0f824eaf98db2a9bd2e27fce00ec38258c1ae_arm64",
"relates_to_product_reference": "Red Hat OpenShift Container Platform 4.21"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift4/ose-sriov-dp-admission-controller-rhel9@sha256:7dfe5b88672cdf77c78c0ffaec725ad2f3e3a5e9bb7b3530a1ed819da338b5a1_s390x as a component of Red Hat OpenShift Container Platform 4.21",
"product_id": "Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-sriov-dp-admission-controller-rhel9@sha256:7dfe5b88672cdf77c78c0ffaec725ad2f3e3a5e9bb7b3530a1ed819da338b5a1_s390x"
},
"product_reference": "registry.redhat.io/openshift4/ose-sriov-dp-admission-controller-rhel9@sha256:7dfe5b88672cdf77c78c0ffaec725ad2f3e3a5e9bb7b3530a1ed819da338b5a1_s390x",
"relates_to_product_reference": "Red Hat OpenShift Container Platform 4.21"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift4/ose-sriov-dp-admission-controller-rhel9@sha256:f0f69fcd1cf9ce0cabb42d5c7ff39790f786e12a84cedf7596f13358494c90aa_amd64 as a component of Red Hat OpenShift Container Platform 4.21",
"product_id": "Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-sriov-dp-admission-controller-rhel9@sha256:f0f69fcd1cf9ce0cabb42d5c7ff39790f786e12a84cedf7596f13358494c90aa_amd64"
},
"product_reference": "registry.redhat.io/openshift4/ose-sriov-dp-admission-controller-rhel9@sha256:f0f69fcd1cf9ce0cabb42d5c7ff39790f786e12a84cedf7596f13358494c90aa_amd64",
"relates_to_product_reference": "Red Hat OpenShift Container Platform 4.21"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift4/ose-sriov-infiniband-cni-rhel9@sha256:37b587093902b17bd69212e43305888bd770d3a21a4eab7bdb682af8bc64b347_amd64 as a component of Red Hat OpenShift Container Platform 4.21",
"product_id": "Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-sriov-infiniband-cni-rhel9@sha256:37b587093902b17bd69212e43305888bd770d3a21a4eab7bdb682af8bc64b347_amd64"
},
"product_reference": "registry.redhat.io/openshift4/ose-sriov-infiniband-cni-rhel9@sha256:37b587093902b17bd69212e43305888bd770d3a21a4eab7bdb682af8bc64b347_amd64",
"relates_to_product_reference": "Red Hat OpenShift Container Platform 4.21"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift4/ose-sriov-infiniband-cni-rhel9@sha256:5b69b9c0ab707cfcf11f706adacb764a73c928621716f3fb9914814689369f9f_ppc64le as a component of Red Hat OpenShift Container Platform 4.21",
"product_id": "Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-sriov-infiniband-cni-rhel9@sha256:5b69b9c0ab707cfcf11f706adacb764a73c928621716f3fb9914814689369f9f_ppc64le"
},
"product_reference": "registry.redhat.io/openshift4/ose-sriov-infiniband-cni-rhel9@sha256:5b69b9c0ab707cfcf11f706adacb764a73c928621716f3fb9914814689369f9f_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift Container Platform 4.21"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift4/ose-sriov-infiniband-cni-rhel9@sha256:a35e12407b3f4e22c53331f6019435945ee53db9ab67c21062926c120cb491d8_arm64 as a component of Red Hat OpenShift Container Platform 4.21",
"product_id": "Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-sriov-infiniband-cni-rhel9@sha256:a35e12407b3f4e22c53331f6019435945ee53db9ab67c21062926c120cb491d8_arm64"
},
"product_reference": "registry.redhat.io/openshift4/ose-sriov-infiniband-cni-rhel9@sha256:a35e12407b3f4e22c53331f6019435945ee53db9ab67c21062926c120cb491d8_arm64",
"relates_to_product_reference": "Red Hat OpenShift Container Platform 4.21"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift4/ose-sriov-infiniband-cni-rhel9@sha256:c033dce54bea495f2cb2f7b297892a1188cd08abc8e5a717db52fc0c3d9df6c2_s390x as a component of Red Hat OpenShift Container Platform 4.21",
"product_id": "Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-sriov-infiniband-cni-rhel9@sha256:c033dce54bea495f2cb2f7b297892a1188cd08abc8e5a717db52fc0c3d9df6c2_s390x"
},
"product_reference": "registry.redhat.io/openshift4/ose-sriov-infiniband-cni-rhel9@sha256:c033dce54bea495f2cb2f7b297892a1188cd08abc8e5a717db52fc0c3d9df6c2_s390x",
"relates_to_product_reference": "Red Hat OpenShift Container Platform 4.21"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift4/ose-sriov-network-config-daemon-rhel9@sha256:30dfae75fbdc1f97b9932d88760cce5c2aa1d1bbb61a8a32b3decb66674ca5f6_s390x as a component of Red Hat OpenShift Container Platform 4.21",
"product_id": "Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-sriov-network-config-daemon-rhel9@sha256:30dfae75fbdc1f97b9932d88760cce5c2aa1d1bbb61a8a32b3decb66674ca5f6_s390x"
},
"product_reference": "registry.redhat.io/openshift4/ose-sriov-network-config-daemon-rhel9@sha256:30dfae75fbdc1f97b9932d88760cce5c2aa1d1bbb61a8a32b3decb66674ca5f6_s390x",
"relates_to_product_reference": "Red Hat OpenShift Container Platform 4.21"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift4/ose-sriov-network-config-daemon-rhel9@sha256:3b44b97a59a4962da6415c625bf7c76d16f3368d3e955f0c5dcbe05b5f0f5ac4_ppc64le as a component of Red Hat OpenShift Container Platform 4.21",
"product_id": "Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-sriov-network-config-daemon-rhel9@sha256:3b44b97a59a4962da6415c625bf7c76d16f3368d3e955f0c5dcbe05b5f0f5ac4_ppc64le"
},
"product_reference": "registry.redhat.io/openshift4/ose-sriov-network-config-daemon-rhel9@sha256:3b44b97a59a4962da6415c625bf7c76d16f3368d3e955f0c5dcbe05b5f0f5ac4_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift Container Platform 4.21"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift4/ose-sriov-network-config-daemon-rhel9@sha256:948595a29e50712c7f5847e8211e1200f44d3914f91fd50915ab42d86664bf8f_arm64 as a component of Red Hat OpenShift Container Platform 4.21",
"product_id": "Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-sriov-network-config-daemon-rhel9@sha256:948595a29e50712c7f5847e8211e1200f44d3914f91fd50915ab42d86664bf8f_arm64"
},
"product_reference": "registry.redhat.io/openshift4/ose-sriov-network-config-daemon-rhel9@sha256:948595a29e50712c7f5847e8211e1200f44d3914f91fd50915ab42d86664bf8f_arm64",
"relates_to_product_reference": "Red Hat OpenShift Container Platform 4.21"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift4/ose-sriov-network-config-daemon-rhel9@sha256:cc8d7bbfb8d0afc2e6c225dadf632af79837cb80d23fef983a7c89dc7303aac0_amd64 as a component of Red Hat OpenShift Container Platform 4.21",
"product_id": "Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-sriov-network-config-daemon-rhel9@sha256:cc8d7bbfb8d0afc2e6c225dadf632af79837cb80d23fef983a7c89dc7303aac0_amd64"
},
"product_reference": "registry.redhat.io/openshift4/ose-sriov-network-config-daemon-rhel9@sha256:cc8d7bbfb8d0afc2e6c225dadf632af79837cb80d23fef983a7c89dc7303aac0_amd64",
"relates_to_product_reference": "Red Hat OpenShift Container Platform 4.21"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift4/ose-sriov-network-device-plugin-rhel9@sha256:66f80c9740560af31361fe33c6c182496abd3f1bd1e35c27346b94be370223aa_arm64 as a component of Red Hat OpenShift Container Platform 4.21",
"product_id": "Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-sriov-network-device-plugin-rhel9@sha256:66f80c9740560af31361fe33c6c182496abd3f1bd1e35c27346b94be370223aa_arm64"
},
"product_reference": "registry.redhat.io/openshift4/ose-sriov-network-device-plugin-rhel9@sha256:66f80c9740560af31361fe33c6c182496abd3f1bd1e35c27346b94be370223aa_arm64",
"relates_to_product_reference": "Red Hat OpenShift Container Platform 4.21"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift4/ose-sriov-network-device-plugin-rhel9@sha256:8a3ca73990b9c47173dd81929d997d08c219dd7ebca6e2abf8763b9e06b6dcc7_s390x as a component of Red Hat OpenShift Container Platform 4.21",
"product_id": "Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-sriov-network-device-plugin-rhel9@sha256:8a3ca73990b9c47173dd81929d997d08c219dd7ebca6e2abf8763b9e06b6dcc7_s390x"
},
"product_reference": "registry.redhat.io/openshift4/ose-sriov-network-device-plugin-rhel9@sha256:8a3ca73990b9c47173dd81929d997d08c219dd7ebca6e2abf8763b9e06b6dcc7_s390x",
"relates_to_product_reference": "Red Hat OpenShift Container Platform 4.21"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift4/ose-sriov-network-device-plugin-rhel9@sha256:978ba2e085c4683dc1a0b499043095704957c7b5db5012c59dd7cfc355fed1b0_amd64 as a component of Red Hat OpenShift Container Platform 4.21",
"product_id": "Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-sriov-network-device-plugin-rhel9@sha256:978ba2e085c4683dc1a0b499043095704957c7b5db5012c59dd7cfc355fed1b0_amd64"
},
"product_reference": "registry.redhat.io/openshift4/ose-sriov-network-device-plugin-rhel9@sha256:978ba2e085c4683dc1a0b499043095704957c7b5db5012c59dd7cfc355fed1b0_amd64",
"relates_to_product_reference": "Red Hat OpenShift Container Platform 4.21"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift4/ose-sriov-network-device-plugin-rhel9@sha256:d4ff686da4afdf216acf3c9ad530844cf989d3fd0ea69456ee13878ca38ab53c_ppc64le as a component of Red Hat OpenShift Container Platform 4.21",
"product_id": "Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-sriov-network-device-plugin-rhel9@sha256:d4ff686da4afdf216acf3c9ad530844cf989d3fd0ea69456ee13878ca38ab53c_ppc64le"
},
"product_reference": "registry.redhat.io/openshift4/ose-sriov-network-device-plugin-rhel9@sha256:d4ff686da4afdf216acf3c9ad530844cf989d3fd0ea69456ee13878ca38ab53c_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift Container Platform 4.21"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift4/ose-sriov-network-metrics-exporter-rhel9@sha256:22889c2ed91e69fe02b98aeba2df75a470a4bc538683d48ac5632b0d049fbae5_ppc64le as a component of Red Hat OpenShift Container Platform 4.21",
"product_id": "Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-sriov-network-metrics-exporter-rhel9@sha256:22889c2ed91e69fe02b98aeba2df75a470a4bc538683d48ac5632b0d049fbae5_ppc64le"
},
"product_reference": "registry.redhat.io/openshift4/ose-sriov-network-metrics-exporter-rhel9@sha256:22889c2ed91e69fe02b98aeba2df75a470a4bc538683d48ac5632b0d049fbae5_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift Container Platform 4.21"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift4/ose-sriov-network-metrics-exporter-rhel9@sha256:6aff0035aff9f654cbe4fb4437b57af3bef4bc3801aea32e2cd4e32b4910f482_arm64 as a component of Red Hat OpenShift Container Platform 4.21",
"product_id": "Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-sriov-network-metrics-exporter-rhel9@sha256:6aff0035aff9f654cbe4fb4437b57af3bef4bc3801aea32e2cd4e32b4910f482_arm64"
},
"product_reference": "registry.redhat.io/openshift4/ose-sriov-network-metrics-exporter-rhel9@sha256:6aff0035aff9f654cbe4fb4437b57af3bef4bc3801aea32e2cd4e32b4910f482_arm64",
"relates_to_product_reference": "Red Hat OpenShift Container Platform 4.21"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift4/ose-sriov-network-metrics-exporter-rhel9@sha256:bc31897f905a8a05e063878fdfedf523c9313f6131f03236421ec4e971d5a2cc_amd64 as a component of Red Hat OpenShift Container Platform 4.21",
"product_id": "Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-sriov-network-metrics-exporter-rhel9@sha256:bc31897f905a8a05e063878fdfedf523c9313f6131f03236421ec4e971d5a2cc_amd64"
},
"product_reference": "registry.redhat.io/openshift4/ose-sriov-network-metrics-exporter-rhel9@sha256:bc31897f905a8a05e063878fdfedf523c9313f6131f03236421ec4e971d5a2cc_amd64",
"relates_to_product_reference": "Red Hat OpenShift Container Platform 4.21"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift4/ose-sriov-network-metrics-exporter-rhel9@sha256:f426214060d6c4e61984d2b275489a38098fa6c1977c913bfb17757c34d83147_s390x as a component of Red Hat OpenShift Container Platform 4.21",
"product_id": "Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-sriov-network-metrics-exporter-rhel9@sha256:f426214060d6c4e61984d2b275489a38098fa6c1977c913bfb17757c34d83147_s390x"
},
"product_reference": "registry.redhat.io/openshift4/ose-sriov-network-metrics-exporter-rhel9@sha256:f426214060d6c4e61984d2b275489a38098fa6c1977c913bfb17757c34d83147_s390x",
"relates_to_product_reference": "Red Hat OpenShift Container Platform 4.21"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift4/ose-sriov-network-rhel9-operator@sha256:5112ee38eb67037b9dec616724ba01d32651dfc71bac03e26646ae8e517f4540_ppc64le as a component of Red Hat OpenShift Container Platform 4.21",
"product_id": "Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-sriov-network-rhel9-operator@sha256:5112ee38eb67037b9dec616724ba01d32651dfc71bac03e26646ae8e517f4540_ppc64le"
},
"product_reference": "registry.redhat.io/openshift4/ose-sriov-network-rhel9-operator@sha256:5112ee38eb67037b9dec616724ba01d32651dfc71bac03e26646ae8e517f4540_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift Container Platform 4.21"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift4/ose-sriov-network-rhel9-operator@sha256:744c6db730c13b35c8a7eb1c63c87a6fe01f7b4a6137a4cdf6e318afa560fae2_amd64 as a component of Red Hat OpenShift Container Platform 4.21",
"product_id": "Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-sriov-network-rhel9-operator@sha256:744c6db730c13b35c8a7eb1c63c87a6fe01f7b4a6137a4cdf6e318afa560fae2_amd64"
},
"product_reference": "registry.redhat.io/openshift4/ose-sriov-network-rhel9-operator@sha256:744c6db730c13b35c8a7eb1c63c87a6fe01f7b4a6137a4cdf6e318afa560fae2_amd64",
"relates_to_product_reference": "Red Hat OpenShift Container Platform 4.21"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift4/ose-sriov-network-rhel9-operator@sha256:ad9fffd643b1b7fca4e04dbecd6e3df93b68d1d455ead877fc92931fb893a234_arm64 as a component of Red Hat OpenShift Container Platform 4.21",
"product_id": "Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-sriov-network-rhel9-operator@sha256:ad9fffd643b1b7fca4e04dbecd6e3df93b68d1d455ead877fc92931fb893a234_arm64"
},
"product_reference": "registry.redhat.io/openshift4/ose-sriov-network-rhel9-operator@sha256:ad9fffd643b1b7fca4e04dbecd6e3df93b68d1d455ead877fc92931fb893a234_arm64",
"relates_to_product_reference": "Red Hat OpenShift Container Platform 4.21"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift4/ose-sriov-network-rhel9-operator@sha256:d2c308d8f6e2174073cf84c0d7baf9b05d78ca8e4e2057009b71758a0771169e_s390x as a component of Red Hat OpenShift Container Platform 4.21",
"product_id": "Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-sriov-network-rhel9-operator@sha256:d2c308d8f6e2174073cf84c0d7baf9b05d78ca8e4e2057009b71758a0771169e_s390x"
},
"product_reference": "registry.redhat.io/openshift4/ose-sriov-network-rhel9-operator@sha256:d2c308d8f6e2174073cf84c0d7baf9b05d78ca8e4e2057009b71758a0771169e_s390x",
"relates_to_product_reference": "Red Hat OpenShift Container Platform 4.21"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift4/ose-sriov-network-webhook-rhel9@sha256:07240bbb9795a5c405940633d3a2f0fb47f5abbf9b0c87361bdf80dde10ab528_s390x as a component of Red Hat OpenShift Container Platform 4.21",
"product_id": "Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-sriov-network-webhook-rhel9@sha256:07240bbb9795a5c405940633d3a2f0fb47f5abbf9b0c87361bdf80dde10ab528_s390x"
},
"product_reference": "registry.redhat.io/openshift4/ose-sriov-network-webhook-rhel9@sha256:07240bbb9795a5c405940633d3a2f0fb47f5abbf9b0c87361bdf80dde10ab528_s390x",
"relates_to_product_reference": "Red Hat OpenShift Container Platform 4.21"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift4/ose-sriov-network-webhook-rhel9@sha256:11b5d71f5f9e512b7feb2aeb79b1874e34e27bb222f576a1f9dda8898630528c_arm64 as a component of Red Hat OpenShift Container Platform 4.21",
"product_id": "Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-sriov-network-webhook-rhel9@sha256:11b5d71f5f9e512b7feb2aeb79b1874e34e27bb222f576a1f9dda8898630528c_arm64"
},
"product_reference": "registry.redhat.io/openshift4/ose-sriov-network-webhook-rhel9@sha256:11b5d71f5f9e512b7feb2aeb79b1874e34e27bb222f576a1f9dda8898630528c_arm64",
"relates_to_product_reference": "Red Hat OpenShift Container Platform 4.21"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift4/ose-sriov-network-webhook-rhel9@sha256:7457d5a64900cb13365c55cba14193dd90eb73c11863bedd96b33e1add5f85f3_amd64 as a component of Red Hat OpenShift Container Platform 4.21",
"product_id": "Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-sriov-network-webhook-rhel9@sha256:7457d5a64900cb13365c55cba14193dd90eb73c11863bedd96b33e1add5f85f3_amd64"
},
"product_reference": "registry.redhat.io/openshift4/ose-sriov-network-webhook-rhel9@sha256:7457d5a64900cb13365c55cba14193dd90eb73c11863bedd96b33e1add5f85f3_amd64",
"relates_to_product_reference": "Red Hat OpenShift Container Platform 4.21"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift4/ose-sriov-network-webhook-rhel9@sha256:eaa3c056167469c6bb5513e3dde02e5dab49d5b98e1c17ab966ad7313222b1ab_ppc64le as a component of Red Hat OpenShift Container Platform 4.21",
"product_id": "Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-sriov-network-webhook-rhel9@sha256:eaa3c056167469c6bb5513e3dde02e5dab49d5b98e1c17ab966ad7313222b1ab_ppc64le"
},
"product_reference": "registry.redhat.io/openshift4/ose-sriov-network-webhook-rhel9@sha256:eaa3c056167469c6bb5513e3dde02e5dab49d5b98e1c17ab966ad7313222b1ab_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift Container Platform 4.21"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift4/ose-sriov-rdma-cni-rhel9@sha256:07fbfd0334aec167fb06ff4eba3053d9cecc00664b9cfea1d18b4b6bdd0814fa_s390x as a component of Red Hat OpenShift Container Platform 4.21",
"product_id": "Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-sriov-rdma-cni-rhel9@sha256:07fbfd0334aec167fb06ff4eba3053d9cecc00664b9cfea1d18b4b6bdd0814fa_s390x"
},
"product_reference": "registry.redhat.io/openshift4/ose-sriov-rdma-cni-rhel9@sha256:07fbfd0334aec167fb06ff4eba3053d9cecc00664b9cfea1d18b4b6bdd0814fa_s390x",
"relates_to_product_reference": "Red Hat OpenShift Container Platform 4.21"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift4/ose-sriov-rdma-cni-rhel9@sha256:18e7e59dbe9ba0498fcb12b6483ef22d4079ea6e1402fba88a6aae000f340e9d_ppc64le as a component of Red Hat OpenShift Container Platform 4.21",
"product_id": "Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-sriov-rdma-cni-rhel9@sha256:18e7e59dbe9ba0498fcb12b6483ef22d4079ea6e1402fba88a6aae000f340e9d_ppc64le"
},
"product_reference": "registry.redhat.io/openshift4/ose-sriov-rdma-cni-rhel9@sha256:18e7e59dbe9ba0498fcb12b6483ef22d4079ea6e1402fba88a6aae000f340e9d_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift Container Platform 4.21"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift4/ose-sriov-rdma-cni-rhel9@sha256:2433095c43109b0ec3932a9b2b34600271f32bd440f9cc73c43b742b913646d5_amd64 as a component of Red Hat OpenShift Container Platform 4.21",
"product_id": "Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-sriov-rdma-cni-rhel9@sha256:2433095c43109b0ec3932a9b2b34600271f32bd440f9cc73c43b742b913646d5_amd64"
},
"product_reference": "registry.redhat.io/openshift4/ose-sriov-rdma-cni-rhel9@sha256:2433095c43109b0ec3932a9b2b34600271f32bd440f9cc73c43b742b913646d5_amd64",
"relates_to_product_reference": "Red Hat OpenShift Container Platform 4.21"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift4/ose-sriov-rdma-cni-rhel9@sha256:75a785f3d554b02952605b3af98f00fcada32117e8d0c3e6fe22f44e7651bc1e_arm64 as a component of Red Hat OpenShift Container Platform 4.21",
"product_id": "Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-sriov-rdma-cni-rhel9@sha256:75a785f3d554b02952605b3af98f00fcada32117e8d0c3e6fe22f44e7651bc1e_arm64"
},
"product_reference": "registry.redhat.io/openshift4/ose-sriov-rdma-cni-rhel9@sha256:75a785f3d554b02952605b3af98f00fcada32117e8d0c3e6fe22f44e7651bc1e_arm64",
"relates_to_product_reference": "Red Hat OpenShift Container Platform 4.21"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift4/ose-support-log-gather-rhel9-operator@sha256:10e52003925adc71826622c39efab5fea15638adddc6aef533cf0692ca23f6d4_ppc64le as a component of Red Hat OpenShift Container Platform 4.21",
"product_id": "Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-support-log-gather-rhel9-operator@sha256:10e52003925adc71826622c39efab5fea15638adddc6aef533cf0692ca23f6d4_ppc64le"
},
"product_reference": "registry.redhat.io/openshift4/ose-support-log-gather-rhel9-operator@sha256:10e52003925adc71826622c39efab5fea15638adddc6aef533cf0692ca23f6d4_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift Container Platform 4.21"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift4/ose-support-log-gather-rhel9-operator@sha256:5b6fcf89b09b265ac65ef49afea5e7cbd786df205ecb5426cb1cda10bc5dcfd6_arm64 as a component of Red Hat OpenShift Container Platform 4.21",
"product_id": "Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-support-log-gather-rhel9-operator@sha256:5b6fcf89b09b265ac65ef49afea5e7cbd786df205ecb5426cb1cda10bc5dcfd6_arm64"
},
"product_reference": "registry.redhat.io/openshift4/ose-support-log-gather-rhel9-operator@sha256:5b6fcf89b09b265ac65ef49afea5e7cbd786df205ecb5426cb1cda10bc5dcfd6_arm64",
"relates_to_product_reference": "Red Hat OpenShift Container Platform 4.21"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift4/ose-support-log-gather-rhel9-operator@sha256:89ab8e96ab53d430ce97e8a80fd4ef35277234391a72723da2a8457be881291e_amd64 as a component of Red Hat OpenShift Container Platform 4.21",
"product_id": "Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-support-log-gather-rhel9-operator@sha256:89ab8e96ab53d430ce97e8a80fd4ef35277234391a72723da2a8457be881291e_amd64"
},
"product_reference": "registry.redhat.io/openshift4/ose-support-log-gather-rhel9-operator@sha256:89ab8e96ab53d430ce97e8a80fd4ef35277234391a72723da2a8457be881291e_amd64",
"relates_to_product_reference": "Red Hat OpenShift Container Platform 4.21"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift4/ose-support-log-gather-rhel9-operator@sha256:e6ee32452c5a790d4704806161a2b63a29aacc165766295f92762bffbd89d6aa_s390x as a component of Red Hat OpenShift Container Platform 4.21",
"product_id": "Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-support-log-gather-rhel9-operator@sha256:e6ee32452c5a790d4704806161a2b63a29aacc165766295f92762bffbd89d6aa_s390x"
},
"product_reference": "registry.redhat.io/openshift4/ose-support-log-gather-rhel9-operator@sha256:e6ee32452c5a790d4704806161a2b63a29aacc165766295f92762bffbd89d6aa_s390x",
"relates_to_product_reference": "Red Hat OpenShift Container Platform 4.21"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift4/ose-vertical-pod-autoscaler-rhel9-operator@sha256:54ffc01a3dd2306f78dfdd6097e5c775b3edac36f443099c730c241a45833638_amd64 as a component of Red Hat OpenShift Container Platform 4.21",
"product_id": "Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-vertical-pod-autoscaler-rhel9-operator@sha256:54ffc01a3dd2306f78dfdd6097e5c775b3edac36f443099c730c241a45833638_amd64"
},
"product_reference": "registry.redhat.io/openshift4/ose-vertical-pod-autoscaler-rhel9-operator@sha256:54ffc01a3dd2306f78dfdd6097e5c775b3edac36f443099c730c241a45833638_amd64",
"relates_to_product_reference": "Red Hat OpenShift Container Platform 4.21"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift4/ose-vertical-pod-autoscaler-rhel9-operator@sha256:a827987893266c281440a48b4229a7f48c1d40bbad3e7f6ed8c84bfaa4c0281c_arm64 as a component of Red Hat OpenShift Container Platform 4.21",
"product_id": "Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-vertical-pod-autoscaler-rhel9-operator@sha256:a827987893266c281440a48b4229a7f48c1d40bbad3e7f6ed8c84bfaa4c0281c_arm64"
},
"product_reference": "registry.redhat.io/openshift4/ose-vertical-pod-autoscaler-rhel9-operator@sha256:a827987893266c281440a48b4229a7f48c1d40bbad3e7f6ed8c84bfaa4c0281c_arm64",
"relates_to_product_reference": "Red Hat OpenShift Container Platform 4.21"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift4/ose-vertical-pod-autoscaler-rhel9-operator@sha256:c3b36f187a4b67d4b4df5c7e2bb975832a2709d1891aec41af4d46bc578659ba_ppc64le as a component of Red Hat OpenShift Container Platform 4.21",
"product_id": "Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-vertical-pod-autoscaler-rhel9-operator@sha256:c3b36f187a4b67d4b4df5c7e2bb975832a2709d1891aec41af4d46bc578659ba_ppc64le"
},
"product_reference": "registry.redhat.io/openshift4/ose-vertical-pod-autoscaler-rhel9-operator@sha256:c3b36f187a4b67d4b4df5c7e2bb975832a2709d1891aec41af4d46bc578659ba_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift Container Platform 4.21"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift4/ose-vertical-pod-autoscaler-rhel9-operator@sha256:ecc3b8fa62455706ee62cb0d1c0226d300f5f15304bafe4e518f2d3ffc928bde_s390x as a component of Red Hat OpenShift Container Platform 4.21",
"product_id": "Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-vertical-pod-autoscaler-rhel9-operator@sha256:ecc3b8fa62455706ee62cb0d1c0226d300f5f15304bafe4e518f2d3ffc928bde_s390x"
},
"product_reference": "registry.redhat.io/openshift4/ose-vertical-pod-autoscaler-rhel9-operator@sha256:ecc3b8fa62455706ee62cb0d1c0226d300f5f15304bafe4e518f2d3ffc928bde_s390x",
"relates_to_product_reference": "Red Hat OpenShift Container Platform 4.21"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift4/ose-vertical-pod-autoscaler-rhel9@sha256:561f7a4380dc0189b3b219bf7ab9a5b67d0baadcc05d6b1c0864770c928a43d7_amd64 as a component of Red Hat OpenShift Container Platform 4.21",
"product_id": "Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-vertical-pod-autoscaler-rhel9@sha256:561f7a4380dc0189b3b219bf7ab9a5b67d0baadcc05d6b1c0864770c928a43d7_amd64"
},
"product_reference": "registry.redhat.io/openshift4/ose-vertical-pod-autoscaler-rhel9@sha256:561f7a4380dc0189b3b219bf7ab9a5b67d0baadcc05d6b1c0864770c928a43d7_amd64",
"relates_to_product_reference": "Red Hat OpenShift Container Platform 4.21"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift4/ose-vertical-pod-autoscaler-rhel9@sha256:715fd2f2e998043648963177764e4dcab56f4c73e10c4c2c293445692d835f25_s390x as a component of Red Hat OpenShift Container Platform 4.21",
"product_id": "Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-vertical-pod-autoscaler-rhel9@sha256:715fd2f2e998043648963177764e4dcab56f4c73e10c4c2c293445692d835f25_s390x"
},
"product_reference": "registry.redhat.io/openshift4/ose-vertical-pod-autoscaler-rhel9@sha256:715fd2f2e998043648963177764e4dcab56f4c73e10c4c2c293445692d835f25_s390x",
"relates_to_product_reference": "Red Hat OpenShift Container Platform 4.21"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift4/ose-vertical-pod-autoscaler-rhel9@sha256:b3dff747e802382fb5cc9df83b2950eb1773f817e82ea6482f3fc6f52bce0706_ppc64le as a component of Red Hat OpenShift Container Platform 4.21",
"product_id": "Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-vertical-pod-autoscaler-rhel9@sha256:b3dff747e802382fb5cc9df83b2950eb1773f817e82ea6482f3fc6f52bce0706_ppc64le"
},
"product_reference": "registry.redhat.io/openshift4/ose-vertical-pod-autoscaler-rhel9@sha256:b3dff747e802382fb5cc9df83b2950eb1773f817e82ea6482f3fc6f52bce0706_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift Container Platform 4.21"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift4/ose-vertical-pod-autoscaler-rhel9@sha256:f31091c53dcf7f2148c91cc7cfa625ff92940f47f2cc341f0c4f8f6bb8dd4eea_arm64 as a component of Red Hat OpenShift Container Platform 4.21",
"product_id": "Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-vertical-pod-autoscaler-rhel9@sha256:f31091c53dcf7f2148c91cc7cfa625ff92940f47f2cc341f0c4f8f6bb8dd4eea_arm64"
},
"product_reference": "registry.redhat.io/openshift4/ose-vertical-pod-autoscaler-rhel9@sha256:f31091c53dcf7f2148c91cc7cfa625ff92940f47f2cc341f0c4f8f6bb8dd4eea_arm64",
"relates_to_product_reference": "Red Hat OpenShift Container Platform 4.21"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift4/pf-status-relay-rhel9-operator@sha256:889c8eb5ab957329e63f83bf86199396246fcc79fb841c1d63808d9999aa27fe_ppc64le as a component of Red Hat OpenShift Container Platform 4.21",
"product_id": "Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/pf-status-relay-rhel9-operator@sha256:889c8eb5ab957329e63f83bf86199396246fcc79fb841c1d63808d9999aa27fe_ppc64le"
},
"product_reference": "registry.redhat.io/openshift4/pf-status-relay-rhel9-operator@sha256:889c8eb5ab957329e63f83bf86199396246fcc79fb841c1d63808d9999aa27fe_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift Container Platform 4.21"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift4/pf-status-relay-rhel9-operator@sha256:b5a7192ce8bd5d376f73d22a7352ecd9acfa8648a7bb4d18e4c19bbbfaab4e5c_arm64 as a component of Red Hat OpenShift Container Platform 4.21",
"product_id": "Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/pf-status-relay-rhel9-operator@sha256:b5a7192ce8bd5d376f73d22a7352ecd9acfa8648a7bb4d18e4c19bbbfaab4e5c_arm64"
},
"product_reference": "registry.redhat.io/openshift4/pf-status-relay-rhel9-operator@sha256:b5a7192ce8bd5d376f73d22a7352ecd9acfa8648a7bb4d18e4c19bbbfaab4e5c_arm64",
"relates_to_product_reference": "Red Hat OpenShift Container Platform 4.21"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift4/pf-status-relay-rhel9-operator@sha256:c1e5de1e0068aa168df07192576be90eea2df9c5941cde1260c547d088424d2d_amd64 as a component of Red Hat OpenShift Container Platform 4.21",
"product_id": "Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/pf-status-relay-rhel9-operator@sha256:c1e5de1e0068aa168df07192576be90eea2df9c5941cde1260c547d088424d2d_amd64"
},
"product_reference": "registry.redhat.io/openshift4/pf-status-relay-rhel9-operator@sha256:c1e5de1e0068aa168df07192576be90eea2df9c5941cde1260c547d088424d2d_amd64",
"relates_to_product_reference": "Red Hat OpenShift Container Platform 4.21"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift4/pf-status-relay-rhel9-operator@sha256:c4ede99f6c9aca2fff295d06dbc9d6f603ab73b323fc0c876ae01a5edf8abc1c_s390x as a component of Red Hat OpenShift Container Platform 4.21",
"product_id": "Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/pf-status-relay-rhel9-operator@sha256:c4ede99f6c9aca2fff295d06dbc9d6f603ab73b323fc0c876ae01a5edf8abc1c_s390x"
},
"product_reference": "registry.redhat.io/openshift4/pf-status-relay-rhel9-operator@sha256:c4ede99f6c9aca2fff295d06dbc9d6f603ab73b323fc0c876ae01a5edf8abc1c_s390x",
"relates_to_product_reference": "Red Hat OpenShift Container Platform 4.21"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift4/pf-status-relay-rhel9@sha256:355aa8de7d52c60509970f2572b232185505f97c1b3624bdcf8f1bd5b097aa19_arm64 as a component of Red Hat OpenShift Container Platform 4.21",
"product_id": "Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/pf-status-relay-rhel9@sha256:355aa8de7d52c60509970f2572b232185505f97c1b3624bdcf8f1bd5b097aa19_arm64"
},
"product_reference": "registry.redhat.io/openshift4/pf-status-relay-rhel9@sha256:355aa8de7d52c60509970f2572b232185505f97c1b3624bdcf8f1bd5b097aa19_arm64",
"relates_to_product_reference": "Red Hat OpenShift Container Platform 4.21"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift4/pf-status-relay-rhel9@sha256:8521f8e56aed7158d674c968909d34a4b235cc91c5c8ceeb21217ac8e7e167e3_amd64 as a component of Red Hat OpenShift Container Platform 4.21",
"product_id": "Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/pf-status-relay-rhel9@sha256:8521f8e56aed7158d674c968909d34a4b235cc91c5c8ceeb21217ac8e7e167e3_amd64"
},
"product_reference": "registry.redhat.io/openshift4/pf-status-relay-rhel9@sha256:8521f8e56aed7158d674c968909d34a4b235cc91c5c8ceeb21217ac8e7e167e3_amd64",
"relates_to_product_reference": "Red Hat OpenShift Container Platform 4.21"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift4/pf-status-relay-rhel9@sha256:b95bb5f44309a8b851af6a92c4346edd4017028516ea7e024ffee73fc96e80e0_ppc64le as a component of Red Hat OpenShift Container Platform 4.21",
"product_id": "Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/pf-status-relay-rhel9@sha256:b95bb5f44309a8b851af6a92c4346edd4017028516ea7e024ffee73fc96e80e0_ppc64le"
},
"product_reference": "registry.redhat.io/openshift4/pf-status-relay-rhel9@sha256:b95bb5f44309a8b851af6a92c4346edd4017028516ea7e024ffee73fc96e80e0_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift Container Platform 4.21"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift4/pf-status-relay-rhel9@sha256:e01330406bf0fadd9e81f731ef6514946ffdc7a137726c9ed4d7c1d890d33f46_s390x as a component of Red Hat OpenShift Container Platform 4.21",
"product_id": "Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/pf-status-relay-rhel9@sha256:e01330406bf0fadd9e81f731ef6514946ffdc7a137726c9ed4d7c1d890d33f46_s390x"
},
"product_reference": "registry.redhat.io/openshift4/pf-status-relay-rhel9@sha256:e01330406bf0fadd9e81f731ef6514946ffdc7a137726c9ed4d7c1d890d33f46_s390x",
"relates_to_product_reference": "Red Hat OpenShift Container Platform 4.21"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift4/ptp-must-gather-rhel9@sha256:2c8b5c11bb25cf78f3d5bc4a6c8ea2952a681c1d6bc622493e0fb8e7cdd8d338_amd64 as a component of Red Hat OpenShift Container Platform 4.21",
"product_id": "Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ptp-must-gather-rhel9@sha256:2c8b5c11bb25cf78f3d5bc4a6c8ea2952a681c1d6bc622493e0fb8e7cdd8d338_amd64"
},
"product_reference": "registry.redhat.io/openshift4/ptp-must-gather-rhel9@sha256:2c8b5c11bb25cf78f3d5bc4a6c8ea2952a681c1d6bc622493e0fb8e7cdd8d338_amd64",
"relates_to_product_reference": "Red Hat OpenShift Container Platform 4.21"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift4/ptp-must-gather-rhel9@sha256:429969ea012b2a168aa0c3971a26d9bcfb1749c0721c4afc4d9cc8e38aca6b9f_ppc64le as a component of Red Hat OpenShift Container Platform 4.21",
"product_id": "Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ptp-must-gather-rhel9@sha256:429969ea012b2a168aa0c3971a26d9bcfb1749c0721c4afc4d9cc8e38aca6b9f_ppc64le"
},
"product_reference": "registry.redhat.io/openshift4/ptp-must-gather-rhel9@sha256:429969ea012b2a168aa0c3971a26d9bcfb1749c0721c4afc4d9cc8e38aca6b9f_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift Container Platform 4.21"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift4/ptp-must-gather-rhel9@sha256:51770b7af0a378ba8c7580c9e7404bab256f6230a3232e598db33feafc48113e_arm64 as a component of Red Hat OpenShift Container Platform 4.21",
"product_id": "Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ptp-must-gather-rhel9@sha256:51770b7af0a378ba8c7580c9e7404bab256f6230a3232e598db33feafc48113e_arm64"
},
"product_reference": "registry.redhat.io/openshift4/ptp-must-gather-rhel9@sha256:51770b7af0a378ba8c7580c9e7404bab256f6230a3232e598db33feafc48113e_arm64",
"relates_to_product_reference": "Red Hat OpenShift Container Platform 4.21"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift4/sriov-cni-rhel9@sha256:18b649c7e0372f2c0f11d0d2a845c325ca5847e891b6583ce81d6b5ab0cd2399_ppc64le as a component of Red Hat OpenShift Container Platform 4.21",
"product_id": "Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/sriov-cni-rhel9@sha256:18b649c7e0372f2c0f11d0d2a845c325ca5847e891b6583ce81d6b5ab0cd2399_ppc64le"
},
"product_reference": "registry.redhat.io/openshift4/sriov-cni-rhel9@sha256:18b649c7e0372f2c0f11d0d2a845c325ca5847e891b6583ce81d6b5ab0cd2399_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift Container Platform 4.21"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift4/sriov-cni-rhel9@sha256:4217d67066546d6cdede76c350ddb11d0ae35ce151349e88e6b3c2a6e1837bd1_arm64 as a component of Red Hat OpenShift Container Platform 4.21",
"product_id": "Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/sriov-cni-rhel9@sha256:4217d67066546d6cdede76c350ddb11d0ae35ce151349e88e6b3c2a6e1837bd1_arm64"
},
"product_reference": "registry.redhat.io/openshift4/sriov-cni-rhel9@sha256:4217d67066546d6cdede76c350ddb11d0ae35ce151349e88e6b3c2a6e1837bd1_arm64",
"relates_to_product_reference": "Red Hat OpenShift Container Platform 4.21"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift4/sriov-cni-rhel9@sha256:cb4c3e8f99e94fe87498dc6a3360d10db9d5735a5d85a10d83a3503861d28c03_amd64 as a component of Red Hat OpenShift Container Platform 4.21",
"product_id": "Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/sriov-cni-rhel9@sha256:cb4c3e8f99e94fe87498dc6a3360d10db9d5735a5d85a10d83a3503861d28c03_amd64"
},
"product_reference": "registry.redhat.io/openshift4/sriov-cni-rhel9@sha256:cb4c3e8f99e94fe87498dc6a3360d10db9d5735a5d85a10d83a3503861d28c03_amd64",
"relates_to_product_reference": "Red Hat OpenShift Container Platform 4.21"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift4/sriov-cni-rhel9@sha256:e4aa72ffa1446d67c99550be24dfaaf4d07e70ca86872f9062aa72db8d139a15_s390x as a component of Red Hat OpenShift Container Platform 4.21",
"product_id": "Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/sriov-cni-rhel9@sha256:e4aa72ffa1446d67c99550be24dfaaf4d07e70ca86872f9062aa72db8d139a15_s390x"
},
"product_reference": "registry.redhat.io/openshift4/sriov-cni-rhel9@sha256:e4aa72ffa1446d67c99550be24dfaaf4d07e70ca86872f9062aa72db8d139a15_s390x",
"relates_to_product_reference": "Red Hat OpenShift Container Platform 4.21"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2026-6322",
"cwe": {
"id": "CWE-140",
"name": "Improper Neutralization of Delimiters"
},
"discovery_date": "2026-05-05T11:01:00.332189+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ingress-node-firewall-rhel9-operator@sha256:5155030314f2efb0be5a7fe1f4dbf8edfc41af915f7fac7db10a6adbe4a86ac9_ppc64le",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ingress-node-firewall-rhel9-operator@sha256:6f09cbddc2165982085e382db12e5503b16d7a1e79842a19157f4910257f43ef_amd64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ingress-node-firewall-rhel9-operator@sha256:94f69160b0ddda0e840a473c1e5f5fcab47eee8567ee4a927f32930b1a0e5f91_s390x",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ingress-node-firewall-rhel9-operator@sha256:a9372f22f3ed5bda5c1d51a7354c6a8b4e0f603367b3c07ec6a0776352a4897f_arm64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ingress-node-firewall-rhel9@sha256:38781886f8849ffc36870f3dc44c06e262b9b0524d15251bcc8e81b314ddf728_amd64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ingress-node-firewall-rhel9@sha256:64c1a57597fd99e5c2cd0f3627043ab939e06a0163a3fc1554bc66f94edfa686_arm64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ingress-node-firewall-rhel9@sha256:b3a2d872463aa43a8c66c754472c84b355930c8618a53d8103627e2985f89efd_s390x",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ingress-node-firewall-rhel9@sha256:f0fbda30bb66a43d1e8127817968af6a407c1e96780ea5e023911496b2bdff32_ppc64le",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/kube-compare-artifacts-rhel9@sha256:277a845f5ffe398935b4fe5c035dba2a41bc23d1abce44893976487abc91514f_amd64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/kube-compare-artifacts-rhel9@sha256:392009255b87f893829cba2f90111a2dfb6d70183d1a2e657411ce7aa459934f_ppc64le",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/kube-compare-artifacts-rhel9@sha256:8876c6edf54f10692f7d43d00c4f8ee1d39200db701779c5ec4d6e9e7b0508f6_arm64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/kube-compare-artifacts-rhel9@sha256:ceda974d51671b0a78b17826e208ae8519a6509c79ec84ed2ffcfd2ee45a5382_s390x",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/kubernetes-nmstate-rhel9-operator@sha256:6ab82578e1faf15606648c109580ef1f7cc655a75001b6b1e4bf582815407fc9_amd64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/kubernetes-nmstate-rhel9-operator@sha256:9bd366998eabe8f3a505fcf0281a3a875d5168ab58926fa1af47216a6944b377_arm64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/kubernetes-nmstate-rhel9-operator@sha256:ccbf58a3edb87217efe16de650032ca9bbe162fef07c69468595ec22764c3f04_s390x",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/kubernetes-nmstate-rhel9-operator@sha256:ddbaaa6c78e9f98ea9322fc6e9ea271656eebfcc1bdc46ac9bc0a83c9404ab00_ppc64le",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/metallb-rhel9-operator@sha256:36367c6dac166a814a1a76a822c67602a02aa37dee5ae602d60da867488a757e_amd64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/metallb-rhel9-operator@sha256:3e904ee98de7fb1246da992444ee25e4ddd07806f02c2619b65ee75b315e6905_arm64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/metallb-rhel9-operator@sha256:aa51df9e1905c0e44f7f6ecd74d6682362975c59911b9e36e905cb52a64096b9_s390x",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/metallb-rhel9-operator@sha256:e9fdcee92e84dad61b213d7a3ffe24318bbbd0b79890c779760761675bf4ce3b_ppc64le",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/metallb-rhel9@sha256:13dfba732da2aba14e5527d2008955134978909ed8823641a21ee2e118b33498_amd64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/metallb-rhel9@sha256:338e57453aaf7b4a08df12f351894d109de6ea7926b021510197bea87b5c7284_arm64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/metallb-rhel9@sha256:98dcb57b27e6b66e4b4199e33eecfb494218a4e75944eb45e7aad765f27f48bf_ppc64le",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/metallb-rhel9@sha256:b3bc0e1b1a9fa18b3d31f38198f70ee60aecaeb83d65b89806eeb69d78be1a2e_s390x",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-ansible-rhel9-operator@sha256:9a13a11550efc801a742b3c44908941151e051d0d4a81d20d2e8982f79af1559_s390x",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-ansible-rhel9-operator@sha256:edf0c24be41ee871c33b2bd40040101d03c388966ef56bea6ab5fe3e64159efd_amd64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-ansible-rhel9-operator@sha256:fb032926e45ec0ebb0ac6fde368797a7c7cfb17efea94e77049a843780d407eb_arm64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-ansible-rhel9-operator@sha256:fc9ac010edc301f955073bbb9912e595ce6fd33a62c4b0c11435b9e91ba7ef54_ppc64le",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-aws-efs-csi-driver-container-rhel9@sha256:37150c4d95a762ba377b126f961a2adbba6628db5495dc0ea237b02b81aa51aa_amd64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-aws-efs-csi-driver-container-rhel9@sha256:6d03c8e522cc099a72cc92a0ecaff93d52eb590529405888f30196b2946d0e18_arm64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-aws-efs-csi-driver-rhel9-operator@sha256:5ab5208bf09cfcadd7f3ecc0dc3dd23656630ff7a1a6eab90de3529db17f3c24_arm64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-aws-efs-csi-driver-rhel9-operator@sha256:5d3d03e26113cf4740d2947d9e23c1007615506206c2399644a81e8f343cbaaf_amd64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-cloud-event-proxy-rhel9@sha256:382657d2e3f4ee1d32849b509812c51004c015343a1d4ec0106d70b527f5ee12_amd64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-cloud-event-proxy-rhel9@sha256:8767026aa89aaa77b06c0b1387bbe677817ff7fb1e965d025e91399dd885959b_arm64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-cloud-event-proxy-rhel9@sha256:dc92042cb3802b221e594da9636d090ad795853d161c6d2152ddef7d152d6da8_ppc64le",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-cluster-capacity-rhel9@sha256:2518816e5aa5f22e38bd326f09f33c1a1efdbd310ed1cad1299a621e8054a8d1_s390x",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-cluster-capacity-rhel9@sha256:34d1067f6c432ef0cb087a154e7da91666102b892c30f0fc841f9722a7a8c6f2_ppc64le",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-cluster-capacity-rhel9@sha256:543790697a3c850a48d32e860bb4c9c0d6d5ac937b6b5c3b8954c6f4f3cb39ba_arm64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-cluster-capacity-rhel9@sha256:95c176b32fb102f563e6600226582b9c99d39b0431f82bdb433cb9c21b40add6_amd64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-cluster-nfd-rhel9-operator@sha256:3691d7ccdba3b713c82729dc32d651a80365d0a4dc9edad6cfe66cc47b7f5199_s390x",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-cluster-nfd-rhel9-operator@sha256:73003ac3bc1c768dfafe6714fd7323c8c941a818cea9e3ef88a2fa7494283a08_amd64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-cluster-nfd-rhel9-operator@sha256:abb1a3a0207fc34c9f6c37dd191567c80ea70d577b8fd94943fcebaca535147e_arm64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-cluster-nfd-rhel9-operator@sha256:c2b036ed84793e8357e3f46667736e4366d93beb64a22aaf428fdb9e2c9d40c7_ppc64le",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-clusterresourceoverride-rhel9-operator@sha256:1d1dcf4357867bafe3b4a3576ece0b93f0430d659ed65b1abc0744d7a24745b5_ppc64le",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-clusterresourceoverride-rhel9-operator@sha256:71f51894c78898a751821178ffb46f313b83c7de10f0fa036ed9b285d527fc32_arm64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-clusterresourceoverride-rhel9-operator@sha256:d21eade3a6125db8cc43e6424ad74230214cc4a46abeb59ba1b2a3c101ac6283_amd64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-clusterresourceoverride-rhel9-operator@sha256:dc7984ec2dbdd156dc885ff3d04cfb6dbdc167e6902ec3e4df693ffd2a85ac06_s390x",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-clusterresourceoverride-rhel9@sha256:0bba654bc6ff6f0b2033fcb690493fc9e7a4d1f85588aab90e54ce5b48dc5567_s390x",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-clusterresourceoverride-rhel9@sha256:0c91eec9681f4e16be81eaa6e24d934e87d297da27962b28698727018ea4b2fe_ppc64le",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-clusterresourceoverride-rhel9@sha256:36f60e44d8be2d1d0e8d2c448cea63bdeb39f5c2ac1c1c35151d044dc0b0ee26_amd64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-clusterresourceoverride-rhel9@sha256:afdcc56fd0a1fedd3fcd8c9eac4f7e518b0aa54886bbc08b7d8814faaf0e1e36_arm64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-dpu-cni-rhel9@sha256:5276191889ae349eaf5a1b1d65f21b429cfc52718600201307151f3556b4b98b_ppc64le",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-dpu-cni-rhel9@sha256:57793b7fd69cd2e464ac3546c1a158827a10f4c9556b1696c3aaadecfac7f37f_s390x",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-dpu-cni-rhel9@sha256:7e45522e22c496fb7cb9a530e169c73c43ca9fde61539abbee4be7f651b98cda_amd64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-dpu-cni-rhel9@sha256:8bd989e5443259a6deffb51e7d180c1a221e20bc1f9b2a5f1ff70096b9c9c4f4_arm64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-dpu-daemon-rhel9@sha256:6904235bc5934801e8409a5960da09407d820754cbe10edb8cf62ec1484b87b7_s390x",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-dpu-daemon-rhel9@sha256:9440d51ed354698f93e91c380a65daa0e165a13d3cac2818e2533c5f7ef60fa6_amd64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-dpu-daemon-rhel9@sha256:a3432a6fe6e2853c8f88968f3ded5adc0dd3efb14f48a34e52b4b18b1aa037ea_ppc64le",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-dpu-daemon-rhel9@sha256:b0d0462ba40d99af32b252319cc05864c45f0758fd1b38581b2690c4940a2c20_arm64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-dpu-intel-ipu-p4sdk-rhel9@sha256:9017e22f5fd9703d326059df6cb0c61cfde6840e6f454fcc49c92908236e899e_amd64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-dpu-intel-ipu-p4sdk-rhel9@sha256:d48880afd49e5fa069b2be1a9f1ef6786a4d45d63c175fab372d844a64af2821_arm64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-dpu-intel-ipu-vsp-rhel9@sha256:1e42bc22e95bfac89c04d820fbc75965965b86fa64ec3b10c2ce49f0d076a118_amd64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-dpu-intel-ipu-vsp-rhel9@sha256:a89114e65548d7927d0a8f2db84ad68151f026c092f861bdea1498db84a3da32_arm64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-dpu-intel-netsec-vsp-rhel9@sha256:ab420e77f917866e3237122a47a6a6b98805dba9d944aef4f730c8a1d20a0560_arm64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-dpu-intel-netsec-vsp-rhel9@sha256:b9080c881c0151460a1286493640e0d1e0c018a81340466ab1c13203310219e6_amd64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-dpu-marvell-cp-agent-rhel9@sha256:5d70111632bb020cce18b16a88ee172ed293ea6b0cd0521ee44b619b474b8762_amd64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-dpu-marvell-cp-agent-rhel9@sha256:6e51660e597421b36ea9d960a054577d11c66511e4707128fab9e60d4580bdf9_arm64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-dpu-marvell-vsp-rhel9@sha256:77c16c7c6cf3e7ed299585a733b04718083579fab41bc7488314b428c416390e_amd64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-dpu-marvell-vsp-rhel9@sha256:979c3c3666771f20961ae422e34d63c7c4a1838b937cccfdbe5a3279cbd120a6_arm64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-dpu-network-resources-injector-rhel9@sha256:a9a41a126d694f0b1ca797ba28d8899a326ad3a1d40d8be05d6a2f42cac12398_arm64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-dpu-network-resources-injector-rhel9@sha256:cd8d332585ebf4f8819cc54c64285f1e2ea127de41e4edff909fddbef4d02c5d_amd64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-gcp-filestore-csi-driver-rhel9-operator@sha256:51d776f3327e8828dfed49bb6e6fb421bd8b7bb4ec225298f441d35f4f39b6e3_amd64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-gcp-filestore-csi-driver-rhel9-operator@sha256:c0e944e7f3b22eb46ddac4b37f689e2c600dcc84c32b0e966e7251a45c6454e5_arm64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-gcp-filestore-csi-driver-rhel9-operator@sha256:de288d5f53fb26030f4359623cafb0743f482c6418d4259563d9d0b974f7cd4c_ppc64le",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-gcp-filestore-csi-driver-rhel9@sha256:a0353e92588be591c35f299f51f6da9e5be0136b3a8b30b7277cf4a46266d1cc_amd64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-gcp-filestore-csi-driver-rhel9@sha256:b5fc12bb45b0f049223f4b26e0078f58d97462754ae3ea3bb1673aee5d22b62d_arm64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-gcp-filestore-csi-driver-rhel9@sha256:fa28b3271852e969fba812fdd0ed26c6def0669358dc92ebd1628a20756559ef_ppc64le",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-helm-rhel9-operator@sha256:01e0ffb0da07e6a7da267706ee894a2d80b7d909770e22b106294e7662924e1f_ppc64le",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-helm-rhel9-operator@sha256:029e7d3829e93662046330222540af9d57f99bab9a708fb0262b614ba4ec5894_s390x",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-helm-rhel9-operator@sha256:2f7fc2e6130b0504eb6451edeeb4b5815b162428d281aac6afd2f52ac5a04d10_amd64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-helm-rhel9-operator@sha256:f30d6e6a77b47b17628bd0216d92173de8e3fc832bf06362eb1c1742bc6c40df_arm64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-kubernetes-nmstate-handler-rhel9@sha256:38a05eaa1a557c4971e9da0b8aeeaac34d2e479d0aabe5bef2990d549b03ecfe_arm64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-kubernetes-nmstate-handler-rhel9@sha256:49dce6c7de88a1840a20dc713fe6ba74f60f5b4263aeea6f826f3b9b522e96bf_amd64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-kubernetes-nmstate-handler-rhel9@sha256:9a5be2cb99904acae97141af03282627a0de72054396a58500ae26fed5a9ff4e_s390x",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-kubernetes-nmstate-handler-rhel9@sha256:d0c7639baee74257b10ef4207ba5bff14554f3153e488567758c55d168d972bd_ppc64le",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-local-storage-diskmaker-rhel9@sha256:975e56e998c4ea82fedf71d019ed0e577e8a29cfe3c412ceeeb93306bf7bb361_s390x",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-local-storage-diskmaker-rhel9@sha256:9fddd5cc3bf03b42a49346f86a0bef2a459a4da632bbfd0e5e3b2e83070e5092_ppc64le",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-local-storage-diskmaker-rhel9@sha256:a1c8c56d4975ec3980441a56fb765cd0031e23d63391dec86d69ab6e7b343bc2_arm64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-local-storage-diskmaker-rhel9@sha256:bf694ff952b6220ac1db51a8ff1823ee85b5d0fc6b6127c00b868a017853f53c_amd64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-local-storage-mustgather-rhel9@sha256:1e5fa0e4c111c508ddbdf4a4b8b76b6dca44ff0b31ee9e798c3ec8b8c01222b9_ppc64le",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-local-storage-mustgather-rhel9@sha256:30aa075ab2652d4ba186eb80915383b6dd4e7b7215fe5ffeec3c80bb1371b3f2_arm64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-local-storage-mustgather-rhel9@sha256:53000c76b406be2af70be4c5258829f004a39a9d520cc020df44d7fa640d05ad_amd64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-local-storage-mustgather-rhel9@sha256:86afe7a1545222df4bca1c8620e99b63048152f235f5ca9fddd73cc5bad1b9c4_s390x",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-local-storage-rhel9-operator@sha256:3eb77753a5e2d6ff1023a9cb682b67a04b6dbcc2c6537c4ea18f523aa360a166_ppc64le",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-local-storage-rhel9-operator@sha256:7217e60230edabbeaaa56cc3aceac15421f359a29c3eecfebbfe1582b270d347_s390x",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-local-storage-rhel9-operator@sha256:83e84b70455d419a743df8eee90746745a46cdc52032fc6ac9238d7aca0086de_arm64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-local-storage-rhel9-operator@sha256:ce139a228805b636280ed42198c7f93a666004f79d48861ad12edd3045f7c412_amd64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-node-feature-discovery-rhel9@sha256:11f6bab6d8a000b25880f1b9395d769bc962aa34393ace4fab4c2d44205b1c95_ppc64le",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-node-feature-discovery-rhel9@sha256:56b2612c509ae4021332da9b4e252304c50234dab408caade568f4573573a998_amd64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-node-feature-discovery-rhel9@sha256:d470ef1f28b5233bab28e2b8b0a47fefd47aae8737cd4c6d488453aa6dd06c84_arm64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-node-feature-discovery-rhel9@sha256:e12011347e72eb4d2e3f03ab0532132c302e2057a0c4dc177e13d82dcd714e67_s390x",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-ptp-rhel9-operator@sha256:a668793754ce8ef6251e892a37241879a0b29e540983d63b56a4be3f673e6fb3_ppc64le",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-ptp-rhel9-operator@sha256:c32ff4bbb692686b26b68f79f2d3b6f1cea33eeb4ce1b377097d676190226cb7_arm64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-ptp-rhel9-operator@sha256:e8fcd2cf5235561386220e84b11b08cbf447f584746b9f6c0f9c46eff5f29364_amd64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-ptp-rhel9@sha256:a0e3f44b5fe44c8cb2a8e3745e218deffeb339302dc25b4aa88ae5973052a682_ppc64le",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-ptp-rhel9@sha256:ceffce6ae5d36775df6cfb2b23a8e089e10806c087d88ddcd5822d1e05d1843e_amd64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-ptp-rhel9@sha256:f97c24fdcc9bdbd8c0e7807a95d9338d6bd6537edf5afff4b2871ae808b78803_arm64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-secrets-store-csi-driver-rhel9-operator@sha256:5b2fb854cfe291704d78db26b17451565065414aac0763661ed2b59831487601_arm64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-secrets-store-csi-driver-rhel9-operator@sha256:601ce1c70b7801a8de9e33a4466b299e2f76d544b66860cba94ef0dc69ecf797_s390x",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-secrets-store-csi-driver-rhel9-operator@sha256:86a5601f89c0f47b69e0c1a1950f5d1bf584f3cf90188fbf92d7622dd7ff9156_amd64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-secrets-store-csi-driver-rhel9-operator@sha256:dc815adc448c1aea6fd6cf7e4cab7e4361d1f54e10cd88b54701b41dcda11f42_ppc64le",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-secrets-store-csi-driver-rhel9@sha256:007ea9c7d8bcf7729505788e73a3647e85be6d3f8375ced4099e575c4c1a11a5_amd64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-secrets-store-csi-driver-rhel9@sha256:1c8bcdd2bb475931744eb16af2c176d7412cc1bb877eea7869dd395dec6f39ac_s390x",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-secrets-store-csi-driver-rhel9@sha256:7d3d14431dbbe405b14de1a84939ff5e4b35d17768c023db144c1e88cf60ad6f_ppc64le",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-secrets-store-csi-driver-rhel9@sha256:8d574539166590373d98289eab070d809068ae59b4c9437893bc5f1a75243e88_arm64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-secrets-store-csi-mustgather-rhel9@sha256:37f50cdddd56cd5f6fc6c19d37a9f480ac92308a593f70e90e58dd9f937da438_arm64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-secrets-store-csi-mustgather-rhel9@sha256:53aa411cc0b116c6693b7ffec54c51643921be9999f5d7c786e3d8ab6c14185f_s390x",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-secrets-store-csi-mustgather-rhel9@sha256:546942fbfcc68e3f17523eaaae31d5694c545cdf84bb73ce0c2f20bfb0419844_amd64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-secrets-store-csi-mustgather-rhel9@sha256:a77e3a3b7f0476f0821b97028cdbd7c784875f3c60a9540ef7ddc123a7994322_ppc64le",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-smb-csi-driver-rhel9-operator@sha256:331ae406cc1d7df8814755f8d7d3b7a28829ba1b14c8f3e54e13ac768a53bea3_ppc64le",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-smb-csi-driver-rhel9-operator@sha256:8c06c9971a1e4d101022419e787f698419d36cfec480f6c991cbd0ee0a1b12e5_arm64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-smb-csi-driver-rhel9-operator@sha256:d2b2d32cb77ba179f2af443176194395c23585ee986a79e81ebe85d262783bda_s390x",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-smb-csi-driver-rhel9-operator@sha256:d50822b32fc2d3c2069b5213e13d43e7f376886e7e5189dba36960932eff9af5_amd64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-smb-csi-driver-rhel9@sha256:0ec112141b35688b1797ce674654d9c1c9f58ae66cc8feeb0379163644a497dd_amd64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-smb-csi-driver-rhel9@sha256:273ac5166b9092848e05ea4bf7a657ecbd6cc1762a5a20146c87cecb3016fe85_ppc64le",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-smb-csi-driver-rhel9@sha256:9593bea00e57e92b51dd05bb5b0e6d62df9a1cb4fc5591f5283b43f02fcdff72_arm64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-smb-csi-driver-rhel9@sha256:f365a691fd585664a3f41dd12bf459ba37a628c899f32fcf03ce3915caf6946b_s390x",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-sriov-dp-admission-controller-rhel9@sha256:1e487121455823010b1b43a7a4be96c5b953b5041ba39580e8f2f02a926da56d_ppc64le",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-sriov-dp-admission-controller-rhel9@sha256:6fb389d62e79b243cb0d06d32ee0f824eaf98db2a9bd2e27fce00ec38258c1ae_arm64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-sriov-dp-admission-controller-rhel9@sha256:7dfe5b88672cdf77c78c0ffaec725ad2f3e3a5e9bb7b3530a1ed819da338b5a1_s390x",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-sriov-dp-admission-controller-rhel9@sha256:f0f69fcd1cf9ce0cabb42d5c7ff39790f786e12a84cedf7596f13358494c90aa_amd64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-sriov-infiniband-cni-rhel9@sha256:37b587093902b17bd69212e43305888bd770d3a21a4eab7bdb682af8bc64b347_amd64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-sriov-infiniband-cni-rhel9@sha256:5b69b9c0ab707cfcf11f706adacb764a73c928621716f3fb9914814689369f9f_ppc64le",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-sriov-infiniband-cni-rhel9@sha256:a35e12407b3f4e22c53331f6019435945ee53db9ab67c21062926c120cb491d8_arm64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-sriov-infiniband-cni-rhel9@sha256:c033dce54bea495f2cb2f7b297892a1188cd08abc8e5a717db52fc0c3d9df6c2_s390x",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-sriov-network-config-daemon-rhel9@sha256:30dfae75fbdc1f97b9932d88760cce5c2aa1d1bbb61a8a32b3decb66674ca5f6_s390x",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-sriov-network-config-daemon-rhel9@sha256:3b44b97a59a4962da6415c625bf7c76d16f3368d3e955f0c5dcbe05b5f0f5ac4_ppc64le",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-sriov-network-config-daemon-rhel9@sha256:948595a29e50712c7f5847e8211e1200f44d3914f91fd50915ab42d86664bf8f_arm64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-sriov-network-config-daemon-rhel9@sha256:cc8d7bbfb8d0afc2e6c225dadf632af79837cb80d23fef983a7c89dc7303aac0_amd64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-sriov-network-device-plugin-rhel9@sha256:66f80c9740560af31361fe33c6c182496abd3f1bd1e35c27346b94be370223aa_arm64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-sriov-network-device-plugin-rhel9@sha256:8a3ca73990b9c47173dd81929d997d08c219dd7ebca6e2abf8763b9e06b6dcc7_s390x",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-sriov-network-device-plugin-rhel9@sha256:978ba2e085c4683dc1a0b499043095704957c7b5db5012c59dd7cfc355fed1b0_amd64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-sriov-network-device-plugin-rhel9@sha256:d4ff686da4afdf216acf3c9ad530844cf989d3fd0ea69456ee13878ca38ab53c_ppc64le",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-sriov-network-metrics-exporter-rhel9@sha256:22889c2ed91e69fe02b98aeba2df75a470a4bc538683d48ac5632b0d049fbae5_ppc64le",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-sriov-network-metrics-exporter-rhel9@sha256:6aff0035aff9f654cbe4fb4437b57af3bef4bc3801aea32e2cd4e32b4910f482_arm64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-sriov-network-metrics-exporter-rhel9@sha256:bc31897f905a8a05e063878fdfedf523c9313f6131f03236421ec4e971d5a2cc_amd64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-sriov-network-metrics-exporter-rhel9@sha256:f426214060d6c4e61984d2b275489a38098fa6c1977c913bfb17757c34d83147_s390x",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-sriov-network-rhel9-operator@sha256:5112ee38eb67037b9dec616724ba01d32651dfc71bac03e26646ae8e517f4540_ppc64le",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-sriov-network-rhel9-operator@sha256:744c6db730c13b35c8a7eb1c63c87a6fe01f7b4a6137a4cdf6e318afa560fae2_amd64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-sriov-network-rhel9-operator@sha256:ad9fffd643b1b7fca4e04dbecd6e3df93b68d1d455ead877fc92931fb893a234_arm64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-sriov-network-rhel9-operator@sha256:d2c308d8f6e2174073cf84c0d7baf9b05d78ca8e4e2057009b71758a0771169e_s390x",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-sriov-network-webhook-rhel9@sha256:07240bbb9795a5c405940633d3a2f0fb47f5abbf9b0c87361bdf80dde10ab528_s390x",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-sriov-network-webhook-rhel9@sha256:11b5d71f5f9e512b7feb2aeb79b1874e34e27bb222f576a1f9dda8898630528c_arm64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-sriov-network-webhook-rhel9@sha256:7457d5a64900cb13365c55cba14193dd90eb73c11863bedd96b33e1add5f85f3_amd64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-sriov-network-webhook-rhel9@sha256:eaa3c056167469c6bb5513e3dde02e5dab49d5b98e1c17ab966ad7313222b1ab_ppc64le",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-sriov-rdma-cni-rhel9@sha256:07fbfd0334aec167fb06ff4eba3053d9cecc00664b9cfea1d18b4b6bdd0814fa_s390x",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-sriov-rdma-cni-rhel9@sha256:18e7e59dbe9ba0498fcb12b6483ef22d4079ea6e1402fba88a6aae000f340e9d_ppc64le",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-sriov-rdma-cni-rhel9@sha256:2433095c43109b0ec3932a9b2b34600271f32bd440f9cc73c43b742b913646d5_amd64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-sriov-rdma-cni-rhel9@sha256:75a785f3d554b02952605b3af98f00fcada32117e8d0c3e6fe22f44e7651bc1e_arm64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-support-log-gather-rhel9-operator@sha256:10e52003925adc71826622c39efab5fea15638adddc6aef533cf0692ca23f6d4_ppc64le",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-support-log-gather-rhel9-operator@sha256:5b6fcf89b09b265ac65ef49afea5e7cbd786df205ecb5426cb1cda10bc5dcfd6_arm64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-support-log-gather-rhel9-operator@sha256:89ab8e96ab53d430ce97e8a80fd4ef35277234391a72723da2a8457be881291e_amd64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-support-log-gather-rhel9-operator@sha256:e6ee32452c5a790d4704806161a2b63a29aacc165766295f92762bffbd89d6aa_s390x",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-vertical-pod-autoscaler-rhel9-operator@sha256:54ffc01a3dd2306f78dfdd6097e5c775b3edac36f443099c730c241a45833638_amd64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-vertical-pod-autoscaler-rhel9-operator@sha256:a827987893266c281440a48b4229a7f48c1d40bbad3e7f6ed8c84bfaa4c0281c_arm64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-vertical-pod-autoscaler-rhel9-operator@sha256:c3b36f187a4b67d4b4df5c7e2bb975832a2709d1891aec41af4d46bc578659ba_ppc64le",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-vertical-pod-autoscaler-rhel9-operator@sha256:ecc3b8fa62455706ee62cb0d1c0226d300f5f15304bafe4e518f2d3ffc928bde_s390x",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-vertical-pod-autoscaler-rhel9@sha256:561f7a4380dc0189b3b219bf7ab9a5b67d0baadcc05d6b1c0864770c928a43d7_amd64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-vertical-pod-autoscaler-rhel9@sha256:715fd2f2e998043648963177764e4dcab56f4c73e10c4c2c293445692d835f25_s390x",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-vertical-pod-autoscaler-rhel9@sha256:b3dff747e802382fb5cc9df83b2950eb1773f817e82ea6482f3fc6f52bce0706_ppc64le",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-vertical-pod-autoscaler-rhel9@sha256:f31091c53dcf7f2148c91cc7cfa625ff92940f47f2cc341f0c4f8f6bb8dd4eea_arm64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/pf-status-relay-rhel9-operator@sha256:889c8eb5ab957329e63f83bf86199396246fcc79fb841c1d63808d9999aa27fe_ppc64le",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/pf-status-relay-rhel9-operator@sha256:b5a7192ce8bd5d376f73d22a7352ecd9acfa8648a7bb4d18e4c19bbbfaab4e5c_arm64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/pf-status-relay-rhel9-operator@sha256:c1e5de1e0068aa168df07192576be90eea2df9c5941cde1260c547d088424d2d_amd64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/pf-status-relay-rhel9-operator@sha256:c4ede99f6c9aca2fff295d06dbc9d6f603ab73b323fc0c876ae01a5edf8abc1c_s390x",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/pf-status-relay-rhel9@sha256:355aa8de7d52c60509970f2572b232185505f97c1b3624bdcf8f1bd5b097aa19_arm64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/pf-status-relay-rhel9@sha256:8521f8e56aed7158d674c968909d34a4b235cc91c5c8ceeb21217ac8e7e167e3_amd64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/pf-status-relay-rhel9@sha256:b95bb5f44309a8b851af6a92c4346edd4017028516ea7e024ffee73fc96e80e0_ppc64le",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/pf-status-relay-rhel9@sha256:e01330406bf0fadd9e81f731ef6514946ffdc7a137726c9ed4d7c1d890d33f46_s390x",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ptp-must-gather-rhel9@sha256:2c8b5c11bb25cf78f3d5bc4a6c8ea2952a681c1d6bc622493e0fb8e7cdd8d338_amd64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ptp-must-gather-rhel9@sha256:429969ea012b2a168aa0c3971a26d9bcfb1749c0721c4afc4d9cc8e38aca6b9f_ppc64le",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ptp-must-gather-rhel9@sha256:51770b7af0a378ba8c7580c9e7404bab256f6230a3232e598db33feafc48113e_arm64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/sriov-cni-rhel9@sha256:18b649c7e0372f2c0f11d0d2a845c325ca5847e891b6583ce81d6b5ab0cd2399_ppc64le",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/sriov-cni-rhel9@sha256:4217d67066546d6cdede76c350ddb11d0ae35ce151349e88e6b3c2a6e1837bd1_arm64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/sriov-cni-rhel9@sha256:cb4c3e8f99e94fe87498dc6a3360d10db9d5735a5d85a10d83a3503861d28c03_amd64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/sriov-cni-rhel9@sha256:e4aa72ffa1446d67c99550be24dfaaf4d07e70ca86872f9062aa72db8d139a15_s390x"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2466684"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in fast-uri. A remote attacker could exploit this vulnerability by crafting a malicious Uniform Resource Identifier (URI) that contains percent-encoded authority delimiters. The fast-uri library incorrectly decodes these delimiters during normalization and then re-emits them as raw separators, which can change the URI\u0027s intended authority. This issue allows applications that perform host allowlist checks, redirect validation, or outbound request routing to be steered to a different authority than specified, potentially bypassing security controls.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "fast-uri: fast-uri: URI authority bypass due to improper delimiter handling",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This Important flaw in the `fast-uri` library allows an attacker to bypass security controls in Red Hat products that process Uniform Resource Identifiers (URIs). By crafting a malicious URI with percent-encoded authority delimiters, an attacker can cause the library to incorrectly interpret the URI\u0027s authority, potentially redirecting applications to an unintended domain. This could lead to a bypass of host allowlist checks, redirect validation, or outbound request routing.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/nmstate-console-plugin-rhel9@sha256:609cce4a625a7d1c2a83fde70db520fcdc1a4f75b78f96fd42d188f2eb623674_s390x",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/nmstate-console-plugin-rhel9@sha256:a06625622d7d52e5c21bec84047a765aeb065309ed9908eb16cf97a25e1017ac_arm64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/nmstate-console-plugin-rhel9@sha256:a40c59091b55f2fb79b9f58aa1ebabfa836cee775d20c3c40341811ae060cf37_amd64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/nmstate-console-plugin-rhel9@sha256:d889210346e1615778eb8346811e00b079b573afb24a0078ec77751bfa27db7b_ppc64le"
],
"known_not_affected": [
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ingress-node-firewall-rhel9-operator@sha256:5155030314f2efb0be5a7fe1f4dbf8edfc41af915f7fac7db10a6adbe4a86ac9_ppc64le",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ingress-node-firewall-rhel9-operator@sha256:6f09cbddc2165982085e382db12e5503b16d7a1e79842a19157f4910257f43ef_amd64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ingress-node-firewall-rhel9-operator@sha256:94f69160b0ddda0e840a473c1e5f5fcab47eee8567ee4a927f32930b1a0e5f91_s390x",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ingress-node-firewall-rhel9-operator@sha256:a9372f22f3ed5bda5c1d51a7354c6a8b4e0f603367b3c07ec6a0776352a4897f_arm64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ingress-node-firewall-rhel9@sha256:38781886f8849ffc36870f3dc44c06e262b9b0524d15251bcc8e81b314ddf728_amd64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ingress-node-firewall-rhel9@sha256:64c1a57597fd99e5c2cd0f3627043ab939e06a0163a3fc1554bc66f94edfa686_arm64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ingress-node-firewall-rhel9@sha256:b3a2d872463aa43a8c66c754472c84b355930c8618a53d8103627e2985f89efd_s390x",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ingress-node-firewall-rhel9@sha256:f0fbda30bb66a43d1e8127817968af6a407c1e96780ea5e023911496b2bdff32_ppc64le",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/kube-compare-artifacts-rhel9@sha256:277a845f5ffe398935b4fe5c035dba2a41bc23d1abce44893976487abc91514f_amd64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/kube-compare-artifacts-rhel9@sha256:392009255b87f893829cba2f90111a2dfb6d70183d1a2e657411ce7aa459934f_ppc64le",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/kube-compare-artifacts-rhel9@sha256:8876c6edf54f10692f7d43d00c4f8ee1d39200db701779c5ec4d6e9e7b0508f6_arm64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/kube-compare-artifacts-rhel9@sha256:ceda974d51671b0a78b17826e208ae8519a6509c79ec84ed2ffcfd2ee45a5382_s390x",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/kubernetes-nmstate-rhel9-operator@sha256:6ab82578e1faf15606648c109580ef1f7cc655a75001b6b1e4bf582815407fc9_amd64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/kubernetes-nmstate-rhel9-operator@sha256:9bd366998eabe8f3a505fcf0281a3a875d5168ab58926fa1af47216a6944b377_arm64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/kubernetes-nmstate-rhel9-operator@sha256:ccbf58a3edb87217efe16de650032ca9bbe162fef07c69468595ec22764c3f04_s390x",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/kubernetes-nmstate-rhel9-operator@sha256:ddbaaa6c78e9f98ea9322fc6e9ea271656eebfcc1bdc46ac9bc0a83c9404ab00_ppc64le",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/metallb-rhel9-operator@sha256:36367c6dac166a814a1a76a822c67602a02aa37dee5ae602d60da867488a757e_amd64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/metallb-rhel9-operator@sha256:3e904ee98de7fb1246da992444ee25e4ddd07806f02c2619b65ee75b315e6905_arm64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/metallb-rhel9-operator@sha256:aa51df9e1905c0e44f7f6ecd74d6682362975c59911b9e36e905cb52a64096b9_s390x",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/metallb-rhel9-operator@sha256:e9fdcee92e84dad61b213d7a3ffe24318bbbd0b79890c779760761675bf4ce3b_ppc64le",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/metallb-rhel9@sha256:13dfba732da2aba14e5527d2008955134978909ed8823641a21ee2e118b33498_amd64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/metallb-rhel9@sha256:338e57453aaf7b4a08df12f351894d109de6ea7926b021510197bea87b5c7284_arm64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/metallb-rhel9@sha256:98dcb57b27e6b66e4b4199e33eecfb494218a4e75944eb45e7aad765f27f48bf_ppc64le",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/metallb-rhel9@sha256:b3bc0e1b1a9fa18b3d31f38198f70ee60aecaeb83d65b89806eeb69d78be1a2e_s390x",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-ansible-rhel9-operator@sha256:9a13a11550efc801a742b3c44908941151e051d0d4a81d20d2e8982f79af1559_s390x",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-ansible-rhel9-operator@sha256:edf0c24be41ee871c33b2bd40040101d03c388966ef56bea6ab5fe3e64159efd_amd64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-ansible-rhel9-operator@sha256:fb032926e45ec0ebb0ac6fde368797a7c7cfb17efea94e77049a843780d407eb_arm64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-ansible-rhel9-operator@sha256:fc9ac010edc301f955073bbb9912e595ce6fd33a62c4b0c11435b9e91ba7ef54_ppc64le",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-aws-efs-csi-driver-container-rhel9@sha256:37150c4d95a762ba377b126f961a2adbba6628db5495dc0ea237b02b81aa51aa_amd64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-aws-efs-csi-driver-container-rhel9@sha256:6d03c8e522cc099a72cc92a0ecaff93d52eb590529405888f30196b2946d0e18_arm64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-aws-efs-csi-driver-rhel9-operator@sha256:5ab5208bf09cfcadd7f3ecc0dc3dd23656630ff7a1a6eab90de3529db17f3c24_arm64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-aws-efs-csi-driver-rhel9-operator@sha256:5d3d03e26113cf4740d2947d9e23c1007615506206c2399644a81e8f343cbaaf_amd64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-cloud-event-proxy-rhel9@sha256:382657d2e3f4ee1d32849b509812c51004c015343a1d4ec0106d70b527f5ee12_amd64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-cloud-event-proxy-rhel9@sha256:8767026aa89aaa77b06c0b1387bbe677817ff7fb1e965d025e91399dd885959b_arm64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-cloud-event-proxy-rhel9@sha256:dc92042cb3802b221e594da9636d090ad795853d161c6d2152ddef7d152d6da8_ppc64le",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-cluster-capacity-rhel9@sha256:2518816e5aa5f22e38bd326f09f33c1a1efdbd310ed1cad1299a621e8054a8d1_s390x",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-cluster-capacity-rhel9@sha256:34d1067f6c432ef0cb087a154e7da91666102b892c30f0fc841f9722a7a8c6f2_ppc64le",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-cluster-capacity-rhel9@sha256:543790697a3c850a48d32e860bb4c9c0d6d5ac937b6b5c3b8954c6f4f3cb39ba_arm64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-cluster-capacity-rhel9@sha256:95c176b32fb102f563e6600226582b9c99d39b0431f82bdb433cb9c21b40add6_amd64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-cluster-nfd-rhel9-operator@sha256:3691d7ccdba3b713c82729dc32d651a80365d0a4dc9edad6cfe66cc47b7f5199_s390x",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-cluster-nfd-rhel9-operator@sha256:73003ac3bc1c768dfafe6714fd7323c8c941a818cea9e3ef88a2fa7494283a08_amd64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-cluster-nfd-rhel9-operator@sha256:abb1a3a0207fc34c9f6c37dd191567c80ea70d577b8fd94943fcebaca535147e_arm64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-cluster-nfd-rhel9-operator@sha256:c2b036ed84793e8357e3f46667736e4366d93beb64a22aaf428fdb9e2c9d40c7_ppc64le",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-clusterresourceoverride-rhel9-operator@sha256:1d1dcf4357867bafe3b4a3576ece0b93f0430d659ed65b1abc0744d7a24745b5_ppc64le",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-clusterresourceoverride-rhel9-operator@sha256:71f51894c78898a751821178ffb46f313b83c7de10f0fa036ed9b285d527fc32_arm64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-clusterresourceoverride-rhel9-operator@sha256:d21eade3a6125db8cc43e6424ad74230214cc4a46abeb59ba1b2a3c101ac6283_amd64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-clusterresourceoverride-rhel9-operator@sha256:dc7984ec2dbdd156dc885ff3d04cfb6dbdc167e6902ec3e4df693ffd2a85ac06_s390x",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-clusterresourceoverride-rhel9@sha256:0bba654bc6ff6f0b2033fcb690493fc9e7a4d1f85588aab90e54ce5b48dc5567_s390x",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-clusterresourceoverride-rhel9@sha256:0c91eec9681f4e16be81eaa6e24d934e87d297da27962b28698727018ea4b2fe_ppc64le",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-clusterresourceoverride-rhel9@sha256:36f60e44d8be2d1d0e8d2c448cea63bdeb39f5c2ac1c1c35151d044dc0b0ee26_amd64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-clusterresourceoverride-rhel9@sha256:afdcc56fd0a1fedd3fcd8c9eac4f7e518b0aa54886bbc08b7d8814faaf0e1e36_arm64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-dpu-cni-rhel9@sha256:5276191889ae349eaf5a1b1d65f21b429cfc52718600201307151f3556b4b98b_ppc64le",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-dpu-cni-rhel9@sha256:57793b7fd69cd2e464ac3546c1a158827a10f4c9556b1696c3aaadecfac7f37f_s390x",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-dpu-cni-rhel9@sha256:7e45522e22c496fb7cb9a530e169c73c43ca9fde61539abbee4be7f651b98cda_amd64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-dpu-cni-rhel9@sha256:8bd989e5443259a6deffb51e7d180c1a221e20bc1f9b2a5f1ff70096b9c9c4f4_arm64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-dpu-daemon-rhel9@sha256:6904235bc5934801e8409a5960da09407d820754cbe10edb8cf62ec1484b87b7_s390x",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-dpu-daemon-rhel9@sha256:9440d51ed354698f93e91c380a65daa0e165a13d3cac2818e2533c5f7ef60fa6_amd64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-dpu-daemon-rhel9@sha256:a3432a6fe6e2853c8f88968f3ded5adc0dd3efb14f48a34e52b4b18b1aa037ea_ppc64le",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-dpu-daemon-rhel9@sha256:b0d0462ba40d99af32b252319cc05864c45f0758fd1b38581b2690c4940a2c20_arm64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-dpu-intel-ipu-p4sdk-rhel9@sha256:9017e22f5fd9703d326059df6cb0c61cfde6840e6f454fcc49c92908236e899e_amd64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-dpu-intel-ipu-p4sdk-rhel9@sha256:d48880afd49e5fa069b2be1a9f1ef6786a4d45d63c175fab372d844a64af2821_arm64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-dpu-intel-ipu-vsp-rhel9@sha256:1e42bc22e95bfac89c04d820fbc75965965b86fa64ec3b10c2ce49f0d076a118_amd64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-dpu-intel-ipu-vsp-rhel9@sha256:a89114e65548d7927d0a8f2db84ad68151f026c092f861bdea1498db84a3da32_arm64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-dpu-intel-netsec-vsp-rhel9@sha256:ab420e77f917866e3237122a47a6a6b98805dba9d944aef4f730c8a1d20a0560_arm64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-dpu-intel-netsec-vsp-rhel9@sha256:b9080c881c0151460a1286493640e0d1e0c018a81340466ab1c13203310219e6_amd64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-dpu-marvell-cp-agent-rhel9@sha256:5d70111632bb020cce18b16a88ee172ed293ea6b0cd0521ee44b619b474b8762_amd64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-dpu-marvell-cp-agent-rhel9@sha256:6e51660e597421b36ea9d960a054577d11c66511e4707128fab9e60d4580bdf9_arm64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-dpu-marvell-vsp-rhel9@sha256:77c16c7c6cf3e7ed299585a733b04718083579fab41bc7488314b428c416390e_amd64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-dpu-marvell-vsp-rhel9@sha256:979c3c3666771f20961ae422e34d63c7c4a1838b937cccfdbe5a3279cbd120a6_arm64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-dpu-network-resources-injector-rhel9@sha256:a9a41a126d694f0b1ca797ba28d8899a326ad3a1d40d8be05d6a2f42cac12398_arm64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-dpu-network-resources-injector-rhel9@sha256:cd8d332585ebf4f8819cc54c64285f1e2ea127de41e4edff909fddbef4d02c5d_amd64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-gcp-filestore-csi-driver-rhel9-operator@sha256:51d776f3327e8828dfed49bb6e6fb421bd8b7bb4ec225298f441d35f4f39b6e3_amd64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-gcp-filestore-csi-driver-rhel9-operator@sha256:c0e944e7f3b22eb46ddac4b37f689e2c600dcc84c32b0e966e7251a45c6454e5_arm64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-gcp-filestore-csi-driver-rhel9-operator@sha256:de288d5f53fb26030f4359623cafb0743f482c6418d4259563d9d0b974f7cd4c_ppc64le",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-gcp-filestore-csi-driver-rhel9@sha256:a0353e92588be591c35f299f51f6da9e5be0136b3a8b30b7277cf4a46266d1cc_amd64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-gcp-filestore-csi-driver-rhel9@sha256:b5fc12bb45b0f049223f4b26e0078f58d97462754ae3ea3bb1673aee5d22b62d_arm64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-gcp-filestore-csi-driver-rhel9@sha256:fa28b3271852e969fba812fdd0ed26c6def0669358dc92ebd1628a20756559ef_ppc64le",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-helm-rhel9-operator@sha256:01e0ffb0da07e6a7da267706ee894a2d80b7d909770e22b106294e7662924e1f_ppc64le",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-helm-rhel9-operator@sha256:029e7d3829e93662046330222540af9d57f99bab9a708fb0262b614ba4ec5894_s390x",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-helm-rhel9-operator@sha256:2f7fc2e6130b0504eb6451edeeb4b5815b162428d281aac6afd2f52ac5a04d10_amd64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-helm-rhel9-operator@sha256:f30d6e6a77b47b17628bd0216d92173de8e3fc832bf06362eb1c1742bc6c40df_arm64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-kubernetes-nmstate-handler-rhel9@sha256:38a05eaa1a557c4971e9da0b8aeeaac34d2e479d0aabe5bef2990d549b03ecfe_arm64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-kubernetes-nmstate-handler-rhel9@sha256:49dce6c7de88a1840a20dc713fe6ba74f60f5b4263aeea6f826f3b9b522e96bf_amd64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-kubernetes-nmstate-handler-rhel9@sha256:9a5be2cb99904acae97141af03282627a0de72054396a58500ae26fed5a9ff4e_s390x",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-kubernetes-nmstate-handler-rhel9@sha256:d0c7639baee74257b10ef4207ba5bff14554f3153e488567758c55d168d972bd_ppc64le",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-local-storage-diskmaker-rhel9@sha256:975e56e998c4ea82fedf71d019ed0e577e8a29cfe3c412ceeeb93306bf7bb361_s390x",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-local-storage-diskmaker-rhel9@sha256:9fddd5cc3bf03b42a49346f86a0bef2a459a4da632bbfd0e5e3b2e83070e5092_ppc64le",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-local-storage-diskmaker-rhel9@sha256:a1c8c56d4975ec3980441a56fb765cd0031e23d63391dec86d69ab6e7b343bc2_arm64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-local-storage-diskmaker-rhel9@sha256:bf694ff952b6220ac1db51a8ff1823ee85b5d0fc6b6127c00b868a017853f53c_amd64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-local-storage-mustgather-rhel9@sha256:1e5fa0e4c111c508ddbdf4a4b8b76b6dca44ff0b31ee9e798c3ec8b8c01222b9_ppc64le",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-local-storage-mustgather-rhel9@sha256:30aa075ab2652d4ba186eb80915383b6dd4e7b7215fe5ffeec3c80bb1371b3f2_arm64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-local-storage-mustgather-rhel9@sha256:53000c76b406be2af70be4c5258829f004a39a9d520cc020df44d7fa640d05ad_amd64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-local-storage-mustgather-rhel9@sha256:86afe7a1545222df4bca1c8620e99b63048152f235f5ca9fddd73cc5bad1b9c4_s390x",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-local-storage-rhel9-operator@sha256:3eb77753a5e2d6ff1023a9cb682b67a04b6dbcc2c6537c4ea18f523aa360a166_ppc64le",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-local-storage-rhel9-operator@sha256:7217e60230edabbeaaa56cc3aceac15421f359a29c3eecfebbfe1582b270d347_s390x",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-local-storage-rhel9-operator@sha256:83e84b70455d419a743df8eee90746745a46cdc52032fc6ac9238d7aca0086de_arm64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-local-storage-rhel9-operator@sha256:ce139a228805b636280ed42198c7f93a666004f79d48861ad12edd3045f7c412_amd64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-node-feature-discovery-rhel9@sha256:11f6bab6d8a000b25880f1b9395d769bc962aa34393ace4fab4c2d44205b1c95_ppc64le",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-node-feature-discovery-rhel9@sha256:56b2612c509ae4021332da9b4e252304c50234dab408caade568f4573573a998_amd64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-node-feature-discovery-rhel9@sha256:d470ef1f28b5233bab28e2b8b0a47fefd47aae8737cd4c6d488453aa6dd06c84_arm64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-node-feature-discovery-rhel9@sha256:e12011347e72eb4d2e3f03ab0532132c302e2057a0c4dc177e13d82dcd714e67_s390x",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-ptp-rhel9-operator@sha256:a668793754ce8ef6251e892a37241879a0b29e540983d63b56a4be3f673e6fb3_ppc64le",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-ptp-rhel9-operator@sha256:c32ff4bbb692686b26b68f79f2d3b6f1cea33eeb4ce1b377097d676190226cb7_arm64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-ptp-rhel9-operator@sha256:e8fcd2cf5235561386220e84b11b08cbf447f584746b9f6c0f9c46eff5f29364_amd64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-ptp-rhel9@sha256:a0e3f44b5fe44c8cb2a8e3745e218deffeb339302dc25b4aa88ae5973052a682_ppc64le",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-ptp-rhel9@sha256:ceffce6ae5d36775df6cfb2b23a8e089e10806c087d88ddcd5822d1e05d1843e_amd64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-ptp-rhel9@sha256:f97c24fdcc9bdbd8c0e7807a95d9338d6bd6537edf5afff4b2871ae808b78803_arm64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-secrets-store-csi-driver-rhel9-operator@sha256:5b2fb854cfe291704d78db26b17451565065414aac0763661ed2b59831487601_arm64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-secrets-store-csi-driver-rhel9-operator@sha256:601ce1c70b7801a8de9e33a4466b299e2f76d544b66860cba94ef0dc69ecf797_s390x",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-secrets-store-csi-driver-rhel9-operator@sha256:86a5601f89c0f47b69e0c1a1950f5d1bf584f3cf90188fbf92d7622dd7ff9156_amd64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-secrets-store-csi-driver-rhel9-operator@sha256:dc815adc448c1aea6fd6cf7e4cab7e4361d1f54e10cd88b54701b41dcda11f42_ppc64le",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-secrets-store-csi-driver-rhel9@sha256:007ea9c7d8bcf7729505788e73a3647e85be6d3f8375ced4099e575c4c1a11a5_amd64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-secrets-store-csi-driver-rhel9@sha256:1c8bcdd2bb475931744eb16af2c176d7412cc1bb877eea7869dd395dec6f39ac_s390x",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-secrets-store-csi-driver-rhel9@sha256:7d3d14431dbbe405b14de1a84939ff5e4b35d17768c023db144c1e88cf60ad6f_ppc64le",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-secrets-store-csi-driver-rhel9@sha256:8d574539166590373d98289eab070d809068ae59b4c9437893bc5f1a75243e88_arm64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-secrets-store-csi-mustgather-rhel9@sha256:37f50cdddd56cd5f6fc6c19d37a9f480ac92308a593f70e90e58dd9f937da438_arm64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-secrets-store-csi-mustgather-rhel9@sha256:53aa411cc0b116c6693b7ffec54c51643921be9999f5d7c786e3d8ab6c14185f_s390x",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-secrets-store-csi-mustgather-rhel9@sha256:546942fbfcc68e3f17523eaaae31d5694c545cdf84bb73ce0c2f20bfb0419844_amd64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-secrets-store-csi-mustgather-rhel9@sha256:a77e3a3b7f0476f0821b97028cdbd7c784875f3c60a9540ef7ddc123a7994322_ppc64le",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-smb-csi-driver-rhel9-operator@sha256:331ae406cc1d7df8814755f8d7d3b7a28829ba1b14c8f3e54e13ac768a53bea3_ppc64le",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-smb-csi-driver-rhel9-operator@sha256:8c06c9971a1e4d101022419e787f698419d36cfec480f6c991cbd0ee0a1b12e5_arm64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-smb-csi-driver-rhel9-operator@sha256:d2b2d32cb77ba179f2af443176194395c23585ee986a79e81ebe85d262783bda_s390x",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-smb-csi-driver-rhel9-operator@sha256:d50822b32fc2d3c2069b5213e13d43e7f376886e7e5189dba36960932eff9af5_amd64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-smb-csi-driver-rhel9@sha256:0ec112141b35688b1797ce674654d9c1c9f58ae66cc8feeb0379163644a497dd_amd64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-smb-csi-driver-rhel9@sha256:273ac5166b9092848e05ea4bf7a657ecbd6cc1762a5a20146c87cecb3016fe85_ppc64le",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-smb-csi-driver-rhel9@sha256:9593bea00e57e92b51dd05bb5b0e6d62df9a1cb4fc5591f5283b43f02fcdff72_arm64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-smb-csi-driver-rhel9@sha256:f365a691fd585664a3f41dd12bf459ba37a628c899f32fcf03ce3915caf6946b_s390x",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-sriov-dp-admission-controller-rhel9@sha256:1e487121455823010b1b43a7a4be96c5b953b5041ba39580e8f2f02a926da56d_ppc64le",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-sriov-dp-admission-controller-rhel9@sha256:6fb389d62e79b243cb0d06d32ee0f824eaf98db2a9bd2e27fce00ec38258c1ae_arm64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-sriov-dp-admission-controller-rhel9@sha256:7dfe5b88672cdf77c78c0ffaec725ad2f3e3a5e9bb7b3530a1ed819da338b5a1_s390x",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-sriov-dp-admission-controller-rhel9@sha256:f0f69fcd1cf9ce0cabb42d5c7ff39790f786e12a84cedf7596f13358494c90aa_amd64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-sriov-infiniband-cni-rhel9@sha256:37b587093902b17bd69212e43305888bd770d3a21a4eab7bdb682af8bc64b347_amd64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-sriov-infiniband-cni-rhel9@sha256:5b69b9c0ab707cfcf11f706adacb764a73c928621716f3fb9914814689369f9f_ppc64le",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-sriov-infiniband-cni-rhel9@sha256:a35e12407b3f4e22c53331f6019435945ee53db9ab67c21062926c120cb491d8_arm64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-sriov-infiniband-cni-rhel9@sha256:c033dce54bea495f2cb2f7b297892a1188cd08abc8e5a717db52fc0c3d9df6c2_s390x",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-sriov-network-config-daemon-rhel9@sha256:30dfae75fbdc1f97b9932d88760cce5c2aa1d1bbb61a8a32b3decb66674ca5f6_s390x",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-sriov-network-config-daemon-rhel9@sha256:3b44b97a59a4962da6415c625bf7c76d16f3368d3e955f0c5dcbe05b5f0f5ac4_ppc64le",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-sriov-network-config-daemon-rhel9@sha256:948595a29e50712c7f5847e8211e1200f44d3914f91fd50915ab42d86664bf8f_arm64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-sriov-network-config-daemon-rhel9@sha256:cc8d7bbfb8d0afc2e6c225dadf632af79837cb80d23fef983a7c89dc7303aac0_amd64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-sriov-network-device-plugin-rhel9@sha256:66f80c9740560af31361fe33c6c182496abd3f1bd1e35c27346b94be370223aa_arm64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-sriov-network-device-plugin-rhel9@sha256:8a3ca73990b9c47173dd81929d997d08c219dd7ebca6e2abf8763b9e06b6dcc7_s390x",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-sriov-network-device-plugin-rhel9@sha256:978ba2e085c4683dc1a0b499043095704957c7b5db5012c59dd7cfc355fed1b0_amd64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-sriov-network-device-plugin-rhel9@sha256:d4ff686da4afdf216acf3c9ad530844cf989d3fd0ea69456ee13878ca38ab53c_ppc64le",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-sriov-network-metrics-exporter-rhel9@sha256:22889c2ed91e69fe02b98aeba2df75a470a4bc538683d48ac5632b0d049fbae5_ppc64le",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-sriov-network-metrics-exporter-rhel9@sha256:6aff0035aff9f654cbe4fb4437b57af3bef4bc3801aea32e2cd4e32b4910f482_arm64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-sriov-network-metrics-exporter-rhel9@sha256:bc31897f905a8a05e063878fdfedf523c9313f6131f03236421ec4e971d5a2cc_amd64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-sriov-network-metrics-exporter-rhel9@sha256:f426214060d6c4e61984d2b275489a38098fa6c1977c913bfb17757c34d83147_s390x",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-sriov-network-rhel9-operator@sha256:5112ee38eb67037b9dec616724ba01d32651dfc71bac03e26646ae8e517f4540_ppc64le",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-sriov-network-rhel9-operator@sha256:744c6db730c13b35c8a7eb1c63c87a6fe01f7b4a6137a4cdf6e318afa560fae2_amd64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-sriov-network-rhel9-operator@sha256:ad9fffd643b1b7fca4e04dbecd6e3df93b68d1d455ead877fc92931fb893a234_arm64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-sriov-network-rhel9-operator@sha256:d2c308d8f6e2174073cf84c0d7baf9b05d78ca8e4e2057009b71758a0771169e_s390x",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-sriov-network-webhook-rhel9@sha256:07240bbb9795a5c405940633d3a2f0fb47f5abbf9b0c87361bdf80dde10ab528_s390x",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-sriov-network-webhook-rhel9@sha256:11b5d71f5f9e512b7feb2aeb79b1874e34e27bb222f576a1f9dda8898630528c_arm64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-sriov-network-webhook-rhel9@sha256:7457d5a64900cb13365c55cba14193dd90eb73c11863bedd96b33e1add5f85f3_amd64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-sriov-network-webhook-rhel9@sha256:eaa3c056167469c6bb5513e3dde02e5dab49d5b98e1c17ab966ad7313222b1ab_ppc64le",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-sriov-rdma-cni-rhel9@sha256:07fbfd0334aec167fb06ff4eba3053d9cecc00664b9cfea1d18b4b6bdd0814fa_s390x",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-sriov-rdma-cni-rhel9@sha256:18e7e59dbe9ba0498fcb12b6483ef22d4079ea6e1402fba88a6aae000f340e9d_ppc64le",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-sriov-rdma-cni-rhel9@sha256:2433095c43109b0ec3932a9b2b34600271f32bd440f9cc73c43b742b913646d5_amd64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-sriov-rdma-cni-rhel9@sha256:75a785f3d554b02952605b3af98f00fcada32117e8d0c3e6fe22f44e7651bc1e_arm64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-support-log-gather-rhel9-operator@sha256:10e52003925adc71826622c39efab5fea15638adddc6aef533cf0692ca23f6d4_ppc64le",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-support-log-gather-rhel9-operator@sha256:5b6fcf89b09b265ac65ef49afea5e7cbd786df205ecb5426cb1cda10bc5dcfd6_arm64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-support-log-gather-rhel9-operator@sha256:89ab8e96ab53d430ce97e8a80fd4ef35277234391a72723da2a8457be881291e_amd64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-support-log-gather-rhel9-operator@sha256:e6ee32452c5a790d4704806161a2b63a29aacc165766295f92762bffbd89d6aa_s390x",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-vertical-pod-autoscaler-rhel9-operator@sha256:54ffc01a3dd2306f78dfdd6097e5c775b3edac36f443099c730c241a45833638_amd64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-vertical-pod-autoscaler-rhel9-operator@sha256:a827987893266c281440a48b4229a7f48c1d40bbad3e7f6ed8c84bfaa4c0281c_arm64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-vertical-pod-autoscaler-rhel9-operator@sha256:c3b36f187a4b67d4b4df5c7e2bb975832a2709d1891aec41af4d46bc578659ba_ppc64le",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-vertical-pod-autoscaler-rhel9-operator@sha256:ecc3b8fa62455706ee62cb0d1c0226d300f5f15304bafe4e518f2d3ffc928bde_s390x",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-vertical-pod-autoscaler-rhel9@sha256:561f7a4380dc0189b3b219bf7ab9a5b67d0baadcc05d6b1c0864770c928a43d7_amd64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-vertical-pod-autoscaler-rhel9@sha256:715fd2f2e998043648963177764e4dcab56f4c73e10c4c2c293445692d835f25_s390x",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-vertical-pod-autoscaler-rhel9@sha256:b3dff747e802382fb5cc9df83b2950eb1773f817e82ea6482f3fc6f52bce0706_ppc64le",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-vertical-pod-autoscaler-rhel9@sha256:f31091c53dcf7f2148c91cc7cfa625ff92940f47f2cc341f0c4f8f6bb8dd4eea_arm64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/pf-status-relay-rhel9-operator@sha256:889c8eb5ab957329e63f83bf86199396246fcc79fb841c1d63808d9999aa27fe_ppc64le",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/pf-status-relay-rhel9-operator@sha256:b5a7192ce8bd5d376f73d22a7352ecd9acfa8648a7bb4d18e4c19bbbfaab4e5c_arm64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/pf-status-relay-rhel9-operator@sha256:c1e5de1e0068aa168df07192576be90eea2df9c5941cde1260c547d088424d2d_amd64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/pf-status-relay-rhel9-operator@sha256:c4ede99f6c9aca2fff295d06dbc9d6f603ab73b323fc0c876ae01a5edf8abc1c_s390x",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/pf-status-relay-rhel9@sha256:355aa8de7d52c60509970f2572b232185505f97c1b3624bdcf8f1bd5b097aa19_arm64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/pf-status-relay-rhel9@sha256:8521f8e56aed7158d674c968909d34a4b235cc91c5c8ceeb21217ac8e7e167e3_amd64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/pf-status-relay-rhel9@sha256:b95bb5f44309a8b851af6a92c4346edd4017028516ea7e024ffee73fc96e80e0_ppc64le",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/pf-status-relay-rhel9@sha256:e01330406bf0fadd9e81f731ef6514946ffdc7a137726c9ed4d7c1d890d33f46_s390x",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ptp-must-gather-rhel9@sha256:2c8b5c11bb25cf78f3d5bc4a6c8ea2952a681c1d6bc622493e0fb8e7cdd8d338_amd64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ptp-must-gather-rhel9@sha256:429969ea012b2a168aa0c3971a26d9bcfb1749c0721c4afc4d9cc8e38aca6b9f_ppc64le",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ptp-must-gather-rhel9@sha256:51770b7af0a378ba8c7580c9e7404bab256f6230a3232e598db33feafc48113e_arm64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/sriov-cni-rhel9@sha256:18b649c7e0372f2c0f11d0d2a845c325ca5847e891b6583ce81d6b5ab0cd2399_ppc64le",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/sriov-cni-rhel9@sha256:4217d67066546d6cdede76c350ddb11d0ae35ce151349e88e6b3c2a6e1837bd1_arm64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/sriov-cni-rhel9@sha256:cb4c3e8f99e94fe87498dc6a3360d10db9d5735a5d85a10d83a3503861d28c03_amd64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/sriov-cni-rhel9@sha256:e4aa72ffa1446d67c99550be24dfaaf4d07e70ca86872f9062aa72db8d139a15_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-6322"
},
{
"category": "external",
"summary": "RHBZ#2466684",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2466684"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-6322",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-6322"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-6322",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-6322"
},
{
"category": "external",
"summary": "https://cna.openjsf.org/security-advisories.html",
"url": "https://cna.openjsf.org/security-advisories.html"
},
{
"category": "external",
"summary": "https://github.com/fastify/fast-uri/security/advisories/GHSA-v39h-62p7-jpjc",
"url": "https://github.com/fastify/fast-uri/security/advisories/GHSA-v39h-62p7-jpjc"
}
],
"release_date": "2026-05-05T10:29:16.378000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-07T08:46:26+00:00",
"details": "See the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this asynchronous errata update:\n\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.21/html/release_notes/\n\nDetails on how to access this content are available at\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.21/html-single/updating_clusters/index#updating-cluster-cli.",
"product_ids": [
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/nmstate-console-plugin-rhel9@sha256:609cce4a625a7d1c2a83fde70db520fcdc1a4f75b78f96fd42d188f2eb623674_s390x",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/nmstate-console-plugin-rhel9@sha256:a06625622d7d52e5c21bec84047a765aeb065309ed9908eb16cf97a25e1017ac_arm64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/nmstate-console-plugin-rhel9@sha256:a40c59091b55f2fb79b9f58aa1ebabfa836cee775d20c3c40341811ae060cf37_amd64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/nmstate-console-plugin-rhel9@sha256:d889210346e1615778eb8346811e00b079b573afb24a0078ec77751bfa27db7b_ppc64le"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:34770"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ingress-node-firewall-rhel9-operator@sha256:5155030314f2efb0be5a7fe1f4dbf8edfc41af915f7fac7db10a6adbe4a86ac9_ppc64le",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ingress-node-firewall-rhel9-operator@sha256:6f09cbddc2165982085e382db12e5503b16d7a1e79842a19157f4910257f43ef_amd64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ingress-node-firewall-rhel9-operator@sha256:94f69160b0ddda0e840a473c1e5f5fcab47eee8567ee4a927f32930b1a0e5f91_s390x",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ingress-node-firewall-rhel9-operator@sha256:a9372f22f3ed5bda5c1d51a7354c6a8b4e0f603367b3c07ec6a0776352a4897f_arm64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ingress-node-firewall-rhel9@sha256:38781886f8849ffc36870f3dc44c06e262b9b0524d15251bcc8e81b314ddf728_amd64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ingress-node-firewall-rhel9@sha256:64c1a57597fd99e5c2cd0f3627043ab939e06a0163a3fc1554bc66f94edfa686_arm64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ingress-node-firewall-rhel9@sha256:b3a2d872463aa43a8c66c754472c84b355930c8618a53d8103627e2985f89efd_s390x",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ingress-node-firewall-rhel9@sha256:f0fbda30bb66a43d1e8127817968af6a407c1e96780ea5e023911496b2bdff32_ppc64le",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/kube-compare-artifacts-rhel9@sha256:277a845f5ffe398935b4fe5c035dba2a41bc23d1abce44893976487abc91514f_amd64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/kube-compare-artifacts-rhel9@sha256:392009255b87f893829cba2f90111a2dfb6d70183d1a2e657411ce7aa459934f_ppc64le",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/kube-compare-artifacts-rhel9@sha256:8876c6edf54f10692f7d43d00c4f8ee1d39200db701779c5ec4d6e9e7b0508f6_arm64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/kube-compare-artifacts-rhel9@sha256:ceda974d51671b0a78b17826e208ae8519a6509c79ec84ed2ffcfd2ee45a5382_s390x",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/kubernetes-nmstate-rhel9-operator@sha256:6ab82578e1faf15606648c109580ef1f7cc655a75001b6b1e4bf582815407fc9_amd64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/kubernetes-nmstate-rhel9-operator@sha256:9bd366998eabe8f3a505fcf0281a3a875d5168ab58926fa1af47216a6944b377_arm64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/kubernetes-nmstate-rhel9-operator@sha256:ccbf58a3edb87217efe16de650032ca9bbe162fef07c69468595ec22764c3f04_s390x",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/kubernetes-nmstate-rhel9-operator@sha256:ddbaaa6c78e9f98ea9322fc6e9ea271656eebfcc1bdc46ac9bc0a83c9404ab00_ppc64le",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/metallb-rhel9-operator@sha256:36367c6dac166a814a1a76a822c67602a02aa37dee5ae602d60da867488a757e_amd64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/metallb-rhel9-operator@sha256:3e904ee98de7fb1246da992444ee25e4ddd07806f02c2619b65ee75b315e6905_arm64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/metallb-rhel9-operator@sha256:aa51df9e1905c0e44f7f6ecd74d6682362975c59911b9e36e905cb52a64096b9_s390x",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/metallb-rhel9-operator@sha256:e9fdcee92e84dad61b213d7a3ffe24318bbbd0b79890c779760761675bf4ce3b_ppc64le",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/metallb-rhel9@sha256:13dfba732da2aba14e5527d2008955134978909ed8823641a21ee2e118b33498_amd64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/metallb-rhel9@sha256:338e57453aaf7b4a08df12f351894d109de6ea7926b021510197bea87b5c7284_arm64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/metallb-rhel9@sha256:98dcb57b27e6b66e4b4199e33eecfb494218a4e75944eb45e7aad765f27f48bf_ppc64le",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/metallb-rhel9@sha256:b3bc0e1b1a9fa18b3d31f38198f70ee60aecaeb83d65b89806eeb69d78be1a2e_s390x",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/nmstate-console-plugin-rhel9@sha256:609cce4a625a7d1c2a83fde70db520fcdc1a4f75b78f96fd42d188f2eb623674_s390x",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/nmstate-console-plugin-rhel9@sha256:a06625622d7d52e5c21bec84047a765aeb065309ed9908eb16cf97a25e1017ac_arm64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/nmstate-console-plugin-rhel9@sha256:a40c59091b55f2fb79b9f58aa1ebabfa836cee775d20c3c40341811ae060cf37_amd64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/nmstate-console-plugin-rhel9@sha256:d889210346e1615778eb8346811e00b079b573afb24a0078ec77751bfa27db7b_ppc64le",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-ansible-rhel9-operator@sha256:9a13a11550efc801a742b3c44908941151e051d0d4a81d20d2e8982f79af1559_s390x",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-ansible-rhel9-operator@sha256:edf0c24be41ee871c33b2bd40040101d03c388966ef56bea6ab5fe3e64159efd_amd64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-ansible-rhel9-operator@sha256:fb032926e45ec0ebb0ac6fde368797a7c7cfb17efea94e77049a843780d407eb_arm64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-ansible-rhel9-operator@sha256:fc9ac010edc301f955073bbb9912e595ce6fd33a62c4b0c11435b9e91ba7ef54_ppc64le",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-aws-efs-csi-driver-container-rhel9@sha256:37150c4d95a762ba377b126f961a2adbba6628db5495dc0ea237b02b81aa51aa_amd64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-aws-efs-csi-driver-container-rhel9@sha256:6d03c8e522cc099a72cc92a0ecaff93d52eb590529405888f30196b2946d0e18_arm64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-aws-efs-csi-driver-rhel9-operator@sha256:5ab5208bf09cfcadd7f3ecc0dc3dd23656630ff7a1a6eab90de3529db17f3c24_arm64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-aws-efs-csi-driver-rhel9-operator@sha256:5d3d03e26113cf4740d2947d9e23c1007615506206c2399644a81e8f343cbaaf_amd64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-cloud-event-proxy-rhel9@sha256:382657d2e3f4ee1d32849b509812c51004c015343a1d4ec0106d70b527f5ee12_amd64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-cloud-event-proxy-rhel9@sha256:8767026aa89aaa77b06c0b1387bbe677817ff7fb1e965d025e91399dd885959b_arm64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-cloud-event-proxy-rhel9@sha256:dc92042cb3802b221e594da9636d090ad795853d161c6d2152ddef7d152d6da8_ppc64le",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-cluster-capacity-rhel9@sha256:2518816e5aa5f22e38bd326f09f33c1a1efdbd310ed1cad1299a621e8054a8d1_s390x",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-cluster-capacity-rhel9@sha256:34d1067f6c432ef0cb087a154e7da91666102b892c30f0fc841f9722a7a8c6f2_ppc64le",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-cluster-capacity-rhel9@sha256:543790697a3c850a48d32e860bb4c9c0d6d5ac937b6b5c3b8954c6f4f3cb39ba_arm64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-cluster-capacity-rhel9@sha256:95c176b32fb102f563e6600226582b9c99d39b0431f82bdb433cb9c21b40add6_amd64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-cluster-nfd-rhel9-operator@sha256:3691d7ccdba3b713c82729dc32d651a80365d0a4dc9edad6cfe66cc47b7f5199_s390x",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-cluster-nfd-rhel9-operator@sha256:73003ac3bc1c768dfafe6714fd7323c8c941a818cea9e3ef88a2fa7494283a08_amd64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-cluster-nfd-rhel9-operator@sha256:abb1a3a0207fc34c9f6c37dd191567c80ea70d577b8fd94943fcebaca535147e_arm64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-cluster-nfd-rhel9-operator@sha256:c2b036ed84793e8357e3f46667736e4366d93beb64a22aaf428fdb9e2c9d40c7_ppc64le",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-clusterresourceoverride-rhel9-operator@sha256:1d1dcf4357867bafe3b4a3576ece0b93f0430d659ed65b1abc0744d7a24745b5_ppc64le",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-clusterresourceoverride-rhel9-operator@sha256:71f51894c78898a751821178ffb46f313b83c7de10f0fa036ed9b285d527fc32_arm64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-clusterresourceoverride-rhel9-operator@sha256:d21eade3a6125db8cc43e6424ad74230214cc4a46abeb59ba1b2a3c101ac6283_amd64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-clusterresourceoverride-rhel9-operator@sha256:dc7984ec2dbdd156dc885ff3d04cfb6dbdc167e6902ec3e4df693ffd2a85ac06_s390x",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-clusterresourceoverride-rhel9@sha256:0bba654bc6ff6f0b2033fcb690493fc9e7a4d1f85588aab90e54ce5b48dc5567_s390x",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-clusterresourceoverride-rhel9@sha256:0c91eec9681f4e16be81eaa6e24d934e87d297da27962b28698727018ea4b2fe_ppc64le",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-clusterresourceoverride-rhel9@sha256:36f60e44d8be2d1d0e8d2c448cea63bdeb39f5c2ac1c1c35151d044dc0b0ee26_amd64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-clusterresourceoverride-rhel9@sha256:afdcc56fd0a1fedd3fcd8c9eac4f7e518b0aa54886bbc08b7d8814faaf0e1e36_arm64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-dpu-cni-rhel9@sha256:5276191889ae349eaf5a1b1d65f21b429cfc52718600201307151f3556b4b98b_ppc64le",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-dpu-cni-rhel9@sha256:57793b7fd69cd2e464ac3546c1a158827a10f4c9556b1696c3aaadecfac7f37f_s390x",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-dpu-cni-rhel9@sha256:7e45522e22c496fb7cb9a530e169c73c43ca9fde61539abbee4be7f651b98cda_amd64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-dpu-cni-rhel9@sha256:8bd989e5443259a6deffb51e7d180c1a221e20bc1f9b2a5f1ff70096b9c9c4f4_arm64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-dpu-daemon-rhel9@sha256:6904235bc5934801e8409a5960da09407d820754cbe10edb8cf62ec1484b87b7_s390x",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-dpu-daemon-rhel9@sha256:9440d51ed354698f93e91c380a65daa0e165a13d3cac2818e2533c5f7ef60fa6_amd64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-dpu-daemon-rhel9@sha256:a3432a6fe6e2853c8f88968f3ded5adc0dd3efb14f48a34e52b4b18b1aa037ea_ppc64le",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-dpu-daemon-rhel9@sha256:b0d0462ba40d99af32b252319cc05864c45f0758fd1b38581b2690c4940a2c20_arm64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-dpu-intel-ipu-p4sdk-rhel9@sha256:9017e22f5fd9703d326059df6cb0c61cfde6840e6f454fcc49c92908236e899e_amd64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-dpu-intel-ipu-p4sdk-rhel9@sha256:d48880afd49e5fa069b2be1a9f1ef6786a4d45d63c175fab372d844a64af2821_arm64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-dpu-intel-ipu-vsp-rhel9@sha256:1e42bc22e95bfac89c04d820fbc75965965b86fa64ec3b10c2ce49f0d076a118_amd64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-dpu-intel-ipu-vsp-rhel9@sha256:a89114e65548d7927d0a8f2db84ad68151f026c092f861bdea1498db84a3da32_arm64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-dpu-intel-netsec-vsp-rhel9@sha256:ab420e77f917866e3237122a47a6a6b98805dba9d944aef4f730c8a1d20a0560_arm64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-dpu-intel-netsec-vsp-rhel9@sha256:b9080c881c0151460a1286493640e0d1e0c018a81340466ab1c13203310219e6_amd64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-dpu-marvell-cp-agent-rhel9@sha256:5d70111632bb020cce18b16a88ee172ed293ea6b0cd0521ee44b619b474b8762_amd64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-dpu-marvell-cp-agent-rhel9@sha256:6e51660e597421b36ea9d960a054577d11c66511e4707128fab9e60d4580bdf9_arm64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-dpu-marvell-vsp-rhel9@sha256:77c16c7c6cf3e7ed299585a733b04718083579fab41bc7488314b428c416390e_amd64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-dpu-marvell-vsp-rhel9@sha256:979c3c3666771f20961ae422e34d63c7c4a1838b937cccfdbe5a3279cbd120a6_arm64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-dpu-network-resources-injector-rhel9@sha256:a9a41a126d694f0b1ca797ba28d8899a326ad3a1d40d8be05d6a2f42cac12398_arm64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-dpu-network-resources-injector-rhel9@sha256:cd8d332585ebf4f8819cc54c64285f1e2ea127de41e4edff909fddbef4d02c5d_amd64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-gcp-filestore-csi-driver-rhel9-operator@sha256:51d776f3327e8828dfed49bb6e6fb421bd8b7bb4ec225298f441d35f4f39b6e3_amd64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-gcp-filestore-csi-driver-rhel9-operator@sha256:c0e944e7f3b22eb46ddac4b37f689e2c600dcc84c32b0e966e7251a45c6454e5_arm64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-gcp-filestore-csi-driver-rhel9-operator@sha256:de288d5f53fb26030f4359623cafb0743f482c6418d4259563d9d0b974f7cd4c_ppc64le",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-gcp-filestore-csi-driver-rhel9@sha256:a0353e92588be591c35f299f51f6da9e5be0136b3a8b30b7277cf4a46266d1cc_amd64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-gcp-filestore-csi-driver-rhel9@sha256:b5fc12bb45b0f049223f4b26e0078f58d97462754ae3ea3bb1673aee5d22b62d_arm64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-gcp-filestore-csi-driver-rhel9@sha256:fa28b3271852e969fba812fdd0ed26c6def0669358dc92ebd1628a20756559ef_ppc64le",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-helm-rhel9-operator@sha256:01e0ffb0da07e6a7da267706ee894a2d80b7d909770e22b106294e7662924e1f_ppc64le",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-helm-rhel9-operator@sha256:029e7d3829e93662046330222540af9d57f99bab9a708fb0262b614ba4ec5894_s390x",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-helm-rhel9-operator@sha256:2f7fc2e6130b0504eb6451edeeb4b5815b162428d281aac6afd2f52ac5a04d10_amd64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-helm-rhel9-operator@sha256:f30d6e6a77b47b17628bd0216d92173de8e3fc832bf06362eb1c1742bc6c40df_arm64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-kubernetes-nmstate-handler-rhel9@sha256:38a05eaa1a557c4971e9da0b8aeeaac34d2e479d0aabe5bef2990d549b03ecfe_arm64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-kubernetes-nmstate-handler-rhel9@sha256:49dce6c7de88a1840a20dc713fe6ba74f60f5b4263aeea6f826f3b9b522e96bf_amd64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-kubernetes-nmstate-handler-rhel9@sha256:9a5be2cb99904acae97141af03282627a0de72054396a58500ae26fed5a9ff4e_s390x",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-kubernetes-nmstate-handler-rhel9@sha256:d0c7639baee74257b10ef4207ba5bff14554f3153e488567758c55d168d972bd_ppc64le",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-local-storage-diskmaker-rhel9@sha256:975e56e998c4ea82fedf71d019ed0e577e8a29cfe3c412ceeeb93306bf7bb361_s390x",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-local-storage-diskmaker-rhel9@sha256:9fddd5cc3bf03b42a49346f86a0bef2a459a4da632bbfd0e5e3b2e83070e5092_ppc64le",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-local-storage-diskmaker-rhel9@sha256:a1c8c56d4975ec3980441a56fb765cd0031e23d63391dec86d69ab6e7b343bc2_arm64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-local-storage-diskmaker-rhel9@sha256:bf694ff952b6220ac1db51a8ff1823ee85b5d0fc6b6127c00b868a017853f53c_amd64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-local-storage-mustgather-rhel9@sha256:1e5fa0e4c111c508ddbdf4a4b8b76b6dca44ff0b31ee9e798c3ec8b8c01222b9_ppc64le",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-local-storage-mustgather-rhel9@sha256:30aa075ab2652d4ba186eb80915383b6dd4e7b7215fe5ffeec3c80bb1371b3f2_arm64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-local-storage-mustgather-rhel9@sha256:53000c76b406be2af70be4c5258829f004a39a9d520cc020df44d7fa640d05ad_amd64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-local-storage-mustgather-rhel9@sha256:86afe7a1545222df4bca1c8620e99b63048152f235f5ca9fddd73cc5bad1b9c4_s390x",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-local-storage-rhel9-operator@sha256:3eb77753a5e2d6ff1023a9cb682b67a04b6dbcc2c6537c4ea18f523aa360a166_ppc64le",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-local-storage-rhel9-operator@sha256:7217e60230edabbeaaa56cc3aceac15421f359a29c3eecfebbfe1582b270d347_s390x",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-local-storage-rhel9-operator@sha256:83e84b70455d419a743df8eee90746745a46cdc52032fc6ac9238d7aca0086de_arm64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-local-storage-rhel9-operator@sha256:ce139a228805b636280ed42198c7f93a666004f79d48861ad12edd3045f7c412_amd64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-node-feature-discovery-rhel9@sha256:11f6bab6d8a000b25880f1b9395d769bc962aa34393ace4fab4c2d44205b1c95_ppc64le",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-node-feature-discovery-rhel9@sha256:56b2612c509ae4021332da9b4e252304c50234dab408caade568f4573573a998_amd64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-node-feature-discovery-rhel9@sha256:d470ef1f28b5233bab28e2b8b0a47fefd47aae8737cd4c6d488453aa6dd06c84_arm64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-node-feature-discovery-rhel9@sha256:e12011347e72eb4d2e3f03ab0532132c302e2057a0c4dc177e13d82dcd714e67_s390x",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-ptp-rhel9-operator@sha256:a668793754ce8ef6251e892a37241879a0b29e540983d63b56a4be3f673e6fb3_ppc64le",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-ptp-rhel9-operator@sha256:c32ff4bbb692686b26b68f79f2d3b6f1cea33eeb4ce1b377097d676190226cb7_arm64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-ptp-rhel9-operator@sha256:e8fcd2cf5235561386220e84b11b08cbf447f584746b9f6c0f9c46eff5f29364_amd64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-ptp-rhel9@sha256:a0e3f44b5fe44c8cb2a8e3745e218deffeb339302dc25b4aa88ae5973052a682_ppc64le",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-ptp-rhel9@sha256:ceffce6ae5d36775df6cfb2b23a8e089e10806c087d88ddcd5822d1e05d1843e_amd64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-ptp-rhel9@sha256:f97c24fdcc9bdbd8c0e7807a95d9338d6bd6537edf5afff4b2871ae808b78803_arm64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-secrets-store-csi-driver-rhel9-operator@sha256:5b2fb854cfe291704d78db26b17451565065414aac0763661ed2b59831487601_arm64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-secrets-store-csi-driver-rhel9-operator@sha256:601ce1c70b7801a8de9e33a4466b299e2f76d544b66860cba94ef0dc69ecf797_s390x",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-secrets-store-csi-driver-rhel9-operator@sha256:86a5601f89c0f47b69e0c1a1950f5d1bf584f3cf90188fbf92d7622dd7ff9156_amd64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-secrets-store-csi-driver-rhel9-operator@sha256:dc815adc448c1aea6fd6cf7e4cab7e4361d1f54e10cd88b54701b41dcda11f42_ppc64le",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-secrets-store-csi-driver-rhel9@sha256:007ea9c7d8bcf7729505788e73a3647e85be6d3f8375ced4099e575c4c1a11a5_amd64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-secrets-store-csi-driver-rhel9@sha256:1c8bcdd2bb475931744eb16af2c176d7412cc1bb877eea7869dd395dec6f39ac_s390x",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-secrets-store-csi-driver-rhel9@sha256:7d3d14431dbbe405b14de1a84939ff5e4b35d17768c023db144c1e88cf60ad6f_ppc64le",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-secrets-store-csi-driver-rhel9@sha256:8d574539166590373d98289eab070d809068ae59b4c9437893bc5f1a75243e88_arm64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-secrets-store-csi-mustgather-rhel9@sha256:37f50cdddd56cd5f6fc6c19d37a9f480ac92308a593f70e90e58dd9f937da438_arm64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-secrets-store-csi-mustgather-rhel9@sha256:53aa411cc0b116c6693b7ffec54c51643921be9999f5d7c786e3d8ab6c14185f_s390x",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-secrets-store-csi-mustgather-rhel9@sha256:546942fbfcc68e3f17523eaaae31d5694c545cdf84bb73ce0c2f20bfb0419844_amd64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-secrets-store-csi-mustgather-rhel9@sha256:a77e3a3b7f0476f0821b97028cdbd7c784875f3c60a9540ef7ddc123a7994322_ppc64le",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-smb-csi-driver-rhel9-operator@sha256:331ae406cc1d7df8814755f8d7d3b7a28829ba1b14c8f3e54e13ac768a53bea3_ppc64le",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-smb-csi-driver-rhel9-operator@sha256:8c06c9971a1e4d101022419e787f698419d36cfec480f6c991cbd0ee0a1b12e5_arm64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-smb-csi-driver-rhel9-operator@sha256:d2b2d32cb77ba179f2af443176194395c23585ee986a79e81ebe85d262783bda_s390x",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-smb-csi-driver-rhel9-operator@sha256:d50822b32fc2d3c2069b5213e13d43e7f376886e7e5189dba36960932eff9af5_amd64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-smb-csi-driver-rhel9@sha256:0ec112141b35688b1797ce674654d9c1c9f58ae66cc8feeb0379163644a497dd_amd64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-smb-csi-driver-rhel9@sha256:273ac5166b9092848e05ea4bf7a657ecbd6cc1762a5a20146c87cecb3016fe85_ppc64le",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-smb-csi-driver-rhel9@sha256:9593bea00e57e92b51dd05bb5b0e6d62df9a1cb4fc5591f5283b43f02fcdff72_arm64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-smb-csi-driver-rhel9@sha256:f365a691fd585664a3f41dd12bf459ba37a628c899f32fcf03ce3915caf6946b_s390x",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-sriov-dp-admission-controller-rhel9@sha256:1e487121455823010b1b43a7a4be96c5b953b5041ba39580e8f2f02a926da56d_ppc64le",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-sriov-dp-admission-controller-rhel9@sha256:6fb389d62e79b243cb0d06d32ee0f824eaf98db2a9bd2e27fce00ec38258c1ae_arm64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-sriov-dp-admission-controller-rhel9@sha256:7dfe5b88672cdf77c78c0ffaec725ad2f3e3a5e9bb7b3530a1ed819da338b5a1_s390x",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-sriov-dp-admission-controller-rhel9@sha256:f0f69fcd1cf9ce0cabb42d5c7ff39790f786e12a84cedf7596f13358494c90aa_amd64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-sriov-infiniband-cni-rhel9@sha256:37b587093902b17bd69212e43305888bd770d3a21a4eab7bdb682af8bc64b347_amd64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-sriov-infiniband-cni-rhel9@sha256:5b69b9c0ab707cfcf11f706adacb764a73c928621716f3fb9914814689369f9f_ppc64le",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-sriov-infiniband-cni-rhel9@sha256:a35e12407b3f4e22c53331f6019435945ee53db9ab67c21062926c120cb491d8_arm64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-sriov-infiniband-cni-rhel9@sha256:c033dce54bea495f2cb2f7b297892a1188cd08abc8e5a717db52fc0c3d9df6c2_s390x",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-sriov-network-config-daemon-rhel9@sha256:30dfae75fbdc1f97b9932d88760cce5c2aa1d1bbb61a8a32b3decb66674ca5f6_s390x",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-sriov-network-config-daemon-rhel9@sha256:3b44b97a59a4962da6415c625bf7c76d16f3368d3e955f0c5dcbe05b5f0f5ac4_ppc64le",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-sriov-network-config-daemon-rhel9@sha256:948595a29e50712c7f5847e8211e1200f44d3914f91fd50915ab42d86664bf8f_arm64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-sriov-network-config-daemon-rhel9@sha256:cc8d7bbfb8d0afc2e6c225dadf632af79837cb80d23fef983a7c89dc7303aac0_amd64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-sriov-network-device-plugin-rhel9@sha256:66f80c9740560af31361fe33c6c182496abd3f1bd1e35c27346b94be370223aa_arm64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-sriov-network-device-plugin-rhel9@sha256:8a3ca73990b9c47173dd81929d997d08c219dd7ebca6e2abf8763b9e06b6dcc7_s390x",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-sriov-network-device-plugin-rhel9@sha256:978ba2e085c4683dc1a0b499043095704957c7b5db5012c59dd7cfc355fed1b0_amd64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-sriov-network-device-plugin-rhel9@sha256:d4ff686da4afdf216acf3c9ad530844cf989d3fd0ea69456ee13878ca38ab53c_ppc64le",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-sriov-network-metrics-exporter-rhel9@sha256:22889c2ed91e69fe02b98aeba2df75a470a4bc538683d48ac5632b0d049fbae5_ppc64le",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-sriov-network-metrics-exporter-rhel9@sha256:6aff0035aff9f654cbe4fb4437b57af3bef4bc3801aea32e2cd4e32b4910f482_arm64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-sriov-network-metrics-exporter-rhel9@sha256:bc31897f905a8a05e063878fdfedf523c9313f6131f03236421ec4e971d5a2cc_amd64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-sriov-network-metrics-exporter-rhel9@sha256:f426214060d6c4e61984d2b275489a38098fa6c1977c913bfb17757c34d83147_s390x",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-sriov-network-rhel9-operator@sha256:5112ee38eb67037b9dec616724ba01d32651dfc71bac03e26646ae8e517f4540_ppc64le",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-sriov-network-rhel9-operator@sha256:744c6db730c13b35c8a7eb1c63c87a6fe01f7b4a6137a4cdf6e318afa560fae2_amd64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-sriov-network-rhel9-operator@sha256:ad9fffd643b1b7fca4e04dbecd6e3df93b68d1d455ead877fc92931fb893a234_arm64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-sriov-network-rhel9-operator@sha256:d2c308d8f6e2174073cf84c0d7baf9b05d78ca8e4e2057009b71758a0771169e_s390x",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-sriov-network-webhook-rhel9@sha256:07240bbb9795a5c405940633d3a2f0fb47f5abbf9b0c87361bdf80dde10ab528_s390x",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-sriov-network-webhook-rhel9@sha256:11b5d71f5f9e512b7feb2aeb79b1874e34e27bb222f576a1f9dda8898630528c_arm64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-sriov-network-webhook-rhel9@sha256:7457d5a64900cb13365c55cba14193dd90eb73c11863bedd96b33e1add5f85f3_amd64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-sriov-network-webhook-rhel9@sha256:eaa3c056167469c6bb5513e3dde02e5dab49d5b98e1c17ab966ad7313222b1ab_ppc64le",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-sriov-rdma-cni-rhel9@sha256:07fbfd0334aec167fb06ff4eba3053d9cecc00664b9cfea1d18b4b6bdd0814fa_s390x",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-sriov-rdma-cni-rhel9@sha256:18e7e59dbe9ba0498fcb12b6483ef22d4079ea6e1402fba88a6aae000f340e9d_ppc64le",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-sriov-rdma-cni-rhel9@sha256:2433095c43109b0ec3932a9b2b34600271f32bd440f9cc73c43b742b913646d5_amd64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-sriov-rdma-cni-rhel9@sha256:75a785f3d554b02952605b3af98f00fcada32117e8d0c3e6fe22f44e7651bc1e_arm64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-support-log-gather-rhel9-operator@sha256:10e52003925adc71826622c39efab5fea15638adddc6aef533cf0692ca23f6d4_ppc64le",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-support-log-gather-rhel9-operator@sha256:5b6fcf89b09b265ac65ef49afea5e7cbd786df205ecb5426cb1cda10bc5dcfd6_arm64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-support-log-gather-rhel9-operator@sha256:89ab8e96ab53d430ce97e8a80fd4ef35277234391a72723da2a8457be881291e_amd64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-support-log-gather-rhel9-operator@sha256:e6ee32452c5a790d4704806161a2b63a29aacc165766295f92762bffbd89d6aa_s390x",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-vertical-pod-autoscaler-rhel9-operator@sha256:54ffc01a3dd2306f78dfdd6097e5c775b3edac36f443099c730c241a45833638_amd64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-vertical-pod-autoscaler-rhel9-operator@sha256:a827987893266c281440a48b4229a7f48c1d40bbad3e7f6ed8c84bfaa4c0281c_arm64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-vertical-pod-autoscaler-rhel9-operator@sha256:c3b36f187a4b67d4b4df5c7e2bb975832a2709d1891aec41af4d46bc578659ba_ppc64le",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-vertical-pod-autoscaler-rhel9-operator@sha256:ecc3b8fa62455706ee62cb0d1c0226d300f5f15304bafe4e518f2d3ffc928bde_s390x",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-vertical-pod-autoscaler-rhel9@sha256:561f7a4380dc0189b3b219bf7ab9a5b67d0baadcc05d6b1c0864770c928a43d7_amd64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-vertical-pod-autoscaler-rhel9@sha256:715fd2f2e998043648963177764e4dcab56f4c73e10c4c2c293445692d835f25_s390x",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-vertical-pod-autoscaler-rhel9@sha256:b3dff747e802382fb5cc9df83b2950eb1773f817e82ea6482f3fc6f52bce0706_ppc64le",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ose-vertical-pod-autoscaler-rhel9@sha256:f31091c53dcf7f2148c91cc7cfa625ff92940f47f2cc341f0c4f8f6bb8dd4eea_arm64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/pf-status-relay-rhel9-operator@sha256:889c8eb5ab957329e63f83bf86199396246fcc79fb841c1d63808d9999aa27fe_ppc64le",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/pf-status-relay-rhel9-operator@sha256:b5a7192ce8bd5d376f73d22a7352ecd9acfa8648a7bb4d18e4c19bbbfaab4e5c_arm64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/pf-status-relay-rhel9-operator@sha256:c1e5de1e0068aa168df07192576be90eea2df9c5941cde1260c547d088424d2d_amd64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/pf-status-relay-rhel9-operator@sha256:c4ede99f6c9aca2fff295d06dbc9d6f603ab73b323fc0c876ae01a5edf8abc1c_s390x",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/pf-status-relay-rhel9@sha256:355aa8de7d52c60509970f2572b232185505f97c1b3624bdcf8f1bd5b097aa19_arm64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/pf-status-relay-rhel9@sha256:8521f8e56aed7158d674c968909d34a4b235cc91c5c8ceeb21217ac8e7e167e3_amd64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/pf-status-relay-rhel9@sha256:b95bb5f44309a8b851af6a92c4346edd4017028516ea7e024ffee73fc96e80e0_ppc64le",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/pf-status-relay-rhel9@sha256:e01330406bf0fadd9e81f731ef6514946ffdc7a137726c9ed4d7c1d890d33f46_s390x",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ptp-must-gather-rhel9@sha256:2c8b5c11bb25cf78f3d5bc4a6c8ea2952a681c1d6bc622493e0fb8e7cdd8d338_amd64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ptp-must-gather-rhel9@sha256:429969ea012b2a168aa0c3971a26d9bcfb1749c0721c4afc4d9cc8e38aca6b9f_ppc64le",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/ptp-must-gather-rhel9@sha256:51770b7af0a378ba8c7580c9e7404bab256f6230a3232e598db33feafc48113e_arm64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/sriov-cni-rhel9@sha256:18b649c7e0372f2c0f11d0d2a845c325ca5847e891b6583ce81d6b5ab0cd2399_ppc64le",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/sriov-cni-rhel9@sha256:4217d67066546d6cdede76c350ddb11d0ae35ce151349e88e6b3c2a6e1837bd1_arm64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/sriov-cni-rhel9@sha256:cb4c3e8f99e94fe87498dc6a3360d10db9d5735a5d85a10d83a3503861d28c03_amd64",
"Red Hat OpenShift Container Platform 4.21:registry.redhat.io/openshift4/sriov-cni-rhel9@sha256:e4aa72ffa1446d67c99550be24dfaaf4d07e70ca86872f9062aa72db8d139a15_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "fast-uri: fast-uri: URI authority bypass due to improper delimiter handling"
}
]
}
RHSA-2026:36651
Vulnerability from csaf_redhat - Published: 2026-07-08 10:08 - Updated: 2026-07-09 07:28A flaw was found in Lodash. A prototype pollution vulnerability in the _.unset and _.omit functions allows an attacker able to control property paths to delete methods from global prototypes. By removing essential functionalities, this can result in a denial of service.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64 | — |
Workaround
|
A flaw was found in golang. A remote attacker could exploit this vulnerability by providing a specially crafted certificate during the error string construction process within the `HostnameError.Error()` function. This flaw, caused by unbounded string concatenation, leads to excessive resource consumption. Successful exploitation can result in a denial of service (DoS) for the affected system.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64 | — |
Vendor Fix
fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64 | — |
A flaw was found in the crypto/tls component. This vulnerability occurs during Transport Layer Security (TLS) session resumption when certificate authority (CA) settings are modified between the initial and resumed handshakes. An attacker could exploit this to bypass certificate validation, allowing a client or server to establish a connection that should have been rejected. This could lead to an authentication bypass under specific conditions.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64 | — |
Vendor Fix
fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64 | — |
A flaw was found in ajv. When the $data option is enabled, the value of the pattern keyword is passed directly to the JavaScript RegExp() constructor without sufficient validation. An attacker able to supply a malicious regular expression pattern can trigger a ReDoS (Regular Expression Denial of Service), causing the application to become unresponsive and resulting in a denial of service.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64 | — |
Workaround
|
A flaw was found in lodash. The fix for CVE-2021-23337 added validation for the variable option in _.template but did not apply the same validation to options.imports key names. Both paths flow into the same Function() constructor sink. Additionally, _.template uses assignInWith to merge imports, which enumerates inherited properties via for..in. If Object.prototype has been polluted by any other vector, the polluted keys are copied into the imports object and passed to Function().
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64 | — |
Workaround
|
A flaw was found in path-to-regexp. A remote attacker could exploit this vulnerability by providing specially crafted input that generates a regular expression with multiple sequential optional groups. This leads to an exponential growth in the generated regular expression, causing a Denial of Service (DoS) due to excessive resource consumption.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64 | — |
Workaround
|
A flaw was found in fast-uri. A remote attacker could exploit this vulnerability by crafting a malicious Uniform Resource Identifier (URI) that contains percent-encoded authority delimiters. The fast-uri library incorrectly decodes these delimiters during normalization and then re-emits them as raw separators, which can change the URI's intended authority. This issue allows applications that perform host allowlist checks, redirect validation, or outbound request routing to be steered to a different authority than specified, potentially bypassing security controls.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64 | — |
Vendor Fix
fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64 | — |
A cross site scripting flaw has been discovered in the npm react-router and @remix-run/router packages. React Router (and Remix v1/v2) SPA open navigation redirects originating from loaders or actions in Framework Mode, Data Mode, or the unstable RSC modes can result in unsafe URLs causing unintended javascript execution on the client. This is only an issue if you are creating redirect paths from untrusted content or via an open redirect.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64 | — |
Workaround
|
The Go standard library function net/url.Parse insufficiently validated the host/authority component and accepted some invalid URLs by effectively treating garbage before an IP-literal as ignorable. The function should have rejected this as invalid.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64 | — |
Workaround
|
A flaw was found in Immutable.js, a library for persistent immutable data structures. This vulnerability, known as Prototype Pollution, allows an attacker with low privileges to inject unwanted properties into core JavaScript object prototypes without user interaction. By manipulating specific APIs such as mergeDeep(), mergeDeepWith(), merge(), Map.toJS(), and Map.toObject(), a remote attacker could potentially execute arbitrary code or cause a denial of service (DoS).
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64 | — |
Vendor Fix
fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64 | — |
A denial of service flaw has been discovered in the flatted npm library. flatted's parse() function uses a recursive revive() phase to resolve circular references in deserialized JSON. When given a crafted payload with deeply nested or self-referential $ indices, the recursion depth is unbounded, causing a stack overflow that crashes the Node.js process.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64 | — |
Workaround
|
A flaw was found in the Go standard library packages `crypto/x509` and `crypto/tls`. During the process of building a certificate chain, an attacker can provide a large number of intermediate certificates. This excessive input is not properly limited, leading to an uncontrolled amount of work being performed. This can result in a denial of service (DoS) condition, making the affected system or application unavailable to legitimate users.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64 | — |
Vendor Fix
fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64 | — |
A flaw was found in gRPC-Go, the Go language implementation of gRPC. This vulnerability, an authorization bypass, is caused by improper input validation of the HTTP/2 `:path` pseudo-header. A remote attacker can exploit this by sending raw HTTP/2 frames with a malformed `:path` that omits the mandatory leading slash. This allows the attacker to bypass defined security policies, potentially leading to unauthorized access to services or information disclosure.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64 | — |
Workaround
|
A flaw was found in the `crypto/x509` package within Go (golang). When verifying a certificate chain, excluded DNS (Domain Name System) constraints are not correctly applied to wildcard DNS Subject Alternative Names (SANs) if the case of the SAN differs from the constraint. This oversight could allow an attacker to bypass certificate validation, potentially leading to the acceptance of a malicious certificate that should have been rejected. This issue specifically impacts the validation of trusted certificate chains.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64 | — |
Vendor Fix
fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64 | — |
A flaw was found in the `net` package of Go (golang), specifically when using the `LookupCNAME` function with the `cgo` DNS resolver. A remote attacker could exploit this by providing a very long Canonical Name (CNAME) response. This can trigger a double-free of C memory, leading to a crash and a Denial of Service (DoS) for the affected application.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64 | — |
Workaround
|
A flaw was found in golang.org/x/net/idna. ToASCII and ToUnicode incorrectly accept Punycode-encoded labels that decode to an ASCII-only hostname (for example, xn--example-.com returns example.com instead of an error). Applications that validate the ASCII form then convert to Unicode may grant access to a restricted hostname the ASCII check would have rejected.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64 | — |
Workaround
|
A flaw was found in golang.org/x/crypto/ssh. A remote attacker could exploit this vulnerability when an SSH server authentication callback returned a PartialSuccessError with non-nil permissions. This flaw caused these permissions to be silently discarded, potentially bypassing certificate restrictions, such as a force-command, after a second authentication factor succeeded. This could lead to unauthorized command execution or access.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64 | — |
Workaround
|
A flaw was found in golang.org/x/crypto/ssh. The RSA and DSA public key parsers in the affected component did not enforce size limits on key parameters. This vulnerability allows an unauthenticated client to provide a crafted public key with an excessively large modulus or DSA parameter during public key authentication. Successful exploitation could lead to a denial of service (DoS) due to prolonged CPU consumption during signature verification.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64 | — |
Workaround
|
A flaw was found in golang.org/x/crypto/ssh. A remote malicious SSH peer can exploit this by sending unsolicited global request responses, which fills an internal buffer and blocks the connection's read loop. This prevents the associated resources from being released, leading to a resource leak per connection. The consequence is a Denial of Service (DoS) for the affected system.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64 | — |
Workaround
|
A flaw was found in golang.org/x/crypto/ssh/agent. When a key was added to a remote agent, security restrictions, known as constraint extensions, were not properly processed during the request. This allowed these restrictions to be silently removed when keys were forwarded, leading to the unrestricted use of the key on the remote host. This vulnerability could enable an attacker to bypass intended security controls and perform unauthorized actions.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64 | — |
Workaround
|
A flaw was found in golang.org/x/crypto/ssh. SSH servers configured to use CertChecker as a public key callback, without explicitly setting IsUserAuthority or IsHostAuthority, are vulnerable. A remote attacker can exploit this by presenting a specially crafted certificate, causing the server to panic and resulting in a Denial of Service (DoS).
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64 | — |
Workaround
|
A flaw was found in Prometheus, an open-source monitoring system. The `client_secret` field within the Azure Active Directory (AD) remote write OAuth configuration was incorrectly handled as a plain string instead of a secure Secret type. This misconfiguration allowed any user or process with access to the `/-/config` HTTP API endpoint to view the Azure OAuth client secret in plaintext. This vulnerability leads to information disclosure, potentially compromising the security of integrated Azure AD services.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64 | — |
Vendor Fix
fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64 | — |
A flaw was found in Prometheus. An unauthenticated attacker can exploit the remote read endpoint (`/api/v1/read`) by sending a specially crafted, small snappy-compressed payload. This payload causes a disproportionately large memory allocation, leading to memory exhaustion and a Denial of Service (DoS) by crashing the Prometheus process.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64 | — |
Vendor Fix
fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64 | — |
A flaw was found in golang.org/x/crypto/ssh/knownhosts. This vulnerability occurs because the system did not correctly check for the revocation status of a SignatureKey belonging to a Certificate Authority (CA). A remote attacker could potentially exploit this by presenting a revoked key, leading to the system accepting it as valid. This could allow an attacker to bypass security checks and potentially gain unauthorized access or spoof legitimate entities.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64 | — |
Vendor Fix
fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64 | — |
A flaw was found in golang.org/x/crypto/ssh. Source-address validation can be skipped when an SSH server configuration uses an authentication callback type other than public key, allowing authorization bypass in misconfigured servers. This is a follow-on to incomplete coverage from the CVE-2024-45337 fix.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64 | — |
Workaround
|
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Red Hat Edge Manager Version 1.0.3 Security Update",
"title": "Topic"
},
{
"category": "general",
"text": "Red Hat Edge Manager (RHEM) provides simple, scalable, and security-focused\nmanagement of edge devices and applications. It supports image-mode RHEL and\ncontainer workloads that run on Podman/Docker or Kubernetes.\n\nRHEM is now available as a standalone feature, providing greater flexibility for\nedge deployments. In addition to the standalone version, RHEM continues to be\noffered as a plugin for the following platforms:\n\n* Red Hat Advanced Cluster Management (RHACM): Extends fleet management to edge\ndevices.\n* Red Hat Ansible Automation Platform (AAP): Integrates edge management with\nAnsible automation.\n\nThis integration enables organizations to optimize the management and\norchestration of their fleets of edge devices; whether its thousands of\ndispersed retail point-of-sale systems or industrial machinery on remote factory\nfloors.\n\nValue for customers and partners:\n\n* This solution not only helps customers manage thousands of devices but helps\nscale operations.\n* To manage large-scale deployments, customers need to be able to integrate with\ntheir existing management systems, support remote configuration and over-the-air\nupdates, and collect telemetry data for advanced analytics.\n* Red Hat Edge Manager offers a simple and security-focused lifecycle\nmanagement, from onboarding to decommissioning of edge devices.\n\nThis complete end-to-end solution empowers organizations to gain the most value\nfrom the fleets of devices that generate data, all from a centralized location.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2026:36651",
"url": "https://access.redhat.com/errata/RHSA-2026:36651"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2025-13465",
"url": "https://access.redhat.com/security/cve/CVE-2025-13465"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2025-61729",
"url": "https://access.redhat.com/security/cve/CVE-2025-61729"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2025-68121",
"url": "https://access.redhat.com/security/cve/CVE-2025-68121"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2025-69873",
"url": "https://access.redhat.com/security/cve/CVE-2025-69873"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-22029",
"url": "https://access.redhat.com/security/cve/CVE-2026-22029"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-25679",
"url": "https://access.redhat.com/security/cve/CVE-2026-25679"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-29063",
"url": "https://access.redhat.com/security/cve/CVE-2026-29063"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-32141",
"url": "https://access.redhat.com/security/cve/CVE-2026-32141"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-32280",
"url": "https://access.redhat.com/security/cve/CVE-2026-32280"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-33186",
"url": "https://access.redhat.com/security/cve/CVE-2026-33186"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-33810",
"url": "https://access.redhat.com/security/cve/CVE-2026-33810"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-33811",
"url": "https://access.redhat.com/security/cve/CVE-2026-33811"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-39821",
"url": "https://access.redhat.com/security/cve/CVE-2026-39821"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-39828",
"url": "https://access.redhat.com/security/cve/CVE-2026-39828"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-39829",
"url": "https://access.redhat.com/security/cve/CVE-2026-39829"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-39830",
"url": "https://access.redhat.com/security/cve/CVE-2026-39830"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-39832",
"url": "https://access.redhat.com/security/cve/CVE-2026-39832"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-39835",
"url": "https://access.redhat.com/security/cve/CVE-2026-39835"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-42151",
"url": "https://access.redhat.com/security/cve/CVE-2026-42151"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-42154",
"url": "https://access.redhat.com/security/cve/CVE-2026-42154"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-42508",
"url": "https://access.redhat.com/security/cve/CVE-2026-42508"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-46595",
"url": "https://access.redhat.com/security/cve/CVE-2026-46595"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-4800",
"url": "https://access.redhat.com/security/cve/CVE-2026-4800"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-4926",
"url": "https://access.redhat.com/security/cve/CVE-2026-4926"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-6322",
"url": "https://access.redhat.com/security/cve/CVE-2026-6322"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/",
"url": "https://access.redhat.com/security/updates/classification/"
},
{
"category": "external",
"summary": "https://docs.redhat.com/en/documentation/red_hat_advanced_cluster_management_for_kubernetes/2.15/html-single/edge_manager/index#edge-mgr-intro",
"url": "https://docs.redhat.com/en/documentation/red_hat_advanced_cluster_management_for_kubernetes/2.15/html-single/edge_manager/index#edge-mgr-intro"
},
{
"category": "external",
"summary": "https://docs.redhat.com/en/documentation/red_hat_ansible_automation_platform/2.5/html/managing_device_fleets_with_the_red_hat_edge_manager/assembly-edge-manager-intro",
"url": "https://docs.redhat.com/en/documentation/red_hat_ansible_automation_platform/2.5/html/managing_device_fleets_with_the_red_hat_edge_manager/assembly-edge-manager-intro"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2026/rhsa-2026_36651.json"
}
],
"title": "Red Hat Security Advisory: Red Hat Edge Manager Version 1.0.3 Security Update",
"tracking": {
"current_release_date": "2026-07-09T07:28:23+00:00",
"generator": {
"date": "2026-07-09T07:28:23+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "5.3.1"
}
},
"id": "RHSA-2026:36651",
"initial_release_date": "2026-07-08T10:08:44+00:00",
"revision_history": [
{
"date": "2026-07-08T10:08:44+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2026-07-08T10:08:59+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2026-07-09T07:28:23+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Edge Manager 1.0",
"product": {
"name": "Red Hat Edge Manager 1.0",
"product_id": "Red Hat Edge Manager 1.0",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:edge_manager:1.0::el9"
}
}
}
],
"category": "product_family",
"name": "Red Hat Edge Manager"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"product": {
"name": "registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"product_id": "registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"product_identification_helper": {
"purl": "pkg:oci/flightctl-alert-exporter-rhel9@sha256%3A7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95?arch=amd64\u0026repository_url=registry.redhat.io/rhem/flightctl-alert-exporter-rhel9\u0026tag=1783502022"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"product": {
"name": "registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"product_id": "registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"product_identification_helper": {
"purl": "pkg:oci/flightctl-alertmanager-proxy-rhel9@sha256%3A9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927?arch=amd64\u0026repository_url=registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9\u0026tag=1783502465"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"product": {
"name": "registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"product_id": "registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"product_identification_helper": {
"purl": "pkg:oci/flightctl-api-rhel9@sha256%3A5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d?arch=amd64\u0026repository_url=registry.redhat.io/rhem/flightctl-api-rhel9\u0026tag=1783502025"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"product": {
"name": "registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"product_id": "registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"product_identification_helper": {
"purl": "pkg:oci/flightctl-cli-artifacts-rhel9@sha256%3A3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607?arch=amd64\u0026repository_url=registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9\u0026tag=1783502494"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"product": {
"name": "registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"product_id": "registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"product_identification_helper": {
"purl": "pkg:oci/flightctl-db-setup-rhel9@sha256%3A0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d?arch=amd64\u0026repository_url=registry.redhat.io/rhem/flightctl-db-setup-rhel9\u0026tag=1783502401"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"product": {
"name": "registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"product_id": "registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"product_identification_helper": {
"purl": "pkg:oci/flightctl-pam-issuer-rhel9@sha256%3A6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568?arch=amd64\u0026repository_url=registry.redhat.io/rhem/flightctl-pam-issuer-rhel9\u0026tag=1783502403"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"product": {
"name": "registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"product_id": "registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"product_identification_helper": {
"purl": "pkg:oci/flightctl-periodic-rhel9@sha256%3Ab0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81?arch=amd64\u0026repository_url=registry.redhat.io/rhem/flightctl-periodic-rhel9\u0026tag=1783502022"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"product": {
"name": "registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"product_id": "registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"product_identification_helper": {
"purl": "pkg:oci/flightctl-telemetry-gateway-rhel9@sha256%3A51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f?arch=amd64\u0026repository_url=registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9\u0026tag=1783502023"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64",
"product": {
"name": "registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64",
"product_id": "registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64",
"product_identification_helper": {
"purl": "pkg:oci/flightctl-ui-rhel9@sha256%3Af1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70?arch=amd64\u0026repository_url=registry.redhat.io/rhem/flightctl-ui-rhel9\u0026tag=1783502438"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"product": {
"name": "registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"product_id": "registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"product_identification_helper": {
"purl": "pkg:oci/flightctl-ui-ocp-rhel9@sha256%3A5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad?arch=amd64\u0026repository_url=registry.redhat.io/rhem/flightctl-ui-ocp-rhel9\u0026tag=1783502765"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"product": {
"name": "registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"product_id": "registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"product_identification_helper": {
"purl": "pkg:oci/flightctl-userinfo-proxy-rhel9@sha256%3Aceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb?arch=amd64\u0026repository_url=registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9\u0026tag=1783502029"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"product": {
"name": "registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"product_id": "registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"product_identification_helper": {
"purl": "pkg:oci/flightctl-worker-rhel9@sha256%3A11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79?arch=amd64\u0026repository_url=registry.redhat.io/rhem/flightctl-worker-rhel9\u0026tag=1783502445"
}
}
}
],
"category": "architecture",
"name": "amd64"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"product": {
"name": "registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"product_id": "registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"product_identification_helper": {
"purl": "pkg:oci/flightctl-alert-exporter-rhel9@sha256%3Abb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7?arch=arm64\u0026repository_url=registry.redhat.io/rhem/flightctl-alert-exporter-rhel9\u0026tag=1783502022"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"product": {
"name": "registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"product_id": "registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"product_identification_helper": {
"purl": "pkg:oci/flightctl-alertmanager-proxy-rhel9@sha256%3Ae4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a?arch=arm64\u0026repository_url=registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9\u0026tag=1783502465"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"product": {
"name": "registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"product_id": "registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"product_identification_helper": {
"purl": "pkg:oci/flightctl-api-rhel9@sha256%3Afb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2?arch=arm64\u0026repository_url=registry.redhat.io/rhem/flightctl-api-rhel9\u0026tag=1783502025"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"product": {
"name": "registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"product_id": "registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"product_identification_helper": {
"purl": "pkg:oci/flightctl-cli-artifacts-rhel9@sha256%3Ac9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908?arch=arm64\u0026repository_url=registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9\u0026tag=1783502494"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"product": {
"name": "registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"product_id": "registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"product_identification_helper": {
"purl": "pkg:oci/flightctl-db-setup-rhel9@sha256%3A84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7?arch=arm64\u0026repository_url=registry.redhat.io/rhem/flightctl-db-setup-rhel9\u0026tag=1783502401"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"product": {
"name": "registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"product_id": "registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"product_identification_helper": {
"purl": "pkg:oci/flightctl-pam-issuer-rhel9@sha256%3A225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e?arch=arm64\u0026repository_url=registry.redhat.io/rhem/flightctl-pam-issuer-rhel9\u0026tag=1783502403"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"product": {
"name": "registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"product_id": "registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"product_identification_helper": {
"purl": "pkg:oci/flightctl-periodic-rhel9@sha256%3A0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b?arch=arm64\u0026repository_url=registry.redhat.io/rhem/flightctl-periodic-rhel9\u0026tag=1783502022"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"product": {
"name": "registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"product_id": "registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"product_identification_helper": {
"purl": "pkg:oci/flightctl-telemetry-gateway-rhel9@sha256%3Aaba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca?arch=arm64\u0026repository_url=registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9\u0026tag=1783502023"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"product": {
"name": "registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"product_id": "registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"product_identification_helper": {
"purl": "pkg:oci/flightctl-ui-rhel9@sha256%3Ae75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8?arch=arm64\u0026repository_url=registry.redhat.io/rhem/flightctl-ui-rhel9\u0026tag=1783502438"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"product": {
"name": "registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"product_id": "registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"product_identification_helper": {
"purl": "pkg:oci/flightctl-ui-ocp-rhel9@sha256%3Ae8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e?arch=arm64\u0026repository_url=registry.redhat.io/rhem/flightctl-ui-ocp-rhel9\u0026tag=1783502765"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"product": {
"name": "registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"product_id": "registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"product_identification_helper": {
"purl": "pkg:oci/flightctl-userinfo-proxy-rhel9@sha256%3A636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321?arch=arm64\u0026repository_url=registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9\u0026tag=1783502029"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64",
"product": {
"name": "registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64",
"product_id": "registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64",
"product_identification_helper": {
"purl": "pkg:oci/flightctl-worker-rhel9@sha256%3A4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395?arch=arm64\u0026repository_url=registry.redhat.io/rhem/flightctl-worker-rhel9\u0026tag=1783502445"
}
}
}
],
"category": "architecture",
"name": "arm64"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64 as a component of Red Hat Edge Manager 1.0",
"product_id": "Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64"
},
"product_reference": "registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"relates_to_product_reference": "Red Hat Edge Manager 1.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64 as a component of Red Hat Edge Manager 1.0",
"product_id": "Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64"
},
"product_reference": "registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"relates_to_product_reference": "Red Hat Edge Manager 1.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64 as a component of Red Hat Edge Manager 1.0",
"product_id": "Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64"
},
"product_reference": "registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"relates_to_product_reference": "Red Hat Edge Manager 1.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64 as a component of Red Hat Edge Manager 1.0",
"product_id": "Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64"
},
"product_reference": "registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"relates_to_product_reference": "Red Hat Edge Manager 1.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64 as a component of Red Hat Edge Manager 1.0",
"product_id": "Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64"
},
"product_reference": "registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"relates_to_product_reference": "Red Hat Edge Manager 1.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64 as a component of Red Hat Edge Manager 1.0",
"product_id": "Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64"
},
"product_reference": "registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"relates_to_product_reference": "Red Hat Edge Manager 1.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64 as a component of Red Hat Edge Manager 1.0",
"product_id": "Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64"
},
"product_reference": "registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"relates_to_product_reference": "Red Hat Edge Manager 1.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64 as a component of Red Hat Edge Manager 1.0",
"product_id": "Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64"
},
"product_reference": "registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"relates_to_product_reference": "Red Hat Edge Manager 1.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64 as a component of Red Hat Edge Manager 1.0",
"product_id": "Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64"
},
"product_reference": "registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"relates_to_product_reference": "Red Hat Edge Manager 1.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64 as a component of Red Hat Edge Manager 1.0",
"product_id": "Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64"
},
"product_reference": "registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"relates_to_product_reference": "Red Hat Edge Manager 1.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64 as a component of Red Hat Edge Manager 1.0",
"product_id": "Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64"
},
"product_reference": "registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"relates_to_product_reference": "Red Hat Edge Manager 1.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64 as a component of Red Hat Edge Manager 1.0",
"product_id": "Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64"
},
"product_reference": "registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"relates_to_product_reference": "Red Hat Edge Manager 1.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64 as a component of Red Hat Edge Manager 1.0",
"product_id": "Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64"
},
"product_reference": "registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"relates_to_product_reference": "Red Hat Edge Manager 1.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64 as a component of Red Hat Edge Manager 1.0",
"product_id": "Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64"
},
"product_reference": "registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"relates_to_product_reference": "Red Hat Edge Manager 1.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64 as a component of Red Hat Edge Manager 1.0",
"product_id": "Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64"
},
"product_reference": "registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"relates_to_product_reference": "Red Hat Edge Manager 1.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64 as a component of Red Hat Edge Manager 1.0",
"product_id": "Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64"
},
"product_reference": "registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"relates_to_product_reference": "Red Hat Edge Manager 1.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64 as a component of Red Hat Edge Manager 1.0",
"product_id": "Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64"
},
"product_reference": "registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"relates_to_product_reference": "Red Hat Edge Manager 1.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64 as a component of Red Hat Edge Manager 1.0",
"product_id": "Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64"
},
"product_reference": "registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"relates_to_product_reference": "Red Hat Edge Manager 1.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64 as a component of Red Hat Edge Manager 1.0",
"product_id": "Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64"
},
"product_reference": "registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"relates_to_product_reference": "Red Hat Edge Manager 1.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64 as a component of Red Hat Edge Manager 1.0",
"product_id": "Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64"
},
"product_reference": "registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64",
"relates_to_product_reference": "Red Hat Edge Manager 1.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64 as a component of Red Hat Edge Manager 1.0",
"product_id": "Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64"
},
"product_reference": "registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"relates_to_product_reference": "Red Hat Edge Manager 1.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64 as a component of Red Hat Edge Manager 1.0",
"product_id": "Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64"
},
"product_reference": "registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"relates_to_product_reference": "Red Hat Edge Manager 1.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64 as a component of Red Hat Edge Manager 1.0",
"product_id": "Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64"
},
"product_reference": "registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"relates_to_product_reference": "Red Hat Edge Manager 1.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64 as a component of Red Hat Edge Manager 1.0",
"product_id": "Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
},
"product_reference": "registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64",
"relates_to_product_reference": "Red Hat Edge Manager 1.0"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2025-13465",
"cwe": {
"id": "CWE-1321",
"name": "Improperly Controlled Modification of Object Prototype Attributes (\u0027Prototype Pollution\u0027)"
},
"discovery_date": "2026-01-21T20:01:28.774829+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2431740"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Lodash. A prototype pollution vulnerability in the _.unset and _.omit functions allows an attacker able to control property paths to delete methods from global prototypes. By removing essential functionalities, this can result in a denial of service.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "lodash: prototype pollution in _.unset and _.omit functions",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This issue is only exploitable by applications using the _.unset and _.omit functions on an object and allowing user input to determine the path of the property to be removed. This issue only allows the deletion of properties but does not allow overwriting their behavior, limiting the impact to a denial of service. Due to this reason, this vulnerability has been rated with an important severity.\n\nIn Grafana, JavaScript code runs only in the browser, while the server side is all Golang. Therefore, the worst-case scenario is a loss of functionality in the client application inside the browser. To reflect this, the CVSS availability metric and the severity of the Grafana and the Grafana-PCP component have been updated to low and moderate, respectively.\n\nThe lodash dependency is bundled and used by the pcs-web-ui component of the PCS package. In Red Hat Enterprise Linux 8.10, the pcs-web-ui component is no longer included in the PCS package. As a result, RHEL 8.10 does not ship the vulnerable lodash component within PCS and is therefore not-affected by this CVE.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64"
],
"known_not_affected": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-13465"
},
{
"category": "external",
"summary": "RHBZ#2431740",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2431740"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-13465",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-13465"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-13465",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-13465"
},
{
"category": "external",
"summary": "https://github.com/lodash/lodash/security/advisories/GHSA-xxjr-mmjv-4gpg",
"url": "https://github.com/lodash/lodash/security/advisories/GHSA-xxjr-mmjv-4gpg"
}
],
"release_date": "2026-01-21T19:05:28.846000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T10:08:44+00:00",
"details": "See the following documentation for details on how to enable Red Hat Edge Manager and more: https://docs.redhat.com/en/documentation/red_hat_edge_manager/1.0",
"product_ids": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36651"
},
{
"category": "workaround",
"details": "To mitigate this issue, implement strict input validation before passing any property paths to the _.unset and _.omit functions to block attempts to access the prototype chain. Ensure that strings like __proto__, constructor and prototype are blocked, for example.",
"product_ids": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.2,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "lodash: prototype pollution in _.unset and _.omit functions"
},
{
"cve": "CVE-2025-61729",
"cwe": {
"id": "CWE-1050",
"name": "Excessive Platform Resource Consumption within a Loop"
},
"discovery_date": "2025-12-02T20:01:45.330964+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2418462"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in golang. A remote attacker could exploit this vulnerability by providing a specially crafted certificate during the error string construction process within the `HostnameError.Error()` function. This flaw, caused by unbounded string concatenation, leads to excessive resource consumption. Successful exploitation can result in a denial of service (DoS) for the affected system.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "crypto/x509: golang: Denial of Service due to excessive resource consumption via crafted certificate",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64"
],
"known_not_affected": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-61729"
},
{
"category": "external",
"summary": "RHBZ#2418462",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2418462"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-61729",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-61729"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-61729",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-61729"
},
{
"category": "external",
"summary": "https://go.dev/cl/725920",
"url": "https://go.dev/cl/725920"
},
{
"category": "external",
"summary": "https://go.dev/issue/76445",
"url": "https://go.dev/issue/76445"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/8FJoBkPddm4",
"url": "https://groups.google.com/g/golang-announce/c/8FJoBkPddm4"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2025-4155",
"url": "https://pkg.go.dev/vuln/GO-2025-4155"
}
],
"release_date": "2025-12-02T18:54:10.166000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T10:08:44+00:00",
"details": "See the following documentation for details on how to enable Red Hat Edge Manager and more: https://docs.redhat.com/en/documentation/red_hat_edge_manager/1.0",
"product_ids": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36651"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "crypto/x509: golang: Denial of Service due to excessive resource consumption via crafted certificate"
},
{
"cve": "CVE-2025-68121",
"discovery_date": "2026-02-05T18:01:30.086058+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2437111"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the crypto/tls component. This vulnerability occurs during Transport Layer Security (TLS) session resumption when certificate authority (CA) settings are modified between the initial and resumed handshakes. An attacker could exploit this to bypass certificate validation, allowing a client or server to establish a connection that should have been rejected. This could lead to an authentication bypass under specific conditions.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "crypto/tls: crypto/tls: Incorrect certificate validation during TLS session resumption",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This is a moderate flaw because it only occurs under specific conditions, such as TLS session resumption with runtime changes to certificate authority settings. Exploitation is not straightforward and requires a controlled setup. The impact is limited to certificate validation within the same component and does not affect system availability.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64"
],
"known_not_affected": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-68121"
},
{
"category": "external",
"summary": "RHBZ#2437111",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2437111"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-68121",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68121"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-68121",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-68121"
},
{
"category": "external",
"summary": "https://go.dev/cl/737700",
"url": "https://go.dev/cl/737700"
},
{
"category": "external",
"summary": "https://go.dev/issue/77217",
"url": "https://go.dev/issue/77217"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/K09ubi9FQFk",
"url": "https://groups.google.com/g/golang-announce/c/K09ubi9FQFk"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-4337",
"url": "https://pkg.go.dev/vuln/GO-2026-4337"
}
],
"release_date": "2026-02-05T17:48:44.141000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T10:08:44+00:00",
"details": "See the following documentation for details on how to enable Red Hat Edge Manager and more: https://docs.redhat.com/en/documentation/red_hat_edge_manager/1.0",
"product_ids": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36651"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.4,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "crypto/tls: crypto/tls: Incorrect certificate validation during TLS session resumption"
},
{
"cve": "CVE-2025-69873",
"cwe": {
"id": "CWE-1333",
"name": "Inefficient Regular Expression Complexity"
},
"discovery_date": "2026-02-11T19:01:32.953264+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2439070"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in ajv. When the $data option is enabled, the value of the pattern keyword is passed directly to the JavaScript RegExp() constructor without sufficient validation. An attacker able to supply a malicious regular expression pattern can trigger a ReDoS (Regular Expression Denial of Service), causing the application to become unresponsive and resulting in a denial of service.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "ajv: ReDoS via $data reference",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "To exploit this issue, the $data option must be enabled and the attacker needs to be able to send a payload with a specially crafted regular expression to the application processing the input. A 31-character payload causes approximately 44 seconds of execution, with each additional character doubling the execution time. Therefore, even a small payload can cause an application to become unresponsive and eventually result in a denial of service. Due to this reason, this flaw has been rated with an important severity.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64"
],
"known_not_affected": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-69873"
},
{
"category": "external",
"summary": "RHBZ#2439070",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2439070"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-69873",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-69873"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-69873",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-69873"
},
{
"category": "external",
"summary": "https://github.com/EthanKim88/ethan-cve-disclosures/blob/main/CVE-2025-69873-ajv-ReDoS.md",
"url": "https://github.com/EthanKim88/ethan-cve-disclosures/blob/main/CVE-2025-69873-ajv-ReDoS.md"
}
],
"release_date": "2026-02-11T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T10:08:44+00:00",
"details": "See the following documentation for details on how to enable Red Hat Edge Manager and more: https://docs.redhat.com/en/documentation/red_hat_edge_manager/1.0",
"product_ids": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36651"
},
{
"category": "workaround",
"details": "To mitigate this issue, disable the $data feature if your application does not require it. If $data must be used, implement strict validation of the input fields that are referenced by the pattern keyword to ensure they contain only expected and safe characters.",
"product_ids": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "ajv: ReDoS via $data reference"
},
{
"cve": "CVE-2026-4800",
"cwe": {
"id": "CWE-94",
"name": "Improper Control of Generation of Code (\u0027Code Injection\u0027)"
},
"discovery_date": "2026-03-31T20:01:21.918257+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2453496"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in lodash. The fix for CVE-2021-23337 added validation for the variable option in _.template but did not apply the same validation to options.imports key names. Both paths flow into the same Function() constructor sink. Additionally, _.template uses assignInWith to merge imports, which enumerates inherited properties via for..in. If Object.prototype has been polluted by any other vector, the polluted keys are copied into the imports object and passed to Function().",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "lodash: lodash: Arbitrary code execution via untrusted input in template imports",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "In the context of Red Hat Enterprise Linux, the grafana and grafana-pcp packages execute the affected JavaScript entirely client-side within the user\u0027s browser. Consequently, the attack surface is strictly restricted to the local browser environment.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64"
],
"known_not_affected": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-4800"
},
{
"category": "external",
"summary": "RHBZ#2453496",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2453496"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-4800",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-4800"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-4800",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-4800"
},
{
"category": "external",
"summary": "https://cna.openjsf.org/security-advisories.html",
"url": "https://cna.openjsf.org/security-advisories.html"
},
{
"category": "external",
"summary": "https://github.com/advisories/GHSA-35jh-r3h4-6jhm",
"url": "https://github.com/advisories/GHSA-35jh-r3h4-6jhm"
},
{
"category": "external",
"summary": "https://github.com/lodash/lodash/commit/3469357cff396a26c363f8c1b5a91dde28ba4b1c",
"url": "https://github.com/lodash/lodash/commit/3469357cff396a26c363f8c1b5a91dde28ba4b1c"
}
],
"release_date": "2026-03-31T19:25:55.987000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T10:08:44+00:00",
"details": "See the following documentation for details on how to enable Red Hat Edge Manager and more: https://docs.redhat.com/en/documentation/red_hat_edge_manager/1.0",
"product_ids": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36651"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.1,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "lodash: lodash: Arbitrary code execution via untrusted input in template imports"
},
{
"cve": "CVE-2026-4926",
"cwe": {
"id": "CWE-1333",
"name": "Inefficient Regular Expression Complexity"
},
"discovery_date": "2026-03-26T20:03:28.427630+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2451867"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in path-to-regexp. A remote attacker could exploit this vulnerability by providing specially crafted input that generates a regular expression with multiple sequential optional groups. This leads to an exponential growth in the generated regular expression, causing a Denial of Service (DoS) due to excessive resource consumption.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "path-to-regexp: path-to-regexp: Denial of Service via crafted regular expressions",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This is an Important flaw in `path-to-regexp` that can lead to a Denial of Service. The vulnerability occurs when specially crafted input containing multiple sequential optional groups is used to generate regular expressions, causing exponential resource consumption.\n\nThe Red Hat Advanced Cluster Security is not affected by this issue since it\u0027s shipping a `path-to-regexp` version which doesn\u0027t contain the vulnerable code.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64"
],
"known_not_affected": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-4926"
},
{
"category": "external",
"summary": "RHBZ#2451867",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2451867"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-4926",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-4926"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-4926",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-4926"
},
{
"category": "external",
"summary": "https://cna.openjsf.org/security-advisories.html",
"url": "https://cna.openjsf.org/security-advisories.html"
}
],
"release_date": "2026-03-26T18:59:38+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T10:08:44+00:00",
"details": "See the following documentation for details on how to enable Red Hat Edge Manager and more: https://docs.redhat.com/en/documentation/red_hat_edge_manager/1.0",
"product_ids": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36651"
},
{
"category": "workaround",
"details": "To mitigate this vulnerability, limit the use of multiple sequential optional groups in route patterns within applications that use `path-to-regexp`. Additionally, avoid directly passing user-controlled input as route patterns to prevent the generation of maliciously crafted regular expressions.",
"product_ids": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "path-to-regexp: path-to-regexp: Denial of Service via crafted regular expressions"
},
{
"cve": "CVE-2026-6322",
"cwe": {
"id": "CWE-140",
"name": "Improper Neutralization of Delimiters"
},
"discovery_date": "2026-05-05T11:01:00.332189+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2466684"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in fast-uri. A remote attacker could exploit this vulnerability by crafting a malicious Uniform Resource Identifier (URI) that contains percent-encoded authority delimiters. The fast-uri library incorrectly decodes these delimiters during normalization and then re-emits them as raw separators, which can change the URI\u0027s intended authority. This issue allows applications that perform host allowlist checks, redirect validation, or outbound request routing to be steered to a different authority than specified, potentially bypassing security controls.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "fast-uri: fast-uri: URI authority bypass due to improper delimiter handling",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This Important flaw in the `fast-uri` library allows an attacker to bypass security controls in Red Hat products that process Uniform Resource Identifiers (URIs). By crafting a malicious URI with percent-encoded authority delimiters, an attacker can cause the library to incorrectly interpret the URI\u0027s authority, potentially redirecting applications to an unintended domain. This could lead to a bypass of host allowlist checks, redirect validation, or outbound request routing.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64"
],
"known_not_affected": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-6322"
},
{
"category": "external",
"summary": "RHBZ#2466684",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2466684"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-6322",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-6322"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-6322",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-6322"
},
{
"category": "external",
"summary": "https://cna.openjsf.org/security-advisories.html",
"url": "https://cna.openjsf.org/security-advisories.html"
},
{
"category": "external",
"summary": "https://github.com/fastify/fast-uri/security/advisories/GHSA-v39h-62p7-jpjc",
"url": "https://github.com/fastify/fast-uri/security/advisories/GHSA-v39h-62p7-jpjc"
}
],
"release_date": "2026-05-05T10:29:16.378000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T10:08:44+00:00",
"details": "See the following documentation for details on how to enable Red Hat Edge Manager and more: https://docs.redhat.com/en/documentation/red_hat_edge_manager/1.0",
"product_ids": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36651"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "fast-uri: fast-uri: URI authority bypass due to improper delimiter handling"
},
{
"cve": "CVE-2026-22029",
"cwe": {
"id": "CWE-79",
"name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
},
"discovery_date": "2026-01-10T04:01:03.694749+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2428412"
}
],
"notes": [
{
"category": "description",
"text": "A cross site scripting flaw has been discovered in the npm react-router and @remix-run/router packages. React Router (and Remix v1/v2) SPA open navigation redirects originating from loaders or actions in Framework Mode, Data Mode, or the unstable RSC modes can result in unsafe URLs causing unintended javascript execution on the client. This is only an issue if you are creating redirect paths from untrusted content or via an open redirect.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "@remix-run/router: react-router: React Router vulnerable to XSS via Open Redirects",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64"
],
"known_not_affected": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-22029"
},
{
"category": "external",
"summary": "RHBZ#2428412",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2428412"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-22029",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-22029"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-22029",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-22029"
},
{
"category": "external",
"summary": "https://github.com/remix-run/react-router/security/advisories/GHSA-2w69-qvjg-hvjx",
"url": "https://github.com/remix-run/react-router/security/advisories/GHSA-2w69-qvjg-hvjx"
}
],
"release_date": "2026-01-10T02:42:32.736000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T10:08:44+00:00",
"details": "See the following documentation for details on how to enable Red Hat Edge Manager and more: https://docs.redhat.com/en/documentation/red_hat_edge_manager/1.0",
"product_ids": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36651"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 8.0,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "@remix-run/router: react-router: React Router vulnerable to XSS via Open Redirects"
},
{
"cve": "CVE-2026-25679",
"cwe": {
"id": "CWE-1286",
"name": "Improper Validation of Syntactic Correctness of Input"
},
"discovery_date": "2026-03-06T22:02:11.567841+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2445356"
}
],
"notes": [
{
"category": "description",
"text": "The Go standard library function net/url.Parse insufficiently validated the host/authority component and accepted some invalid URLs by effectively treating garbage before an IP-literal as ignorable. The function should have rejected this as invalid.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "net/url: Incorrect parsing of IPv6 host literals in net/url",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64"
],
"known_not_affected": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-25679"
},
{
"category": "external",
"summary": "RHBZ#2445356",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2445356"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-25679",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-25679"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-25679",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-25679"
},
{
"category": "external",
"summary": "https://go.dev/cl/752180",
"url": "https://go.dev/cl/752180"
},
{
"category": "external",
"summary": "https://go.dev/issue/77578",
"url": "https://go.dev/issue/77578"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/EdhZqrQ98hk",
"url": "https://groups.google.com/g/golang-announce/c/EdhZqrQ98hk"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-4601",
"url": "https://pkg.go.dev/vuln/GO-2026-4601"
}
],
"release_date": "2026-03-06T21:28:14.211000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T10:08:44+00:00",
"details": "See the following documentation for details on how to enable Red Hat Edge Manager and more: https://docs.redhat.com/en/documentation/red_hat_edge_manager/1.0",
"product_ids": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36651"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "net/url: Incorrect parsing of IPv6 host literals in net/url"
},
{
"cve": "CVE-2026-29063",
"cwe": {
"id": "CWE-915",
"name": "Improperly Controlled Modification of Dynamically-Determined Object Attributes"
},
"discovery_date": "2026-03-06T19:00:57.982727+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2445291"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Immutable.js, a library for persistent immutable data structures. This vulnerability, known as Prototype Pollution, allows an attacker with low privileges to inject unwanted properties into core JavaScript object prototypes without user interaction. By manipulating specific APIs such as mergeDeep(), mergeDeepWith(), merge(), Map.toJS(), and Map.toObject(), a remote attacker could potentially execute arbitrary code or cause a denial of service (DoS).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "immutable-js: Immutable.js: Arbitrary code execution via Prototype Pollution",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Exploitation of this vulnerability requires that an attacker is able to provide arbitrary data to clients of this library in a way that calls the affected functions with data the attacker controls. In most deployments, the ability to provide data in this fashion requires that an attacker has some degree of privileges to access the affected applications.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64"
],
"known_not_affected": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-29063"
},
{
"category": "external",
"summary": "RHBZ#2445291",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2445291"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-29063",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-29063"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-29063",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-29063"
},
{
"category": "external",
"summary": "https://github.com/immutable-js/immutable-js/releases/tag/v3.8.3",
"url": "https://github.com/immutable-js/immutable-js/releases/tag/v3.8.3"
},
{
"category": "external",
"summary": "https://github.com/immutable-js/immutable-js/releases/tag/v4.3.8",
"url": "https://github.com/immutable-js/immutable-js/releases/tag/v4.3.8"
},
{
"category": "external",
"summary": "https://github.com/immutable-js/immutable-js/releases/tag/v5.1.5",
"url": "https://github.com/immutable-js/immutable-js/releases/tag/v5.1.5"
},
{
"category": "external",
"summary": "https://github.com/immutable-js/immutable-js/security/advisories/GHSA-wf6x-7x77-mvgw",
"url": "https://github.com/immutable-js/immutable-js/security/advisories/GHSA-wf6x-7x77-mvgw"
}
],
"release_date": "2026-03-06T18:25:22.438000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T10:08:44+00:00",
"details": "See the following documentation for details on how to enable Red Hat Edge Manager and more: https://docs.redhat.com/en/documentation/red_hat_edge_manager/1.0",
"product_ids": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36651"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "immutable-js: Immutable.js: Arbitrary code execution via Prototype Pollution"
},
{
"cve": "CVE-2026-32141",
"cwe": {
"id": "CWE-770",
"name": "Allocation of Resources Without Limits or Throttling"
},
"discovery_date": "2026-03-12T19:01:30.987208+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2447083"
}
],
"notes": [
{
"category": "description",
"text": "A denial of service flaw has been discovered in the flatted npm library. flatted\u0027s parse() function uses a recursive revive() phase to resolve circular references in deserialized JSON. When given a crafted payload with deeply nested or self-referential $ indices, the recursion depth is unbounded, causing a stack overflow that crashes the Node.js process.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "flatted: flatted: Unbounded recursion DoS in parse() revive phase",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64"
],
"known_not_affected": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-32141"
},
{
"category": "external",
"summary": "RHBZ#2447083",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2447083"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-32141",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-32141"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-32141",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-32141"
},
{
"category": "external",
"summary": "https://github.com/WebReflection/flatted/commit/7eb65d857e1a40de11c47461cdbc8541449f0606",
"url": "https://github.com/WebReflection/flatted/commit/7eb65d857e1a40de11c47461cdbc8541449f0606"
},
{
"category": "external",
"summary": "https://github.com/WebReflection/flatted/pull/88",
"url": "https://github.com/WebReflection/flatted/pull/88"
},
{
"category": "external",
"summary": "https://github.com/WebReflection/flatted/security/advisories/GHSA-25h7-pfq9-p65f",
"url": "https://github.com/WebReflection/flatted/security/advisories/GHSA-25h7-pfq9-p65f"
}
],
"release_date": "2026-03-12T18:08:09.634000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T10:08:44+00:00",
"details": "See the following documentation for details on how to enable Red Hat Edge Manager and more: https://docs.redhat.com/en/documentation/red_hat_edge_manager/1.0",
"product_ids": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36651"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "flatted: flatted: Unbounded recursion DoS in parse() revive phase"
},
{
"cve": "CVE-2026-32280",
"cwe": {
"id": "CWE-770",
"name": "Allocation of Resources Without Limits or Throttling"
},
"discovery_date": "2026-04-08T02:01:19.572351+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2456339"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the Go standard library packages `crypto/x509` and `crypto/tls`. During the process of building a certificate chain, an attacker can provide a large number of intermediate certificates. This excessive input is not properly limited, leading to an uncontrolled amount of work being performed. This can result in a denial of service (DoS) condition, making the affected system or application unavailable to legitimate users.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "crypto/x509: crypto/tls: golang: Go: Denial of Service vulnerability in certificate chain building",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This is an Important denial of service vulnerability in the Go standard library\u0027s certificate chain building process. Systems utilizing Go applications that process untrusted TLS certificates or X.509 certificate chains are susceptible to resource exhaustion when presented with an excessive number of intermediate certificates, potentially leading to service unavailability. This flaw impacts applications directly using `crypto/x509` or `crypto/tls`.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64"
],
"known_not_affected": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-32280"
},
{
"category": "external",
"summary": "RHBZ#2456339",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2456339"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-32280",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-32280"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-32280",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-32280"
},
{
"category": "external",
"summary": "https://go.dev/cl/758320",
"url": "https://go.dev/cl/758320"
},
{
"category": "external",
"summary": "https://go.dev/issue/78282",
"url": "https://go.dev/issue/78282"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/0uYbvbPZRWU",
"url": "https://groups.google.com/g/golang-announce/c/0uYbvbPZRWU"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-4947",
"url": "https://pkg.go.dev/vuln/GO-2026-4947"
}
],
"release_date": "2026-04-08T01:06:58.595000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T10:08:44+00:00",
"details": "See the following documentation for details on how to enable Red Hat Edge Manager and more: https://docs.redhat.com/en/documentation/red_hat_edge_manager/1.0",
"product_ids": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36651"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "crypto/x509: crypto/tls: golang: Go: Denial of Service vulnerability in certificate chain building"
},
{
"cve": "CVE-2026-33186",
"cwe": {
"id": "CWE-551",
"name": "Incorrect Behavior Order: Authorization Before Parsing and Canonicalization"
},
"discovery_date": "2026-03-20T23:02:27.802640+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2449833"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in gRPC-Go, the Go language implementation of gRPC. This vulnerability, an authorization bypass, is caused by improper input validation of the HTTP/2 `:path` pseudo-header. A remote attacker can exploit this by sending raw HTTP/2 frames with a malformed `:path` that omits the mandatory leading slash. This allows the attacker to bypass defined security policies, potentially leading to unauthorized access to services or information disclosure.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "google.golang.org/grpc/grpc-go: google.golang.org/grpc/authz: gRPC-Go: Authorization bypass due to improper HTTP/2 path validation",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
],
"known_not_affected": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-33186"
},
{
"category": "external",
"summary": "RHBZ#2449833",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2449833"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-33186",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-33186"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-33186",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-33186"
},
{
"category": "external",
"summary": "https://github.com/grpc/grpc-go/security/advisories/GHSA-p77j-4mvh-x3m3",
"url": "https://github.com/grpc/grpc-go/security/advisories/GHSA-p77j-4mvh-x3m3"
}
],
"release_date": "2026-03-20T22:23:32.147000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T10:08:44+00:00",
"details": "See the following documentation for details on how to enable Red Hat Edge Manager and more: https://docs.redhat.com/en/documentation/red_hat_edge_manager/1.0",
"product_ids": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36651"
},
{
"category": "workaround",
"details": "To mitigate this issue, implement infrastructure-level normalization to ensure all incoming HTTP/2 `:path` headers are properly formatted with a leading slash before reaching the gRPC-Go server. This can be achieved by configuring a reverse proxy or API gateway to validate and normalize the `:path` header. Ensure that any such intermediary is properly configured and restarted to apply the changes, which may temporarily impact service availability.",
"product_ids": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 9.1,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "google.golang.org/grpc/grpc-go: google.golang.org/grpc/authz: gRPC-Go: Authorization bypass due to improper HTTP/2 path validation"
},
{
"cve": "CVE-2026-33810",
"cwe": {
"id": "CWE-1289",
"name": "Improper Validation of Unsafe Equivalence in Input"
},
"discovery_date": "2026-04-08T02:01:09.100830+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2456335"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the `crypto/x509` package within Go (golang). When verifying a certificate chain, excluded DNS (Domain Name System) constraints are not correctly applied to wildcard DNS Subject Alternative Names (SANs) if the case of the SAN differs from the constraint. This oversight could allow an attacker to bypass certificate validation, potentially leading to the acceptance of a malicious certificate that should have been rejected. This issue specifically impacts the validation of trusted certificate chains.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "crypto/x509: golang: Go crypto/x509: Certificate validation bypass due to incorrect DNS constraint application",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This is an Important flaw in the Go `crypto/x509` package that could allow an attacker to bypass certificate validation. The vulnerability arises from an incorrect application of excluded DNS constraints to wildcard DNS Subject Alternative Names (SANs) when their case differs from the constraint. This could lead to Red Hat products accepting malicious certificates from otherwise trusted chains, compromising the trust model.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64"
],
"known_not_affected": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-33810"
},
{
"category": "external",
"summary": "RHBZ#2456335",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2456335"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-33810",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-33810"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-33810",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-33810"
},
{
"category": "external",
"summary": "https://go.dev/cl/763763",
"url": "https://go.dev/cl/763763"
},
{
"category": "external",
"summary": "https://go.dev/issue/78332",
"url": "https://go.dev/issue/78332"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/0uYbvbPZRWU",
"url": "https://groups.google.com/g/golang-announce/c/0uYbvbPZRWU"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-4866",
"url": "https://pkg.go.dev/vuln/GO-2026-4866"
}
],
"release_date": "2026-04-08T01:06:56.546000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T10:08:44+00:00",
"details": "See the following documentation for details on how to enable Red Hat Edge Manager and more: https://docs.redhat.com/en/documentation/red_hat_edge_manager/1.0",
"product_ids": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36651"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 8.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:L/A:L",
"version": "3.1"
},
"products": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "crypto/x509: golang: Go crypto/x509: Certificate validation bypass due to incorrect DNS constraint application"
},
{
"cve": "CVE-2026-33811",
"cwe": {
"id": "CWE-1341",
"name": "Multiple Releases of Same Resource or Handle"
},
"discovery_date": "2026-05-07T20:01:34.913869+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2467822"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the `net` package of Go (golang), specifically when using the `LookupCNAME` function with the `cgo` DNS resolver. A remote attacker could exploit this by providing a very long Canonical Name (CNAME) response. This can trigger a double-free of C memory, leading to a crash and a Denial of Service (DoS) for the affected application.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "net: golang: Go net package: Denial of Service via long CNAME response in LookupCNAME",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This is an Important denial of service vulnerability in the Go `net` package, affecting applications configured to use the `cgo` DNS resolver. A remote attacker could trigger a double-free memory error by providing a very long CNAME response, leading to a crash of the vulnerable application and impacting service availability.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64"
],
"known_not_affected": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-33811"
},
{
"category": "external",
"summary": "RHBZ#2467822",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2467822"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-33811",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-33811"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-33811",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-33811"
},
{
"category": "external",
"summary": "https://go.dev/cl/767860",
"url": "https://go.dev/cl/767860"
},
{
"category": "external",
"summary": "https://go.dev/issue/78803",
"url": "https://go.dev/issue/78803"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/qcCIEXso47M",
"url": "https://groups.google.com/g/golang-announce/c/qcCIEXso47M"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-4981",
"url": "https://pkg.go.dev/vuln/GO-2026-4981"
}
],
"release_date": "2026-05-07T19:41:19.285000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T10:08:44+00:00",
"details": "See the following documentation for details on how to enable Red Hat Edge Manager and more: https://docs.redhat.com/en/documentation/red_hat_edge_manager/1.0",
"product_ids": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36651"
},
{
"category": "workaround",
"details": "To mitigate this issue, applications can be configured to use the pure Go DNS resolver instead of the `cgo` DNS resolver. This can be achieved by setting the `GODEBUG` environment variable to `netdns=go`. For example, to run a Go application with this mitigation: `GODEBUG=netdns=go /path/to/your/go/application`. This change may require restarting affected applications or services to take effect. Users should verify that this change does not negatively impact DNS resolution for their specific application environment.",
"product_ids": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "net: golang: Go net package: Denial of Service via long CNAME response in LookupCNAME"
},
{
"cve": "CVE-2026-39821",
"cwe": {
"id": "CWE-1289",
"name": "Improper Validation of Unsafe Equivalence in Input"
},
"discovery_date": "2026-05-22T16:00:52.844126+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2480756"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in golang.org/x/net/idna. ToASCII and ToUnicode incorrectly accept Punycode-encoded labels that decode to an ASCII-only hostname (for example, xn--example-.com returns example.com instead of an error). Applications that validate the ASCII form then convert to Unicode may grant access to a restricted hostname the ASCII check would have rejected.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang.org/x/net/idna: golang: golang.org/x/net/idna: Privilege escalation via incorrect Punycode label processing",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "golang.org/x/net/idna is vulnerable to privilege escalation through incorrect Punycode label handling in ToASCII and ToUnicode. An attacker who can supply a Punycode hostname that passes an ASCII-only authorization check may have it normalized to a restricted ASCII name the application intended to block. Red Hat exposure is broad across products shipping the Go toolchain or bundling golang.org/x/net, including RHEL and RHEL-AI golang RPMs, hummingbird Go runtimes, OpenShift and ODF container builds, and Ceph/OpenShift components compiled against affected x/net versions.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64"
],
"known_not_affected": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-39821"
},
{
"category": "external",
"summary": "RHBZ#2480756",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2480756"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-39821",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-39821"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-39821",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-39821"
},
{
"category": "external",
"summary": "https://go.dev/cl/767220",
"url": "https://go.dev/cl/767220"
},
{
"category": "external",
"summary": "https://go.dev/issue/78760",
"url": "https://go.dev/issue/78760"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/iI-mYSI0lu8",
"url": "https://groups.google.com/g/golang-announce/c/iI-mYSI0lu8"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-5026",
"url": "https://pkg.go.dev/vuln/GO-2026-5026"
}
],
"release_date": "2026-05-22T15:01:21.462000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T10:08:44+00:00",
"details": "See the following documentation for details on how to enable Red Hat Edge Manager and more: https://docs.redhat.com/en/documentation/red_hat_edge_manager/1.0",
"product_ids": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36651"
},
{
"category": "workaround",
"details": "Upgrade to a fixed golang.org/x/net release that includes the idna correction, via updated golang or dependent package rebuilds.",
"product_ids": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 8.2,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang.org/x/net/idna: golang: golang.org/x/net/idna: Privilege escalation via incorrect Punycode label processing"
},
{
"cve": "CVE-2026-39828",
"cwe": {
"id": "CWE-281",
"name": "Improper Preservation of Permissions"
},
"discovery_date": "2026-05-22T04:01:46.775641+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2480687"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in golang.org/x/crypto/ssh. A remote attacker could exploit this vulnerability when an SSH server authentication callback returned a PartialSuccessError with non-nil permissions. This flaw caused these permissions to be silently discarded, potentially bypassing certificate restrictions, such as a force-command, after a second authentication factor succeeded. This could lead to unauthorized command execution or access.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang.org/x/crypto/ssh: golang.org/x/crypto/ssh: Unauthorized command execution via discarded SSH permissions",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This is an Important security flaw in the `golang.org/x/crypto/ssh` library. When an SSH server utilizing this library is configured with specific authentication callbacks that return a `PartialSuccessError` with non-nil permissions, an attacker could bypass intended certificate restrictions, such as `force-command`. This bypass could lead to unauthorized command execution or access on affected Red Hat systems configured with multi-factor authentication and certificate-based access controls.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
],
"known_not_affected": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-39828"
},
{
"category": "external",
"summary": "RHBZ#2480687",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2480687"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-39828",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-39828"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-39828",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-39828"
},
{
"category": "external",
"summary": "https://go.dev/cl/781621",
"url": "https://go.dev/cl/781621"
},
{
"category": "external",
"summary": "https://go.dev/issue/79562",
"url": "https://go.dev/issue/79562"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/a082jnz-LvI",
"url": "https://groups.google.com/g/golang-announce/c/a082jnz-LvI"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-5014",
"url": "https://pkg.go.dev/vuln/GO-2026-5014"
}
],
"release_date": "2026-05-22T02:31:26.883000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T10:08:44+00:00",
"details": "See the following documentation for details on how to enable Red Hat Edge Manager and more: https://docs.redhat.com/en/documentation/red_hat_edge_manager/1.0",
"product_ids": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36651"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability.",
"product_ids": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang.org/x/crypto/ssh: golang.org/x/crypto/ssh: Unauthorized command execution via discarded SSH permissions"
},
{
"cve": "CVE-2026-39829",
"cwe": {
"id": "CWE-1284",
"name": "Improper Validation of Specified Quantity in Input"
},
"discovery_date": "2026-05-22T04:01:30.092249+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2480681"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in golang.org/x/crypto/ssh. The RSA and DSA public key parsers in the affected component did not enforce size limits on key parameters. This vulnerability allows an unauthenticated client to provide a crafted public key with an excessively large modulus or DSA parameter during public key authentication. Successful exploitation could lead to a denial of service (DoS) due to prolonged CPU consumption during signature verification.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang.org/x/crypto/ssh: golang.org/x/crypto/ssh: Denial of Service via crafted public key with excessive parameters",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability in golang.org/x/crypto/ssh is rated as Important. An unauthenticated remote attacker could trigger a denial of service by providing a specially crafted public key with excessively large parameters during SSH public key authentication. This could lead to prolonged CPU consumption on the server, impacting service availability.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
],
"known_not_affected": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-39829"
},
{
"category": "external",
"summary": "RHBZ#2480681",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2480681"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-39829",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-39829"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-39829",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-39829"
},
{
"category": "external",
"summary": "https://go.dev/cl/781641",
"url": "https://go.dev/cl/781641"
},
{
"category": "external",
"summary": "https://go.dev/cl/781661",
"url": "https://go.dev/cl/781661"
},
{
"category": "external",
"summary": "https://go.dev/issue/79565",
"url": "https://go.dev/issue/79565"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/a082jnz-LvI",
"url": "https://groups.google.com/g/golang-announce/c/a082jnz-LvI"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-5018",
"url": "https://pkg.go.dev/vuln/GO-2026-5018"
}
],
"release_date": "2026-05-22T02:31:27.324000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T10:08:44+00:00",
"details": "See the following documentation for details on how to enable Red Hat Edge Manager and more: https://docs.redhat.com/en/documentation/red_hat_edge_manager/1.0",
"product_ids": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36651"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability.",
"product_ids": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang.org/x/crypto/ssh: golang.org/x/crypto/ssh: Denial of Service via crafted public key with excessive parameters"
},
{
"cve": "CVE-2026-39830",
"cwe": {
"id": "CWE-772",
"name": "Missing Release of Resource after Effective Lifetime"
},
"discovery_date": "2026-05-22T04:01:38.517202+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2480684"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in golang.org/x/crypto/ssh. A remote malicious SSH peer can exploit this by sending unsolicited global request responses, which fills an internal buffer and blocks the connection\u0027s read loop. This prevents the associated resources from being released, leading to a resource leak per connection. The consequence is a Denial of Service (DoS) for the affected system.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang.org/x/crypto/ssh: golang.org/x/crypto/ssh: Denial of Service via resource leak from unsolicited SSH responses",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This is an Important denial of service flaw in `golang.org/x/crypto/ssh`. A remote, unauthenticated attacker can exploit this vulnerability by sending unsolicited global request responses to an affected SSH server, leading to resource exhaustion and a denial of service. The impact is considered Important due to the potential for unauthenticated remote disruption of services utilizing the vulnerable SSH library.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
],
"known_not_affected": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-39830"
},
{
"category": "external",
"summary": "RHBZ#2480684",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2480684"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-39830",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-39830"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-39830",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-39830"
},
{
"category": "external",
"summary": "https://go.dev/cl/781640",
"url": "https://go.dev/cl/781640"
},
{
"category": "external",
"summary": "https://go.dev/cl/781664",
"url": "https://go.dev/cl/781664"
},
{
"category": "external",
"summary": "https://go.dev/issue/79564",
"url": "https://go.dev/issue/79564"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/a082jnz-LvI",
"url": "https://groups.google.com/g/golang-announce/c/a082jnz-LvI"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-5017",
"url": "https://pkg.go.dev/vuln/GO-2026-5017"
}
],
"release_date": "2026-05-22T02:31:27.208000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T10:08:44+00:00",
"details": "See the following documentation for details on how to enable Red Hat Edge Manager and more: https://docs.redhat.com/en/documentation/red_hat_edge_manager/1.0",
"product_ids": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36651"
},
{
"category": "workaround",
"details": "To mitigate this denial of service vulnerability, restrict network access to any service that utilizes the `golang.org/x/crypto/ssh` library and is exposed to untrusted networks. Implement firewall rules to allow connections only from trusted hosts or networks. This action limits the ability of malicious peers to send unsolicited global request responses. A restart of the affected service may be necessary for the new network rules to be applied effectively.",
"product_ids": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang.org/x/crypto/ssh: golang.org/x/crypto/ssh: Denial of Service via resource leak from unsolicited SSH responses"
},
{
"cve": "CVE-2026-39832",
"cwe": {
"id": "CWE-281",
"name": "Improper Preservation of Permissions"
},
"discovery_date": "2026-05-22T04:01:41.402561+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2480685"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in golang.org/x/crypto/ssh/agent. When a key was added to a remote agent, security restrictions, known as constraint extensions, were not properly processed during the request. This allowed these restrictions to be silently removed when keys were forwarded, leading to the unrestricted use of the key on the remote host. This vulnerability could enable an attacker to bypass intended security controls and perform unauthorized actions.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang.org/x/crypto/ssh/agent: golang.org/x/crypto/ssh/agent: Security bypass due to improper handling of key restrictions",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This Important vulnerability in `golang.org/x/crypto/ssh/agent` allows for a security bypass when SSH keys with destination restrictions are forwarded via an SSH agent. This flaw could lead to unintended exposure of SSH keys, enabling an attacker to use the forwarded key without the specified restrictions on remote hosts. Red Hat products utilizing `golang.org/x/crypto/ssh/agent` for key forwarding may be affected if users rely on constraint extensions for limiting key usage.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
],
"known_not_affected": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-39832"
},
{
"category": "external",
"summary": "RHBZ#2480685",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2480685"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-39832",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-39832"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-39832",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-39832"
},
{
"category": "external",
"summary": "https://go.dev/cl/778642",
"url": "https://go.dev/cl/778642"
},
{
"category": "external",
"summary": "https://go.dev/issue/79435",
"url": "https://go.dev/issue/79435"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/a082jnz-LvI",
"url": "https://groups.google.com/g/golang-announce/c/a082jnz-LvI"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-5006",
"url": "https://pkg.go.dev/vuln/GO-2026-5006"
}
],
"release_date": "2026-05-22T02:31:26.660000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T10:08:44+00:00",
"details": "See the following documentation for details on how to enable Red Hat Edge Manager and more: https://docs.redhat.com/en/documentation/red_hat_edge_manager/1.0",
"product_ids": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36651"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability.",
"product_ids": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 8.7,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "CHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang.org/x/crypto/ssh/agent: golang.org/x/crypto/ssh/agent: Security bypass due to improper handling of key restrictions"
},
{
"cve": "CVE-2026-39835",
"cwe": {
"id": "CWE-476",
"name": "NULL Pointer Dereference"
},
"discovery_date": "2026-05-22T04:01:27.279943+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2480680"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in golang.org/x/crypto/ssh. SSH servers configured to use CertChecker as a public key callback, without explicitly setting IsUserAuthority or IsHostAuthority, are vulnerable. A remote attacker can exploit this by presenting a specially crafted certificate, causing the server to panic and resulting in a Denial of Service (DoS).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang.org/x/crypto/ssh: golang: golang.org/x/crypto/ssh: Denial of Service via crafted SSH certificate",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This is an Important denial of service flaw in `golang.org/x/crypto/ssh` affecting SSH servers that utilize `CertChecker` as a public key callback without explicitly configuring `IsUserAuthority` or `IsHostAuthority`. A remote, unauthenticated attacker can trigger a server panic by presenting a specially crafted certificate, leading to service disruption. Exploitation requires a specific, non-default configuration of the `CertChecker`.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
],
"known_not_affected": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-39835"
},
{
"category": "external",
"summary": "RHBZ#2480680",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2480680"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-39835",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-39835"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-39835",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-39835"
},
{
"category": "external",
"summary": "https://go.dev/cl/781660",
"url": "https://go.dev/cl/781660"
},
{
"category": "external",
"summary": "https://go.dev/issue/79563",
"url": "https://go.dev/issue/79563"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/a082jnz-LvI",
"url": "https://groups.google.com/g/golang-announce/c/a082jnz-LvI"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-5015",
"url": "https://pkg.go.dev/vuln/GO-2026-5015"
}
],
"release_date": "2026-05-22T02:31:26.982000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T10:08:44+00:00",
"details": "See the following documentation for details on how to enable Red Hat Edge Manager and more: https://docs.redhat.com/en/documentation/red_hat_edge_manager/1.0",
"product_ids": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36651"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability.",
"product_ids": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang.org/x/crypto/ssh: golang: golang.org/x/crypto/ssh: Denial of Service via crafted SSH certificate"
},
{
"cve": "CVE-2026-42151",
"cwe": {
"id": "CWE-256",
"name": "Plaintext Storage of a Password"
},
"discovery_date": "2026-05-04T19:02:26.983660+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2466507"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Prometheus, an open-source monitoring system. The `client_secret` field within the Azure Active Directory (AD) remote write OAuth configuration was incorrectly handled as a plain string instead of a secure Secret type. This misconfiguration allowed any user or process with access to the `/-/config` HTTP API endpoint to view the Azure OAuth client secret in plaintext. This vulnerability leads to information disclosure, potentially compromising the security of integrated Azure AD services.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "github.com/prometheus/prometheus: Prometheus: Information disclosure of Azure OAuth client secret via config API",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This Important information disclosure flaw in Prometheus affects instances configured to use Azure AD remote write with OAuth authentication. The client secret, intended to be a secure credential, is exposed in plaintext through the `/-/config` HTTP API endpoint. This could allow an attacker with access to this endpoint to retrieve the secret, potentially compromising integrated Azure AD services.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
],
"known_not_affected": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-42151"
},
{
"category": "external",
"summary": "RHBZ#2466507",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2466507"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-42151",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-42151"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-42151",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-42151"
},
{
"category": "external",
"summary": "https://github.com/prometheus/prometheus/pull/18587",
"url": "https://github.com/prometheus/prometheus/pull/18587"
},
{
"category": "external",
"summary": "https://github.com/prometheus/prometheus/pull/18590",
"url": "https://github.com/prometheus/prometheus/pull/18590"
},
{
"category": "external",
"summary": "https://github.com/prometheus/prometheus/releases/tag/v3.11.3",
"url": "https://github.com/prometheus/prometheus/releases/tag/v3.11.3"
},
{
"category": "external",
"summary": "https://github.com/prometheus/prometheus/releases/tag/v3.5.3",
"url": "https://github.com/prometheus/prometheus/releases/tag/v3.5.3"
},
{
"category": "external",
"summary": "https://github.com/prometheus/prometheus/security/advisories/GHSA-wg65-39gg-5wfj",
"url": "https://github.com/prometheus/prometheus/security/advisories/GHSA-wg65-39gg-5wfj"
}
],
"release_date": "2026-05-04T18:12:16.917000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T10:08:44+00:00",
"details": "See the following documentation for details on how to enable Red Hat Edge Manager and more: https://docs.redhat.com/en/documentation/red_hat_edge_manager/1.0",
"product_ids": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36651"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "github.com/prometheus/prometheus: Prometheus: Information disclosure of Azure OAuth client secret via config API"
},
{
"cve": "CVE-2026-42154",
"cwe": {
"id": "CWE-770",
"name": "Allocation of Resources Without Limits or Throttling"
},
"discovery_date": "2026-05-04T19:02:19.626646+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2466505"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Prometheus. An unauthenticated attacker can exploit the remote read endpoint (`/api/v1/read`) by sending a specially crafted, small snappy-compressed payload. This payload causes a disproportionately large memory allocation, leading to memory exhaustion and a Denial of Service (DoS) by crashing the Prometheus process.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "github.com/prometheus/prometheus: Prometheus: Denial of Service via uncontrolled memory allocation in remote read endpoint",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This is an Important denial of service vulnerability in Prometheus, allowing an unauthenticated remote attacker to crash the Prometheus process. This could lead to service unavailability in Red Hat products that deploy Prometheus for monitoring, as the remote read endpoint does not properly validate snappy-compressed request lengths.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
],
"known_not_affected": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-42154"
},
{
"category": "external",
"summary": "RHBZ#2466505",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2466505"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-42154",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-42154"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-42154",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-42154"
},
{
"category": "external",
"summary": "https://github.com/prometheus/prometheus/pull/18584",
"url": "https://github.com/prometheus/prometheus/pull/18584"
},
{
"category": "external",
"summary": "https://github.com/prometheus/prometheus/pull/18585",
"url": "https://github.com/prometheus/prometheus/pull/18585"
},
{
"category": "external",
"summary": "https://github.com/prometheus/prometheus/releases/tag/v3.11.3",
"url": "https://github.com/prometheus/prometheus/releases/tag/v3.11.3"
},
{
"category": "external",
"summary": "https://github.com/prometheus/prometheus/releases/tag/v3.5.3",
"url": "https://github.com/prometheus/prometheus/releases/tag/v3.5.3"
},
{
"category": "external",
"summary": "https://github.com/prometheus/prometheus/security/advisories/GHSA-8rm2-7qqf-34qm",
"url": "https://github.com/prometheus/prometheus/security/advisories/GHSA-8rm2-7qqf-34qm"
}
],
"release_date": "2026-05-04T18:13:12.340000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T10:08:44+00:00",
"details": "See the following documentation for details on how to enable Red Hat Edge Manager and more: https://docs.redhat.com/en/documentation/red_hat_edge_manager/1.0",
"product_ids": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36651"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "github.com/prometheus/prometheus: Prometheus: Denial of Service via uncontrolled memory allocation in remote read endpoint"
},
{
"cve": "CVE-2026-42508",
"cwe": {
"id": "CWE-295",
"name": "Improper Certificate Validation"
},
"discovery_date": "2026-05-22T04:01:49.515058+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2480688"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in golang.org/x/crypto/ssh/knownhosts. This vulnerability occurs because the system did not correctly check for the revocation status of a SignatureKey belonging to a Certificate Authority (CA). A remote attacker could potentially exploit this by presenting a revoked key, leading to the system accepting it as valid. This could allow an attacker to bypass security checks and potentially gain unauthorized access or spoof legitimate entities.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang.org/x/crypto/ssh/knownhosts: golang: golang.org/x/crypto/ssh/knownhosts: Revocation bypass via unchecked SignatureKey",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Important: A flaw in `golang.org/x/crypto/ssh/knownhosts` allows a remote attacker to bypass security checks. This vulnerability arises because the system fails to properly verify the revocation status of a Certificate Authority (CA) `SignatureKey`. In Red Hat environments, this could enable an attacker to present a revoked key, leading to its acceptance as valid and potentially granting unauthorized access or facilitating the spoofing of legitimate entities.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64"
],
"known_not_affected": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-42508"
},
{
"category": "external",
"summary": "RHBZ#2480688",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2480688"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-42508",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-42508"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-42508",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-42508"
},
{
"category": "external",
"summary": "https://go.dev/cl/781220",
"url": "https://go.dev/cl/781220"
},
{
"category": "external",
"summary": "https://go.dev/issue/79568",
"url": "https://go.dev/issue/79568"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/a082jnz-LvI",
"url": "https://groups.google.com/g/golang-announce/c/a082jnz-LvI"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-5021",
"url": "https://pkg.go.dev/vuln/GO-2026-5021"
}
],
"release_date": "2026-05-22T02:31:27.644000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T10:08:44+00:00",
"details": "See the following documentation for details on how to enable Red Hat Edge Manager and more: https://docs.redhat.com/en/documentation/red_hat_edge_manager/1.0",
"product_ids": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36651"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.4,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang.org/x/crypto/ssh/knownhosts: golang: golang.org/x/crypto/ssh/knownhosts: Revocation bypass via unchecked SignatureKey"
},
{
"cve": "CVE-2026-46595",
"cwe": {
"id": "CWE-303",
"name": "Incorrect Implementation of Authentication Algorithm"
},
"discovery_date": "2026-05-22T04:01:52.215134+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2480689"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in golang.org/x/crypto/ssh. Source-address validation can be skipped when an SSH server configuration uses an authentication callback type other than public key, allowing authorization bypass in misconfigured servers. This is a follow-on to incomplete coverage from the CVE-2024-45337 fix.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang.org/x/crypto/ssh: golang.org/x/crypto/ssh: Authorization bypass due to skipped source-address validation",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "golang.org/x/crypto/ssh is vulnerable to authorization bypass when SSH server configurations rely on source-address validation alongside non-public-key authentication callbacks. An attacker with low privileges who can authenticate through such a callback path may bypass intended source-address restrictions and gain unauthorized SSH access. Red Hat impact sits in services built with affected x/crypto/ssh, including RHEL golang streams, hummingbird Go toolchains, RHACM/MCE agents, and OpenShift or Ceph components that embed Go SSH servers with mixed callback types.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64"
],
"known_not_affected": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-46595"
},
{
"category": "external",
"summary": "RHBZ#2480689",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2480689"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-46595",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-46595"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-46595",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-46595"
},
{
"category": "external",
"summary": "https://go.dev/cl/781642",
"url": "https://go.dev/cl/781642"
},
{
"category": "external",
"summary": "https://go.dev/issue/79570",
"url": "https://go.dev/issue/79570"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/a082jnz-LvI",
"url": "https://groups.google.com/g/golang-announce/c/a082jnz-LvI"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-5023",
"url": "https://pkg.go.dev/vuln/GO-2026-5023"
}
],
"release_date": "2026-05-22T02:31:27.894000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T10:08:44+00:00",
"details": "See the following documentation for details on how to enable Red Hat Edge Manager and more: https://docs.redhat.com/en/documentation/red_hat_edge_manager/1.0",
"product_ids": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36651"
},
{
"category": "workaround",
"details": "Upgrade to a fixed golang.org/x/crypto/ssh release via updated golang or package rebuilds. Ensure SSH servers use supported public-key callback configurations with source-address validation as intended.",
"product_ids": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 7.1,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:L",
"version": "3.1"
},
"products": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang.org/x/crypto/ssh: golang.org/x/crypto/ssh: Authorization bypass due to skipped source-address validation"
}
]
}
RHSA-2026:36754
Vulnerability from csaf_redhat - Published: 2026-07-08 13:07 - Updated: 2026-07-09 06:30A flaw was found in fast-uri. A remote attacker could exploit this vulnerability by crafting a malicious Uniform Resource Identifier (URI) that contains percent-encoded authority delimiters. The fast-uri library incorrectly decodes these delimiters during normalization and then re-emits them as raw separators, which can change the URI's intended authority. This issue allows applications that perform host allowlist checks, redirect validation, or outbound request routing to be steered to a different authority than specified, potentially bypassing security controls.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64 | — |
Vendor Fix
fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64 | — | ||
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64 | — | ||
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64 | — | ||
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64 | — |
A flaw was found in undici. When using Socks5ProxyAgent, undici incorrectly reuses a single connection pool across different origins. This can lead to cross-origin request routing, where sensitive credentials and data intended for one destination are sent to another. Consequently, responses from unintended origins may be trusted, and secure HTTPS connections could be silently downgraded to unencrypted HTTP, resulting in information disclosure and data integrity issues.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64 | — |
Workaround
|
A flaw was found in the shell-quote component. The quote() function did not properly validate object-token inputs, allowing line terminators to pass unescaped into the output. A remote attacker could exploit this vulnerability by providing specially crafted input, which a POSIX shell would interpret as a command separator. This could lead to command injection, enabling the attacker to execute arbitrary code on the system.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64 | — |
Vendor Fix
fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64 | — | ||
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64 | — | ||
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64 | — | ||
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64 | — |
A flaw was found in json-2-csv. An attacker can bypass the `preventCsvInjection` option to inject malicious formulas into CSV (Comma Separated Values) files. When these manipulated CSV files are opened in spreadsheet applications, the injected formulas can execute, potentially leading to arbitrary code execution or information disclosure.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64 | — |
Workaround
|
A flaw was found in undici. When undici's ProxyAgent is configured with a SOCKS5 proxy Uniform Resource Identifier (URI), it silently ignores Transport Layer Security (TLS) options, such as custom Certificate Authorities (CAs). This allows a remote attacker to perform a Man-in-the-Middle (MITM) attack, intercepting and tampering with HTTPS communications. The connection falls back to Node.js's default trust store, bypassing intended security configurations and potentially leading to information disclosure or arbitrary code execution.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64 | — |
Workaround
|
A flaw was found in form-data, a library for creating readable multipart/form-data streams. A remote attacker can exploit this vulnerability by injecting carriage return (CR), line feed (LF), or double-quote (") characters into the `field` argument of `FormData#append` or the `filename` option. This allows the attacker to inject additional headers or smuggle entire additional multipart parts into requests, potentially enabling them to add or override form fields and compromise data integrity.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64 | — |
Workaround
|
A flaw was found in undici. A malicious WebSocket server can exploit this by streaming numerous small or empty continuation frames. This can bypass per-frame and cumulative-size validation, leading to unbounded memory growth in the client process. The primary consequence is memory exhaustion, resulting in a denial of service (DoS) for affected applications using the undici WebSocket client or WebSocketStream API.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64 | — |
Workaround
|
A flaw was found in vm2, an open-source virtual machine (VM) sandbox for Node.js. This vulnerability allows an attacker to escape the sandbox environment by exploiting the `inspect` function. Successful exploitation can lead to arbitrary code execution on the host system, compromising the integrity and confidentiality of the system.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64 | — |
Vendor Fix
fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64 | — | ||
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64 | — | ||
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64 | — | ||
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64 | — |
A flaw was found in golang.org/x/net/html. When arbitrary HTML is parsed and then rendered, it can result in an unexpected HTML tree. This allows an attacker to bypass HTML sanitization mechanisms, leading to Cross-Site Scripting (XSS) attacks in applications. Such attacks can result in information disclosure or arbitrary code execution.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64 | — |
Workaround
|
A flaw was found in the `net/mail` package of the Go programming language. An attacker could provide specially crafted inputs to the `ParseAddress`, `ParseAddressList`, or `ParseDate` functions. This could lead to excessive consumption of CPU and memory resources, resulting in a Denial of Service (DoS) for applications processing these inputs.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64 | — |
Workaround
|
A flaw was found in ip-address, a JavaScript library for parsing and manipulating IPv4 and IPv6 addresses. This vulnerability allows a remote attacker to perform cross-site scripting (XSS) by providing untrusted input to the Address6 constructor. When an application renders the output of Address6.group(), Address6.link(), or the AddressError.parseMessage as HTML without proper escaping, the attacker-controlled content can be executed in the user's browser.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64 | — |
Workaround
|
A flaw was found in the `net/mail` package within the Go standard library. A remote attacker could provide specially crafted, pathological email addresses. When these malformed email addresses are parsed by the `consumePhrase` function, it can lead to excessive resource consumption due to quadratic string concatenation, resulting in a Denial of Service (DoS) condition.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64 | — |
Workaround
|
A flaw was found in Axios, a promise-based HTTP client, specifically in its Node.js HTTP adapter. When Axios is configured to use an authenticated proxy and follows a redirect, it may inadvertently send the Proxy-Authorization header, containing proxy credentials, to the redirect target. This can lead to the disclosure of sensitive proxy credentials to an unintended remote server.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64 | — |
Workaround
|
A flaw was found in Axios. During specific proxy-to-direct redirect flows in the Node.js HTTP adapter, a remote attacker could exploit this vulnerability. The Proxy-Authorization header, which contains proxy credentials and is intended only for the outbound proxy, may be forwarded to the final redirected origin. This can lead to the disclosure of sensitive proxy credentials to an unintended third party.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64 | — |
Workaround
|
A flaw was found in Axios, a promise-based HTTP client. When using the fetch adapter, Axios did not properly enforce configured request and response size limits. This vulnerability allows a remote attacker, through a malicious or compromised server, or by supplying a large data URL, to send or receive oversized data bodies. This can lead to resource exhaustion in server-side applications, resulting in a Denial of Service (DoS).
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64 | — |
Workaround
|
A flaw was found in Axios, a promise-based HTTP client. This vulnerability occurs because Axios does not properly normalize IPv4-mapped IPv6 addresses. When a NO_PROXY setting is configured to block direct access to specific IPv4 addresses, an attacker can bypass this restriction by using the IPv4-mapped IPv6 form of the address in a request URL. This allows the request to be routed through the proxy, potentially exposing internal services or sensitive information that should otherwise be inaccessible.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64 | — |
Workaround
|
A flaw was found in Axios. This vulnerability, a Prototype Pollution "Gadget" attack, allows an attacker to escalate any existing Object.prototype pollution in an application's dependency tree into a full Man-in-the-Middle (MITM) attack. This enables the attacker to intercept, read, and modify all HTTP traffic, including sensitive authentication credentials. The flaw occurs because the `config.proxy` setting is susceptible to prototype pollution, allowing an attacker to inject a malicious proxy server.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64 | — |
Workaround
|
A flaw was found in Axios, a promise-based HTTP client. This vulnerability involves prototype pollution gadgets in the request configuration processing. If another vulnerability has already polluted the Object.prototype.transformResponse, affected Axios versions may incorrectly interpret this inherited value as part of the request configuration or as an option validator. Axios does not itself create the prototype pollution. Exploitability requires a separate prototype-pollution vulnerability or equivalent attacker control over Object.prototype before Axios creates a request.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64 | — |
Workaround
|
A flaw was found in Axios. A remote attacker, by influencing the XSRF cookie name in a browser environment, could cause the application to construct a regular expression that leads to excessive processing. This can result in a client-side Denial of Service (DoS), where the affected browser tab may freeze, impacting the availability of the application for the user.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64 | — |
Workaround
|
A flaw was found in ws, an open source WebSocket client and server for Node.js. The `websocket.close()` implementation is vulnerable to uninitialized memory disclosure when a `TypedArray` is passed as the reason argument. This can lead to the disclosure of sensitive information from uninitialized memory.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64 | — |
Vendor Fix
fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64 | — | ||
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64 | — | ||
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64 | — | ||
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64 | — |
A flaw was found in vm2, an open-source virtual machine (VM) sandbox for Node.js. A remote attacker can exploit this vulnerability by combining specific Buffer function calls and Node.js's ERR_INVALID_ARG_TYPE error. This allows the attacker to obtain the host's TypeError constructor, leading to an escape from the sandbox. Consequently, this enables attackers to run arbitrary code on the host system.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64 | — |
Workaround
|
A flaw was found in vm2, an open-source virtual machine (VM) sandbox for Node.js. An attacker within the sandbox could exploit incomplete symbol interception and missing security checks to gain control over the host system. This could allow the attacker to execute arbitrary code outside the sandbox environment, leading to a complete compromise of the host.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64 | — |
Workaround
|
A flaw was found in vm2, an open-source virtual machine (VM) sandbox for Node.js. A remote attacker could bypass a security check designed to prevent the combination of nested environments and disabled module loading. This bypass occurs because a strict equality check for the `require` option can be circumvented by simply omitting the option, leading to an unintended configuration. Successful exploitation of this vulnerability could allow an attacker to escape the sandbox and achieve arbitrary code execution on the host system.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64 | — |
Workaround
|
A flaw was found in vm2, a Node.js sandbox. This vulnerability allows sandboxed code to bypass network restrictions by utilizing internal HTTP built-ins, such as _http_client and _http_server. An attacker can exploit this to make outbound HTTP requests or open listening HTTP sockets, even when public network modules are explicitly denied. This could lead to unauthorized information disclosure or further compromise of the system.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64 | — |
Workaround
|
A flaw was found in vm2, an open-source virtual machine (VM) sandbox for Node.js. This vulnerability allows sandboxed code to bypass intended security restrictions by exploiting missing entries in the denylist for dangerous Node.js built-in functions, specifically `process` and `inspector/promises`. A remote attacker can leverage this to execute arbitrary code in the host process, leading to a complete compromise of the system.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64 | — |
Workaround
|
A flaw was found in vm2, an open-source virtual machine (VM) sandbox for Node.js. Prior to version 3.11.4, NodeVM, a component of vm2, improperly exposed certain process-wide observability builtins, such as diagnostics_channel, async_hooks, and perf_hooks. These builtins, which are designed for monitoring and debugging, were not adequately blocked by the dangerous builtin denylist. This oversight allowed sandboxed code to observe sensitive host application data, leading to information disclosure across the vm2 security boundary.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64 | — |
Workaround
|
A flaw was found in vm2, an open-source virtual machine (VM) sandbox for Node.js. This vulnerability allows an attacker to escape the sandbox environment by writing malicious code. Successful exploitation can lead to arbitrary code execution on the host system, compromising the integrity and confidentiality of the system.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64 | — |
Workaround
|
A flaw was found in vm2, an open-source virtual machine (VM) sandbox for Node.js. This sandbox escape vulnerability allows an attacker to execute arbitrary code in the host process. This occurs when untrusted code is executed with asynchronous (async) support on runtimes that expose WebAssembly JavaScript Promise Integration (JSPI). Specifically, a JSPI-backed Promise can bypass expected Promise-species hardening, exposing a host-originated rejection object to attacker-controlled logic and breaking the sandbox boundary.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64 | — |
Workaround
|
A flaw was found in ws, an open source WebSocket client and server. A remote attacker can exploit this memory exhaustion vulnerability by sending a high volume of exceptionally small fragments and data chunks. This action forces the affected component to allocate and hold structural wrappers that consume excessive memory. Consequently, this leads to process termination and a denial of service (DoS) for the remote peer.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64 | — |
Workaround
|
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Red Hat Developer Hub 1.10.2 has been released.",
"title": "Topic"
},
{
"category": "general",
"text": "Red Hat Developer Hub (RHDH) is Red Hat\u0027s enterprise-grade, self-managed, customizable developer portal based on Backstage.io. RHDH is supported on OpenShift and other major Kubernetes clusters (AKS, EKS, GKE). The core features of RHDH include a single pane of glass, a centralized software catalog, self-service via golden path templates, and Tech Docs. RHDH is extensible by plugins.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2026:36754",
"url": "https://access.redhat.com/errata/RHSA-2026:36754"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-12143",
"url": "https://access.redhat.com/security/cve/CVE-2026-12143"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-12151",
"url": "https://access.redhat.com/security/cve/CVE-2026-12151"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-24781",
"url": "https://access.redhat.com/security/cve/CVE-2026-24781"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-27136",
"url": "https://access.redhat.com/security/cve/CVE-2026-27136"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-39820",
"url": "https://access.redhat.com/security/cve/CVE-2026-39820"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-42338",
"url": "https://access.redhat.com/security/cve/CVE-2026-42338"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-42499",
"url": "https://access.redhat.com/security/cve/CVE-2026-42499"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-44486",
"url": "https://access.redhat.com/security/cve/CVE-2026-44486"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-44487",
"url": "https://access.redhat.com/security/cve/CVE-2026-44487"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-44488",
"url": "https://access.redhat.com/security/cve/CVE-2026-44488"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-44492",
"url": "https://access.redhat.com/security/cve/CVE-2026-44492"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-44494",
"url": "https://access.redhat.com/security/cve/CVE-2026-44494"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-44495",
"url": "https://access.redhat.com/security/cve/CVE-2026-44495"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-44496",
"url": "https://access.redhat.com/security/cve/CVE-2026-44496"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-45736",
"url": "https://access.redhat.com/security/cve/CVE-2026-45736"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-47131",
"url": "https://access.redhat.com/security/cve/CVE-2026-47131"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-47135",
"url": "https://access.redhat.com/security/cve/CVE-2026-47135"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-47137",
"url": "https://access.redhat.com/security/cve/CVE-2026-47137"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-47139",
"url": "https://access.redhat.com/security/cve/CVE-2026-47139"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-47140",
"url": "https://access.redhat.com/security/cve/CVE-2026-47140"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-47141",
"url": "https://access.redhat.com/security/cve/CVE-2026-47141"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-47208",
"url": "https://access.redhat.com/security/cve/CVE-2026-47208"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-47210",
"url": "https://access.redhat.com/security/cve/CVE-2026-47210"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-48779",
"url": "https://access.redhat.com/security/cve/CVE-2026-48779"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-6322",
"url": "https://access.redhat.com/security/cve/CVE-2026-6322"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-6734",
"url": "https://access.redhat.com/security/cve/CVE-2026-6734"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-9277",
"url": "https://access.redhat.com/security/cve/CVE-2026-9277"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-9673",
"url": "https://access.redhat.com/security/cve/CVE-2026-9673"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-9697",
"url": "https://access.redhat.com/security/cve/CVE-2026-9697"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/",
"url": "https://access.redhat.com/security/updates/classification/"
},
{
"category": "external",
"summary": "https://catalog.redhat.com/search?gs\u0026searchType=containers\u0026q=rhdh",
"url": "https://catalog.redhat.com/search?gs\u0026searchType=containers\u0026q=rhdh"
},
{
"category": "external",
"summary": "https://developers.redhat.com/rhdh/overview",
"url": "https://developers.redhat.com/rhdh/overview"
},
{
"category": "external",
"summary": "https://docs.redhat.com/en/documentation/red_hat_developer_hub",
"url": "https://docs.redhat.com/en/documentation/red_hat_developer_hub"
},
{
"category": "external",
"summary": "https://issues.redhat.com/browse/RHDHBUGS-3286",
"url": "https://issues.redhat.com/browse/RHDHBUGS-3286"
},
{
"category": "external",
"summary": "https://issues.redhat.com/browse/RHDHBUGS-3288",
"url": "https://issues.redhat.com/browse/RHDHBUGS-3288"
},
{
"category": "external",
"summary": "https://issues.redhat.com/browse/RHDHBUGS-3290",
"url": "https://issues.redhat.com/browse/RHDHBUGS-3290"
},
{
"category": "external",
"summary": "https://issues.redhat.com/browse/RHDHBUGS-3291",
"url": "https://issues.redhat.com/browse/RHDHBUGS-3291"
},
{
"category": "external",
"summary": "https://issues.redhat.com/browse/RHDHBUGS-3293",
"url": "https://issues.redhat.com/browse/RHDHBUGS-3293"
},
{
"category": "external",
"summary": "https://issues.redhat.com/browse/RHDHBUGS-3398",
"url": "https://issues.redhat.com/browse/RHDHBUGS-3398"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2026/rhsa-2026_36754.json"
}
],
"title": "Red Hat Security Advisory: Red Hat Developer Hub 1.10.2 release.",
"tracking": {
"current_release_date": "2026-07-09T06:30:08+00:00",
"generator": {
"date": "2026-07-09T06:30:08+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "5.3.1"
}
},
"id": "RHSA-2026:36754",
"initial_release_date": "2026-07-08T13:07:12+00:00",
"revision_history": [
{
"date": "2026-07-08T13:07:12+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2026-07-08T16:49:00+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2026-07-09T06:30:08+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Developer Hub 1.10",
"product": {
"name": "Red Hat Developer Hub 1.10",
"product_id": "Red Hat Developer Hub 1.10",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhdh:1.10::el9"
}
}
}
],
"category": "product_family",
"name": "Red Hat Developer Hub"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64",
"product": {
"name": "registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64",
"product_id": "registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhdh-hub-rhel9@sha256%3A61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02?arch=amd64\u0026repository_url=registry.redhat.io/rhdh/rhdh-hub-rhel9\u0026tag=1783448184"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64",
"product": {
"name": "registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64",
"product_id": "registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhdh-must-gather-rhel9@sha256%3Aaacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1?arch=amd64\u0026repository_url=registry.redhat.io/rhdh/rhdh-must-gather-rhel9\u0026tag=1783447888"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64",
"product": {
"name": "registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64",
"product_id": "registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhdh-rhel9-operator@sha256%3A0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b?arch=amd64\u0026repository_url=registry.redhat.io/rhdh/rhdh-rhel9-operator\u0026tag=1783447707"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64",
"product": {
"name": "registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64",
"product_id": "registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhdh-operator-bundle@sha256%3Ad4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a?arch=amd64\u0026repository_url=registry.redhat.io/rhdh/rhdh-operator-bundle\u0026tag=1783453583"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64",
"product": {
"name": "registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64",
"product_id": "registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhdh-rag-content-rhel9@sha256%3Abea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65?arch=amd64\u0026repository_url=registry.redhat.io/rhdh/rhdh-rag-content-rhel9\u0026tag=1783446803"
}
}
}
],
"category": "architecture",
"name": "amd64"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64 as a component of Red Hat Developer Hub 1.10",
"product_id": "Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64"
},
"product_reference": "registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64",
"relates_to_product_reference": "Red Hat Developer Hub 1.10"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64 as a component of Red Hat Developer Hub 1.10",
"product_id": "Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64"
},
"product_reference": "registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64",
"relates_to_product_reference": "Red Hat Developer Hub 1.10"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64 as a component of Red Hat Developer Hub 1.10",
"product_id": "Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64"
},
"product_reference": "registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64",
"relates_to_product_reference": "Red Hat Developer Hub 1.10"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64 as a component of Red Hat Developer Hub 1.10",
"product_id": "Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64"
},
"product_reference": "registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64",
"relates_to_product_reference": "Red Hat Developer Hub 1.10"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64 as a component of Red Hat Developer Hub 1.10",
"product_id": "Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64"
},
"product_reference": "registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64",
"relates_to_product_reference": "Red Hat Developer Hub 1.10"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2026-6322",
"cwe": {
"id": "CWE-140",
"name": "Improper Neutralization of Delimiters"
},
"discovery_date": "2026-05-05T11:01:00.332189+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2466684"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in fast-uri. A remote attacker could exploit this vulnerability by crafting a malicious Uniform Resource Identifier (URI) that contains percent-encoded authority delimiters. The fast-uri library incorrectly decodes these delimiters during normalization and then re-emits them as raw separators, which can change the URI\u0027s intended authority. This issue allows applications that perform host allowlist checks, redirect validation, or outbound request routing to be steered to a different authority than specified, potentially bypassing security controls.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "fast-uri: fast-uri: URI authority bypass due to improper delimiter handling",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This Important flaw in the `fast-uri` library allows an attacker to bypass security controls in Red Hat products that process Uniform Resource Identifiers (URIs). By crafting a malicious URI with percent-encoded authority delimiters, an attacker can cause the library to incorrectly interpret the URI\u0027s authority, potentially redirecting applications to an unintended domain. This could lead to a bypass of host allowlist checks, redirect validation, or outbound request routing.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64"
],
"known_not_affected": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-6322"
},
{
"category": "external",
"summary": "RHBZ#2466684",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2466684"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-6322",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-6322"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-6322",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-6322"
},
{
"category": "external",
"summary": "https://cna.openjsf.org/security-advisories.html",
"url": "https://cna.openjsf.org/security-advisories.html"
},
{
"category": "external",
"summary": "https://github.com/fastify/fast-uri/security/advisories/GHSA-v39h-62p7-jpjc",
"url": "https://github.com/fastify/fast-uri/security/advisories/GHSA-v39h-62p7-jpjc"
}
],
"release_date": "2026-05-05T10:29:16.378000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T13:07:12+00:00",
"details": "For more about Red Hat Developer Hub, see References links",
"product_ids": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36754"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "fast-uri: fast-uri: URI authority bypass due to improper delimiter handling"
},
{
"cve": "CVE-2026-6734",
"cwe": {
"id": "CWE-940",
"name": "Improper Verification of Source of a Communication Channel"
},
"discovery_date": "2026-06-17T19:04:00.272340+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2490024"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in undici. When using Socks5ProxyAgent, undici incorrectly reuses a single connection pool across different origins. This can lead to cross-origin request routing, where sensitive credentials and data intended for one destination are sent to another. Consequently, responses from unintended origins may be trusted, and secure HTTPS connections could be silently downgraded to unencrypted HTTP, resulting in information disclosure and data integrity issues.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "undici: undici: Information disclosure and data integrity issues due to incorrect Socks5ProxyAgent connection routing",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This is rated as an Important security flaw. The `undici` library, when configured with `Socks5ProxyAgent` to handle requests for multiple origins, incorrectly reuses connection pools. This can lead to sensitive data and credentials being misrouted to unintended destinations, potentially downgrading HTTPS connections to HTTP and compromising data integrity and confidentiality. Red Hat products utilizing `undici` with `Socks5ProxyAgent` in multi-origin scenarios are affected.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64"
],
"known_not_affected": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-6734"
},
{
"category": "external",
"summary": "RHBZ#2490024",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2490024"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-6734",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-6734"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-6734",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-6734"
},
{
"category": "external",
"summary": "https://cna.openjsf.org/security-advisories.html",
"url": "https://cna.openjsf.org/security-advisories.html"
},
{
"category": "external",
"summary": "https://github.com/nodejs/undici/security/advisories/GHSA-hm92-r4w5-c3mj",
"url": "https://github.com/nodejs/undici/security/advisories/GHSA-hm92-r4w5-c3mj"
}
],
"release_date": "2026-06-17T16:36:55.439000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T13:07:12+00:00",
"details": "For more about Red Hat Developer Hub, see References links",
"product_ids": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36754"
},
{
"category": "workaround",
"details": "The single most impactful mitigation is applying network egress controls to restrict which external destinations affected applications can reach. Because the vulnerability causes requests to be misrouted to wrong origins, limiting the set of reachable origins directly reduces the attack surface. These controls collectively limit the blast radius of the connection pool misrouting \u2014 the attacker must compromise one of the explicitly allowed destinations rather than any arbitrary origin \u2014 but they do not fix the underlying logic bug.",
"product_ids": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "undici: undici: Information disclosure and data integrity issues due to incorrect Socks5ProxyAgent connection routing"
},
{
"cve": "CVE-2026-9277",
"cwe": {
"id": "CWE-78",
"name": "Improper Neutralization of Special Elements used in an OS Command (\u0027OS Command Injection\u0027)"
},
"discovery_date": "2026-05-22T14:01:14.427751+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2480741"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the shell-quote component. The quote() function did not properly validate object-token inputs, allowing line terminators to pass unescaped into the output. A remote attacker could exploit this vulnerability by providing specially crafted input, which a POSIX shell would interpret as a command separator. This could lead to command injection, enabling the attacker to execute arbitrary code on the system.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "shell-quote: shell-quote: Arbitrary code execution via command injection due to unescaped line terminators",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64"
],
"known_not_affected": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-9277"
},
{
"category": "external",
"summary": "RHBZ#2480741",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2480741"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-9277",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-9277"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-9277",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-9277"
},
{
"category": "external",
"summary": "https://github.com/ljharb/shell-quote",
"url": "https://github.com/ljharb/shell-quote"
},
{
"category": "external",
"summary": "https://github.com/ljharb/shell-quote/commit/1518179",
"url": "https://github.com/ljharb/shell-quote/commit/1518179"
},
{
"category": "external",
"summary": "https://github.com/ljharb/shell-quote/security/advisories/GHSA-w7jw-789q-3m8p",
"url": "https://github.com/ljharb/shell-quote/security/advisories/GHSA-w7jw-789q-3m8p"
},
{
"category": "external",
"summary": "https://www.npmjs.com/package/shell-quote",
"url": "https://www.npmjs.com/package/shell-quote"
}
],
"release_date": "2026-05-22T13:22:38.873000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T13:07:12+00:00",
"details": "For more about Red Hat Developer Hub, see References links",
"product_ids": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36754"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.1,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "shell-quote: shell-quote: Arbitrary code execution via command injection due to unescaped line terminators"
},
{
"cve": "CVE-2026-9673",
"cwe": {
"id": "CWE-1236",
"name": "Improper Neutralization of Formula Elements in a CSV File"
},
"discovery_date": "2026-05-28T06:01:00.245616+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2482486"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in json-2-csv. An attacker can bypass the `preventCsvInjection` option to inject malicious formulas into CSV (Comma Separated Values) files. When these manipulated CSV files are opened in spreadsheet applications, the injected formulas can execute, potentially leading to arbitrary code execution or information disclosure.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "json-2-csv: json-2-csv: CSV Injection vulnerability allows arbitrary code execution via `preventCsvInjection` bypass.",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This Moderate vulnerability in `json-2-csv` allows for CSV Injection due to a bypass in the `preventCsvInjection` option. While exploitation requires a user to open a specially crafted CSV file in a spreadsheet application, successful attacks could lead to arbitrary code execution or information disclosure. This affects Red Hat Developer Hub and Red Hat Ansible Automation Platform when processing untrusted data that is subsequently exported to CSV and opened by a user.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64"
],
"known_not_affected": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-9673"
},
{
"category": "external",
"summary": "RHBZ#2482486",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2482486"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-9673",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-9673"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-9673",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-9673"
},
{
"category": "external",
"summary": "https://gist.github.com/whoamins/299745a2d36b482b44e9613b78e40613",
"url": "https://gist.github.com/whoamins/299745a2d36b482b44e9613b78e40613"
},
{
"category": "external",
"summary": "https://github.com/mrodrig/json-2-csv/blob/main/src/json2csv.ts%23L410",
"url": "https://github.com/mrodrig/json-2-csv/blob/main/src/json2csv.ts%23L410"
},
{
"category": "external",
"summary": "https://github.com/mrodrig/json-2-csv/commit/0fdd0bb6d0273178cd940afc323ccbce19688229",
"url": "https://github.com/mrodrig/json-2-csv/commit/0fdd0bb6d0273178cd940afc323ccbce19688229"
},
{
"category": "external",
"summary": "https://security.snyk.io/vuln/SNYK-JS-JSON2CSV-14221326",
"url": "https://security.snyk.io/vuln/SNYK-JS-JSON2CSV-14221326"
}
],
"release_date": "2026-05-28T05:00:02.387000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T13:07:12+00:00",
"details": "For more about Red Hat Developer Hub, see References links",
"product_ids": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36754"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability.",
"product_ids": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "NONE",
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:H/A:N",
"version": "3.1"
},
"products": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "json-2-csv: json-2-csv: CSV Injection vulnerability allows arbitrary code execution via `preventCsvInjection` bypass."
},
{
"cve": "CVE-2026-9697",
"cwe": {
"id": "CWE-295",
"name": "Improper Certificate Validation"
},
"discovery_date": "2026-06-17T19:03:30.813843+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2490018"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in undici. When undici\u0027s ProxyAgent is configured with a SOCKS5 proxy Uniform Resource Identifier (URI), it silently ignores Transport Layer Security (TLS) options, such as custom Certificate Authorities (CAs). This allows a remote attacker to perform a Man-in-the-Middle (MITM) attack, intercepting and tampering with HTTPS communications. The connection falls back to Node.js\u0027s default trust store, bypassing intended security configurations and potentially leading to information disclosure or arbitrary code execution.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "undici: undici: Man-in-the-Middle attack via ignored TLS options with SOCKS5 proxy",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This is an Important vulnerability. Applications using `undici`\u0027s `ProxyAgent` with a SOCKS5 proxy URI will silently ignore user-configured TLS options, including custom Certificate Authorities. This bypasses intended security controls for HTTPS communication, enabling a remote attacker to perform Man-in-the-Middle attacks, potentially leading to information disclosure or arbitrary code execution in affected Red Hat products.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64"
],
"known_not_affected": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-9697"
},
{
"category": "external",
"summary": "RHBZ#2490018",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2490018"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-9697",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-9697"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-9697",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-9697"
},
{
"category": "external",
"summary": "https://cna.openjsf.org/security-advisories.html",
"url": "https://cna.openjsf.org/security-advisories.html"
},
{
"category": "external",
"summary": "https://github.com/nodejs/undici/security/advisories/GHSA-vmh5-mc38-953g",
"url": "https://github.com/nodejs/undici/security/advisories/GHSA-vmh5-mc38-953g"
}
],
"release_date": "2026-06-17T16:46:42.706000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T13:07:12+00:00",
"details": "For more about Red Hat Developer Hub, see References links",
"product_ids": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36754"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.4,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "undici: undici: Man-in-the-Middle attack via ignored TLS options with SOCKS5 proxy"
},
{
"cve": "CVE-2026-12143",
"cwe": {
"id": "CWE-93",
"name": "Improper Neutralization of CRLF Sequences (\u0027CRLF Injection\u0027)"
},
"discovery_date": "2026-06-12T19:00:57.360953+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2488480"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in form-data, a library for creating readable multipart/form-data streams. A remote attacker can exploit this vulnerability by injecting carriage return (CR), line feed (LF), or double-quote (\") characters into the `field` argument of `FormData#append` or the `filename` option. This allows the attacker to inject additional headers or smuggle entire additional multipart parts into requests, potentially enabling them to add or override form fields and compromise data integrity.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "form-data: form-data: Form field override via CRLF injection",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This is an Important impact flaw in the form-data library: a remote attacker can inject arbitrary headers or additional multipart parts via CRLF injection in field names or filenames, potentially overriding sensitive form fields and affecting data integrity.\n\nFor RHOAI and RHEL AI, severity is Moderate because affected versions appear only as a transitive npm dependency in RHOAI (dashboard, mod-arch plugins, MLflow UI) and RHEL AI 3.4 bootc images, and those products use fixed field names for uploads rather than passing untrusted user input as multipart field names or filenames. The documented exploit path is therefore not reachable in default deployments. Practical impact is limited to non-default or custom integrations that forward multipart requests using attacker-controlled field names.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64"
],
"known_not_affected": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-12143"
},
{
"category": "external",
"summary": "RHBZ#2488480",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2488480"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-12143",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-12143"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-12143",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-12143"
},
{
"category": "external",
"summary": "https://cwe.mitre.org/data/definitions/93.html",
"url": "https://cwe.mitre.org/data/definitions/93.html"
},
{
"category": "external",
"summary": "https://github.com/form-data/form-data/commit/64190db548c0179e37206858e39f27cf513e9435",
"url": "https://github.com/form-data/form-data/commit/64190db548c0179e37206858e39f27cf513e9435"
},
{
"category": "external",
"summary": "https://github.com/form-data/form-data/commit/be3f3cf553978bac15a5182f1f3c3d2d38ccf229",
"url": "https://github.com/form-data/form-data/commit/be3f3cf553978bac15a5182f1f3c3d2d38ccf229"
},
{
"category": "external",
"summary": "https://github.com/form-data/form-data/commit/c7133499c2ee1b80c678e411244f4442bf902045",
"url": "https://github.com/form-data/form-data/commit/c7133499c2ee1b80c678e411244f4442bf902045"
},
{
"category": "external",
"summary": "https://github.com/form-data/form-data/security/advisories/GHSA-hmw2-7cc7-3qxx",
"url": "https://github.com/form-data/form-data/security/advisories/GHSA-hmw2-7cc7-3qxx"
},
{
"category": "external",
"summary": "https://html.spec.whatwg.org/multipage/form-control-infrastructure.html#multipart-form-data",
"url": "https://html.spec.whatwg.org/multipage/form-control-infrastructure.html#multipart-form-data"
},
{
"category": "external",
"summary": "https://www.npmjs.com/package/form-data",
"url": "https://www.npmjs.com/package/form-data"
}
],
"release_date": "2026-06-12T18:01:30.362000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T13:07:12+00:00",
"details": "For more about Red Hat Developer Hub, see References links",
"product_ids": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36754"
},
{
"category": "workaround",
"details": "Applications using the `form-data` library should implement strict input validation and sanitization for all field names and filenames derived from untrusted sources. This prevents the injection of control characters (CR, LF, \") that could lead to header injection or form field overrides. Deployments that exclusively use fixed or trusted field names are not impacted.",
"product_ids": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "form-data: form-data: Form field override via CRLF injection"
},
{
"cve": "CVE-2026-12151",
"cwe": {
"id": "CWE-770",
"name": "Allocation of Resources Without Limits or Throttling"
},
"discovery_date": "2026-06-17T17:01:45.297604+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2489980"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in undici. A malicious WebSocket server can exploit this by streaming numerous small or empty continuation frames. This can bypass per-frame and cumulative-size validation, leading to unbounded memory growth in the client process. The primary consequence is memory exhaustion, resulting in a denial of service (DoS) for affected applications using the undici WebSocket client or WebSocketStream API.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "undici: undici: Denial of Service due to unbounded memory growth via WebSocket frames",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This Important denial of service flaw in the `undici` WebSocket client allows a remote attacker to cause unbounded memory growth. By sending numerous small or empty WebSocket frames, an unauthenticated attacker can exhaust system memory, leading to a denial of service in Red Hat products that use the affected client.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64"
],
"known_not_affected": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-12151"
},
{
"category": "external",
"summary": "RHBZ#2489980",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2489980"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-12151",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-12151"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-12151",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-12151"
},
{
"category": "external",
"summary": "https://cna.openjsf.org/security-advisories.html",
"url": "https://cna.openjsf.org/security-advisories.html"
},
{
"category": "external",
"summary": "https://github.com/nodejs/undici/security/advisories/GHSA-vxpw-j846-p89q",
"url": "https://github.com/nodejs/undici/security/advisories/GHSA-vxpw-j846-p89q"
}
],
"release_date": "2026-06-17T16:05:38.785000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T13:07:12+00:00",
"details": "For more about Red Hat Developer Hub, see References links",
"product_ids": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36754"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "undici: undici: Denial of Service due to unbounded memory growth via WebSocket frames"
},
{
"cve": "CVE-2026-24781",
"cwe": {
"id": "CWE-653",
"name": "Improper Isolation or Compartmentalization"
},
"discovery_date": "2026-05-04T19:03:41.437468+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2466531"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in vm2, an open-source virtual machine (VM) sandbox for Node.js. This vulnerability allows an attacker to escape the sandbox environment by exploiting the `inspect` function. Successful exploitation can lead to arbitrary code execution on the host system, compromising the integrity and confidentiality of the system.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "vm2: vm2: Arbitrary code execution via sandbox breakout through inspect function",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64"
],
"known_not_affected": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-24781"
},
{
"category": "external",
"summary": "RHBZ#2466531",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2466531"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-24781",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-24781"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-24781",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-24781"
},
{
"category": "external",
"summary": "https://github.com/patriksimek/vm2/commit/8d30d93213c1898b3e035298b89a814970dd1189",
"url": "https://github.com/patriksimek/vm2/commit/8d30d93213c1898b3e035298b89a814970dd1189"
},
{
"category": "external",
"summary": "https://github.com/patriksimek/vm2/commit/bdd3d15e57bc4ec5e70365cd79f7cb0256e5f88c",
"url": "https://github.com/patriksimek/vm2/commit/bdd3d15e57bc4ec5e70365cd79f7cb0256e5f88c"
},
{
"category": "external",
"summary": "https://github.com/patriksimek/vm2/commit/fd266d084e0a3322d0f71ba2a8dc4c96cd030228",
"url": "https://github.com/patriksimek/vm2/commit/fd266d084e0a3322d0f71ba2a8dc4c96cd030228"
},
{
"category": "external",
"summary": "https://github.com/patriksimek/vm2/releases/tag/v3.11.0",
"url": "https://github.com/patriksimek/vm2/releases/tag/v3.11.0"
},
{
"category": "external",
"summary": "https://github.com/patriksimek/vm2/security/advisories/GHSA-v37h-5mfm-c47c",
"url": "https://github.com/patriksimek/vm2/security/advisories/GHSA-v37h-5mfm-c47c"
}
],
"release_date": "2026-05-04T16:33:32.869000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T13:07:12+00:00",
"details": "For more about Red Hat Developer Hub, see References links",
"product_ids": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36754"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.1,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "vm2: vm2: Arbitrary code execution via sandbox breakout through inspect function"
},
{
"cve": "CVE-2026-27136",
"cwe": {
"id": "CWE-79",
"name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
},
"discovery_date": "2026-05-22T16:00:56.609820+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2480757"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in golang.org/x/net/html. When arbitrary HTML is parsed and then rendered, it can result in an unexpected HTML tree. This allows an attacker to bypass HTML sanitization mechanisms, leading to Cross-Site Scripting (XSS) attacks in applications. Such attacks can result in information disclosure or arbitrary code execution.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang.org/x/net/html: golang: golang.org/x/net/html: Cross-Site Scripting via HTML parsing bypass",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability in `golang.org/x/net/html` is rated as Important. It allows for Cross-Site Scripting (XSS) attacks by enabling an attacker to bypass HTML sanitization mechanisms when arbitrary HTML is parsed and rendered. This can lead to information disclosure or arbitrary code execution in affected applications. Exploitation typically requires user interaction, where a user processes specially crafted malicious HTML content.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64"
],
"known_not_affected": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-27136"
},
{
"category": "external",
"summary": "RHBZ#2480757",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2480757"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-27136",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-27136"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-27136",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-27136"
},
{
"category": "external",
"summary": "https://go.dev/cl/781685",
"url": "https://go.dev/cl/781685"
},
{
"category": "external",
"summary": "https://go.dev/issue/79575",
"url": "https://go.dev/issue/79575"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/iI-mYSI0lu8",
"url": "https://groups.google.com/g/golang-announce/c/iI-mYSI0lu8"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-5030",
"url": "https://pkg.go.dev/vuln/GO-2026-5030"
}
],
"release_date": "2026-05-22T15:01:22.111000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T13:07:12+00:00",
"details": "For more about Red Hat Developer Hub, see References links",
"product_ids": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36754"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability.",
"product_ids": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 8.1,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang.org/x/net/html: golang: golang.org/x/net/html: Cross-Site Scripting via HTML parsing bypass"
},
{
"cve": "CVE-2026-39820",
"cwe": {
"id": "CWE-606",
"name": "Unchecked Input for Loop Condition"
},
"discovery_date": "2026-05-07T20:01:27.800929+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2467820"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the `net/mail` package of the Go programming language. An attacker could provide specially crafted inputs to the `ParseAddress`, `ParseAddressList`, or `ParseDate` functions. This could lead to excessive consumption of CPU and memory resources, resulting in a Denial of Service (DoS) for applications processing these inputs.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "net/mail: golang: Go net/mail: Denial of Service via crafted email inputs",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This is an Important denial of service vulnerability in the Go `net/mail` package. Applications processing untrusted email inputs via `ParseAddress`, `ParseAddressList`, or `ParseDate` functions are susceptible to excessive resource consumption, which can lead to service unavailability.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64"
],
"known_not_affected": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-39820"
},
{
"category": "external",
"summary": "RHBZ#2467820",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2467820"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-39820",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-39820"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-39820",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-39820"
},
{
"category": "external",
"summary": "https://go.dev/cl/759940",
"url": "https://go.dev/cl/759940"
},
{
"category": "external",
"summary": "https://go.dev/issue/78566",
"url": "https://go.dev/issue/78566"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/qcCIEXso47M",
"url": "https://groups.google.com/g/golang-announce/c/qcCIEXso47M"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-4986",
"url": "https://pkg.go.dev/vuln/GO-2026-4986"
}
],
"release_date": "2026-05-07T19:41:19.854000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T13:07:12+00:00",
"details": "For more about Red Hat Developer Hub, see References links",
"product_ids": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36754"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability.",
"product_ids": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "net/mail: golang: Go net/mail: Denial of Service via crafted email inputs"
},
{
"cve": "CVE-2026-42338",
"cwe": {
"id": "CWE-79",
"name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
},
"discovery_date": "2026-05-12T21:01:14.436876+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2476810"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in ip-address, a JavaScript library for parsing and manipulating IPv4 and IPv6 addresses. This vulnerability allows a remote attacker to perform cross-site scripting (XSS) by providing untrusted input to the Address6 constructor. When an application renders the output of Address6.group(), Address6.link(), or the AddressError.parseMessage as HTML without proper escaping, the attacker-controlled content can be executed in the user\u0027s browser.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "ip-address: ip-address: Cross-site scripting via improper HTML escaping of untrusted input",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability in the `ip-address` JavaScript library is rated as Important. It allows for cross-site scripting (XSS) when an application processes untrusted input through the `Address6` constructor and subsequently renders the unescaped output of methods like `Address6.group()`, `Address6.link()`, or `AddressError.parseMessage` directly as HTML. While the library itself is affected, exploitation is contingent on specific application-level rendering practices that may not be common in Red Hat products.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64"
],
"known_not_affected": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-42338"
},
{
"category": "external",
"summary": "RHBZ#2476810",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2476810"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-42338",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-42338"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-42338",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-42338"
},
{
"category": "external",
"summary": "https://github.com/beaugunderson/ip-address/security/advisories/GHSA-v2v4-37r5-5v8g",
"url": "https://github.com/beaugunderson/ip-address/security/advisories/GHSA-v2v4-37r5-5v8g"
}
],
"release_date": "2026-05-12T19:43:16.470000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T13:07:12+00:00",
"details": "For more about Red Hat Developer Hub, see References links",
"product_ids": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36754"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability.",
"product_ids": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 8.1,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "ip-address: ip-address: Cross-site scripting via improper HTML escaping of untrusted input"
},
{
"cve": "CVE-2026-42499",
"cwe": {
"id": "CWE-1046",
"name": "Creation of Immutable Text Using String Concatenation"
},
"discovery_date": "2026-05-07T20:00:51.685602+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2467809"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the `net/mail` package within the Go standard library. A remote attacker could provide specially crafted, pathological email addresses. When these malformed email addresses are parsed by the `consumePhrase` function, it can lead to excessive resource consumption due to quadratic string concatenation, resulting in a Denial of Service (DoS) condition.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "net/mail: golang: net/mail: Denial of Service via pathological email address parsing",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This is an Important denial of service vulnerability in the `net/mail` package of the Go standard library. A remote attacker can exploit this flaw by sending specially crafted email addresses, leading to excessive resource consumption and a denial of service in Go applications that parse email addresses using the affected library.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64"
],
"known_not_affected": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-42499"
},
{
"category": "external",
"summary": "RHBZ#2467809",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2467809"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-42499",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-42499"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-42499",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-42499"
},
{
"category": "external",
"summary": "https://go.dev/cl/771520",
"url": "https://go.dev/cl/771520"
},
{
"category": "external",
"summary": "https://go.dev/issue/78987",
"url": "https://go.dev/issue/78987"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/qcCIEXso47M",
"url": "https://groups.google.com/g/golang-announce/c/qcCIEXso47M"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-4977",
"url": "https://pkg.go.dev/vuln/GO-2026-4977"
}
],
"release_date": "2026-05-07T19:41:18.615000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T13:07:12+00:00",
"details": "For more about Red Hat Developer Hub, see References links",
"product_ids": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36754"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability.",
"product_ids": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "net/mail: golang: net/mail: Denial of Service via pathological email address parsing"
},
{
"cve": "CVE-2026-44486",
"cwe": {
"id": "CWE-201",
"name": "Insertion of Sensitive Information Into Sent Data"
},
"discovery_date": "2026-06-11T17:01:30.944384+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2487947"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Axios, a promise-based HTTP client, specifically in its Node.js HTTP adapter. When Axios is configured to use an authenticated proxy and follows a redirect, it may inadvertently send the Proxy-Authorization header, containing proxy credentials, to the redirect target. This can lead to the disclosure of sensitive proxy credentials to an unintended remote server.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "axios: Axios: Information disclosure of proxy credentials via HTTP redirects",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This is an Important information disclosure flaw in the Axios Node.js HTTP adapter. Red Hat products utilizing Axios in a Node.js environment with an authenticated proxy and automatic redirects enabled are susceptible. The vulnerability arises when a request, initially sent through an authenticated proxy, is redirected to a target that no longer uses the proxy, potentially leaking `Proxy-Authorization` headers containing sensitive credentials to an untrusted remote server. This risk is heightened in deployments where applications interact with untrusted HTTP origins.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64"
],
"known_not_affected": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-44486"
},
{
"category": "external",
"summary": "RHBZ#2487947",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2487947"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-44486",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-44486"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-44486",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-44486"
},
{
"category": "external",
"summary": "https://github.com/axios/axios/security/advisories/GHSA-j5f8-grm9-p9fc",
"url": "https://github.com/axios/axios/security/advisories/GHSA-j5f8-grm9-p9fc"
}
],
"release_date": "2026-06-11T15:39:07.714000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T13:07:12+00:00",
"details": "For more about Red Hat Developer Hub, see References links",
"product_ids": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36754"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "axios: Axios: Information disclosure of proxy credentials via HTTP redirects"
},
{
"cve": "CVE-2026-44487",
"cwe": {
"id": "CWE-201",
"name": "Insertion of Sensitive Information Into Sent Data"
},
"discovery_date": "2026-06-11T17:01:34.091476+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2487948"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Axios. During specific proxy-to-direct redirect flows in the Node.js HTTP adapter, a remote attacker could exploit this vulnerability. The Proxy-Authorization header, which contains proxy credentials and is intended only for the outbound proxy, may be forwarded to the final redirected origin. This can lead to the disclosure of sensitive proxy credentials to an unintended third party.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "axios: Axios: Information disclosure of proxy credentials via redirect flows",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This is an Important information disclosure flaw in Axios affecting Node.js environments. When an application uses Axios with an authenticated HTTP proxy and follows redirects from an HTTP to a non-proxied HTTPS destination, the Proxy-Authorization header may be inadvertently sent to the final origin server. This could lead to the exposure of sensitive proxy credentials to an unintended third party.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64"
],
"known_not_affected": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-44487"
},
{
"category": "external",
"summary": "RHBZ#2487948",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2487948"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-44487",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-44487"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-44487",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-44487"
},
{
"category": "external",
"summary": "https://github.com/axios/axios/security/advisories/GHSA-p92q-9vqr-4j8v",
"url": "https://github.com/axios/axios/security/advisories/GHSA-p92q-9vqr-4j8v"
}
],
"release_date": "2026-06-11T15:38:25.150000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T13:07:12+00:00",
"details": "For more about Red Hat Developer Hub, see References links",
"product_ids": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36754"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "axios: Axios: Information disclosure of proxy credentials via redirect flows"
},
{
"cve": "CVE-2026-44488",
"cwe": {
"id": "CWE-770",
"name": "Allocation of Resources Without Limits or Throttling"
},
"discovery_date": "2026-06-11T17:01:36.836488+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2487949"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Axios, a promise-based HTTP client. When using the fetch adapter, Axios did not properly enforce configured request and response size limits. This vulnerability allows a remote attacker, through a malicious or compromised server, or by supplying a large data URL, to send or receive oversized data bodies. This can lead to resource exhaustion in server-side applications, resulting in a Denial of Service (DoS).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "axios: Axios: Denial of Service due to unenforced request and response size limits",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Important: A denial of service flaw was found in Axios, a JavaScript HTTP client library. This issue arises when applications utilize the `fetch` adapter, as configured request and response size limits are not properly enforced. A remote attacker could exploit this by sending or receiving excessively large data bodies, leading to resource exhaustion and potential denial of service in affected server-side applications.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64"
],
"known_not_affected": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-44488"
},
{
"category": "external",
"summary": "RHBZ#2487949",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2487949"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-44488",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-44488"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-44488",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-44488"
},
{
"category": "external",
"summary": "https://github.com/axios/axios/security/advisories/GHSA-777c-7fjr-54vf",
"url": "https://github.com/axios/axios/security/advisories/GHSA-777c-7fjr-54vf"
}
],
"release_date": "2026-06-11T15:37:38.013000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T13:07:12+00:00",
"details": "For more about Red Hat Developer Hub, see References links",
"product_ids": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36754"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "axios: Axios: Denial of Service due to unenforced request and response size limits"
},
{
"cve": "CVE-2026-44492",
"cwe": {
"id": "CWE-289",
"name": "Authentication Bypass by Alternate Name"
},
"discovery_date": "2026-06-11T17:00:56.761751+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2487938"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Axios, a promise-based HTTP client. This vulnerability occurs because Axios does not properly normalize IPv4-mapped IPv6 addresses. When a NO_PROXY setting is configured to block direct access to specific IPv4 addresses, an attacker can bypass this restriction by using the IPv4-mapped IPv6 form of the address in a request URL. This allows the request to be routed through the proxy, potentially exposing internal services or sensitive information that should otherwise be inaccessible.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "axios: Axios: Proxy bypass via IPv4-mapped IPv6 address non-normalization",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This is an Important flaw in Axios, a JavaScript HTTP client library, that allows for a proxy bypass. When a `NO_PROXY` environment variable is configured to prevent direct connections to specific IPv4 addresses, an attacker can craft a request URL using the IPv4-mapped IPv6 address format. This bypasses the intended `NO_PROXY` exclusion, routing the request through the configured proxy and potentially exposing internal services or sensitive information, such as cloud instance metadata credentials.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64"
],
"known_not_affected": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-44492"
},
{
"category": "external",
"summary": "RHBZ#2487938",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2487938"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-44492",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-44492"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-44492",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-44492"
},
{
"category": "external",
"summary": "https://github.com/axios/axios/security/advisories/GHSA-pjwm-pj3p-43mv",
"url": "https://github.com/axios/axios/security/advisories/GHSA-pjwm-pj3p-43mv"
}
],
"release_date": "2026-06-11T15:29:13.890000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T13:07:12+00:00",
"details": "For more about Red Hat Developer Hub, see References links",
"product_ids": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36754"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 8.6,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "axios: Axios: Proxy bypass via IPv4-mapped IPv6 address non-normalization"
},
{
"cve": "CVE-2026-44494",
"cwe": {
"id": "CWE-915",
"name": "Improperly Controlled Modification of Dynamically-Determined Object Attributes"
},
"discovery_date": "2026-06-11T17:01:12.945664+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2487942"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Axios. This vulnerability, a Prototype Pollution \"Gadget\" attack, allows an attacker to escalate any existing Object.prototype pollution in an application\u0027s dependency tree into a full Man-in-the-Middle (MITM) attack. This enables the attacker to intercept, read, and modify all HTTP traffic, including sensitive authentication credentials. The flaw occurs because the `config.proxy` setting is susceptible to prototype pollution, allowing an attacker to inject a malicious proxy server.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "axios: Axios: Man-in-the-Middle (MITM) attack via Prototype Pollution",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This Important flaw in the Axios library allows an attacker to escalate existing prototype pollution vulnerabilities within an application\u0027s dependency tree into a full Man-in-the-Middle (MITM) attack. By injecting a malicious proxy configuration into the `Object.prototype`, an attacker can intercept, read, and modify all HTTP traffic, including sensitive authentication credentials, without direct user interaction. This poses a significant risk to data confidentiality and integrity in Red Hat products that utilize the Axios library.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64"
],
"known_not_affected": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-44494"
},
{
"category": "external",
"summary": "RHBZ#2487942",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2487942"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-44494",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-44494"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-44494",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-44494"
},
{
"category": "external",
"summary": "https://github.com/axios/axios/security/advisories/GHSA-35jp-ww65-95wh",
"url": "https://github.com/axios/axios/security/advisories/GHSA-35jp-ww65-95wh"
}
],
"release_date": "2026-06-11T15:32:03.155000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T13:07:12+00:00",
"details": "For more about Red Hat Developer Hub, see References links",
"product_ids": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36754"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 8.7,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "axios: Axios: Man-in-the-Middle (MITM) attack via Prototype Pollution"
},
{
"cve": "CVE-2026-44495",
"cwe": {
"id": "CWE-915",
"name": "Improperly Controlled Modification of Dynamically-Determined Object Attributes"
},
"discovery_date": "2026-06-11T17:00:53.999811+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2487937"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Axios, a promise-based HTTP client. This vulnerability involves prototype pollution gadgets in the request configuration processing. If another vulnerability has already polluted the Object.prototype.transformResponse, affected Axios versions may incorrectly interpret this inherited value as part of the request configuration or as an option validator. Axios does not itself create the prototype pollution. Exploitability requires a separate prototype-pollution vulnerability or equivalent attacker control over Object.prototype before Axios creates a request.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "axios: Axios: Information disclosure due to prototype pollution vulnerability",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This Important vulnerability in Axios, a promise-based HTTP client, can lead to information disclosure, including credential theft and response hijacking, or denial of service. Exploitation requires a separate prototype pollution vulnerability in the same JavaScript process, allowing an attacker to control `Object.prototype.transformResponse`. Red Hat products using affected Axios versions are at risk if another component introduces such pollution.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64"
],
"known_not_affected": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-44495"
},
{
"category": "external",
"summary": "RHBZ#2487937",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2487937"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-44495",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-44495"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-44495",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-44495"
},
{
"category": "external",
"summary": "https://github.com/axios/axios/security/advisories/GHSA-3g43-6gmg-66jw",
"url": "https://github.com/axios/axios/security/advisories/GHSA-3g43-6gmg-66jw"
}
],
"release_date": "2026-06-11T15:33:12.433000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T13:07:12+00:00",
"details": "For more about Red Hat Developer Hub, see References links",
"product_ids": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36754"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 7.0,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:L/A:L",
"version": "3.1"
},
"products": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "axios: Axios: Information disclosure due to prototype pollution vulnerability"
},
{
"cve": "CVE-2026-44496",
"cwe": {
"id": "CWE-1333",
"name": "Inefficient Regular Expression Complexity"
},
"discovery_date": "2026-06-11T17:01:15.856386+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2487943"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Axios. A remote attacker, by influencing the XSRF cookie name in a browser environment, could cause the application to construct a regular expression that leads to excessive processing. This can result in a client-side Denial of Service (DoS), where the affected browser tab may freeze, impacting the availability of the application for the user.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "axios: Axios: Client-side Denial of Service via unescaped regex metacharacters in XSRF cookie name",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This Important flaw in Axios can lead to a client-side Denial of Service. An attacker capable of influencing the XSRF cookie name within a browser environment could trigger excessive regular expression processing, causing the affected browser tab to freeze and degrade user availability. This issue specifically impacts browser-based applications and does not affect Node.js HTTP adapter usage, React Native, or web workers.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64"
],
"known_not_affected": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-44496"
},
{
"category": "external",
"summary": "RHBZ#2487943",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2487943"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-44496",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-44496"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-44496",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-44496"
},
{
"category": "external",
"summary": "https://github.com/axios/axios/security/advisories/GHSA-hfxv-24rg-xrqf",
"url": "https://github.com/axios/axios/security/advisories/GHSA-hfxv-24rg-xrqf"
}
],
"release_date": "2026-06-11T15:34:28.492000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T13:07:12+00:00",
"details": "For more about Red Hat Developer Hub, see References links",
"product_ids": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36754"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "axios: Axios: Client-side Denial of Service via unescaped regex metacharacters in XSRF cookie name"
},
{
"cve": "CVE-2026-45736",
"cwe": {
"id": "CWE-824",
"name": "Access of Uninitialized Pointer"
},
"discovery_date": "2026-05-15T16:00:55.786944+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2477914"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in ws, an open source WebSocket client and server for Node.js. The `websocket.close()` implementation is vulnerable to uninitialized memory disclosure when a `TypedArray` is passed as the reason argument. This can lead to the disclosure of sensitive information from uninitialized memory.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "ws: ws: Uninitialized memory disclosure via `websocket.close()` with `TypedArray`",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This Important vulnerability in the `ws` WebSocket library for Node.js could lead to sensitive information disclosure. The flaw occurs when a `TypedArray` is specifically provided as the `reason` argument to the `websocket.close()` function, potentially exposing uninitialized memory. Red Hat products utilizing this library may be affected if their implementations allow for such a crafted `close()` call.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64"
],
"known_not_affected": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-45736"
},
{
"category": "external",
"summary": "RHBZ#2477914",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2477914"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-45736",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-45736"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-45736",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-45736"
},
{
"category": "external",
"summary": "https://github.com/websockets/ws/commit/c0327ec15a54d701eb6ccefaa8bef328cfc03086",
"url": "https://github.com/websockets/ws/commit/c0327ec15a54d701eb6ccefaa8bef328cfc03086"
},
{
"category": "external",
"summary": "https://github.com/websockets/ws/security/advisories/GHSA-58qx-3vcg-4xpx",
"url": "https://github.com/websockets/ws/security/advisories/GHSA-58qx-3vcg-4xpx"
}
],
"release_date": "2026-05-15T14:53:57.263000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T13:07:12+00:00",
"details": "For more about Red Hat Developer Hub, see References links",
"product_ids": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36754"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "ws: ws: Uninitialized memory disclosure via `websocket.close()` with `TypedArray`"
},
{
"cve": "CVE-2026-47131",
"cwe": {
"id": "CWE-843",
"name": "Access of Resource Using Incompatible Type (\u0027Type Confusion\u0027)"
},
"discovery_date": "2026-06-12T15:01:52.744009+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2488393"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in vm2, an open-source virtual machine (VM) sandbox for Node.js. A remote attacker can exploit this vulnerability by combining specific Buffer function calls and Node.js\u0027s ERR_INVALID_ARG_TYPE error. This allows the attacker to obtain the host\u0027s TypeError constructor, leading to an escape from the sandbox. Consequently, this enables attackers to run arbitrary code on the host system.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "vm2: vm2: Arbitrary code execution via sandbox escape vulnerability",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "The Red Hat Product Security team has rated the impact of this vulnerability as Moderate in Red Hat Developer Hub and Ansible Automation Platform.The affected package is present in both products as a transitive dependency; however, the vulnerable sandbox functionality is not invoked in any production code path. The active sandboxing mechanism used by both products does not rely on this package, and user-supplied input cannot reach the vulnerable code under a standard deployment. Exploitation would require an attacker to independently route arbitrary JavaScript into the sandbox runtime, a condition not present in the default configuration of either product.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64"
],
"known_not_affected": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-47131"
},
{
"category": "external",
"summary": "RHBZ#2488393",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2488393"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-47131",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-47131"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-47131",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-47131"
},
{
"category": "external",
"summary": "https://github.com/patriksimek/vm2/commit/27c525f4615e2b983f122e2bed327d810126f5c8",
"url": "https://github.com/patriksimek/vm2/commit/27c525f4615e2b983f122e2bed327d810126f5c8"
},
{
"category": "external",
"summary": "https://github.com/patriksimek/vm2/releases/tag/v3.11.4",
"url": "https://github.com/patriksimek/vm2/releases/tag/v3.11.4"
},
{
"category": "external",
"summary": "https://github.com/patriksimek/vm2/security/advisories/GHSA-v6mx-mf47-r5wg",
"url": "https://github.com/patriksimek/vm2/security/advisories/GHSA-v6mx-mf47-r5wg"
}
],
"release_date": "2026-06-12T14:14:17.037000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T13:07:12+00:00",
"details": "For more about Red Hat Developer Hub, see References links",
"product_ids": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36754"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability.",
"product_ids": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 4.1,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "vm2: vm2: Arbitrary code execution via sandbox escape vulnerability"
},
{
"cve": "CVE-2026-47135",
"cwe": {
"id": "CWE-1100",
"name": "Insufficient Isolation of System-Dependent Functions"
},
"discovery_date": "2026-06-12T15:02:02.154869+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2488396"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in vm2, an open-source virtual machine (VM) sandbox for Node.js. An attacker within the sandbox could exploit incomplete symbol interception and missing security checks to gain control over the host system. This could allow the attacker to execute arbitrary code outside the sandbox environment, leading to a complete compromise of the host.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "vm2: vm2: Sandbox escape allows arbitrary code execution on the host system",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability has been rated as Moderate for Red Hat Developer Hub and Red Hat Ansible Automation Platform. The vm2 sandbox exists as a transitive dependency in Red Hat Developer Hub and is only utilized during build time. The sandbox is therefore not exposed on the production code path. Exploitation of this vulnerability requires attackers to write cross-realm symbol keys to host objects which is not possible in the default configuration of Red Hat Developer Hub.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64"
],
"known_not_affected": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-47135"
},
{
"category": "external",
"summary": "RHBZ#2488396",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2488396"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-47135",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-47135"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-47135",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-47135"
},
{
"category": "external",
"summary": "https://github.com/patriksimek/vm2/commit/928aef51898b5c52a05f05a40c4cfeb52e172878",
"url": "https://github.com/patriksimek/vm2/commit/928aef51898b5c52a05f05a40c4cfeb52e172878"
},
{
"category": "external",
"summary": "https://github.com/patriksimek/vm2/releases/tag/v3.11.4",
"url": "https://github.com/patriksimek/vm2/releases/tag/v3.11.4"
},
{
"category": "external",
"summary": "https://github.com/patriksimek/vm2/security/advisories/GHSA-m5q2-4fm3-vfqp",
"url": "https://github.com/patriksimek/vm2/security/advisories/GHSA-m5q2-4fm3-vfqp"
}
],
"release_date": "2026-06-12T14:14:42.022000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T13:07:12+00:00",
"details": "For more about Red Hat Developer Hub, see References links",
"product_ids": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36754"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability.",
"product_ids": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 8.7,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "vm2: vm2: Sandbox escape allows arbitrary code execution on the host system"
},
{
"cve": "CVE-2026-47137",
"cwe": {
"id": "CWE-480",
"name": "Use of Incorrect Operator"
},
"discovery_date": "2026-06-12T15:01:24.611905+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2488385"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in vm2, an open-source virtual machine (VM) sandbox for Node.js. A remote attacker could bypass a security check designed to prevent the combination of nested environments and disabled module loading. This bypass occurs because a strict equality check for the `require` option can be circumvented by simply omitting the option, leading to an unintended configuration. Successful exploitation of this vulnerability could allow an attacker to escape the sandbox and achieve arbitrary code execution on the host system.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "vm2: vm2: Sandbox escape leading to arbitrary code execution via security bypass",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "The Red Hat Product Security team has rated the impact of this vulnerability as Moderate in Red Hat Developer Hub and Ansible Automation Platform.The affected package is present in both products as a transitive dependency; however, the vulnerable sandbox functionality is not invoked in any production code path. The active sandboxing mechanism used by both products does not rely on this package, and user-supplied input cannot reach the vulnerable code under a standard deployment. Exploitation would require an attacker to independently route arbitrary JavaScript into the sandbox runtime, a condition not present in the default configuration of either product.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64"
],
"known_not_affected": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-47137"
},
{
"category": "external",
"summary": "RHBZ#2488385",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2488385"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-47137",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-47137"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-47137",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-47137"
},
{
"category": "external",
"summary": "https://github.com/advisories/GHSA-g644-9gfx-q4q4",
"url": "https://github.com/advisories/GHSA-g644-9gfx-q4q4"
},
{
"category": "external",
"summary": "https://github.com/patriksimek/vm2/commit/01a7552add345d5a6862623884e6b79a85bf0568",
"url": "https://github.com/patriksimek/vm2/commit/01a7552add345d5a6862623884e6b79a85bf0568"
},
{
"category": "external",
"summary": "https://github.com/patriksimek/vm2/commit/86ab819f202c3a8dad88cef5705f2e416c5188d7",
"url": "https://github.com/patriksimek/vm2/commit/86ab819f202c3a8dad88cef5705f2e416c5188d7"
},
{
"category": "external",
"summary": "https://github.com/patriksimek/vm2/releases/tag/v3.11.4",
"url": "https://github.com/patriksimek/vm2/releases/tag/v3.11.4"
},
{
"category": "external",
"summary": "https://github.com/patriksimek/vm2/security/advisories/GHSA-m4wx-m65x-ghrr",
"url": "https://github.com/patriksimek/vm2/security/advisories/GHSA-m4wx-m65x-ghrr"
}
],
"release_date": "2026-06-12T14:15:34.795000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T13:07:12+00:00",
"details": "For more about Red Hat Developer Hub, see References links",
"product_ids": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36754"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability.",
"product_ids": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 4.1,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "vm2: vm2: Sandbox escape leading to arbitrary code execution via security bypass"
},
{
"cve": "CVE-2026-47139",
"cwe": {
"id": "CWE-1100",
"name": "Insufficient Isolation of System-Dependent Functions"
},
"discovery_date": "2026-06-12T15:01:31.104545+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2488387"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in vm2, a Node.js sandbox. This vulnerability allows sandboxed code to bypass network restrictions by utilizing internal HTTP built-ins, such as _http_client and _http_server. An attacker can exploit this to make outbound HTTP requests or open listening HTTP sockets, even when public network modules are explicitly denied. This could lead to unauthorized information disclosure or further compromise of the system.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "vm2: vm2: Sandbox escape via internal HTTP built-ins leading to network restriction bypass",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability has been rated as Moderate for Red Hat Developer Hub and Red Hat Ansible Automation Platform. The vm2 sandbox exists as a transitive dependency in Red Hat Developer Hub and is only utilized during build time. The sandbox is therefore not exposed on the production code path. Exploitation of this vulnerability requires attackers to access internal HTTP built-ins which is not possible in the default configuration of Red Hat Developer Hub.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64"
],
"known_not_affected": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-47139"
},
{
"category": "external",
"summary": "RHBZ#2488387",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2488387"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-47139",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-47139"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-47139",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-47139"
},
{
"category": "external",
"summary": "https://github.com/patriksimek/vm2/commit/436053e30eecbabd487e2fd2959c137ac34e2bb1",
"url": "https://github.com/patriksimek/vm2/commit/436053e30eecbabd487e2fd2959c137ac34e2bb1"
},
{
"category": "external",
"summary": "https://github.com/patriksimek/vm2/releases/tag/v3.11.4",
"url": "https://github.com/patriksimek/vm2/releases/tag/v3.11.4"
},
{
"category": "external",
"summary": "https://github.com/patriksimek/vm2/security/advisories/GHSA-r9pm-gxmw-wv6p",
"url": "https://github.com/patriksimek/vm2/security/advisories/GHSA-r9pm-gxmw-wv6p"
}
],
"release_date": "2026-06-12T14:15:44.652000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T13:07:12+00:00",
"details": "For more about Red Hat Developer Hub, see References links",
"product_ids": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36754"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability.",
"product_ids": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 8.6,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "vm2: vm2: Sandbox escape via internal HTTP built-ins leading to network restriction bypass"
},
{
"cve": "CVE-2026-47140",
"cwe": {
"id": "CWE-184",
"name": "Incomplete List of Disallowed Inputs"
},
"discovery_date": "2026-06-12T15:01:11.705175+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2488381"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in vm2, an open-source virtual machine (VM) sandbox for Node.js. This vulnerability allows sandboxed code to bypass intended security restrictions by exploiting missing entries in the denylist for dangerous Node.js built-in functions, specifically `process` and `inspector/promises`. A remote attacker can leverage this to execute arbitrary code in the host process, leading to a complete compromise of the system.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "vm2: vm2: Arbitrary code execution due to incomplete sandbox restrictions",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "The Red Hat Product Security team has rated the impact of this vulnerability as Moderate in Red Hat Developer Hub and Ansible Automation Platform.The affected package is present in both products as a transitive dependency; however, the vulnerable sandbox functionality is not invoked in any production code path. The active sandboxing mechanism used by both products does not rely on this package, and user-supplied input cannot reach the vulnerable code under a standard deployment. Exploitation would require an attacker to independently route arbitrary JavaScript into the sandbox runtime, a condition not present in the default configuration of either product.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64"
],
"known_not_affected": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-47140"
},
{
"category": "external",
"summary": "RHBZ#2488381",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2488381"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-47140",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-47140"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-47140",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-47140"
},
{
"category": "external",
"summary": "https://github.com/patriksimek/vm2/commit/a1ed47a98d1cc36cb48c0d566d55889688e0b59b",
"url": "https://github.com/patriksimek/vm2/commit/a1ed47a98d1cc36cb48c0d566d55889688e0b59b"
},
{
"category": "external",
"summary": "https://github.com/patriksimek/vm2/releases/tag/v3.11.4",
"url": "https://github.com/patriksimek/vm2/releases/tag/v3.11.4"
},
{
"category": "external",
"summary": "https://github.com/patriksimek/vm2/security/advisories/GHSA-rp36-8xq3-r6c4",
"url": "https://github.com/patriksimek/vm2/security/advisories/GHSA-rp36-8xq3-r6c4"
}
],
"release_date": "2026-06-12T14:16:10.727000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T13:07:12+00:00",
"details": "For more about Red Hat Developer Hub, see References links",
"product_ids": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36754"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability.",
"product_ids": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 4.1,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "vm2: vm2: Arbitrary code execution due to incomplete sandbox restrictions"
},
{
"cve": "CVE-2026-47141",
"cwe": {
"id": "CWE-653",
"name": "Improper Isolation or Compartmentalization"
},
"discovery_date": "2026-06-12T15:01:05.444374+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2488379"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in vm2, an open-source virtual machine (VM) sandbox for Node.js. Prior to version 3.11.4, NodeVM, a component of vm2, improperly exposed certain process-wide observability builtins, such as diagnostics_channel, async_hooks, and perf_hooks. These builtins, which are designed for monitoring and debugging, were not adequately blocked by the dangerous builtin denylist. This oversight allowed sandboxed code to observe sensitive host application data, leading to information disclosure across the vm2 security boundary.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "vm2: vm2: NodeVM observability builtins leak host process and HTTP request data",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability has been rated as Moderate for Red Hat Developer Hub and Red Hat Ansible Automation Platform. The vm2 sandbox exists as a transitive dependency in Red Hat Developer Hub and is only utilized during build time. The sandbox is therefore not exposed on the production code path. Exploitation of this vulnerability requires attackers to access process-wide observability builtins which is not possible in the default configuration of Red Hat Developer Hub.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64"
],
"known_not_affected": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-47141"
},
{
"category": "external",
"summary": "RHBZ#2488379",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2488379"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-47141",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-47141"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-47141",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-47141"
},
{
"category": "external",
"summary": "https://github.com/patriksimek/vm2/commit/e1c48fce05189f48e71efbd32af0754efa4066bb",
"url": "https://github.com/patriksimek/vm2/commit/e1c48fce05189f48e71efbd32af0754efa4066bb"
},
{
"category": "external",
"summary": "https://github.com/patriksimek/vm2/releases/tag/v3.11.4",
"url": "https://github.com/patriksimek/vm2/releases/tag/v3.11.4"
},
{
"category": "external",
"summary": "https://github.com/patriksimek/vm2/security/advisories/GHSA-9g8x-92q2-p28f",
"url": "https://github.com/patriksimek/vm2/security/advisories/GHSA-9g8x-92q2-p28f"
}
],
"release_date": "2026-06-12T14:17:35.970000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T13:07:12+00:00",
"details": "For more about Red Hat Developer Hub, see References links",
"product_ids": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36754"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability.",
"product_ids": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 8.6,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "vm2: vm2: NodeVM observability builtins leak host process and HTTP request data"
},
{
"cve": "CVE-2026-47208",
"discovery_date": "2026-06-12T15:01:14.630546+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2488382"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in vm2, an open-source virtual machine (VM) sandbox for Node.js. This vulnerability allows an attacker to escape the sandbox environment by writing malicious code. Successful exploitation can lead to arbitrary code execution on the host system, compromising the integrity and confidentiality of the system.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "vm2: vm2: Sandbox Breakout Using Promise Species",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Exploitation requires an attacker to supply untrusted malicious code to the vm2 sandbox, which is easily achieved since the component\u0027s main purpose is to execute untrusted code.\n\nEscaping the sandbox completely bypasses the intended security boundaries, leading directly to arbitrary code execution on the host system and a full compromise of confidentiality and integrity",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64"
],
"known_not_affected": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-47208"
},
{
"category": "external",
"summary": "RHBZ#2488382",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2488382"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-47208",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-47208"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-47208",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-47208"
},
{
"category": "external",
"summary": "https://github.com/patriksimek/vm2/commit/a462655009669c3124ee39498121651597529ea8",
"url": "https://github.com/patriksimek/vm2/commit/a462655009669c3124ee39498121651597529ea8"
},
{
"category": "external",
"summary": "https://github.com/patriksimek/vm2/releases/tag/v3.11.4",
"url": "https://github.com/patriksimek/vm2/releases/tag/v3.11.4"
},
{
"category": "external",
"summary": "https://github.com/patriksimek/vm2/security/advisories/GHSA-76w7-j9cq-rx2j",
"url": "https://github.com/patriksimek/vm2/security/advisories/GHSA-76w7-j9cq-rx2j"
}
],
"release_date": "2026-06-12T14:16:22.726000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T13:07:12+00:00",
"details": "For more about Red Hat Developer Hub, see References links",
"product_ids": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36754"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability.",
"product_ids": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "LOW",
"baseScore": 6.6,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:L/A:L",
"version": "3.1"
},
"products": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "vm2: vm2: Sandbox Breakout Using Promise Species"
},
{
"cve": "CVE-2026-47210",
"cwe": {
"id": "CWE-653",
"name": "Improper Isolation or Compartmentalization"
},
"discovery_date": "2026-06-12T15:01:38.846673+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2488389"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in vm2, an open-source virtual machine (VM) sandbox for Node.js. This sandbox escape vulnerability allows an attacker to execute arbitrary code in the host process. This occurs when untrusted code is executed with asynchronous (async) support on runtimes that expose WebAssembly JavaScript Promise Integration (JSPI). Specifically, a JSPI-backed Promise can bypass expected Promise-species hardening, exposing a host-originated rejection object to attacker-controlled logic and breaking the sandbox boundary.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "vm2: vm2: Arbitrary code execution via sandbox escape when executing untrusted code with async support.",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "The Red Hat Product Security team has rated the impact of this vulnerability as Moderate in Red Hat Developer Hub and Ansible Automation Platform.The affected package is present in both products as a transitive dependency; however, the vulnerable sandbox functionality is not invoked in any production code path. The active sandboxing mechanism used by both products does not rely on this package, and user-supplied input cannot reach the vulnerable code under a standard deployment. Exploitation would require an attacker to independently route arbitrary JavaScript into the sandbox runtime, a condition not present in the default configuration of either product.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64"
],
"known_not_affected": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-47210"
},
{
"category": "external",
"summary": "RHBZ#2488389",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2488389"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-47210",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-47210"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-47210",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-47210"
},
{
"category": "external",
"summary": "https://github.com/patriksimek/vm2/commit/6915fa4d9bcebd47b9a4f39a1adc1aa94ef6ffc6",
"url": "https://github.com/patriksimek/vm2/commit/6915fa4d9bcebd47b9a4f39a1adc1aa94ef6ffc6"
},
{
"category": "external",
"summary": "https://github.com/patriksimek/vm2/releases/tag/v3.11.4",
"url": "https://github.com/patriksimek/vm2/releases/tag/v3.11.4"
},
{
"category": "external",
"summary": "https://github.com/patriksimek/vm2/security/advisories/GHSA-6j2x-vhqr-qr7q",
"url": "https://github.com/patriksimek/vm2/security/advisories/GHSA-6j2x-vhqr-qr7q"
}
],
"release_date": "2026-06-12T14:17:22.653000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T13:07:12+00:00",
"details": "For more about Red Hat Developer Hub, see References links",
"product_ids": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36754"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability.",
"product_ids": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.1,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "vm2: vm2: Arbitrary code execution via sandbox escape when executing untrusted code with async support."
},
{
"cve": "CVE-2026-48779",
"cwe": {
"id": "CWE-1050",
"name": "Excessive Platform Resource Consumption within a Loop"
},
"discovery_date": "2026-06-16T22:01:24.571224+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2489661"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in ws, an open source WebSocket client and server. A remote attacker can exploit this memory exhaustion vulnerability by sending a high volume of exceptionally small fragments and data chunks. This action forces the affected component to allocate and hold structural wrappers that consume excessive memory. Consequently, this leads to process termination and a denial of service (DoS) for the remote peer.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "ws: ws: Denial of Service via memory exhaustion from small WebSocket fragments",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This is an Important denial of service vulnerability in the `ws` WebSocket library. A remote attacker can exploit this flaw by sending a high volume of small, fragmented data, leading to excessive memory consumption and subsequent process termination. This can result in service disruption for Red Hat products that utilize `ws` for WebSocket communication.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64"
],
"known_not_affected": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-48779"
},
{
"category": "external",
"summary": "RHBZ#2489661",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2489661"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-48779",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-48779"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-48779",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-48779"
},
{
"category": "external",
"summary": "https://github.com/websockets/ws/commit/86d3e8a5fb0246ed373860c5fbb0de88824a27f7",
"url": "https://github.com/websockets/ws/commit/86d3e8a5fb0246ed373860c5fbb0de88824a27f7"
},
{
"category": "external",
"summary": "https://github.com/websockets/ws/commit/b5372ac67bb97a773727b8e9f5035a8123556d53",
"url": "https://github.com/websockets/ws/commit/b5372ac67bb97a773727b8e9f5035a8123556d53"
},
{
"category": "external",
"summary": "https://github.com/websockets/ws/commit/bca91adf15677e47dbe4f959653452727be28b94",
"url": "https://github.com/websockets/ws/commit/bca91adf15677e47dbe4f959653452727be28b94"
},
{
"category": "external",
"summary": "https://github.com/websockets/ws/commit/fd36cd864fcdf62a08273a99e19a7d975401fee8",
"url": "https://github.com/websockets/ws/commit/fd36cd864fcdf62a08273a99e19a7d975401fee8"
},
{
"category": "external",
"summary": "https://github.com/websockets/ws/security/advisories/GHSA-96hv-2xvq-fx4p",
"url": "https://github.com/websockets/ws/security/advisories/GHSA-96hv-2xvq-fx4p"
}
],
"release_date": "2026-06-16T21:26:22.537000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T13:07:12+00:00",
"details": "For more about Red Hat Developer Hub, see References links",
"product_ids": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36754"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "ws: ws: Denial of Service via memory exhaustion from small WebSocket fragments"
}
]
}
Sightings
| Author | Source | Type | Date | Other |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.