RHSA-2024:6054
Vulnerability from csaf_redhat - Published: 2024-08-29 18:30 - Updated: 2026-04-29 18:10Summary
Red Hat Security Advisory: ACS 4.4 enhancement and security update
Severity
Important
Notes
Topic: Updated images are now available for Red Hat Advanced Cluster Security
(RHACS). The updated image includes security and bug fixes.
Red Hat Product Security has rated this update as having a security impact
of Important. A Common Vulnerability Scoring System (CVSS) base score,
which gives a detailed severity rating, is available for each vulnerability
from the CVE link(s) in the References section.
Details: This release of RHACS 4.4.5 includes security fixes for CVE-2024-37298,
CVE-2024-3727 and CVE-2024-6104. If you are using an earlier version of RHACS 4.4, you are advised to upgrade to this patch release 4.4.5.
Security issues fixed:
* gorilla/schema: Potential memory exhaustion attack due to sparse slice deserialization (CVE-2024-37298)
* containers/image: digest type does not guarantee valid type (CVE-2024-3727)
* go-retryablehttp: url might write sensitive information to log file (CVE-2024-6104)
For more details about the security issue(s), including the impact, a CVSS score, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use: This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
A flaw was found in the github.com/containers/image library. This flaw allows attackers to trigger unexpected authenticated registry accesses on behalf of a victim user, causing resource exhaustion, local path traversal, and other attacks.
8.3 (High)
Affected products
Fixed
39 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:072eeeb7f1dd12e6f0275948d3b38b52f667e45d1304e6fd2dd28c816571d824_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:d6b9f90cada9f236011bb349e850e80e3fef55f56f434c12c00122b73e42db6f_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:daa7ddb8a3dc233385926119ca78ffc342d2e6c588960d1814e1639af956b0f3_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:1f03a7f23c4ffb6adb440d475075a8b11211ddd8acda772d02a904547cb5148c_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:78298521c612192e0177d6cc044a865e97230e962f434d811962064f2db1d5ac_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:8901cfa7be1f709f0bf209c396ad32e2c13c3d112bd05a8d4784535e405e95a4_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:10e904f11041dd4947254df586f74f03a66d16818c4f073b8cc8d2336175f6a4_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:304406009c9800285cfcc74861de6b3cc230d09438f37426e39d911a69368e34_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:a13aab1f8c4294f490284b5f0c73fc77b1ee08b65a3d1cae23aacb5db1687926_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:3877057e49d5da93372d239055b6506b23ef430da60d0eca371c4c5a619b1ae6_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:3bdf2ba4bbf3a2373a882cdb85a790b9df2ba359010c8467c4e4e2874996ff4d_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:9a11dad9b17cc9c4f13ab85d920ac3b0796221457ca4894fc6578f92b022880e_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:176837c3041894c294b64da0181b8ad3bc53b3538d5ba70868979c57c7ec1644_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:37070fe46f9168b80d72070443fcdc344db8141d599926f65bf5c2b96bcd89a7_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:e9cc56d2c29af677277791fdfae7796cc5f43e92772bde4adf1f168ef4aaec80_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:0b590586a0bfc3d6399505dfb5ca1367c232d0b13245fd3ab9b0e5ac24a0b5a2_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:0e6a36cbd8ab3d06bc71cf60091aa83a3efd83e7784221aaddaf8b1a0accd018_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:e83e6c58071dd1fbba15944e2d25ecac07dd623d58e2b31cc72a0555aa69e584_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:32364fedba6ad4660e117eae90433b2ab8f6a16afb51ebfe718c356a531d71bd_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:8dd008c09f18916952ef7eafe1382cc151139762aff6cffd86b688e132a0e5f3_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:da206789e59d581483ffbe8e1c63519019f504c792b5ad2d5e9299d12785c675_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:317838698e27cb366ca736975f0cb0bf927533b5526caabe5a9e443d28a70487_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:78012a83f84238eb3d492faf5abee4a9d87ddc0c84f1618b8785f82e5f766211_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:a19cb92c646d2dc709c18e3da494def64786102ef5a038c766c28a5556d1b154_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:1f624ee17785e5f2221e917459f31c81ef23421bf9374cedf9020f139e67854a_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:57b3670126a5a55b51fdc13ffd1deaceb13e508ff474bac3d7495ea614bf64ad_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:e0617ff16dc01afccf934a956c4dd3c7fab847d92e520b0d9358bd7bc3fa1582_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:16deab5ea78fbe3d6f4684ef8b4d071dd2408ba46da9f6fc79a9c0af1da16165_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:54c43eb7e2952e6fe64071077a4a22965af01a2e0d4da7ee9249d3c7e31df5a4_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:d09e9eeec5cdcbc7db49814caf033868cbc91273459debfcac94f58151573762_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3894202682fafa2a5bcc7fccd267396f6fa2c4f068f31c2cf99579a1308cde5e_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3d6a461c5fe55fd478dc08f5a95c8cd813c5dc56ddbbc40c033697a1b628ca67_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:e93ec7ad08b50b54b61ccd9c69205f7b04692cb3a5c452782b92dce42f9ae4e3_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:37f65ec7e152446ef02de2934532db772f534647e91d3909197aeaffe808693e_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:38ad20bdebc1776686b4bd308c4f4da9b978dac5f679ac594fd88d36dfb019d1_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:6f78b7cbdee3e6c08c6ebcdf67dc2c49dd93bba1fa0bcbc42154bbd6bd6b60f3_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:57c71609e72f30089a8f43c1f9b6bab44dc67c28ece0db52460d9f527abac19a_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:dfccbd75027774554b10786ec939458a92c725cdf8226eda1660b6ff137d8e51_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:f9909a0d6d6063f36dd7dd62ed3e5ba5dab6f1f754e627e2dc0726bb124bc1f8_amd64 | — |
Vendor Fix
fix
|
Threats
Impact
Moderate
A vulnerability was found in go-retryablehttp. The package may suffer from a lack of input sanitization by not cleaning up URL data when writing to the logs. This issue could expose sensitive authentication information.
6.0 (Medium)
Affected products
Fixed
39 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:072eeeb7f1dd12e6f0275948d3b38b52f667e45d1304e6fd2dd28c816571d824_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:d6b9f90cada9f236011bb349e850e80e3fef55f56f434c12c00122b73e42db6f_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:daa7ddb8a3dc233385926119ca78ffc342d2e6c588960d1814e1639af956b0f3_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:1f03a7f23c4ffb6adb440d475075a8b11211ddd8acda772d02a904547cb5148c_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:78298521c612192e0177d6cc044a865e97230e962f434d811962064f2db1d5ac_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:8901cfa7be1f709f0bf209c396ad32e2c13c3d112bd05a8d4784535e405e95a4_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:10e904f11041dd4947254df586f74f03a66d16818c4f073b8cc8d2336175f6a4_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:304406009c9800285cfcc74861de6b3cc230d09438f37426e39d911a69368e34_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:a13aab1f8c4294f490284b5f0c73fc77b1ee08b65a3d1cae23aacb5db1687926_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:3877057e49d5da93372d239055b6506b23ef430da60d0eca371c4c5a619b1ae6_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:3bdf2ba4bbf3a2373a882cdb85a790b9df2ba359010c8467c4e4e2874996ff4d_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:9a11dad9b17cc9c4f13ab85d920ac3b0796221457ca4894fc6578f92b022880e_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:176837c3041894c294b64da0181b8ad3bc53b3538d5ba70868979c57c7ec1644_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:37070fe46f9168b80d72070443fcdc344db8141d599926f65bf5c2b96bcd89a7_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:e9cc56d2c29af677277791fdfae7796cc5f43e92772bde4adf1f168ef4aaec80_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:0b590586a0bfc3d6399505dfb5ca1367c232d0b13245fd3ab9b0e5ac24a0b5a2_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:0e6a36cbd8ab3d06bc71cf60091aa83a3efd83e7784221aaddaf8b1a0accd018_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:e83e6c58071dd1fbba15944e2d25ecac07dd623d58e2b31cc72a0555aa69e584_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:32364fedba6ad4660e117eae90433b2ab8f6a16afb51ebfe718c356a531d71bd_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:8dd008c09f18916952ef7eafe1382cc151139762aff6cffd86b688e132a0e5f3_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:da206789e59d581483ffbe8e1c63519019f504c792b5ad2d5e9299d12785c675_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:317838698e27cb366ca736975f0cb0bf927533b5526caabe5a9e443d28a70487_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:78012a83f84238eb3d492faf5abee4a9d87ddc0c84f1618b8785f82e5f766211_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:a19cb92c646d2dc709c18e3da494def64786102ef5a038c766c28a5556d1b154_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:1f624ee17785e5f2221e917459f31c81ef23421bf9374cedf9020f139e67854a_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:57b3670126a5a55b51fdc13ffd1deaceb13e508ff474bac3d7495ea614bf64ad_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:e0617ff16dc01afccf934a956c4dd3c7fab847d92e520b0d9358bd7bc3fa1582_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:16deab5ea78fbe3d6f4684ef8b4d071dd2408ba46da9f6fc79a9c0af1da16165_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:54c43eb7e2952e6fe64071077a4a22965af01a2e0d4da7ee9249d3c7e31df5a4_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:d09e9eeec5cdcbc7db49814caf033868cbc91273459debfcac94f58151573762_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3894202682fafa2a5bcc7fccd267396f6fa2c4f068f31c2cf99579a1308cde5e_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3d6a461c5fe55fd478dc08f5a95c8cd813c5dc56ddbbc40c033697a1b628ca67_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:e93ec7ad08b50b54b61ccd9c69205f7b04692cb3a5c452782b92dce42f9ae4e3_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:37f65ec7e152446ef02de2934532db772f534647e91d3909197aeaffe808693e_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:38ad20bdebc1776686b4bd308c4f4da9b978dac5f679ac594fd88d36dfb019d1_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:6f78b7cbdee3e6c08c6ebcdf67dc2c49dd93bba1fa0bcbc42154bbd6bd6b60f3_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:57c71609e72f30089a8f43c1f9b6bab44dc67c28ece0db52460d9f527abac19a_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:dfccbd75027774554b10786ec939458a92c725cdf8226eda1660b6ff137d8e51_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:f9909a0d6d6063f36dd7dd62ed3e5ba5dab6f1f754e627e2dc0726bb124bc1f8_amd64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Moderate
A flaw was found in the gorilla/schema package. Running `schema.Decoder.Decode()` on a struct that has a field of type `[]struct{...}` opens it up to malicious attacks regarding memory allocations, taking advantage of the sparse slice functionality. Any use of `schema.Decoder.Decode()` on a struct with arrays of other structs could trigger memory exhaustion and lead to a denial of service.
7.5 (High)
Affected products
Fixed
39 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:072eeeb7f1dd12e6f0275948d3b38b52f667e45d1304e6fd2dd28c816571d824_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:d6b9f90cada9f236011bb349e850e80e3fef55f56f434c12c00122b73e42db6f_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:daa7ddb8a3dc233385926119ca78ffc342d2e6c588960d1814e1639af956b0f3_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:1f03a7f23c4ffb6adb440d475075a8b11211ddd8acda772d02a904547cb5148c_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:78298521c612192e0177d6cc044a865e97230e962f434d811962064f2db1d5ac_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:8901cfa7be1f709f0bf209c396ad32e2c13c3d112bd05a8d4784535e405e95a4_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:10e904f11041dd4947254df586f74f03a66d16818c4f073b8cc8d2336175f6a4_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:304406009c9800285cfcc74861de6b3cc230d09438f37426e39d911a69368e34_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:a13aab1f8c4294f490284b5f0c73fc77b1ee08b65a3d1cae23aacb5db1687926_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:3877057e49d5da93372d239055b6506b23ef430da60d0eca371c4c5a619b1ae6_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:3bdf2ba4bbf3a2373a882cdb85a790b9df2ba359010c8467c4e4e2874996ff4d_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:9a11dad9b17cc9c4f13ab85d920ac3b0796221457ca4894fc6578f92b022880e_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:176837c3041894c294b64da0181b8ad3bc53b3538d5ba70868979c57c7ec1644_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:37070fe46f9168b80d72070443fcdc344db8141d599926f65bf5c2b96bcd89a7_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:e9cc56d2c29af677277791fdfae7796cc5f43e92772bde4adf1f168ef4aaec80_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:0b590586a0bfc3d6399505dfb5ca1367c232d0b13245fd3ab9b0e5ac24a0b5a2_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:0e6a36cbd8ab3d06bc71cf60091aa83a3efd83e7784221aaddaf8b1a0accd018_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:e83e6c58071dd1fbba15944e2d25ecac07dd623d58e2b31cc72a0555aa69e584_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:32364fedba6ad4660e117eae90433b2ab8f6a16afb51ebfe718c356a531d71bd_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:8dd008c09f18916952ef7eafe1382cc151139762aff6cffd86b688e132a0e5f3_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:da206789e59d581483ffbe8e1c63519019f504c792b5ad2d5e9299d12785c675_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:317838698e27cb366ca736975f0cb0bf927533b5526caabe5a9e443d28a70487_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:78012a83f84238eb3d492faf5abee4a9d87ddc0c84f1618b8785f82e5f766211_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:a19cb92c646d2dc709c18e3da494def64786102ef5a038c766c28a5556d1b154_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:1f624ee17785e5f2221e917459f31c81ef23421bf9374cedf9020f139e67854a_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:57b3670126a5a55b51fdc13ffd1deaceb13e508ff474bac3d7495ea614bf64ad_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:e0617ff16dc01afccf934a956c4dd3c7fab847d92e520b0d9358bd7bc3fa1582_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:16deab5ea78fbe3d6f4684ef8b4d071dd2408ba46da9f6fc79a9c0af1da16165_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:54c43eb7e2952e6fe64071077a4a22965af01a2e0d4da7ee9249d3c7e31df5a4_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:d09e9eeec5cdcbc7db49814caf033868cbc91273459debfcac94f58151573762_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3894202682fafa2a5bcc7fccd267396f6fa2c4f068f31c2cf99579a1308cde5e_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3d6a461c5fe55fd478dc08f5a95c8cd813c5dc56ddbbc40c033697a1b628ca67_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:e93ec7ad08b50b54b61ccd9c69205f7b04692cb3a5c452782b92dce42f9ae4e3_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:37f65ec7e152446ef02de2934532db772f534647e91d3909197aeaffe808693e_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:38ad20bdebc1776686b4bd308c4f4da9b978dac5f679ac594fd88d36dfb019d1_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:6f78b7cbdee3e6c08c6ebcdf67dc2c49dd93bba1fa0bcbc42154bbd6bd6b60f3_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:57c71609e72f30089a8f43c1f9b6bab44dc67c28ece0db52460d9f527abac19a_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:dfccbd75027774554b10786ec939458a92c725cdf8226eda1660b6ff137d8e51_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:f9909a0d6d6063f36dd7dd62ed3e5ba5dab6f1f754e627e2dc0726bb124bc1f8_amd64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Important
References
22 references
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Updated images are now available for Red Hat Advanced Cluster Security\n(RHACS). The updated image includes security and bug fixes.\n\nRed Hat Product Security has rated this update as having a security impact\nof Important. A Common Vulnerability Scoring System (CVSS) base score,\nwhich gives a detailed severity rating, is available for each vulnerability\nfrom the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "This release of RHACS 4.4.5 includes security fixes for CVE-2024-37298,\nCVE-2024-3727 and CVE-2024-6104. If you are using an earlier version of RHACS 4.4, you are advised to upgrade to this patch release 4.4.5.\n\nSecurity issues fixed:\n\n* gorilla/schema: Potential memory exhaustion attack due to sparse slice deserialization (CVE-2024-37298)\n\n* containers/image: digest type does not guarantee valid type (CVE-2024-3727)\n\n* go-retryablehttp: url might write sensitive information to log file (CVE-2024-6104)\n\nFor more details about the security issue(s), including the impact, a CVSS score, and other related information, refer to the CVE page(s) listed in the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2024:6054",
"url": "https://access.redhat.com/errata/RHSA-2024:6054"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "https://docs.openshift.com/acs/4.4/release_notes/44-release-notes.html",
"url": "https://docs.openshift.com/acs/4.4/release_notes/44-release-notes.html"
},
{
"category": "external",
"summary": "2274767",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2274767"
},
{
"category": "external",
"summary": "2294000",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2294000"
},
{
"category": "external",
"summary": "2295010",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2295010"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2024/rhsa-2024_6054.json"
}
],
"title": "Red Hat Security Advisory: ACS 4.4 enhancement and security update",
"tracking": {
"current_release_date": "2026-04-29T18:10:10+00:00",
"generator": {
"date": "2026-04-29T18:10:10+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.7.7"
}
},
"id": "RHSA-2024:6054",
"initial_release_date": "2024-08-29T18:30:41+00:00",
"revision_history": [
{
"date": "2024-08-29T18:30:41+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2024-08-29T18:30:41+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2026-04-29T18:10:10+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "RHACS 4.4 for RHEL 8",
"product": {
"name": "RHACS 4.4 for RHEL 8",
"product_id": "8Base-RHACS-4.4",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:advanced_cluster_security:4.4::el8"
}
}
}
],
"category": "product_family",
"name": "Red Hat Advanced Cluster Security for Kubernetes"
},
{
"branches": [
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:daa7ddb8a3dc233385926119ca78ffc342d2e6c588960d1814e1639af956b0f3_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:daa7ddb8a3dc233385926119ca78ffc342d2e6c588960d1814e1639af956b0f3_ppc64le",
"product_id": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:daa7ddb8a3dc233385926119ca78ffc342d2e6c588960d1814e1639af956b0f3_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-central-db-rhel8@sha256:daa7ddb8a3dc233385926119ca78ffc342d2e6c588960d1814e1639af956b0f3?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8\u0026tag=4.4.5-2"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-collector-rhel8@sha256:78298521c612192e0177d6cc044a865e97230e962f434d811962064f2db1d5ac_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-collector-rhel8@sha256:78298521c612192e0177d6cc044a865e97230e962f434d811962064f2db1d5ac_ppc64le",
"product_id": "advanced-cluster-security/rhacs-collector-rhel8@sha256:78298521c612192e0177d6cc044a865e97230e962f434d811962064f2db1d5ac_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-collector-rhel8@sha256:78298521c612192e0177d6cc044a865e97230e962f434d811962064f2db1d5ac?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8\u0026tag=4.4.5-2"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:304406009c9800285cfcc74861de6b3cc230d09438f37426e39d911a69368e34_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:304406009c9800285cfcc74861de6b3cc230d09438f37426e39d911a69368e34_ppc64le",
"product_id": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:304406009c9800285cfcc74861de6b3cc230d09438f37426e39d911a69368e34_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-collector-slim-rhel8@sha256:304406009c9800285cfcc74861de6b3cc230d09438f37426e39d911a69368e34?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-collector-slim-rhel8\u0026tag=4.4.5-2"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-main-rhel8@sha256:9a11dad9b17cc9c4f13ab85d920ac3b0796221457ca4894fc6578f92b022880e_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-main-rhel8@sha256:9a11dad9b17cc9c4f13ab85d920ac3b0796221457ca4894fc6578f92b022880e_ppc64le",
"product_id": "advanced-cluster-security/rhacs-main-rhel8@sha256:9a11dad9b17cc9c4f13ab85d920ac3b0796221457ca4894fc6578f92b022880e_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-main-rhel8@sha256:9a11dad9b17cc9c4f13ab85d920ac3b0796221457ca4894fc6578f92b022880e?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8\u0026tag=4.4.5-4"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-operator-bundle@sha256:37070fe46f9168b80d72070443fcdc344db8141d599926f65bf5c2b96bcd89a7_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-operator-bundle@sha256:37070fe46f9168b80d72070443fcdc344db8141d599926f65bf5c2b96bcd89a7_ppc64le",
"product_id": "advanced-cluster-security/rhacs-operator-bundle@sha256:37070fe46f9168b80d72070443fcdc344db8141d599926f65bf5c2b96bcd89a7_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-operator-bundle@sha256:37070fe46f9168b80d72070443fcdc344db8141d599926f65bf5c2b96bcd89a7?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle\u0026tag=4.4.5-3"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-rhel8-operator@sha256:e83e6c58071dd1fbba15944e2d25ecac07dd623d58e2b31cc72a0555aa69e584_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-rhel8-operator@sha256:e83e6c58071dd1fbba15944e2d25ecac07dd623d58e2b31cc72a0555aa69e584_ppc64le",
"product_id": "advanced-cluster-security/rhacs-rhel8-operator@sha256:e83e6c58071dd1fbba15944e2d25ecac07dd623d58e2b31cc72a0555aa69e584_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-rhel8-operator@sha256:e83e6c58071dd1fbba15944e2d25ecac07dd623d58e2b31cc72a0555aa69e584?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator\u0026tag=4.4.5-2"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:8dd008c09f18916952ef7eafe1382cc151139762aff6cffd86b688e132a0e5f3_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:8dd008c09f18916952ef7eafe1382cc151139762aff6cffd86b688e132a0e5f3_ppc64le",
"product_id": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:8dd008c09f18916952ef7eafe1382cc151139762aff6cffd86b688e132a0e5f3_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-roxctl-rhel8@sha256:8dd008c09f18916952ef7eafe1382cc151139762aff6cffd86b688e132a0e5f3?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8\u0026tag=4.4.5-2"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:16deab5ea78fbe3d6f4684ef8b4d071dd2408ba46da9f6fc79a9c0af1da16165_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:16deab5ea78fbe3d6f4684ef8b4d071dd2408ba46da9f6fc79a9c0af1da16165_ppc64le",
"product_id": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:16deab5ea78fbe3d6f4684ef8b4d071dd2408ba46da9f6fc79a9c0af1da16165_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-rhel8@sha256:16deab5ea78fbe3d6f4684ef8b4d071dd2408ba46da9f6fc79a9c0af1da16165?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8\u0026tag=4.4.5-2"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:78012a83f84238eb3d492faf5abee4a9d87ddc0c84f1618b8785f82e5f766211_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:78012a83f84238eb3d492faf5abee4a9d87ddc0c84f1618b8785f82e5f766211_ppc64le",
"product_id": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:78012a83f84238eb3d492faf5abee4a9d87ddc0c84f1618b8785f82e5f766211_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-db-rhel8@sha256:78012a83f84238eb3d492faf5abee4a9d87ddc0c84f1618b8785f82e5f766211?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8\u0026tag=4.4.5-2"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:e0617ff16dc01afccf934a956c4dd3c7fab847d92e520b0d9358bd7bc3fa1582_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:e0617ff16dc01afccf934a956c4dd3c7fab847d92e520b0d9358bd7bc3fa1582_ppc64le",
"product_id": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:e0617ff16dc01afccf934a956c4dd3c7fab847d92e520b0d9358bd7bc3fa1582_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-db-slim-rhel8@sha256:e0617ff16dc01afccf934a956c4dd3c7fab847d92e520b0d9358bd7bc3fa1582?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8\u0026tag=4.4.5-3"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3d6a461c5fe55fd478dc08f5a95c8cd813c5dc56ddbbc40c033697a1b628ca67_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3d6a461c5fe55fd478dc08f5a95c8cd813c5dc56ddbbc40c033697a1b628ca67_ppc64le",
"product_id": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3d6a461c5fe55fd478dc08f5a95c8cd813c5dc56ddbbc40c033697a1b628ca67_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-slim-rhel8@sha256:3d6a461c5fe55fd478dc08f5a95c8cd813c5dc56ddbbc40c033697a1b628ca67?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8\u0026tag=4.4.5-2"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:57c71609e72f30089a8f43c1f9b6bab44dc67c28ece0db52460d9f527abac19a_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:57c71609e72f30089a8f43c1f9b6bab44dc67c28ece0db52460d9f527abac19a_ppc64le",
"product_id": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:57c71609e72f30089a8f43c1f9b6bab44dc67c28ece0db52460d9f527abac19a_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-v4-rhel8@sha256:57c71609e72f30089a8f43c1f9b6bab44dc67c28ece0db52460d9f527abac19a?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8\u0026tag=4.4.5-3"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:6f78b7cbdee3e6c08c6ebcdf67dc2c49dd93bba1fa0bcbc42154bbd6bd6b60f3_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:6f78b7cbdee3e6c08c6ebcdf67dc2c49dd93bba1fa0bcbc42154bbd6bd6b60f3_ppc64le",
"product_id": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:6f78b7cbdee3e6c08c6ebcdf67dc2c49dd93bba1fa0bcbc42154bbd6bd6b60f3_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-v4-db-rhel8@sha256:6f78b7cbdee3e6c08c6ebcdf67dc2c49dd93bba1fa0bcbc42154bbd6bd6b60f3?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8\u0026tag=4.4.5-3"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:072eeeb7f1dd12e6f0275948d3b38b52f667e45d1304e6fd2dd28c816571d824_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:072eeeb7f1dd12e6f0275948d3b38b52f667e45d1304e6fd2dd28c816571d824_s390x",
"product_id": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:072eeeb7f1dd12e6f0275948d3b38b52f667e45d1304e6fd2dd28c816571d824_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-central-db-rhel8@sha256:072eeeb7f1dd12e6f0275948d3b38b52f667e45d1304e6fd2dd28c816571d824?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8\u0026tag=4.4.5-2"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-collector-rhel8@sha256:8901cfa7be1f709f0bf209c396ad32e2c13c3d112bd05a8d4784535e405e95a4_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-collector-rhel8@sha256:8901cfa7be1f709f0bf209c396ad32e2c13c3d112bd05a8d4784535e405e95a4_s390x",
"product_id": "advanced-cluster-security/rhacs-collector-rhel8@sha256:8901cfa7be1f709f0bf209c396ad32e2c13c3d112bd05a8d4784535e405e95a4_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-collector-rhel8@sha256:8901cfa7be1f709f0bf209c396ad32e2c13c3d112bd05a8d4784535e405e95a4?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8\u0026tag=4.4.5-2"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:a13aab1f8c4294f490284b5f0c73fc77b1ee08b65a3d1cae23aacb5db1687926_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:a13aab1f8c4294f490284b5f0c73fc77b1ee08b65a3d1cae23aacb5db1687926_s390x",
"product_id": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:a13aab1f8c4294f490284b5f0c73fc77b1ee08b65a3d1cae23aacb5db1687926_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-collector-slim-rhel8@sha256:a13aab1f8c4294f490284b5f0c73fc77b1ee08b65a3d1cae23aacb5db1687926?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-collector-slim-rhel8\u0026tag=4.4.5-2"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-main-rhel8@sha256:3bdf2ba4bbf3a2373a882cdb85a790b9df2ba359010c8467c4e4e2874996ff4d_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-main-rhel8@sha256:3bdf2ba4bbf3a2373a882cdb85a790b9df2ba359010c8467c4e4e2874996ff4d_s390x",
"product_id": "advanced-cluster-security/rhacs-main-rhel8@sha256:3bdf2ba4bbf3a2373a882cdb85a790b9df2ba359010c8467c4e4e2874996ff4d_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-main-rhel8@sha256:3bdf2ba4bbf3a2373a882cdb85a790b9df2ba359010c8467c4e4e2874996ff4d?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8\u0026tag=4.4.5-4"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-operator-bundle@sha256:e9cc56d2c29af677277791fdfae7796cc5f43e92772bde4adf1f168ef4aaec80_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-operator-bundle@sha256:e9cc56d2c29af677277791fdfae7796cc5f43e92772bde4adf1f168ef4aaec80_s390x",
"product_id": "advanced-cluster-security/rhacs-operator-bundle@sha256:e9cc56d2c29af677277791fdfae7796cc5f43e92772bde4adf1f168ef4aaec80_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-operator-bundle@sha256:e9cc56d2c29af677277791fdfae7796cc5f43e92772bde4adf1f168ef4aaec80?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle\u0026tag=4.4.5-3"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-rhel8-operator@sha256:0b590586a0bfc3d6399505dfb5ca1367c232d0b13245fd3ab9b0e5ac24a0b5a2_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-rhel8-operator@sha256:0b590586a0bfc3d6399505dfb5ca1367c232d0b13245fd3ab9b0e5ac24a0b5a2_s390x",
"product_id": "advanced-cluster-security/rhacs-rhel8-operator@sha256:0b590586a0bfc3d6399505dfb5ca1367c232d0b13245fd3ab9b0e5ac24a0b5a2_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-rhel8-operator@sha256:0b590586a0bfc3d6399505dfb5ca1367c232d0b13245fd3ab9b0e5ac24a0b5a2?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator\u0026tag=4.4.5-2"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:da206789e59d581483ffbe8e1c63519019f504c792b5ad2d5e9299d12785c675_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:da206789e59d581483ffbe8e1c63519019f504c792b5ad2d5e9299d12785c675_s390x",
"product_id": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:da206789e59d581483ffbe8e1c63519019f504c792b5ad2d5e9299d12785c675_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-roxctl-rhel8@sha256:da206789e59d581483ffbe8e1c63519019f504c792b5ad2d5e9299d12785c675?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8\u0026tag=4.4.5-2"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:54c43eb7e2952e6fe64071077a4a22965af01a2e0d4da7ee9249d3c7e31df5a4_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:54c43eb7e2952e6fe64071077a4a22965af01a2e0d4da7ee9249d3c7e31df5a4_s390x",
"product_id": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:54c43eb7e2952e6fe64071077a4a22965af01a2e0d4da7ee9249d3c7e31df5a4_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-rhel8@sha256:54c43eb7e2952e6fe64071077a4a22965af01a2e0d4da7ee9249d3c7e31df5a4?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8\u0026tag=4.4.5-2"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:a19cb92c646d2dc709c18e3da494def64786102ef5a038c766c28a5556d1b154_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:a19cb92c646d2dc709c18e3da494def64786102ef5a038c766c28a5556d1b154_s390x",
"product_id": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:a19cb92c646d2dc709c18e3da494def64786102ef5a038c766c28a5556d1b154_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-db-rhel8@sha256:a19cb92c646d2dc709c18e3da494def64786102ef5a038c766c28a5556d1b154?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8\u0026tag=4.4.5-2"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:57b3670126a5a55b51fdc13ffd1deaceb13e508ff474bac3d7495ea614bf64ad_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:57b3670126a5a55b51fdc13ffd1deaceb13e508ff474bac3d7495ea614bf64ad_s390x",
"product_id": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:57b3670126a5a55b51fdc13ffd1deaceb13e508ff474bac3d7495ea614bf64ad_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-db-slim-rhel8@sha256:57b3670126a5a55b51fdc13ffd1deaceb13e508ff474bac3d7495ea614bf64ad?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8\u0026tag=4.4.5-3"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:e93ec7ad08b50b54b61ccd9c69205f7b04692cb3a5c452782b92dce42f9ae4e3_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:e93ec7ad08b50b54b61ccd9c69205f7b04692cb3a5c452782b92dce42f9ae4e3_s390x",
"product_id": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:e93ec7ad08b50b54b61ccd9c69205f7b04692cb3a5c452782b92dce42f9ae4e3_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-slim-rhel8@sha256:e93ec7ad08b50b54b61ccd9c69205f7b04692cb3a5c452782b92dce42f9ae4e3?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8\u0026tag=4.4.5-2"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:dfccbd75027774554b10786ec939458a92c725cdf8226eda1660b6ff137d8e51_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:dfccbd75027774554b10786ec939458a92c725cdf8226eda1660b6ff137d8e51_s390x",
"product_id": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:dfccbd75027774554b10786ec939458a92c725cdf8226eda1660b6ff137d8e51_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-v4-rhel8@sha256:dfccbd75027774554b10786ec939458a92c725cdf8226eda1660b6ff137d8e51?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8\u0026tag=4.4.5-3"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:38ad20bdebc1776686b4bd308c4f4da9b978dac5f679ac594fd88d36dfb019d1_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:38ad20bdebc1776686b4bd308c4f4da9b978dac5f679ac594fd88d36dfb019d1_s390x",
"product_id": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:38ad20bdebc1776686b4bd308c4f4da9b978dac5f679ac594fd88d36dfb019d1_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-v4-db-rhel8@sha256:38ad20bdebc1776686b4bd308c4f4da9b978dac5f679ac594fd88d36dfb019d1?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8\u0026tag=4.4.5-3"
}
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:d6b9f90cada9f236011bb349e850e80e3fef55f56f434c12c00122b73e42db6f_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:d6b9f90cada9f236011bb349e850e80e3fef55f56f434c12c00122b73e42db6f_amd64",
"product_id": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:d6b9f90cada9f236011bb349e850e80e3fef55f56f434c12c00122b73e42db6f_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-central-db-rhel8@sha256:d6b9f90cada9f236011bb349e850e80e3fef55f56f434c12c00122b73e42db6f?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8\u0026tag=4.4.5-2"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-collector-rhel8@sha256:1f03a7f23c4ffb6adb440d475075a8b11211ddd8acda772d02a904547cb5148c_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-collector-rhel8@sha256:1f03a7f23c4ffb6adb440d475075a8b11211ddd8acda772d02a904547cb5148c_amd64",
"product_id": "advanced-cluster-security/rhacs-collector-rhel8@sha256:1f03a7f23c4ffb6adb440d475075a8b11211ddd8acda772d02a904547cb5148c_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-collector-rhel8@sha256:1f03a7f23c4ffb6adb440d475075a8b11211ddd8acda772d02a904547cb5148c?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8\u0026tag=4.4.5-2"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:10e904f11041dd4947254df586f74f03a66d16818c4f073b8cc8d2336175f6a4_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:10e904f11041dd4947254df586f74f03a66d16818c4f073b8cc8d2336175f6a4_amd64",
"product_id": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:10e904f11041dd4947254df586f74f03a66d16818c4f073b8cc8d2336175f6a4_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-collector-slim-rhel8@sha256:10e904f11041dd4947254df586f74f03a66d16818c4f073b8cc8d2336175f6a4?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-collector-slim-rhel8\u0026tag=4.4.5-2"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-main-rhel8@sha256:3877057e49d5da93372d239055b6506b23ef430da60d0eca371c4c5a619b1ae6_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-main-rhel8@sha256:3877057e49d5da93372d239055b6506b23ef430da60d0eca371c4c5a619b1ae6_amd64",
"product_id": "advanced-cluster-security/rhacs-main-rhel8@sha256:3877057e49d5da93372d239055b6506b23ef430da60d0eca371c4c5a619b1ae6_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-main-rhel8@sha256:3877057e49d5da93372d239055b6506b23ef430da60d0eca371c4c5a619b1ae6?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8\u0026tag=4.4.5-4"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-operator-bundle@sha256:176837c3041894c294b64da0181b8ad3bc53b3538d5ba70868979c57c7ec1644_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-operator-bundle@sha256:176837c3041894c294b64da0181b8ad3bc53b3538d5ba70868979c57c7ec1644_amd64",
"product_id": "advanced-cluster-security/rhacs-operator-bundle@sha256:176837c3041894c294b64da0181b8ad3bc53b3538d5ba70868979c57c7ec1644_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-operator-bundle@sha256:176837c3041894c294b64da0181b8ad3bc53b3538d5ba70868979c57c7ec1644?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle\u0026tag=4.4.5-3"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-rhel8-operator@sha256:0e6a36cbd8ab3d06bc71cf60091aa83a3efd83e7784221aaddaf8b1a0accd018_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-rhel8-operator@sha256:0e6a36cbd8ab3d06bc71cf60091aa83a3efd83e7784221aaddaf8b1a0accd018_amd64",
"product_id": "advanced-cluster-security/rhacs-rhel8-operator@sha256:0e6a36cbd8ab3d06bc71cf60091aa83a3efd83e7784221aaddaf8b1a0accd018_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-rhel8-operator@sha256:0e6a36cbd8ab3d06bc71cf60091aa83a3efd83e7784221aaddaf8b1a0accd018?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator\u0026tag=4.4.5-2"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:32364fedba6ad4660e117eae90433b2ab8f6a16afb51ebfe718c356a531d71bd_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:32364fedba6ad4660e117eae90433b2ab8f6a16afb51ebfe718c356a531d71bd_amd64",
"product_id": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:32364fedba6ad4660e117eae90433b2ab8f6a16afb51ebfe718c356a531d71bd_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-roxctl-rhel8@sha256:32364fedba6ad4660e117eae90433b2ab8f6a16afb51ebfe718c356a531d71bd?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8\u0026tag=4.4.5-2"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:d09e9eeec5cdcbc7db49814caf033868cbc91273459debfcac94f58151573762_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:d09e9eeec5cdcbc7db49814caf033868cbc91273459debfcac94f58151573762_amd64",
"product_id": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:d09e9eeec5cdcbc7db49814caf033868cbc91273459debfcac94f58151573762_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-rhel8@sha256:d09e9eeec5cdcbc7db49814caf033868cbc91273459debfcac94f58151573762?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8\u0026tag=4.4.5-2"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:317838698e27cb366ca736975f0cb0bf927533b5526caabe5a9e443d28a70487_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:317838698e27cb366ca736975f0cb0bf927533b5526caabe5a9e443d28a70487_amd64",
"product_id": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:317838698e27cb366ca736975f0cb0bf927533b5526caabe5a9e443d28a70487_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-db-rhel8@sha256:317838698e27cb366ca736975f0cb0bf927533b5526caabe5a9e443d28a70487?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8\u0026tag=4.4.5-2"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:1f624ee17785e5f2221e917459f31c81ef23421bf9374cedf9020f139e67854a_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:1f624ee17785e5f2221e917459f31c81ef23421bf9374cedf9020f139e67854a_amd64",
"product_id": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:1f624ee17785e5f2221e917459f31c81ef23421bf9374cedf9020f139e67854a_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-db-slim-rhel8@sha256:1f624ee17785e5f2221e917459f31c81ef23421bf9374cedf9020f139e67854a?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8\u0026tag=4.4.5-3"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3894202682fafa2a5bcc7fccd267396f6fa2c4f068f31c2cf99579a1308cde5e_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3894202682fafa2a5bcc7fccd267396f6fa2c4f068f31c2cf99579a1308cde5e_amd64",
"product_id": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3894202682fafa2a5bcc7fccd267396f6fa2c4f068f31c2cf99579a1308cde5e_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-slim-rhel8@sha256:3894202682fafa2a5bcc7fccd267396f6fa2c4f068f31c2cf99579a1308cde5e?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8\u0026tag=4.4.5-2"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:f9909a0d6d6063f36dd7dd62ed3e5ba5dab6f1f754e627e2dc0726bb124bc1f8_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:f9909a0d6d6063f36dd7dd62ed3e5ba5dab6f1f754e627e2dc0726bb124bc1f8_amd64",
"product_id": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:f9909a0d6d6063f36dd7dd62ed3e5ba5dab6f1f754e627e2dc0726bb124bc1f8_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-v4-rhel8@sha256:f9909a0d6d6063f36dd7dd62ed3e5ba5dab6f1f754e627e2dc0726bb124bc1f8?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8\u0026tag=4.4.5-3"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:37f65ec7e152446ef02de2934532db772f534647e91d3909197aeaffe808693e_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:37f65ec7e152446ef02de2934532db772f534647e91d3909197aeaffe808693e_amd64",
"product_id": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:37f65ec7e152446ef02de2934532db772f534647e91d3909197aeaffe808693e_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-v4-db-rhel8@sha256:37f65ec7e152446ef02de2934532db772f534647e91d3909197aeaffe808693e?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8\u0026tag=4.4.5-3"
}
}
}
],
"category": "architecture",
"name": "amd64"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:072eeeb7f1dd12e6f0275948d3b38b52f667e45d1304e6fd2dd28c816571d824_s390x as a component of RHACS 4.4 for RHEL 8",
"product_id": "8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:072eeeb7f1dd12e6f0275948d3b38b52f667e45d1304e6fd2dd28c816571d824_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:072eeeb7f1dd12e6f0275948d3b38b52f667e45d1304e6fd2dd28c816571d824_s390x",
"relates_to_product_reference": "8Base-RHACS-4.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:d6b9f90cada9f236011bb349e850e80e3fef55f56f434c12c00122b73e42db6f_amd64 as a component of RHACS 4.4 for RHEL 8",
"product_id": "8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:d6b9f90cada9f236011bb349e850e80e3fef55f56f434c12c00122b73e42db6f_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:d6b9f90cada9f236011bb349e850e80e3fef55f56f434c12c00122b73e42db6f_amd64",
"relates_to_product_reference": "8Base-RHACS-4.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:daa7ddb8a3dc233385926119ca78ffc342d2e6c588960d1814e1639af956b0f3_ppc64le as a component of RHACS 4.4 for RHEL 8",
"product_id": "8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:daa7ddb8a3dc233385926119ca78ffc342d2e6c588960d1814e1639af956b0f3_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:daa7ddb8a3dc233385926119ca78ffc342d2e6c588960d1814e1639af956b0f3_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-collector-rhel8@sha256:1f03a7f23c4ffb6adb440d475075a8b11211ddd8acda772d02a904547cb5148c_amd64 as a component of RHACS 4.4 for RHEL 8",
"product_id": "8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:1f03a7f23c4ffb6adb440d475075a8b11211ddd8acda772d02a904547cb5148c_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-collector-rhel8@sha256:1f03a7f23c4ffb6adb440d475075a8b11211ddd8acda772d02a904547cb5148c_amd64",
"relates_to_product_reference": "8Base-RHACS-4.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-collector-rhel8@sha256:78298521c612192e0177d6cc044a865e97230e962f434d811962064f2db1d5ac_ppc64le as a component of RHACS 4.4 for RHEL 8",
"product_id": "8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:78298521c612192e0177d6cc044a865e97230e962f434d811962064f2db1d5ac_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-collector-rhel8@sha256:78298521c612192e0177d6cc044a865e97230e962f434d811962064f2db1d5ac_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-collector-rhel8@sha256:8901cfa7be1f709f0bf209c396ad32e2c13c3d112bd05a8d4784535e405e95a4_s390x as a component of RHACS 4.4 for RHEL 8",
"product_id": "8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:8901cfa7be1f709f0bf209c396ad32e2c13c3d112bd05a8d4784535e405e95a4_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-collector-rhel8@sha256:8901cfa7be1f709f0bf209c396ad32e2c13c3d112bd05a8d4784535e405e95a4_s390x",
"relates_to_product_reference": "8Base-RHACS-4.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:10e904f11041dd4947254df586f74f03a66d16818c4f073b8cc8d2336175f6a4_amd64 as a component of RHACS 4.4 for RHEL 8",
"product_id": "8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:10e904f11041dd4947254df586f74f03a66d16818c4f073b8cc8d2336175f6a4_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:10e904f11041dd4947254df586f74f03a66d16818c4f073b8cc8d2336175f6a4_amd64",
"relates_to_product_reference": "8Base-RHACS-4.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:304406009c9800285cfcc74861de6b3cc230d09438f37426e39d911a69368e34_ppc64le as a component of RHACS 4.4 for RHEL 8",
"product_id": "8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:304406009c9800285cfcc74861de6b3cc230d09438f37426e39d911a69368e34_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:304406009c9800285cfcc74861de6b3cc230d09438f37426e39d911a69368e34_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:a13aab1f8c4294f490284b5f0c73fc77b1ee08b65a3d1cae23aacb5db1687926_s390x as a component of RHACS 4.4 for RHEL 8",
"product_id": "8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:a13aab1f8c4294f490284b5f0c73fc77b1ee08b65a3d1cae23aacb5db1687926_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:a13aab1f8c4294f490284b5f0c73fc77b1ee08b65a3d1cae23aacb5db1687926_s390x",
"relates_to_product_reference": "8Base-RHACS-4.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-main-rhel8@sha256:3877057e49d5da93372d239055b6506b23ef430da60d0eca371c4c5a619b1ae6_amd64 as a component of RHACS 4.4 for RHEL 8",
"product_id": "8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:3877057e49d5da93372d239055b6506b23ef430da60d0eca371c4c5a619b1ae6_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-main-rhel8@sha256:3877057e49d5da93372d239055b6506b23ef430da60d0eca371c4c5a619b1ae6_amd64",
"relates_to_product_reference": "8Base-RHACS-4.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-main-rhel8@sha256:3bdf2ba4bbf3a2373a882cdb85a790b9df2ba359010c8467c4e4e2874996ff4d_s390x as a component of RHACS 4.4 for RHEL 8",
"product_id": "8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:3bdf2ba4bbf3a2373a882cdb85a790b9df2ba359010c8467c4e4e2874996ff4d_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-main-rhel8@sha256:3bdf2ba4bbf3a2373a882cdb85a790b9df2ba359010c8467c4e4e2874996ff4d_s390x",
"relates_to_product_reference": "8Base-RHACS-4.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-main-rhel8@sha256:9a11dad9b17cc9c4f13ab85d920ac3b0796221457ca4894fc6578f92b022880e_ppc64le as a component of RHACS 4.4 for RHEL 8",
"product_id": "8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:9a11dad9b17cc9c4f13ab85d920ac3b0796221457ca4894fc6578f92b022880e_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-main-rhel8@sha256:9a11dad9b17cc9c4f13ab85d920ac3b0796221457ca4894fc6578f92b022880e_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-operator-bundle@sha256:176837c3041894c294b64da0181b8ad3bc53b3538d5ba70868979c57c7ec1644_amd64 as a component of RHACS 4.4 for RHEL 8",
"product_id": "8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:176837c3041894c294b64da0181b8ad3bc53b3538d5ba70868979c57c7ec1644_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-operator-bundle@sha256:176837c3041894c294b64da0181b8ad3bc53b3538d5ba70868979c57c7ec1644_amd64",
"relates_to_product_reference": "8Base-RHACS-4.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-operator-bundle@sha256:37070fe46f9168b80d72070443fcdc344db8141d599926f65bf5c2b96bcd89a7_ppc64le as a component of RHACS 4.4 for RHEL 8",
"product_id": "8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:37070fe46f9168b80d72070443fcdc344db8141d599926f65bf5c2b96bcd89a7_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-operator-bundle@sha256:37070fe46f9168b80d72070443fcdc344db8141d599926f65bf5c2b96bcd89a7_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-operator-bundle@sha256:e9cc56d2c29af677277791fdfae7796cc5f43e92772bde4adf1f168ef4aaec80_s390x as a component of RHACS 4.4 for RHEL 8",
"product_id": "8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:e9cc56d2c29af677277791fdfae7796cc5f43e92772bde4adf1f168ef4aaec80_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-operator-bundle@sha256:e9cc56d2c29af677277791fdfae7796cc5f43e92772bde4adf1f168ef4aaec80_s390x",
"relates_to_product_reference": "8Base-RHACS-4.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-rhel8-operator@sha256:0b590586a0bfc3d6399505dfb5ca1367c232d0b13245fd3ab9b0e5ac24a0b5a2_s390x as a component of RHACS 4.4 for RHEL 8",
"product_id": "8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:0b590586a0bfc3d6399505dfb5ca1367c232d0b13245fd3ab9b0e5ac24a0b5a2_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-rhel8-operator@sha256:0b590586a0bfc3d6399505dfb5ca1367c232d0b13245fd3ab9b0e5ac24a0b5a2_s390x",
"relates_to_product_reference": "8Base-RHACS-4.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-rhel8-operator@sha256:0e6a36cbd8ab3d06bc71cf60091aa83a3efd83e7784221aaddaf8b1a0accd018_amd64 as a component of RHACS 4.4 for RHEL 8",
"product_id": "8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:0e6a36cbd8ab3d06bc71cf60091aa83a3efd83e7784221aaddaf8b1a0accd018_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-rhel8-operator@sha256:0e6a36cbd8ab3d06bc71cf60091aa83a3efd83e7784221aaddaf8b1a0accd018_amd64",
"relates_to_product_reference": "8Base-RHACS-4.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-rhel8-operator@sha256:e83e6c58071dd1fbba15944e2d25ecac07dd623d58e2b31cc72a0555aa69e584_ppc64le as a component of RHACS 4.4 for RHEL 8",
"product_id": "8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:e83e6c58071dd1fbba15944e2d25ecac07dd623d58e2b31cc72a0555aa69e584_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-rhel8-operator@sha256:e83e6c58071dd1fbba15944e2d25ecac07dd623d58e2b31cc72a0555aa69e584_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:32364fedba6ad4660e117eae90433b2ab8f6a16afb51ebfe718c356a531d71bd_amd64 as a component of RHACS 4.4 for RHEL 8",
"product_id": "8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:32364fedba6ad4660e117eae90433b2ab8f6a16afb51ebfe718c356a531d71bd_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:32364fedba6ad4660e117eae90433b2ab8f6a16afb51ebfe718c356a531d71bd_amd64",
"relates_to_product_reference": "8Base-RHACS-4.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:8dd008c09f18916952ef7eafe1382cc151139762aff6cffd86b688e132a0e5f3_ppc64le as a component of RHACS 4.4 for RHEL 8",
"product_id": "8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:8dd008c09f18916952ef7eafe1382cc151139762aff6cffd86b688e132a0e5f3_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:8dd008c09f18916952ef7eafe1382cc151139762aff6cffd86b688e132a0e5f3_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:da206789e59d581483ffbe8e1c63519019f504c792b5ad2d5e9299d12785c675_s390x as a component of RHACS 4.4 for RHEL 8",
"product_id": "8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:da206789e59d581483ffbe8e1c63519019f504c792b5ad2d5e9299d12785c675_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:da206789e59d581483ffbe8e1c63519019f504c792b5ad2d5e9299d12785c675_s390x",
"relates_to_product_reference": "8Base-RHACS-4.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:317838698e27cb366ca736975f0cb0bf927533b5526caabe5a9e443d28a70487_amd64 as a component of RHACS 4.4 for RHEL 8",
"product_id": "8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:317838698e27cb366ca736975f0cb0bf927533b5526caabe5a9e443d28a70487_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:317838698e27cb366ca736975f0cb0bf927533b5526caabe5a9e443d28a70487_amd64",
"relates_to_product_reference": "8Base-RHACS-4.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:78012a83f84238eb3d492faf5abee4a9d87ddc0c84f1618b8785f82e5f766211_ppc64le as a component of RHACS 4.4 for RHEL 8",
"product_id": "8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:78012a83f84238eb3d492faf5abee4a9d87ddc0c84f1618b8785f82e5f766211_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:78012a83f84238eb3d492faf5abee4a9d87ddc0c84f1618b8785f82e5f766211_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:a19cb92c646d2dc709c18e3da494def64786102ef5a038c766c28a5556d1b154_s390x as a component of RHACS 4.4 for RHEL 8",
"product_id": "8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:a19cb92c646d2dc709c18e3da494def64786102ef5a038c766c28a5556d1b154_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:a19cb92c646d2dc709c18e3da494def64786102ef5a038c766c28a5556d1b154_s390x",
"relates_to_product_reference": "8Base-RHACS-4.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:1f624ee17785e5f2221e917459f31c81ef23421bf9374cedf9020f139e67854a_amd64 as a component of RHACS 4.4 for RHEL 8",
"product_id": "8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:1f624ee17785e5f2221e917459f31c81ef23421bf9374cedf9020f139e67854a_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:1f624ee17785e5f2221e917459f31c81ef23421bf9374cedf9020f139e67854a_amd64",
"relates_to_product_reference": "8Base-RHACS-4.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:57b3670126a5a55b51fdc13ffd1deaceb13e508ff474bac3d7495ea614bf64ad_s390x as a component of RHACS 4.4 for RHEL 8",
"product_id": "8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:57b3670126a5a55b51fdc13ffd1deaceb13e508ff474bac3d7495ea614bf64ad_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:57b3670126a5a55b51fdc13ffd1deaceb13e508ff474bac3d7495ea614bf64ad_s390x",
"relates_to_product_reference": "8Base-RHACS-4.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:e0617ff16dc01afccf934a956c4dd3c7fab847d92e520b0d9358bd7bc3fa1582_ppc64le as a component of RHACS 4.4 for RHEL 8",
"product_id": "8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:e0617ff16dc01afccf934a956c4dd3c7fab847d92e520b0d9358bd7bc3fa1582_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:e0617ff16dc01afccf934a956c4dd3c7fab847d92e520b0d9358bd7bc3fa1582_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:16deab5ea78fbe3d6f4684ef8b4d071dd2408ba46da9f6fc79a9c0af1da16165_ppc64le as a component of RHACS 4.4 for RHEL 8",
"product_id": "8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:16deab5ea78fbe3d6f4684ef8b4d071dd2408ba46da9f6fc79a9c0af1da16165_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:16deab5ea78fbe3d6f4684ef8b4d071dd2408ba46da9f6fc79a9c0af1da16165_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:54c43eb7e2952e6fe64071077a4a22965af01a2e0d4da7ee9249d3c7e31df5a4_s390x as a component of RHACS 4.4 for RHEL 8",
"product_id": "8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:54c43eb7e2952e6fe64071077a4a22965af01a2e0d4da7ee9249d3c7e31df5a4_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:54c43eb7e2952e6fe64071077a4a22965af01a2e0d4da7ee9249d3c7e31df5a4_s390x",
"relates_to_product_reference": "8Base-RHACS-4.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:d09e9eeec5cdcbc7db49814caf033868cbc91273459debfcac94f58151573762_amd64 as a component of RHACS 4.4 for RHEL 8",
"product_id": "8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:d09e9eeec5cdcbc7db49814caf033868cbc91273459debfcac94f58151573762_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:d09e9eeec5cdcbc7db49814caf033868cbc91273459debfcac94f58151573762_amd64",
"relates_to_product_reference": "8Base-RHACS-4.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3894202682fafa2a5bcc7fccd267396f6fa2c4f068f31c2cf99579a1308cde5e_amd64 as a component of RHACS 4.4 for RHEL 8",
"product_id": "8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3894202682fafa2a5bcc7fccd267396f6fa2c4f068f31c2cf99579a1308cde5e_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3894202682fafa2a5bcc7fccd267396f6fa2c4f068f31c2cf99579a1308cde5e_amd64",
"relates_to_product_reference": "8Base-RHACS-4.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3d6a461c5fe55fd478dc08f5a95c8cd813c5dc56ddbbc40c033697a1b628ca67_ppc64le as a component of RHACS 4.4 for RHEL 8",
"product_id": "8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3d6a461c5fe55fd478dc08f5a95c8cd813c5dc56ddbbc40c033697a1b628ca67_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3d6a461c5fe55fd478dc08f5a95c8cd813c5dc56ddbbc40c033697a1b628ca67_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:e93ec7ad08b50b54b61ccd9c69205f7b04692cb3a5c452782b92dce42f9ae4e3_s390x as a component of RHACS 4.4 for RHEL 8",
"product_id": "8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:e93ec7ad08b50b54b61ccd9c69205f7b04692cb3a5c452782b92dce42f9ae4e3_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:e93ec7ad08b50b54b61ccd9c69205f7b04692cb3a5c452782b92dce42f9ae4e3_s390x",
"relates_to_product_reference": "8Base-RHACS-4.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:37f65ec7e152446ef02de2934532db772f534647e91d3909197aeaffe808693e_amd64 as a component of RHACS 4.4 for RHEL 8",
"product_id": "8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:37f65ec7e152446ef02de2934532db772f534647e91d3909197aeaffe808693e_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:37f65ec7e152446ef02de2934532db772f534647e91d3909197aeaffe808693e_amd64",
"relates_to_product_reference": "8Base-RHACS-4.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:38ad20bdebc1776686b4bd308c4f4da9b978dac5f679ac594fd88d36dfb019d1_s390x as a component of RHACS 4.4 for RHEL 8",
"product_id": "8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:38ad20bdebc1776686b4bd308c4f4da9b978dac5f679ac594fd88d36dfb019d1_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:38ad20bdebc1776686b4bd308c4f4da9b978dac5f679ac594fd88d36dfb019d1_s390x",
"relates_to_product_reference": "8Base-RHACS-4.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:6f78b7cbdee3e6c08c6ebcdf67dc2c49dd93bba1fa0bcbc42154bbd6bd6b60f3_ppc64le as a component of RHACS 4.4 for RHEL 8",
"product_id": "8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:6f78b7cbdee3e6c08c6ebcdf67dc2c49dd93bba1fa0bcbc42154bbd6bd6b60f3_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:6f78b7cbdee3e6c08c6ebcdf67dc2c49dd93bba1fa0bcbc42154bbd6bd6b60f3_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:57c71609e72f30089a8f43c1f9b6bab44dc67c28ece0db52460d9f527abac19a_ppc64le as a component of RHACS 4.4 for RHEL 8",
"product_id": "8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:57c71609e72f30089a8f43c1f9b6bab44dc67c28ece0db52460d9f527abac19a_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:57c71609e72f30089a8f43c1f9b6bab44dc67c28ece0db52460d9f527abac19a_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:dfccbd75027774554b10786ec939458a92c725cdf8226eda1660b6ff137d8e51_s390x as a component of RHACS 4.4 for RHEL 8",
"product_id": "8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:dfccbd75027774554b10786ec939458a92c725cdf8226eda1660b6ff137d8e51_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:dfccbd75027774554b10786ec939458a92c725cdf8226eda1660b6ff137d8e51_s390x",
"relates_to_product_reference": "8Base-RHACS-4.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:f9909a0d6d6063f36dd7dd62ed3e5ba5dab6f1f754e627e2dc0726bb124bc1f8_amd64 as a component of RHACS 4.4 for RHEL 8",
"product_id": "8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:f9909a0d6d6063f36dd7dd62ed3e5ba5dab6f1f754e627e2dc0726bb124bc1f8_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:f9909a0d6d6063f36dd7dd62ed3e5ba5dab6f1f754e627e2dc0726bb124bc1f8_amd64",
"relates_to_product_reference": "8Base-RHACS-4.4"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2024-3727",
"cwe": {
"id": "CWE-354",
"name": "Improper Validation of Integrity Check Value"
},
"discovery_date": "2024-04-12T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2274767"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the github.com/containers/image library. This flaw allows attackers to trigger unexpected authenticated registry accesses on behalf of a victim user, causing resource exhaustion, local path traversal, and other attacks.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "containers/image: digest type does not guarantee valid type",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Some conditions are necessary for this attack to occur, such as the attacker being able to upload malicious images to the registry and persuade a victim to pull them. Hence, the severity of this flaw was rated as Moderate.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:072eeeb7f1dd12e6f0275948d3b38b52f667e45d1304e6fd2dd28c816571d824_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:d6b9f90cada9f236011bb349e850e80e3fef55f56f434c12c00122b73e42db6f_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:daa7ddb8a3dc233385926119ca78ffc342d2e6c588960d1814e1639af956b0f3_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:1f03a7f23c4ffb6adb440d475075a8b11211ddd8acda772d02a904547cb5148c_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:78298521c612192e0177d6cc044a865e97230e962f434d811962064f2db1d5ac_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:8901cfa7be1f709f0bf209c396ad32e2c13c3d112bd05a8d4784535e405e95a4_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:10e904f11041dd4947254df586f74f03a66d16818c4f073b8cc8d2336175f6a4_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:304406009c9800285cfcc74861de6b3cc230d09438f37426e39d911a69368e34_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:a13aab1f8c4294f490284b5f0c73fc77b1ee08b65a3d1cae23aacb5db1687926_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:3877057e49d5da93372d239055b6506b23ef430da60d0eca371c4c5a619b1ae6_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:3bdf2ba4bbf3a2373a882cdb85a790b9df2ba359010c8467c4e4e2874996ff4d_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:9a11dad9b17cc9c4f13ab85d920ac3b0796221457ca4894fc6578f92b022880e_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:176837c3041894c294b64da0181b8ad3bc53b3538d5ba70868979c57c7ec1644_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:37070fe46f9168b80d72070443fcdc344db8141d599926f65bf5c2b96bcd89a7_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:e9cc56d2c29af677277791fdfae7796cc5f43e92772bde4adf1f168ef4aaec80_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:0b590586a0bfc3d6399505dfb5ca1367c232d0b13245fd3ab9b0e5ac24a0b5a2_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:0e6a36cbd8ab3d06bc71cf60091aa83a3efd83e7784221aaddaf8b1a0accd018_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:e83e6c58071dd1fbba15944e2d25ecac07dd623d58e2b31cc72a0555aa69e584_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:32364fedba6ad4660e117eae90433b2ab8f6a16afb51ebfe718c356a531d71bd_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:8dd008c09f18916952ef7eafe1382cc151139762aff6cffd86b688e132a0e5f3_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:da206789e59d581483ffbe8e1c63519019f504c792b5ad2d5e9299d12785c675_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:317838698e27cb366ca736975f0cb0bf927533b5526caabe5a9e443d28a70487_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:78012a83f84238eb3d492faf5abee4a9d87ddc0c84f1618b8785f82e5f766211_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:a19cb92c646d2dc709c18e3da494def64786102ef5a038c766c28a5556d1b154_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:1f624ee17785e5f2221e917459f31c81ef23421bf9374cedf9020f139e67854a_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:57b3670126a5a55b51fdc13ffd1deaceb13e508ff474bac3d7495ea614bf64ad_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:e0617ff16dc01afccf934a956c4dd3c7fab847d92e520b0d9358bd7bc3fa1582_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:16deab5ea78fbe3d6f4684ef8b4d071dd2408ba46da9f6fc79a9c0af1da16165_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:54c43eb7e2952e6fe64071077a4a22965af01a2e0d4da7ee9249d3c7e31df5a4_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:d09e9eeec5cdcbc7db49814caf033868cbc91273459debfcac94f58151573762_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3894202682fafa2a5bcc7fccd267396f6fa2c4f068f31c2cf99579a1308cde5e_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3d6a461c5fe55fd478dc08f5a95c8cd813c5dc56ddbbc40c033697a1b628ca67_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:e93ec7ad08b50b54b61ccd9c69205f7b04692cb3a5c452782b92dce42f9ae4e3_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:37f65ec7e152446ef02de2934532db772f534647e91d3909197aeaffe808693e_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:38ad20bdebc1776686b4bd308c4f4da9b978dac5f679ac594fd88d36dfb019d1_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:6f78b7cbdee3e6c08c6ebcdf67dc2c49dd93bba1fa0bcbc42154bbd6bd6b60f3_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:57c71609e72f30089a8f43c1f9b6bab44dc67c28ece0db52460d9f527abac19a_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:dfccbd75027774554b10786ec939458a92c725cdf8226eda1660b6ff137d8e51_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:f9909a0d6d6063f36dd7dd62ed3e5ba5dab6f1f754e627e2dc0726bb124bc1f8_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-3727"
},
{
"category": "external",
"summary": "RHBZ#2274767",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2274767"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-3727",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-3727"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-3727",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-3727"
}
],
"release_date": "2024-05-09T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-08-29T18:30:41+00:00",
"details": "If you are using an earlier version of\nRHACS 4.4, you are advised to upgrade to this patch release 4.4.5.",
"product_ids": [
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:072eeeb7f1dd12e6f0275948d3b38b52f667e45d1304e6fd2dd28c816571d824_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:d6b9f90cada9f236011bb349e850e80e3fef55f56f434c12c00122b73e42db6f_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:daa7ddb8a3dc233385926119ca78ffc342d2e6c588960d1814e1639af956b0f3_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:1f03a7f23c4ffb6adb440d475075a8b11211ddd8acda772d02a904547cb5148c_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:78298521c612192e0177d6cc044a865e97230e962f434d811962064f2db1d5ac_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:8901cfa7be1f709f0bf209c396ad32e2c13c3d112bd05a8d4784535e405e95a4_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:10e904f11041dd4947254df586f74f03a66d16818c4f073b8cc8d2336175f6a4_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:304406009c9800285cfcc74861de6b3cc230d09438f37426e39d911a69368e34_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:a13aab1f8c4294f490284b5f0c73fc77b1ee08b65a3d1cae23aacb5db1687926_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:3877057e49d5da93372d239055b6506b23ef430da60d0eca371c4c5a619b1ae6_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:3bdf2ba4bbf3a2373a882cdb85a790b9df2ba359010c8467c4e4e2874996ff4d_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:9a11dad9b17cc9c4f13ab85d920ac3b0796221457ca4894fc6578f92b022880e_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:176837c3041894c294b64da0181b8ad3bc53b3538d5ba70868979c57c7ec1644_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:37070fe46f9168b80d72070443fcdc344db8141d599926f65bf5c2b96bcd89a7_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:e9cc56d2c29af677277791fdfae7796cc5f43e92772bde4adf1f168ef4aaec80_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:0b590586a0bfc3d6399505dfb5ca1367c232d0b13245fd3ab9b0e5ac24a0b5a2_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:0e6a36cbd8ab3d06bc71cf60091aa83a3efd83e7784221aaddaf8b1a0accd018_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:e83e6c58071dd1fbba15944e2d25ecac07dd623d58e2b31cc72a0555aa69e584_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:32364fedba6ad4660e117eae90433b2ab8f6a16afb51ebfe718c356a531d71bd_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:8dd008c09f18916952ef7eafe1382cc151139762aff6cffd86b688e132a0e5f3_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:da206789e59d581483ffbe8e1c63519019f504c792b5ad2d5e9299d12785c675_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:317838698e27cb366ca736975f0cb0bf927533b5526caabe5a9e443d28a70487_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:78012a83f84238eb3d492faf5abee4a9d87ddc0c84f1618b8785f82e5f766211_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:a19cb92c646d2dc709c18e3da494def64786102ef5a038c766c28a5556d1b154_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:1f624ee17785e5f2221e917459f31c81ef23421bf9374cedf9020f139e67854a_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:57b3670126a5a55b51fdc13ffd1deaceb13e508ff474bac3d7495ea614bf64ad_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:e0617ff16dc01afccf934a956c4dd3c7fab847d92e520b0d9358bd7bc3fa1582_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:16deab5ea78fbe3d6f4684ef8b4d071dd2408ba46da9f6fc79a9c0af1da16165_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:54c43eb7e2952e6fe64071077a4a22965af01a2e0d4da7ee9249d3c7e31df5a4_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:d09e9eeec5cdcbc7db49814caf033868cbc91273459debfcac94f58151573762_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3894202682fafa2a5bcc7fccd267396f6fa2c4f068f31c2cf99579a1308cde5e_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3d6a461c5fe55fd478dc08f5a95c8cd813c5dc56ddbbc40c033697a1b628ca67_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:e93ec7ad08b50b54b61ccd9c69205f7b04692cb3a5c452782b92dce42f9ae4e3_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:37f65ec7e152446ef02de2934532db772f534647e91d3909197aeaffe808693e_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:38ad20bdebc1776686b4bd308c4f4da9b978dac5f679ac594fd88d36dfb019d1_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:6f78b7cbdee3e6c08c6ebcdf67dc2c49dd93bba1fa0bcbc42154bbd6bd6b60f3_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:57c71609e72f30089a8f43c1f9b6bab44dc67c28ece0db52460d9f527abac19a_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:dfccbd75027774554b10786ec939458a92c725cdf8226eda1660b6ff137d8e51_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:f9909a0d6d6063f36dd7dd62ed3e5ba5dab6f1f754e627e2dc0726bb124bc1f8_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:6054"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.3,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:072eeeb7f1dd12e6f0275948d3b38b52f667e45d1304e6fd2dd28c816571d824_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:d6b9f90cada9f236011bb349e850e80e3fef55f56f434c12c00122b73e42db6f_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:daa7ddb8a3dc233385926119ca78ffc342d2e6c588960d1814e1639af956b0f3_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:1f03a7f23c4ffb6adb440d475075a8b11211ddd8acda772d02a904547cb5148c_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:78298521c612192e0177d6cc044a865e97230e962f434d811962064f2db1d5ac_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:8901cfa7be1f709f0bf209c396ad32e2c13c3d112bd05a8d4784535e405e95a4_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:10e904f11041dd4947254df586f74f03a66d16818c4f073b8cc8d2336175f6a4_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:304406009c9800285cfcc74861de6b3cc230d09438f37426e39d911a69368e34_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:a13aab1f8c4294f490284b5f0c73fc77b1ee08b65a3d1cae23aacb5db1687926_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:3877057e49d5da93372d239055b6506b23ef430da60d0eca371c4c5a619b1ae6_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:3bdf2ba4bbf3a2373a882cdb85a790b9df2ba359010c8467c4e4e2874996ff4d_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:9a11dad9b17cc9c4f13ab85d920ac3b0796221457ca4894fc6578f92b022880e_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:176837c3041894c294b64da0181b8ad3bc53b3538d5ba70868979c57c7ec1644_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:37070fe46f9168b80d72070443fcdc344db8141d599926f65bf5c2b96bcd89a7_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:e9cc56d2c29af677277791fdfae7796cc5f43e92772bde4adf1f168ef4aaec80_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:0b590586a0bfc3d6399505dfb5ca1367c232d0b13245fd3ab9b0e5ac24a0b5a2_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:0e6a36cbd8ab3d06bc71cf60091aa83a3efd83e7784221aaddaf8b1a0accd018_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:e83e6c58071dd1fbba15944e2d25ecac07dd623d58e2b31cc72a0555aa69e584_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:32364fedba6ad4660e117eae90433b2ab8f6a16afb51ebfe718c356a531d71bd_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:8dd008c09f18916952ef7eafe1382cc151139762aff6cffd86b688e132a0e5f3_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:da206789e59d581483ffbe8e1c63519019f504c792b5ad2d5e9299d12785c675_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:317838698e27cb366ca736975f0cb0bf927533b5526caabe5a9e443d28a70487_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:78012a83f84238eb3d492faf5abee4a9d87ddc0c84f1618b8785f82e5f766211_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:a19cb92c646d2dc709c18e3da494def64786102ef5a038c766c28a5556d1b154_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:1f624ee17785e5f2221e917459f31c81ef23421bf9374cedf9020f139e67854a_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:57b3670126a5a55b51fdc13ffd1deaceb13e508ff474bac3d7495ea614bf64ad_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:e0617ff16dc01afccf934a956c4dd3c7fab847d92e520b0d9358bd7bc3fa1582_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:16deab5ea78fbe3d6f4684ef8b4d071dd2408ba46da9f6fc79a9c0af1da16165_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:54c43eb7e2952e6fe64071077a4a22965af01a2e0d4da7ee9249d3c7e31df5a4_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:d09e9eeec5cdcbc7db49814caf033868cbc91273459debfcac94f58151573762_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3894202682fafa2a5bcc7fccd267396f6fa2c4f068f31c2cf99579a1308cde5e_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3d6a461c5fe55fd478dc08f5a95c8cd813c5dc56ddbbc40c033697a1b628ca67_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:e93ec7ad08b50b54b61ccd9c69205f7b04692cb3a5c452782b92dce42f9ae4e3_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:37f65ec7e152446ef02de2934532db772f534647e91d3909197aeaffe808693e_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:38ad20bdebc1776686b4bd308c4f4da9b978dac5f679ac594fd88d36dfb019d1_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:6f78b7cbdee3e6c08c6ebcdf67dc2c49dd93bba1fa0bcbc42154bbd6bd6b60f3_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:57c71609e72f30089a8f43c1f9b6bab44dc67c28ece0db52460d9f527abac19a_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:dfccbd75027774554b10786ec939458a92c725cdf8226eda1660b6ff137d8e51_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:f9909a0d6d6063f36dd7dd62ed3e5ba5dab6f1f754e627e2dc0726bb124bc1f8_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "containers/image: digest type does not guarantee valid type"
},
{
"cve": "CVE-2024-6104",
"cwe": {
"id": "CWE-532",
"name": "Insertion of Sensitive Information into Log File"
},
"discovery_date": "2024-06-24T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2294000"
}
],
"notes": [
{
"category": "description",
"text": "A vulnerability was found in go-retryablehttp. The package may suffer from a lack of input sanitization by not cleaning up URL data when writing to the logs. This issue could expose sensitive authentication information.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "go-retryablehttp: url might write sensitive information to log file",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:072eeeb7f1dd12e6f0275948d3b38b52f667e45d1304e6fd2dd28c816571d824_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:d6b9f90cada9f236011bb349e850e80e3fef55f56f434c12c00122b73e42db6f_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:daa7ddb8a3dc233385926119ca78ffc342d2e6c588960d1814e1639af956b0f3_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:1f03a7f23c4ffb6adb440d475075a8b11211ddd8acda772d02a904547cb5148c_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:78298521c612192e0177d6cc044a865e97230e962f434d811962064f2db1d5ac_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:8901cfa7be1f709f0bf209c396ad32e2c13c3d112bd05a8d4784535e405e95a4_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:10e904f11041dd4947254df586f74f03a66d16818c4f073b8cc8d2336175f6a4_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:304406009c9800285cfcc74861de6b3cc230d09438f37426e39d911a69368e34_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:a13aab1f8c4294f490284b5f0c73fc77b1ee08b65a3d1cae23aacb5db1687926_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:3877057e49d5da93372d239055b6506b23ef430da60d0eca371c4c5a619b1ae6_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:3bdf2ba4bbf3a2373a882cdb85a790b9df2ba359010c8467c4e4e2874996ff4d_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:9a11dad9b17cc9c4f13ab85d920ac3b0796221457ca4894fc6578f92b022880e_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:176837c3041894c294b64da0181b8ad3bc53b3538d5ba70868979c57c7ec1644_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:37070fe46f9168b80d72070443fcdc344db8141d599926f65bf5c2b96bcd89a7_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:e9cc56d2c29af677277791fdfae7796cc5f43e92772bde4adf1f168ef4aaec80_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:0b590586a0bfc3d6399505dfb5ca1367c232d0b13245fd3ab9b0e5ac24a0b5a2_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:0e6a36cbd8ab3d06bc71cf60091aa83a3efd83e7784221aaddaf8b1a0accd018_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:e83e6c58071dd1fbba15944e2d25ecac07dd623d58e2b31cc72a0555aa69e584_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:32364fedba6ad4660e117eae90433b2ab8f6a16afb51ebfe718c356a531d71bd_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:8dd008c09f18916952ef7eafe1382cc151139762aff6cffd86b688e132a0e5f3_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:da206789e59d581483ffbe8e1c63519019f504c792b5ad2d5e9299d12785c675_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:317838698e27cb366ca736975f0cb0bf927533b5526caabe5a9e443d28a70487_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:78012a83f84238eb3d492faf5abee4a9d87ddc0c84f1618b8785f82e5f766211_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:a19cb92c646d2dc709c18e3da494def64786102ef5a038c766c28a5556d1b154_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:1f624ee17785e5f2221e917459f31c81ef23421bf9374cedf9020f139e67854a_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:57b3670126a5a55b51fdc13ffd1deaceb13e508ff474bac3d7495ea614bf64ad_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:e0617ff16dc01afccf934a956c4dd3c7fab847d92e520b0d9358bd7bc3fa1582_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:16deab5ea78fbe3d6f4684ef8b4d071dd2408ba46da9f6fc79a9c0af1da16165_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:54c43eb7e2952e6fe64071077a4a22965af01a2e0d4da7ee9249d3c7e31df5a4_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:d09e9eeec5cdcbc7db49814caf033868cbc91273459debfcac94f58151573762_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3894202682fafa2a5bcc7fccd267396f6fa2c4f068f31c2cf99579a1308cde5e_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3d6a461c5fe55fd478dc08f5a95c8cd813c5dc56ddbbc40c033697a1b628ca67_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:e93ec7ad08b50b54b61ccd9c69205f7b04692cb3a5c452782b92dce42f9ae4e3_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:37f65ec7e152446ef02de2934532db772f534647e91d3909197aeaffe808693e_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:38ad20bdebc1776686b4bd308c4f4da9b978dac5f679ac594fd88d36dfb019d1_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:6f78b7cbdee3e6c08c6ebcdf67dc2c49dd93bba1fa0bcbc42154bbd6bd6b60f3_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:57c71609e72f30089a8f43c1f9b6bab44dc67c28ece0db52460d9f527abac19a_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:dfccbd75027774554b10786ec939458a92c725cdf8226eda1660b6ff137d8e51_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:f9909a0d6d6063f36dd7dd62ed3e5ba5dab6f1f754e627e2dc0726bb124bc1f8_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-6104"
},
{
"category": "external",
"summary": "RHBZ#2294000",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2294000"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-6104",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-6104"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-6104",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-6104"
}
],
"release_date": "2024-06-24T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-08-29T18:30:41+00:00",
"details": "If you are using an earlier version of\nRHACS 4.4, you are advised to upgrade to this patch release 4.4.5.",
"product_ids": [
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:072eeeb7f1dd12e6f0275948d3b38b52f667e45d1304e6fd2dd28c816571d824_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:d6b9f90cada9f236011bb349e850e80e3fef55f56f434c12c00122b73e42db6f_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:daa7ddb8a3dc233385926119ca78ffc342d2e6c588960d1814e1639af956b0f3_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:1f03a7f23c4ffb6adb440d475075a8b11211ddd8acda772d02a904547cb5148c_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:78298521c612192e0177d6cc044a865e97230e962f434d811962064f2db1d5ac_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:8901cfa7be1f709f0bf209c396ad32e2c13c3d112bd05a8d4784535e405e95a4_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:10e904f11041dd4947254df586f74f03a66d16818c4f073b8cc8d2336175f6a4_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:304406009c9800285cfcc74861de6b3cc230d09438f37426e39d911a69368e34_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:a13aab1f8c4294f490284b5f0c73fc77b1ee08b65a3d1cae23aacb5db1687926_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:3877057e49d5da93372d239055b6506b23ef430da60d0eca371c4c5a619b1ae6_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:3bdf2ba4bbf3a2373a882cdb85a790b9df2ba359010c8467c4e4e2874996ff4d_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:9a11dad9b17cc9c4f13ab85d920ac3b0796221457ca4894fc6578f92b022880e_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:176837c3041894c294b64da0181b8ad3bc53b3538d5ba70868979c57c7ec1644_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:37070fe46f9168b80d72070443fcdc344db8141d599926f65bf5c2b96bcd89a7_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:e9cc56d2c29af677277791fdfae7796cc5f43e92772bde4adf1f168ef4aaec80_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:0b590586a0bfc3d6399505dfb5ca1367c232d0b13245fd3ab9b0e5ac24a0b5a2_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:0e6a36cbd8ab3d06bc71cf60091aa83a3efd83e7784221aaddaf8b1a0accd018_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:e83e6c58071dd1fbba15944e2d25ecac07dd623d58e2b31cc72a0555aa69e584_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:32364fedba6ad4660e117eae90433b2ab8f6a16afb51ebfe718c356a531d71bd_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:8dd008c09f18916952ef7eafe1382cc151139762aff6cffd86b688e132a0e5f3_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:da206789e59d581483ffbe8e1c63519019f504c792b5ad2d5e9299d12785c675_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:317838698e27cb366ca736975f0cb0bf927533b5526caabe5a9e443d28a70487_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:78012a83f84238eb3d492faf5abee4a9d87ddc0c84f1618b8785f82e5f766211_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:a19cb92c646d2dc709c18e3da494def64786102ef5a038c766c28a5556d1b154_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:1f624ee17785e5f2221e917459f31c81ef23421bf9374cedf9020f139e67854a_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:57b3670126a5a55b51fdc13ffd1deaceb13e508ff474bac3d7495ea614bf64ad_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:e0617ff16dc01afccf934a956c4dd3c7fab847d92e520b0d9358bd7bc3fa1582_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:16deab5ea78fbe3d6f4684ef8b4d071dd2408ba46da9f6fc79a9c0af1da16165_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:54c43eb7e2952e6fe64071077a4a22965af01a2e0d4da7ee9249d3c7e31df5a4_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:d09e9eeec5cdcbc7db49814caf033868cbc91273459debfcac94f58151573762_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3894202682fafa2a5bcc7fccd267396f6fa2c4f068f31c2cf99579a1308cde5e_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3d6a461c5fe55fd478dc08f5a95c8cd813c5dc56ddbbc40c033697a1b628ca67_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:e93ec7ad08b50b54b61ccd9c69205f7b04692cb3a5c452782b92dce42f9ae4e3_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:37f65ec7e152446ef02de2934532db772f534647e91d3909197aeaffe808693e_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:38ad20bdebc1776686b4bd308c4f4da9b978dac5f679ac594fd88d36dfb019d1_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:6f78b7cbdee3e6c08c6ebcdf67dc2c49dd93bba1fa0bcbc42154bbd6bd6b60f3_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:57c71609e72f30089a8f43c1f9b6bab44dc67c28ece0db52460d9f527abac19a_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:dfccbd75027774554b10786ec939458a92c725cdf8226eda1660b6ff137d8e51_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:f9909a0d6d6063f36dd7dd62ed3e5ba5dab6f1f754e627e2dc0726bb124bc1f8_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:6054"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:072eeeb7f1dd12e6f0275948d3b38b52f667e45d1304e6fd2dd28c816571d824_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:d6b9f90cada9f236011bb349e850e80e3fef55f56f434c12c00122b73e42db6f_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:daa7ddb8a3dc233385926119ca78ffc342d2e6c588960d1814e1639af956b0f3_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:1f03a7f23c4ffb6adb440d475075a8b11211ddd8acda772d02a904547cb5148c_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:78298521c612192e0177d6cc044a865e97230e962f434d811962064f2db1d5ac_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:8901cfa7be1f709f0bf209c396ad32e2c13c3d112bd05a8d4784535e405e95a4_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:10e904f11041dd4947254df586f74f03a66d16818c4f073b8cc8d2336175f6a4_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:304406009c9800285cfcc74861de6b3cc230d09438f37426e39d911a69368e34_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:a13aab1f8c4294f490284b5f0c73fc77b1ee08b65a3d1cae23aacb5db1687926_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:3877057e49d5da93372d239055b6506b23ef430da60d0eca371c4c5a619b1ae6_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:3bdf2ba4bbf3a2373a882cdb85a790b9df2ba359010c8467c4e4e2874996ff4d_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:9a11dad9b17cc9c4f13ab85d920ac3b0796221457ca4894fc6578f92b022880e_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:176837c3041894c294b64da0181b8ad3bc53b3538d5ba70868979c57c7ec1644_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:37070fe46f9168b80d72070443fcdc344db8141d599926f65bf5c2b96bcd89a7_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:e9cc56d2c29af677277791fdfae7796cc5f43e92772bde4adf1f168ef4aaec80_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:0b590586a0bfc3d6399505dfb5ca1367c232d0b13245fd3ab9b0e5ac24a0b5a2_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:0e6a36cbd8ab3d06bc71cf60091aa83a3efd83e7784221aaddaf8b1a0accd018_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:e83e6c58071dd1fbba15944e2d25ecac07dd623d58e2b31cc72a0555aa69e584_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:32364fedba6ad4660e117eae90433b2ab8f6a16afb51ebfe718c356a531d71bd_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:8dd008c09f18916952ef7eafe1382cc151139762aff6cffd86b688e132a0e5f3_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:da206789e59d581483ffbe8e1c63519019f504c792b5ad2d5e9299d12785c675_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:317838698e27cb366ca736975f0cb0bf927533b5526caabe5a9e443d28a70487_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:78012a83f84238eb3d492faf5abee4a9d87ddc0c84f1618b8785f82e5f766211_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:a19cb92c646d2dc709c18e3da494def64786102ef5a038c766c28a5556d1b154_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:1f624ee17785e5f2221e917459f31c81ef23421bf9374cedf9020f139e67854a_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:57b3670126a5a55b51fdc13ffd1deaceb13e508ff474bac3d7495ea614bf64ad_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:e0617ff16dc01afccf934a956c4dd3c7fab847d92e520b0d9358bd7bc3fa1582_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:16deab5ea78fbe3d6f4684ef8b4d071dd2408ba46da9f6fc79a9c0af1da16165_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:54c43eb7e2952e6fe64071077a4a22965af01a2e0d4da7ee9249d3c7e31df5a4_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:d09e9eeec5cdcbc7db49814caf033868cbc91273459debfcac94f58151573762_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3894202682fafa2a5bcc7fccd267396f6fa2c4f068f31c2cf99579a1308cde5e_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3d6a461c5fe55fd478dc08f5a95c8cd813c5dc56ddbbc40c033697a1b628ca67_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:e93ec7ad08b50b54b61ccd9c69205f7b04692cb3a5c452782b92dce42f9ae4e3_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:37f65ec7e152446ef02de2934532db772f534647e91d3909197aeaffe808693e_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:38ad20bdebc1776686b4bd308c4f4da9b978dac5f679ac594fd88d36dfb019d1_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:6f78b7cbdee3e6c08c6ebcdf67dc2c49dd93bba1fa0bcbc42154bbd6bd6b60f3_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:57c71609e72f30089a8f43c1f9b6bab44dc67c28ece0db52460d9f527abac19a_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:dfccbd75027774554b10786ec939458a92c725cdf8226eda1660b6ff137d8e51_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:f9909a0d6d6063f36dd7dd62ed3e5ba5dab6f1f754e627e2dc0726bb124bc1f8_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "NONE",
"baseScore": 6.0,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "HIGH",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:072eeeb7f1dd12e6f0275948d3b38b52f667e45d1304e6fd2dd28c816571d824_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:d6b9f90cada9f236011bb349e850e80e3fef55f56f434c12c00122b73e42db6f_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:daa7ddb8a3dc233385926119ca78ffc342d2e6c588960d1814e1639af956b0f3_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:1f03a7f23c4ffb6adb440d475075a8b11211ddd8acda772d02a904547cb5148c_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:78298521c612192e0177d6cc044a865e97230e962f434d811962064f2db1d5ac_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:8901cfa7be1f709f0bf209c396ad32e2c13c3d112bd05a8d4784535e405e95a4_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:10e904f11041dd4947254df586f74f03a66d16818c4f073b8cc8d2336175f6a4_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:304406009c9800285cfcc74861de6b3cc230d09438f37426e39d911a69368e34_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:a13aab1f8c4294f490284b5f0c73fc77b1ee08b65a3d1cae23aacb5db1687926_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:3877057e49d5da93372d239055b6506b23ef430da60d0eca371c4c5a619b1ae6_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:3bdf2ba4bbf3a2373a882cdb85a790b9df2ba359010c8467c4e4e2874996ff4d_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:9a11dad9b17cc9c4f13ab85d920ac3b0796221457ca4894fc6578f92b022880e_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:176837c3041894c294b64da0181b8ad3bc53b3538d5ba70868979c57c7ec1644_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:37070fe46f9168b80d72070443fcdc344db8141d599926f65bf5c2b96bcd89a7_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:e9cc56d2c29af677277791fdfae7796cc5f43e92772bde4adf1f168ef4aaec80_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:0b590586a0bfc3d6399505dfb5ca1367c232d0b13245fd3ab9b0e5ac24a0b5a2_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:0e6a36cbd8ab3d06bc71cf60091aa83a3efd83e7784221aaddaf8b1a0accd018_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:e83e6c58071dd1fbba15944e2d25ecac07dd623d58e2b31cc72a0555aa69e584_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:32364fedba6ad4660e117eae90433b2ab8f6a16afb51ebfe718c356a531d71bd_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:8dd008c09f18916952ef7eafe1382cc151139762aff6cffd86b688e132a0e5f3_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:da206789e59d581483ffbe8e1c63519019f504c792b5ad2d5e9299d12785c675_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:317838698e27cb366ca736975f0cb0bf927533b5526caabe5a9e443d28a70487_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:78012a83f84238eb3d492faf5abee4a9d87ddc0c84f1618b8785f82e5f766211_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:a19cb92c646d2dc709c18e3da494def64786102ef5a038c766c28a5556d1b154_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:1f624ee17785e5f2221e917459f31c81ef23421bf9374cedf9020f139e67854a_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:57b3670126a5a55b51fdc13ffd1deaceb13e508ff474bac3d7495ea614bf64ad_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:e0617ff16dc01afccf934a956c4dd3c7fab847d92e520b0d9358bd7bc3fa1582_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:16deab5ea78fbe3d6f4684ef8b4d071dd2408ba46da9f6fc79a9c0af1da16165_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:54c43eb7e2952e6fe64071077a4a22965af01a2e0d4da7ee9249d3c7e31df5a4_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:d09e9eeec5cdcbc7db49814caf033868cbc91273459debfcac94f58151573762_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3894202682fafa2a5bcc7fccd267396f6fa2c4f068f31c2cf99579a1308cde5e_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3d6a461c5fe55fd478dc08f5a95c8cd813c5dc56ddbbc40c033697a1b628ca67_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:e93ec7ad08b50b54b61ccd9c69205f7b04692cb3a5c452782b92dce42f9ae4e3_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:37f65ec7e152446ef02de2934532db772f534647e91d3909197aeaffe808693e_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:38ad20bdebc1776686b4bd308c4f4da9b978dac5f679ac594fd88d36dfb019d1_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:6f78b7cbdee3e6c08c6ebcdf67dc2c49dd93bba1fa0bcbc42154bbd6bd6b60f3_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:57c71609e72f30089a8f43c1f9b6bab44dc67c28ece0db52460d9f527abac19a_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:dfccbd75027774554b10786ec939458a92c725cdf8226eda1660b6ff137d8e51_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:f9909a0d6d6063f36dd7dd62ed3e5ba5dab6f1f754e627e2dc0726bb124bc1f8_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "go-retryablehttp: url might write sensitive information to log file"
},
{
"cve": "CVE-2024-37298",
"cwe": {
"id": "CWE-770",
"name": "Allocation of Resources Without Limits or Throttling"
},
"discovery_date": "2024-07-01T19:21:12+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2295010"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the gorilla/schema package. Running `schema.Decoder.Decode()` on a struct that has a field of type `[]struct{...}` opens it up to malicious attacks regarding memory allocations, taking advantage of the sparse slice functionality. Any use of `schema.Decoder.Decode()` on a struct with arrays of other structs could trigger memory exhaustion and lead to a denial of service.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "gorilla/schema: Potential memory exhaustion attack due to sparse slice deserialization",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability in the gorilla/schema package is a high-severity issue due to its potential to cause a Denial of Service (DoS) attack through memory exhaustion. The schema.Decoder.Decode() function, when processing a struct with fields of type []struct{...}, is susceptible to malicious input that exploits sparse slice functionality. This can result in excessive memory allocations, overwhelming the system\u0027s resources and rendering the application unresponsive.\n\nThe majority of RHEL utilities are not long-running applications; instead, they are command-line tools. These tools utilize Golang package as build-time dependency, which is why they are classified as having a \"Moderate\" level of impact.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:072eeeb7f1dd12e6f0275948d3b38b52f667e45d1304e6fd2dd28c816571d824_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:d6b9f90cada9f236011bb349e850e80e3fef55f56f434c12c00122b73e42db6f_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:daa7ddb8a3dc233385926119ca78ffc342d2e6c588960d1814e1639af956b0f3_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:1f03a7f23c4ffb6adb440d475075a8b11211ddd8acda772d02a904547cb5148c_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:78298521c612192e0177d6cc044a865e97230e962f434d811962064f2db1d5ac_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:8901cfa7be1f709f0bf209c396ad32e2c13c3d112bd05a8d4784535e405e95a4_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:10e904f11041dd4947254df586f74f03a66d16818c4f073b8cc8d2336175f6a4_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:304406009c9800285cfcc74861de6b3cc230d09438f37426e39d911a69368e34_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:a13aab1f8c4294f490284b5f0c73fc77b1ee08b65a3d1cae23aacb5db1687926_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:3877057e49d5da93372d239055b6506b23ef430da60d0eca371c4c5a619b1ae6_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:3bdf2ba4bbf3a2373a882cdb85a790b9df2ba359010c8467c4e4e2874996ff4d_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:9a11dad9b17cc9c4f13ab85d920ac3b0796221457ca4894fc6578f92b022880e_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:176837c3041894c294b64da0181b8ad3bc53b3538d5ba70868979c57c7ec1644_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:37070fe46f9168b80d72070443fcdc344db8141d599926f65bf5c2b96bcd89a7_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:e9cc56d2c29af677277791fdfae7796cc5f43e92772bde4adf1f168ef4aaec80_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:0b590586a0bfc3d6399505dfb5ca1367c232d0b13245fd3ab9b0e5ac24a0b5a2_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:0e6a36cbd8ab3d06bc71cf60091aa83a3efd83e7784221aaddaf8b1a0accd018_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:e83e6c58071dd1fbba15944e2d25ecac07dd623d58e2b31cc72a0555aa69e584_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:32364fedba6ad4660e117eae90433b2ab8f6a16afb51ebfe718c356a531d71bd_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:8dd008c09f18916952ef7eafe1382cc151139762aff6cffd86b688e132a0e5f3_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:da206789e59d581483ffbe8e1c63519019f504c792b5ad2d5e9299d12785c675_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:317838698e27cb366ca736975f0cb0bf927533b5526caabe5a9e443d28a70487_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:78012a83f84238eb3d492faf5abee4a9d87ddc0c84f1618b8785f82e5f766211_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:a19cb92c646d2dc709c18e3da494def64786102ef5a038c766c28a5556d1b154_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:1f624ee17785e5f2221e917459f31c81ef23421bf9374cedf9020f139e67854a_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:57b3670126a5a55b51fdc13ffd1deaceb13e508ff474bac3d7495ea614bf64ad_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:e0617ff16dc01afccf934a956c4dd3c7fab847d92e520b0d9358bd7bc3fa1582_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:16deab5ea78fbe3d6f4684ef8b4d071dd2408ba46da9f6fc79a9c0af1da16165_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:54c43eb7e2952e6fe64071077a4a22965af01a2e0d4da7ee9249d3c7e31df5a4_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:d09e9eeec5cdcbc7db49814caf033868cbc91273459debfcac94f58151573762_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3894202682fafa2a5bcc7fccd267396f6fa2c4f068f31c2cf99579a1308cde5e_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3d6a461c5fe55fd478dc08f5a95c8cd813c5dc56ddbbc40c033697a1b628ca67_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:e93ec7ad08b50b54b61ccd9c69205f7b04692cb3a5c452782b92dce42f9ae4e3_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:37f65ec7e152446ef02de2934532db772f534647e91d3909197aeaffe808693e_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:38ad20bdebc1776686b4bd308c4f4da9b978dac5f679ac594fd88d36dfb019d1_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:6f78b7cbdee3e6c08c6ebcdf67dc2c49dd93bba1fa0bcbc42154bbd6bd6b60f3_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:57c71609e72f30089a8f43c1f9b6bab44dc67c28ece0db52460d9f527abac19a_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:dfccbd75027774554b10786ec939458a92c725cdf8226eda1660b6ff137d8e51_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:f9909a0d6d6063f36dd7dd62ed3e5ba5dab6f1f754e627e2dc0726bb124bc1f8_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-37298"
},
{
"category": "external",
"summary": "RHBZ#2295010",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2295010"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-37298",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-37298"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-37298",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-37298"
},
{
"category": "external",
"summary": "https://github.com/gorilla/schema/blob/main/decoder.go#L223",
"url": "https://github.com/gorilla/schema/blob/main/decoder.go#L223"
},
{
"category": "external",
"summary": "https://github.com/gorilla/schema/commit/cd59f2f12cbdfa9c06aa63e425d1fe4a806967ff",
"url": "https://github.com/gorilla/schema/commit/cd59f2f12cbdfa9c06aa63e425d1fe4a806967ff"
},
{
"category": "external",
"summary": "https://github.com/gorilla/schema/security/advisories/GHSA-3669-72x9-r9p3",
"url": "https://github.com/gorilla/schema/security/advisories/GHSA-3669-72x9-r9p3"
}
],
"release_date": "2024-06-30T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-08-29T18:30:41+00:00",
"details": "If you are using an earlier version of\nRHACS 4.4, you are advised to upgrade to this patch release 4.4.5.",
"product_ids": [
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:072eeeb7f1dd12e6f0275948d3b38b52f667e45d1304e6fd2dd28c816571d824_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:d6b9f90cada9f236011bb349e850e80e3fef55f56f434c12c00122b73e42db6f_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:daa7ddb8a3dc233385926119ca78ffc342d2e6c588960d1814e1639af956b0f3_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:1f03a7f23c4ffb6adb440d475075a8b11211ddd8acda772d02a904547cb5148c_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:78298521c612192e0177d6cc044a865e97230e962f434d811962064f2db1d5ac_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:8901cfa7be1f709f0bf209c396ad32e2c13c3d112bd05a8d4784535e405e95a4_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:10e904f11041dd4947254df586f74f03a66d16818c4f073b8cc8d2336175f6a4_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:304406009c9800285cfcc74861de6b3cc230d09438f37426e39d911a69368e34_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:a13aab1f8c4294f490284b5f0c73fc77b1ee08b65a3d1cae23aacb5db1687926_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:3877057e49d5da93372d239055b6506b23ef430da60d0eca371c4c5a619b1ae6_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:3bdf2ba4bbf3a2373a882cdb85a790b9df2ba359010c8467c4e4e2874996ff4d_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:9a11dad9b17cc9c4f13ab85d920ac3b0796221457ca4894fc6578f92b022880e_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:176837c3041894c294b64da0181b8ad3bc53b3538d5ba70868979c57c7ec1644_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:37070fe46f9168b80d72070443fcdc344db8141d599926f65bf5c2b96bcd89a7_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:e9cc56d2c29af677277791fdfae7796cc5f43e92772bde4adf1f168ef4aaec80_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:0b590586a0bfc3d6399505dfb5ca1367c232d0b13245fd3ab9b0e5ac24a0b5a2_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:0e6a36cbd8ab3d06bc71cf60091aa83a3efd83e7784221aaddaf8b1a0accd018_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:e83e6c58071dd1fbba15944e2d25ecac07dd623d58e2b31cc72a0555aa69e584_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:32364fedba6ad4660e117eae90433b2ab8f6a16afb51ebfe718c356a531d71bd_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:8dd008c09f18916952ef7eafe1382cc151139762aff6cffd86b688e132a0e5f3_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:da206789e59d581483ffbe8e1c63519019f504c792b5ad2d5e9299d12785c675_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:317838698e27cb366ca736975f0cb0bf927533b5526caabe5a9e443d28a70487_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:78012a83f84238eb3d492faf5abee4a9d87ddc0c84f1618b8785f82e5f766211_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:a19cb92c646d2dc709c18e3da494def64786102ef5a038c766c28a5556d1b154_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:1f624ee17785e5f2221e917459f31c81ef23421bf9374cedf9020f139e67854a_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:57b3670126a5a55b51fdc13ffd1deaceb13e508ff474bac3d7495ea614bf64ad_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:e0617ff16dc01afccf934a956c4dd3c7fab847d92e520b0d9358bd7bc3fa1582_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:16deab5ea78fbe3d6f4684ef8b4d071dd2408ba46da9f6fc79a9c0af1da16165_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:54c43eb7e2952e6fe64071077a4a22965af01a2e0d4da7ee9249d3c7e31df5a4_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:d09e9eeec5cdcbc7db49814caf033868cbc91273459debfcac94f58151573762_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3894202682fafa2a5bcc7fccd267396f6fa2c4f068f31c2cf99579a1308cde5e_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3d6a461c5fe55fd478dc08f5a95c8cd813c5dc56ddbbc40c033697a1b628ca67_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:e93ec7ad08b50b54b61ccd9c69205f7b04692cb3a5c452782b92dce42f9ae4e3_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:37f65ec7e152446ef02de2934532db772f534647e91d3909197aeaffe808693e_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:38ad20bdebc1776686b4bd308c4f4da9b978dac5f679ac594fd88d36dfb019d1_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:6f78b7cbdee3e6c08c6ebcdf67dc2c49dd93bba1fa0bcbc42154bbd6bd6b60f3_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:57c71609e72f30089a8f43c1f9b6bab44dc67c28ece0db52460d9f527abac19a_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:dfccbd75027774554b10786ec939458a92c725cdf8226eda1660b6ff137d8e51_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:f9909a0d6d6063f36dd7dd62ed3e5ba5dab6f1f754e627e2dc0726bb124bc1f8_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:6054"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:072eeeb7f1dd12e6f0275948d3b38b52f667e45d1304e6fd2dd28c816571d824_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:d6b9f90cada9f236011bb349e850e80e3fef55f56f434c12c00122b73e42db6f_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:daa7ddb8a3dc233385926119ca78ffc342d2e6c588960d1814e1639af956b0f3_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:1f03a7f23c4ffb6adb440d475075a8b11211ddd8acda772d02a904547cb5148c_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:78298521c612192e0177d6cc044a865e97230e962f434d811962064f2db1d5ac_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:8901cfa7be1f709f0bf209c396ad32e2c13c3d112bd05a8d4784535e405e95a4_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:10e904f11041dd4947254df586f74f03a66d16818c4f073b8cc8d2336175f6a4_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:304406009c9800285cfcc74861de6b3cc230d09438f37426e39d911a69368e34_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:a13aab1f8c4294f490284b5f0c73fc77b1ee08b65a3d1cae23aacb5db1687926_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:3877057e49d5da93372d239055b6506b23ef430da60d0eca371c4c5a619b1ae6_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:3bdf2ba4bbf3a2373a882cdb85a790b9df2ba359010c8467c4e4e2874996ff4d_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:9a11dad9b17cc9c4f13ab85d920ac3b0796221457ca4894fc6578f92b022880e_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:176837c3041894c294b64da0181b8ad3bc53b3538d5ba70868979c57c7ec1644_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:37070fe46f9168b80d72070443fcdc344db8141d599926f65bf5c2b96bcd89a7_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:e9cc56d2c29af677277791fdfae7796cc5f43e92772bde4adf1f168ef4aaec80_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:0b590586a0bfc3d6399505dfb5ca1367c232d0b13245fd3ab9b0e5ac24a0b5a2_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:0e6a36cbd8ab3d06bc71cf60091aa83a3efd83e7784221aaddaf8b1a0accd018_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:e83e6c58071dd1fbba15944e2d25ecac07dd623d58e2b31cc72a0555aa69e584_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:32364fedba6ad4660e117eae90433b2ab8f6a16afb51ebfe718c356a531d71bd_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:8dd008c09f18916952ef7eafe1382cc151139762aff6cffd86b688e132a0e5f3_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:da206789e59d581483ffbe8e1c63519019f504c792b5ad2d5e9299d12785c675_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:317838698e27cb366ca736975f0cb0bf927533b5526caabe5a9e443d28a70487_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:78012a83f84238eb3d492faf5abee4a9d87ddc0c84f1618b8785f82e5f766211_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:a19cb92c646d2dc709c18e3da494def64786102ef5a038c766c28a5556d1b154_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:1f624ee17785e5f2221e917459f31c81ef23421bf9374cedf9020f139e67854a_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:57b3670126a5a55b51fdc13ffd1deaceb13e508ff474bac3d7495ea614bf64ad_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:e0617ff16dc01afccf934a956c4dd3c7fab847d92e520b0d9358bd7bc3fa1582_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:16deab5ea78fbe3d6f4684ef8b4d071dd2408ba46da9f6fc79a9c0af1da16165_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:54c43eb7e2952e6fe64071077a4a22965af01a2e0d4da7ee9249d3c7e31df5a4_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:d09e9eeec5cdcbc7db49814caf033868cbc91273459debfcac94f58151573762_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3894202682fafa2a5bcc7fccd267396f6fa2c4f068f31c2cf99579a1308cde5e_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3d6a461c5fe55fd478dc08f5a95c8cd813c5dc56ddbbc40c033697a1b628ca67_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:e93ec7ad08b50b54b61ccd9c69205f7b04692cb3a5c452782b92dce42f9ae4e3_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:37f65ec7e152446ef02de2934532db772f534647e91d3909197aeaffe808693e_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:38ad20bdebc1776686b4bd308c4f4da9b978dac5f679ac594fd88d36dfb019d1_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:6f78b7cbdee3e6c08c6ebcdf67dc2c49dd93bba1fa0bcbc42154bbd6bd6b60f3_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:57c71609e72f30089a8f43c1f9b6bab44dc67c28ece0db52460d9f527abac19a_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:dfccbd75027774554b10786ec939458a92c725cdf8226eda1660b6ff137d8e51_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:f9909a0d6d6063f36dd7dd62ed3e5ba5dab6f1f754e627e2dc0726bb124bc1f8_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:072eeeb7f1dd12e6f0275948d3b38b52f667e45d1304e6fd2dd28c816571d824_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:d6b9f90cada9f236011bb349e850e80e3fef55f56f434c12c00122b73e42db6f_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:daa7ddb8a3dc233385926119ca78ffc342d2e6c588960d1814e1639af956b0f3_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:1f03a7f23c4ffb6adb440d475075a8b11211ddd8acda772d02a904547cb5148c_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:78298521c612192e0177d6cc044a865e97230e962f434d811962064f2db1d5ac_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:8901cfa7be1f709f0bf209c396ad32e2c13c3d112bd05a8d4784535e405e95a4_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:10e904f11041dd4947254df586f74f03a66d16818c4f073b8cc8d2336175f6a4_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:304406009c9800285cfcc74861de6b3cc230d09438f37426e39d911a69368e34_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:a13aab1f8c4294f490284b5f0c73fc77b1ee08b65a3d1cae23aacb5db1687926_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:3877057e49d5da93372d239055b6506b23ef430da60d0eca371c4c5a619b1ae6_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:3bdf2ba4bbf3a2373a882cdb85a790b9df2ba359010c8467c4e4e2874996ff4d_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:9a11dad9b17cc9c4f13ab85d920ac3b0796221457ca4894fc6578f92b022880e_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:176837c3041894c294b64da0181b8ad3bc53b3538d5ba70868979c57c7ec1644_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:37070fe46f9168b80d72070443fcdc344db8141d599926f65bf5c2b96bcd89a7_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:e9cc56d2c29af677277791fdfae7796cc5f43e92772bde4adf1f168ef4aaec80_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:0b590586a0bfc3d6399505dfb5ca1367c232d0b13245fd3ab9b0e5ac24a0b5a2_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:0e6a36cbd8ab3d06bc71cf60091aa83a3efd83e7784221aaddaf8b1a0accd018_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:e83e6c58071dd1fbba15944e2d25ecac07dd623d58e2b31cc72a0555aa69e584_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:32364fedba6ad4660e117eae90433b2ab8f6a16afb51ebfe718c356a531d71bd_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:8dd008c09f18916952ef7eafe1382cc151139762aff6cffd86b688e132a0e5f3_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:da206789e59d581483ffbe8e1c63519019f504c792b5ad2d5e9299d12785c675_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:317838698e27cb366ca736975f0cb0bf927533b5526caabe5a9e443d28a70487_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:78012a83f84238eb3d492faf5abee4a9d87ddc0c84f1618b8785f82e5f766211_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:a19cb92c646d2dc709c18e3da494def64786102ef5a038c766c28a5556d1b154_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:1f624ee17785e5f2221e917459f31c81ef23421bf9374cedf9020f139e67854a_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:57b3670126a5a55b51fdc13ffd1deaceb13e508ff474bac3d7495ea614bf64ad_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:e0617ff16dc01afccf934a956c4dd3c7fab847d92e520b0d9358bd7bc3fa1582_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:16deab5ea78fbe3d6f4684ef8b4d071dd2408ba46da9f6fc79a9c0af1da16165_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:54c43eb7e2952e6fe64071077a4a22965af01a2e0d4da7ee9249d3c7e31df5a4_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:d09e9eeec5cdcbc7db49814caf033868cbc91273459debfcac94f58151573762_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3894202682fafa2a5bcc7fccd267396f6fa2c4f068f31c2cf99579a1308cde5e_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3d6a461c5fe55fd478dc08f5a95c8cd813c5dc56ddbbc40c033697a1b628ca67_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:e93ec7ad08b50b54b61ccd9c69205f7b04692cb3a5c452782b92dce42f9ae4e3_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:37f65ec7e152446ef02de2934532db772f534647e91d3909197aeaffe808693e_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:38ad20bdebc1776686b4bd308c4f4da9b978dac5f679ac594fd88d36dfb019d1_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:6f78b7cbdee3e6c08c6ebcdf67dc2c49dd93bba1fa0bcbc42154bbd6bd6b60f3_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:57c71609e72f30089a8f43c1f9b6bab44dc67c28ece0db52460d9f527abac19a_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:dfccbd75027774554b10786ec939458a92c725cdf8226eda1660b6ff137d8e51_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:f9909a0d6d6063f36dd7dd62ed3e5ba5dab6f1f754e627e2dc0726bb124bc1f8_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "gorilla/schema: Potential memory exhaustion attack due to sparse slice deserialization"
}
]
}
Loading…
Loading…
Experimental. This forecast is provided for visualization only and may change without notice. Do not use it for operational decisions.
Forecast uses a logistic model when the trend is rising, or an exponential decay model when the trend is falling. Fitted via linearized least squares.
Sightings
| Author | Source | Type | Date | Other |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.
Loading…
Loading…