Action not permitted
Modal body text goes here.
Modal Title
Modal Body
CVE-2016-8651 (GCVE-0-2016-8651)
Vulnerability from cvelistv5 – Published: 2018-08-01 16:00 – Updated: 2024-08-06 02:27
VLAI?
EPSS
Summary
An input validation flaw was found in the way OpenShift 3 handles requests for images. A user, with a copy of the manifest associated with an image, can pull an image even if they do not have access to the image normally, resulting in the disclosure of any information contained within the image.
Severity ?
CWE
Assigner
References
| URL | Tags | ||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|
|
|||||||||||
Impacted products
| Vendor | Product | Version | ||
|---|---|---|---|---|
| Red Hat | OpenShift Enterprise |
Affected:
3
|
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-06T02:27:41.203Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"name": "94935",
"tags": [
"vdb-entry",
"x_refsource_BID",
"x_transferred"
],
"url": "http://www.securityfocus.com/bid/94935"
},
{
"name": "RHSA-2016:2915",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "https://access.redhat.com/errata/RHSA-2016:2915"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2016-8651"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "OpenShift Enterprise",
"vendor": "Red Hat",
"versions": [
{
"status": "affected",
"version": "3"
}
]
}
],
"datePublic": "2016-12-07T00:00:00",
"descriptions": [
{
"lang": "en",
"value": "An input validation flaw was found in the way OpenShift 3 handles requests for images. A user, with a copy of the manifest associated with an image, can pull an image even if they do not have access to the image normally, resulting in the disclosure of any information contained within the image."
}
],
"metrics": [
{
"cvssV3_0": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 3.1,
"baseSeverity": "LOW",
"confidentialityImpact": "LOW",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:N/A:N",
"version": "3.0"
}
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-20",
"description": "CWE-20",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2018-08-02T09:57:01",
"orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
"shortName": "redhat"
},
"references": [
{
"name": "94935",
"tags": [
"vdb-entry",
"x_refsource_BID"
],
"url": "http://www.securityfocus.com/bid/94935"
},
{
"name": "RHSA-2016:2915",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2016:2915"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2016-8651"
}
]
}
},
"cveMetadata": {
"assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
"assignerShortName": "redhat",
"cveId": "CVE-2016-8651",
"datePublished": "2018-08-01T16:00:00",
"dateReserved": "2016-10-12T00:00:00",
"dateUpdated": "2024-08-06T02:27:41.203Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1",
"vulnerability-lookup:meta": {
"fkie_nvd": {
"configurations": "[{\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:redhat:openshift:3.0:*:*:*:enterprise:*:*:*\", \"matchCriteriaId\": \"45690263-84D9-45A1-8C30-3ED2F0F11F47\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:redhat:openshift_container_platform:3.1:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"93E3194E-7082-4E21-867B-FB4ECF482A07\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:redhat:openshift_container_platform:3.2:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"C10044B3-FBB1-4031-9060-D3A2915B164C\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:redhat:openshift_container_platform:3.3:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"EA3ADA26-2B9E-4ABA-A224-910BD75CCE00\"}]}]}]",
"descriptions": "[{\"lang\": \"en\", \"value\": \"An input validation flaw was found in the way OpenShift 3 handles requests for images. A user, with a copy of the manifest associated with an image, can pull an image even if they do not have access to the image normally, resulting in the disclosure of any information contained within the image.\"}, {\"lang\": \"es\", \"value\": \"S ha encontrado un error de validaci\\u00f3n de entradas en la forma en la que OpenShift 3 gestiona peticiones para im\\u00e1genes. Un usuario, con una copia del manifiesto asociado con una imagen, puede extraer una imagen incluso aunque normalmente no cuente con acceso a la misma. Esto resulta en la divulgaci\\u00f3n de informaci\\u00f3n contenida en la imagen.\"}]",
"id": "CVE-2016-8651",
"lastModified": "2024-11-21T02:59:46.030",
"metrics": "{\"cvssMetricV30\": [{\"source\": \"secalert@redhat.com\", \"type\": \"Secondary\", \"cvssData\": {\"version\": \"3.0\", \"vectorString\": \"CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:N/A:N\", \"baseScore\": 3.1, \"baseSeverity\": \"LOW\", \"attackVector\": \"NETWORK\", \"attackComplexity\": \"HIGH\", \"privilegesRequired\": \"LOW\", \"userInteraction\": \"NONE\", \"scope\": \"UNCHANGED\", \"confidentialityImpact\": \"LOW\", \"integrityImpact\": \"NONE\", \"availabilityImpact\": \"NONE\"}, \"exploitabilityScore\": 1.6, \"impactScore\": 1.4}, {\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"3.0\", \"vectorString\": \"CVSS:3.0/AV:A/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N\", \"baseScore\": 3.5, \"baseSeverity\": \"LOW\", \"attackVector\": \"ADJACENT_NETWORK\", \"attackComplexity\": \"LOW\", \"privilegesRequired\": \"LOW\", \"userInteraction\": \"NONE\", \"scope\": \"UNCHANGED\", \"confidentialityImpact\": \"LOW\", \"integrityImpact\": \"NONE\", \"availabilityImpact\": \"NONE\"}, \"exploitabilityScore\": 2.1, \"impactScore\": 1.4}], \"cvssMetricV2\": [{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"2.0\", \"vectorString\": \"AV:A/AC:L/Au:S/C:P/I:N/A:N\", \"baseScore\": 2.7, \"accessVector\": \"ADJACENT_NETWORK\", \"accessComplexity\": \"LOW\", \"authentication\": \"SINGLE\", \"confidentialityImpact\": \"PARTIAL\", \"integrityImpact\": \"NONE\", \"availabilityImpact\": \"NONE\"}, \"baseSeverity\": \"LOW\", \"exploitabilityScore\": 5.1, \"impactScore\": 2.9, \"acInsufInfo\": false, \"obtainAllPrivilege\": false, \"obtainUserPrivilege\": false, \"obtainOtherPrivilege\": false, \"userInteractionRequired\": false}]}",
"published": "2018-08-01T16:29:00.273",
"references": "[{\"url\": \"http://www.securityfocus.com/bid/94935\", \"source\": \"secalert@redhat.com\", \"tags\": [\"Third Party Advisory\", \"VDB Entry\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2016:2915\", \"source\": \"secalert@redhat.com\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2016-8651\", \"source\": \"secalert@redhat.com\", \"tags\": [\"Issue Tracking\", \"Third Party Advisory\"]}, {\"url\": \"http://www.securityfocus.com/bid/94935\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\", \"VDB Entry\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2016:2915\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2016-8651\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Issue Tracking\", \"Third Party Advisory\"]}]",
"sourceIdentifier": "secalert@redhat.com",
"vulnStatus": "Modified",
"weaknesses": "[{\"source\": \"secalert@redhat.com\", \"type\": \"Primary\", \"description\": [{\"lang\": \"en\", \"value\": \"CWE-20\"}]}, {\"source\": \"nvd@nist.gov\", \"type\": \"Secondary\", \"description\": [{\"lang\": \"en\", \"value\": \"CWE-20\"}]}]"
},
"nvd": "{\"cve\":{\"id\":\"CVE-2016-8651\",\"sourceIdentifier\":\"secalert@redhat.com\",\"published\":\"2018-08-01T16:29:00.273\",\"lastModified\":\"2024-11-21T02:59:46.030\",\"vulnStatus\":\"Modified\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"An input validation flaw was found in the way OpenShift 3 handles requests for images. A user, with a copy of the manifest associated with an image, can pull an image even if they do not have access to the image normally, resulting in the disclosure of any information contained within the image.\"},{\"lang\":\"es\",\"value\":\"S ha encontrado un error de validaci\u00f3n de entradas en la forma en la que OpenShift 3 gestiona peticiones para im\u00e1genes. Un usuario, con una copia del manifiesto asociado con una imagen, puede extraer una imagen incluso aunque normalmente no cuente con acceso a la misma. Esto resulta en la divulgaci\u00f3n de informaci\u00f3n contenida en la imagen.\"}],\"metrics\":{\"cvssMetricV30\":[{\"source\":\"secalert@redhat.com\",\"type\":\"Secondary\",\"cvssData\":{\"version\":\"3.0\",\"vectorString\":\"CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:N/A:N\",\"baseScore\":3.1,\"baseSeverity\":\"LOW\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"HIGH\",\"privilegesRequired\":\"LOW\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"LOW\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"NONE\"},\"exploitabilityScore\":1.6,\"impactScore\":1.4},{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.0\",\"vectorString\":\"CVSS:3.0/AV:A/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N\",\"baseScore\":3.5,\"baseSeverity\":\"LOW\",\"attackVector\":\"ADJACENT_NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"LOW\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"LOW\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"NONE\"},\"exploitabilityScore\":2.1,\"impactScore\":1.4}],\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:A/AC:L/Au:S/C:P/I:N/A:N\",\"baseScore\":2.7,\"accessVector\":\"ADJACENT_NETWORK\",\"accessComplexity\":\"LOW\",\"authentication\":\"SINGLE\",\"confidentialityImpact\":\"PARTIAL\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"NONE\"},\"baseSeverity\":\"LOW\",\"exploitabilityScore\":5.1,\"impactScore\":2.9,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":false}]},\"weaknesses\":[{\"source\":\"secalert@redhat.com\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-20\"}]},{\"source\":\"nvd@nist.gov\",\"type\":\"Secondary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-20\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:redhat:openshift:3.0:*:*:*:enterprise:*:*:*\",\"matchCriteriaId\":\"45690263-84D9-45A1-8C30-3ED2F0F11F47\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:redhat:openshift_container_platform:3.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"93E3194E-7082-4E21-867B-FB4ECF482A07\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:redhat:openshift_container_platform:3.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C10044B3-FBB1-4031-9060-D3A2915B164C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:redhat:openshift_container_platform:3.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"EA3ADA26-2B9E-4ABA-A224-910BD75CCE00\"}]}]}],\"references\":[{\"url\":\"http://www.securityfocus.com/bid/94935\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Third Party Advisory\",\"VDB Entry\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2016:2915\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2016-8651\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Issue Tracking\",\"Third Party Advisory\"]},{\"url\":\"http://www.securityfocus.com/bid/94935\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\",\"VDB Entry\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2016:2915\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2016-8651\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Issue Tracking\",\"Third Party Advisory\"]}]}}"
}
}
CNVD-2016-12772
Vulnerability from cnvd - Published: 2016-12-22
VLAI Severity ?
Title
Red Hat OpenShift Enterprise信息泄露漏洞
Description
Red Hat OpenShift是美国红帽(Red Hat)公司的一款平台即服务(PaaS)云计算平台,它可构建、测试、部署和运行应用程序。OpenShift Enterprise是一个开源的私有云版本。
Red Hat OpenShift Enterprise中存在信息泄露漏洞。允许攻击者获取可能有助于进一步攻击的敏感信息。
Severity
中
Patch Name
Red Hat OpenShift Enterprise信息泄露漏洞的补丁
Patch Description
Red Hat OpenShift是美国红帽(Red Hat)公司的一款平台即服务(PaaS)云计算平台,它可构建、测试、部署和运行应用程序。OpenShift Enterprise是一个开源的私有云版本。
Red Hat OpenShift Enterprise中存在信息泄露漏洞。允许攻击者获取可能有助于进一步攻击的敏感信息。目前,供应商发布了安全公告及相关补丁信息,修复了此漏洞。
Formal description
厂商已发布了漏洞修复程序,请及时关注更新: https://bugzilla.redhat.com/show_bug.cgi?id=1397987
Reference
http://www.securityfocus.com/bid/94935
Impacted products
| Name | Red Hat OpenShift Enterprise 3.0 |
|---|
{
"bids": {
"bid": {
"bidNumber": "94935"
}
},
"cves": {
"cve": {
"cveNumber": "CVE-2016-8651"
}
},
"description": "Red Hat OpenShift\u662f\u7f8e\u56fd\u7ea2\u5e3d\uff08Red Hat\uff09\u516c\u53f8\u7684\u4e00\u6b3e\u5e73\u53f0\u5373\u670d\u52a1\uff08PaaS\uff09\u4e91\u8ba1\u7b97\u5e73\u53f0\uff0c\u5b83\u53ef\u6784\u5efa\u3001\u6d4b\u8bd5\u3001\u90e8\u7f72\u548c\u8fd0\u884c\u5e94\u7528\u7a0b\u5e8f\u3002OpenShift Enterprise\u662f\u4e00\u4e2a\u5f00\u6e90\u7684\u79c1\u6709\u4e91\u7248\u672c\u3002\r\n\r\nRed Hat OpenShift Enterprise\u4e2d\u5b58\u5728\u4fe1\u606f\u6cc4\u9732\u6f0f\u6d1e\u3002\u5141\u8bb8\u653b\u51fb\u8005\u83b7\u53d6\u53ef\u80fd\u6709\u52a9\u4e8e\u8fdb\u4e00\u6b65\u653b\u51fb\u7684\u654f\u611f\u4fe1\u606f\u3002",
"discovererName": "Red Hat",
"formalWay": "\u5382\u5546\u5df2\u53d1\u5e03\u4e86\u6f0f\u6d1e\u4fee\u590d\u7a0b\u5e8f\uff0c\u8bf7\u53ca\u65f6\u5173\u6ce8\u66f4\u65b0\uff1a\r\nhttps://bugzilla.redhat.com/show_bug.cgi?id=1397987",
"isEvent": "\u901a\u7528\u8f6f\u786c\u4ef6\u6f0f\u6d1e",
"number": "CNVD-2016-12772",
"openTime": "2016-12-22",
"patchDescription": "Red Hat OpenShift\u662f\u7f8e\u56fd\u7ea2\u5e3d\uff08Red Hat\uff09\u516c\u53f8\u7684\u4e00\u6b3e\u5e73\u53f0\u5373\u670d\u52a1\uff08PaaS\uff09\u4e91\u8ba1\u7b97\u5e73\u53f0\uff0c\u5b83\u53ef\u6784\u5efa\u3001\u6d4b\u8bd5\u3001\u90e8\u7f72\u548c\u8fd0\u884c\u5e94\u7528\u7a0b\u5e8f\u3002OpenShift Enterprise\u662f\u4e00\u4e2a\u5f00\u6e90\u7684\u79c1\u6709\u4e91\u7248\u672c\u3002\r\n\r\nRed Hat OpenShift Enterprise\u4e2d\u5b58\u5728\u4fe1\u606f\u6cc4\u9732\u6f0f\u6d1e\u3002\u5141\u8bb8\u653b\u51fb\u8005\u83b7\u53d6\u53ef\u80fd\u6709\u52a9\u4e8e\u8fdb\u4e00\u6b65\u653b\u51fb\u7684\u654f\u611f\u4fe1\u606f\u3002\u76ee\u524d\uff0c\u4f9b\u5e94\u5546\u53d1\u5e03\u4e86\u5b89\u5168\u516c\u544a\u53ca\u76f8\u5173\u8865\u4e01\u4fe1\u606f\uff0c\u4fee\u590d\u4e86\u6b64\u6f0f\u6d1e\u3002",
"patchName": "Red Hat OpenShift Enterprise\u4fe1\u606f\u6cc4\u9732\u6f0f\u6d1e\u7684\u8865\u4e01",
"products": {
"product": "Red Hat OpenShift Enterprise 3.0"
},
"referenceLink": "http://www.securityfocus.com/bid/94935",
"serverity": "\u4e2d",
"submitTime": "2016-12-16",
"title": "Red Hat OpenShift Enterprise\u4fe1\u606f\u6cc4\u9732\u6f0f\u6d1e"
}
GSD-2016-8651
Vulnerability from gsd - Updated: 2023-12-13 01:21Details
An input validation flaw was found in the way OpenShift 3 handles requests for images. A user, with a copy of the manifest associated with an image, can pull an image even if they do not have access to the image normally, resulting in the disclosure of any information contained within the image.
Aliases
Aliases
{
"GSD": {
"alias": "CVE-2016-8651",
"description": "An input validation flaw was found in the way OpenShift 3 handles requests for images. A user, with a copy of the manifest associated with an image, can pull an image even if they do not have access to the image normally, resulting in the disclosure of any information contained within the image.",
"id": "GSD-2016-8651",
"references": [
"https://access.redhat.com/errata/RHSA-2016:2915"
]
},
"gsd": {
"metadata": {
"exploitCode": "unknown",
"remediation": "unknown",
"reportConfidence": "confirmed",
"type": "vulnerability"
},
"osvSchema": {
"aliases": [
"CVE-2016-8651"
],
"details": "An input validation flaw was found in the way OpenShift 3 handles requests for images. A user, with a copy of the manifest associated with an image, can pull an image even if they do not have access to the image normally, resulting in the disclosure of any information contained within the image.",
"id": "GSD-2016-8651",
"modified": "2023-12-13T01:21:22.836527Z",
"schema_version": "1.4.0"
}
},
"namespaces": {
"cve.org": {
"CVE_data_meta": {
"ASSIGNER": "secalert@redhat.com",
"ID": "CVE-2016-8651",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "OpenShift Enterprise",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "3"
}
]
}
}
]
},
"vendor_name": "Red Hat"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "An input validation flaw was found in the way OpenShift 3 handles requests for images. A user, with a copy of the manifest associated with an image, can pull an image even if they do not have access to the image normally, resulting in the disclosure of any information contained within the image."
}
]
},
"impact": {
"cvss": [
{
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 3.1,
"baseSeverity": "LOW",
"confidentialityImpact": "LOW",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:N/A:N",
"version": "3.0"
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"cweId": "CWE-20",
"lang": "eng",
"value": "CWE-20"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "http://www.securityfocus.com/bid/94935",
"refsource": "MISC",
"url": "http://www.securityfocus.com/bid/94935"
},
{
"name": "https://access.redhat.com/errata/RHSA-2016:2915",
"refsource": "MISC",
"url": "https://access.redhat.com/errata/RHSA-2016:2915"
},
{
"name": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2016-8651",
"refsource": "MISC",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2016-8651"
}
]
}
},
"nvd.nist.gov": {
"configurations": {
"CVE_data_version": "4.0",
"nodes": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:a:redhat:openshift:3.0:*:*:*:enterprise:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:redhat:openshift_container_platform:3.3:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:redhat:openshift_container_platform:3.2:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:redhat:openshift_container_platform:3.1:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
}
]
},
"cve": {
"CVE_data_meta": {
"ASSIGNER": "secalert@redhat.com",
"ID": "CVE-2016-8651"
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "en",
"value": "An input validation flaw was found in the way OpenShift 3 handles requests for images. A user, with a copy of the manifest associated with an image, can pull an image even if they do not have access to the image normally, resulting in the disclosure of any information contained within the image."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "en",
"value": "CWE-20"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2016-8651",
"refsource": "CONFIRM",
"tags": [
"Issue Tracking",
"Third Party Advisory"
],
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2016-8651"
},
{
"name": "RHSA-2016:2915",
"refsource": "REDHAT",
"tags": [
"Third Party Advisory"
],
"url": "https://access.redhat.com/errata/RHSA-2016:2915"
},
{
"name": "94935",
"refsource": "BID",
"tags": [
"Third Party Advisory",
"VDB Entry"
],
"url": "http://www.securityfocus.com/bid/94935"
}
]
}
},
"impact": {
"baseMetricV2": {
"acInsufInfo": false,
"cvssV2": {
"accessComplexity": "LOW",
"accessVector": "ADJACENT_NETWORK",
"authentication": "SINGLE",
"availabilityImpact": "NONE",
"baseScore": 2.7,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "NONE",
"vectorString": "AV:A/AC:L/Au:S/C:P/I:N/A:N",
"version": "2.0"
},
"exploitabilityScore": 5.1,
"impactScore": 2.9,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"severity": "LOW",
"userInteractionRequired": false
},
"baseMetricV3": {
"cvssV3": {
"attackComplexity": "LOW",
"attackVector": "ADJACENT_NETWORK",
"availabilityImpact": "NONE",
"baseScore": 3.5,
"baseSeverity": "LOW",
"confidentialityImpact": "LOW",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:A/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N",
"version": "3.0"
},
"exploitabilityScore": 2.1,
"impactScore": 1.4
}
},
"lastModifiedDate": "2023-02-12T23:26Z",
"publishedDate": "2018-08-01T16:29Z"
}
}
}
FKIE_CVE-2016-8651
Vulnerability from fkie_nvd - Published: 2018-08-01 16:29 - Updated: 2024-11-21 02:59
Severity ?
3.1 (Low) - CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:N/A:N
3.5 (Low) - CVSS:3.0/AV:A/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
3.5 (Low) - CVSS:3.0/AV:A/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
Summary
An input validation flaw was found in the way OpenShift 3 handles requests for images. A user, with a copy of the manifest associated with an image, can pull an image even if they do not have access to the image normally, resulting in the disclosure of any information contained within the image.
References
| URL | Tags | ||
|---|---|---|---|
| secalert@redhat.com | http://www.securityfocus.com/bid/94935 | Third Party Advisory, VDB Entry | |
| secalert@redhat.com | https://access.redhat.com/errata/RHSA-2016:2915 | Third Party Advisory | |
| secalert@redhat.com | https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2016-8651 | Issue Tracking, Third Party Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | http://www.securityfocus.com/bid/94935 | Third Party Advisory, VDB Entry | |
| af854a3a-2127-422b-91ae-364da2661108 | https://access.redhat.com/errata/RHSA-2016:2915 | Third Party Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2016-8651 | Issue Tracking, Third Party Advisory |
Impacted products
| Vendor | Product | Version | |
|---|---|---|---|
| redhat | openshift | 3.0 | |
| redhat | openshift_container_platform | 3.1 | |
| redhat | openshift_container_platform | 3.2 | |
| redhat | openshift_container_platform | 3.3 |
{
"configurations": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:redhat:openshift:3.0:*:*:*:enterprise:*:*:*",
"matchCriteriaId": "45690263-84D9-45A1-8C30-3ED2F0F11F47",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:redhat:openshift_container_platform:3.1:*:*:*:*:*:*:*",
"matchCriteriaId": "93E3194E-7082-4E21-867B-FB4ECF482A07",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:redhat:openshift_container_platform:3.2:*:*:*:*:*:*:*",
"matchCriteriaId": "C10044B3-FBB1-4031-9060-D3A2915B164C",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:redhat:openshift_container_platform:3.3:*:*:*:*:*:*:*",
"matchCriteriaId": "EA3ADA26-2B9E-4ABA-A224-910BD75CCE00",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
}
],
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "An input validation flaw was found in the way OpenShift 3 handles requests for images. A user, with a copy of the manifest associated with an image, can pull an image even if they do not have access to the image normally, resulting in the disclosure of any information contained within the image."
},
{
"lang": "es",
"value": "S ha encontrado un error de validaci\u00f3n de entradas en la forma en la que OpenShift 3 gestiona peticiones para im\u00e1genes. Un usuario, con una copia del manifiesto asociado con una imagen, puede extraer una imagen incluso aunque normalmente no cuente con acceso a la misma. Esto resulta en la divulgaci\u00f3n de informaci\u00f3n contenida en la imagen."
}
],
"id": "CVE-2016-8651",
"lastModified": "2024-11-21T02:59:46.030",
"metrics": {
"cvssMetricV2": [
{
"acInsufInfo": false,
"baseSeverity": "LOW",
"cvssData": {
"accessComplexity": "LOW",
"accessVector": "ADJACENT_NETWORK",
"authentication": "SINGLE",
"availabilityImpact": "NONE",
"baseScore": 2.7,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "NONE",
"vectorString": "AV:A/AC:L/Au:S/C:P/I:N/A:N",
"version": "2.0"
},
"exploitabilityScore": 5.1,
"impactScore": 2.9,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"source": "nvd@nist.gov",
"type": "Primary",
"userInteractionRequired": false
}
],
"cvssMetricV30": [
{
"cvssData": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 3.1,
"baseSeverity": "LOW",
"confidentialityImpact": "LOW",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:N/A:N",
"version": "3.0"
},
"exploitabilityScore": 1.6,
"impactScore": 1.4,
"source": "secalert@redhat.com",
"type": "Secondary"
},
{
"cvssData": {
"attackComplexity": "LOW",
"attackVector": "ADJACENT_NETWORK",
"availabilityImpact": "NONE",
"baseScore": 3.5,
"baseSeverity": "LOW",
"confidentialityImpact": "LOW",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:A/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N",
"version": "3.0"
},
"exploitabilityScore": 2.1,
"impactScore": 1.4,
"source": "nvd@nist.gov",
"type": "Primary"
}
]
},
"published": "2018-08-01T16:29:00.273",
"references": [
{
"source": "secalert@redhat.com",
"tags": [
"Third Party Advisory",
"VDB Entry"
],
"url": "http://www.securityfocus.com/bid/94935"
},
{
"source": "secalert@redhat.com",
"tags": [
"Third Party Advisory"
],
"url": "https://access.redhat.com/errata/RHSA-2016:2915"
},
{
"source": "secalert@redhat.com",
"tags": [
"Issue Tracking",
"Third Party Advisory"
],
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2016-8651"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory",
"VDB Entry"
],
"url": "http://www.securityfocus.com/bid/94935"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory"
],
"url": "https://access.redhat.com/errata/RHSA-2016:2915"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Issue Tracking",
"Third Party Advisory"
],
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2016-8651"
}
],
"sourceIdentifier": "secalert@redhat.com",
"vulnStatus": "Modified",
"weaknesses": [
{
"description": [
{
"lang": "en",
"value": "CWE-20"
}
],
"source": "secalert@redhat.com",
"type": "Secondary"
},
{
"description": [
{
"lang": "en",
"value": "CWE-20"
}
],
"source": "nvd@nist.gov",
"type": "Secondary"
}
]
}
RHSA-2016_2915
Vulnerability from csaf_redhat - Published: 2016-12-07 20:58 - Updated: 2024-11-22 10:33Summary
Red Hat Security Advisory: atomic-openshift security and bug fix update
Notes
Topic
An update for atomic-openshift is now available for Red Hat OpenShift
Container Platform 3.1, 3.2, and 3.3.
Red Hat Product Security has rated this update as having a security impact
of Important. A Common Vulnerability Scoring System (CVSS) base score,
which gives a detailed severity rating, is available for each vulnerability
from the CVE link(s) in the References section.
Details
Red Hat OpenShift Container Platform is the company's cloud computing
Platform-as-a-Service (PaaS) solution designed for on-premise or private
cloud deployments.
This advisory contains the RPM packages for Red Hat OpenShift Container
Platform releases 3.3.1.7, 3.2.1.21, and 3.1.1.10. See the following
advisory for the container images for these releases:
https://access.redhat.com/errata/RHBA-2016:2916
Security Fix(es):
* An input validation flaw was found in the way OpenShift handles requests
for images. A user, with a copy of the manifest associated with an image,
can pull an image even if they do not have access to the image normally,
resulting in the disclosure of any information contained within the image.
(CVE-2016-8651)
Bug Fix(es) for OpenShift Container Platform 3.3:
* Previously when rapidly updating multiple namespaces
controlled by a single ClusterResourceQuota, the status.total.used can get
out of sync with the sum of the status.namespaces[*].used. This bug fix
ensures the ClusterResourceQuota objects are properly updated. (BZ#1400200)
* When using the `oc new-app --search` command in an environment where
OpenShift Container Platform (OCP) could not reach Docker Hub, the command
failed for any query. OCP now prints a warning and continues with what was
found in other sources. (BZ#1388524)
* The OpenShift Container Platform node daemon did not recover properly
from restarts, and it lost information about attached and mounted volumes.
In rare cases, the daemon deleted all data on a mounted volume, thinking
that it has been already unmounted while it was only missing its node's
cache. This bug fix ensures node caches are recovered after restarts, and
as a result no data loss occurs on the mounted volumes. (BZ#1398417)
* Previously, ScheduledJobs were not cleaned up on project deletion. If a
new project was created with the same project name, the previously-defined
ScheduledJobs would re-appear. This bug fix ensures ScheduledJobs are
removed when a project is removed. (BZ#1399700)
Bug Fix(es) for OpenShift Container Platform 3.2:
* When using the `oc new-app --search` command in an environment where
OpenShift Container Platform (OCP) could not reach Docker Hub, the command
failed for any query. OCP now prints a warning and continues with what was
found in other sources. (BZ#1388522)
All OpenShift Container Platform users are advised to upgrade to these
updated packages and images.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for atomic-openshift is now available for Red Hat OpenShift \nContainer Platform 3.1, 3.2, and 3.3.\n\nRed Hat Product Security has rated this update as having a security impact \nof Important. A Common Vulnerability Scoring System (CVSS) base score, \nwhich gives a detailed severity rating, is available for each vulnerability \nfrom the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "Red Hat OpenShift Container Platform is the company\u0027s cloud computing \nPlatform-as-a-Service (PaaS) solution designed for on-premise or private \ncloud deployments.\n\nThis advisory contains the RPM packages for Red Hat OpenShift Container \nPlatform releases 3.3.1.7, 3.2.1.21, and 3.1.1.10. See the following \nadvisory for the container images for these releases:\n\nhttps://access.redhat.com/errata/RHBA-2016:2916\n\nSecurity Fix(es):\n\n* An input validation flaw was found in the way OpenShift handles requests \nfor images. A user, with a copy of the manifest associated with an image, \ncan pull an image even if they do not have access to the image normally, \nresulting in the disclosure of any information contained within the image. \n(CVE-2016-8651)\n\nBug Fix(es) for OpenShift Container Platform 3.3:\n\n* Previously when rapidly updating multiple namespaces \ncontrolled by a single ClusterResourceQuota, the status.total.used can get\nout of sync with the sum of the status.namespaces[*].used. This bug fix \nensures the ClusterResourceQuota objects are properly updated. (BZ#1400200)\n\n* When using the `oc new-app --search` command in an environment where \nOpenShift Container Platform (OCP) could not reach Docker Hub, the command \nfailed for any query. OCP now prints a warning and continues with what was \nfound in other sources. (BZ#1388524)\n\n* The OpenShift Container Platform node daemon did not recover properly \nfrom restarts, and it lost information about attached and mounted volumes. \nIn rare cases, the daemon deleted all data on a mounted volume, thinking \nthat it has been already unmounted while it was only missing its node\u0027s \ncache. This bug fix ensures node caches are recovered after restarts, and \nas a result no data loss occurs on the mounted volumes. (BZ#1398417)\n\n* Previously, ScheduledJobs were not cleaned up on project deletion. If a \nnew project was created with the same project name, the previously-defined \nScheduledJobs would re-appear. This bug fix ensures ScheduledJobs are \nremoved when a project is removed. (BZ#1399700)\n\nBug Fix(es) for OpenShift Container Platform 3.2:\n\n* When using the `oc new-app --search` command in an environment where \nOpenShift Container Platform (OCP) could not reach Docker Hub, the command \nfailed for any query. OCP now prints a warning and continues with what was \nfound in other sources. (BZ#1388522)\n\nAll OpenShift Container Platform users are advised to upgrade to these \nupdated packages and images.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2016:2915",
"url": "https://access.redhat.com/errata/RHSA-2016:2915"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "1388522",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1388522"
},
{
"category": "external",
"summary": "1388524",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1388524"
},
{
"category": "external",
"summary": "1397987",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1397987"
},
{
"category": "external",
"summary": "1398417",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1398417"
},
{
"category": "external",
"summary": "1399700",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1399700"
},
{
"category": "external",
"summary": "1400200",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1400200"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2016/rhsa-2016_2915.json"
}
],
"title": "Red Hat Security Advisory: atomic-openshift security and bug fix update",
"tracking": {
"current_release_date": "2024-11-22T10:33:59+00:00",
"generator": {
"date": "2024-11-22T10:33:59+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.2.1"
}
},
"id": "RHSA-2016:2915",
"initial_release_date": "2016-12-07T20:58:10+00:00",
"revision_history": [
{
"date": "2016-12-07T20:58:10+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2016-12-07T20:58:10+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2024-11-22T10:33:59+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat OpenShift Enterprise 3.1",
"product": {
"name": "Red Hat OpenShift Enterprise 3.1",
"product_id": "7Server-RH7-RHOSE-3.1",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:openshift:3.1::el7"
}
}
},
{
"category": "product_name",
"name": "Red Hat OpenShift Container Platform 3.2",
"product": {
"name": "Red Hat OpenShift Container Platform 3.2",
"product_id": "7Server-RH7-RHOSE-3.2",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:openshift:3.2::el7"
}
}
},
{
"category": "product_name",
"name": "Red Hat OpenShift Container Platform 3.3",
"product": {
"name": "Red Hat OpenShift Container Platform 3.3",
"product_id": "7Server-RH7-RHOSE-3.3",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:openshift:3.3::el7"
}
}
}
],
"category": "product_family",
"name": "Red Hat OpenShift Enterprise"
},
{
"branches": [
{
"category": "product_version",
"name": "atomic-openshift-clients-redistributable-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"product": {
"name": "atomic-openshift-clients-redistributable-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"product_id": "atomic-openshift-clients-redistributable-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/atomic-openshift-clients-redistributable@3.1.1.10-1.git.0.efeef8d.el7aos?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "atomic-openshift-sdn-ovs-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"product": {
"name": "atomic-openshift-sdn-ovs-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"product_id": "atomic-openshift-sdn-ovs-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/atomic-openshift-sdn-ovs@3.1.1.10-1.git.0.efeef8d.el7aos?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "atomic-openshift-recycle-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"product": {
"name": "atomic-openshift-recycle-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"product_id": "atomic-openshift-recycle-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/atomic-openshift-recycle@3.1.1.10-1.git.0.efeef8d.el7aos?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "atomic-openshift-node-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"product": {
"name": "atomic-openshift-node-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"product_id": "atomic-openshift-node-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/atomic-openshift-node@3.1.1.10-1.git.0.efeef8d.el7aos?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "atomic-openshift-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"product": {
"name": "atomic-openshift-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"product_id": "atomic-openshift-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/atomic-openshift@3.1.1.10-1.git.0.efeef8d.el7aos?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "tuned-profiles-atomic-openshift-node-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"product": {
"name": "tuned-profiles-atomic-openshift-node-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"product_id": "tuned-profiles-atomic-openshift-node-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/tuned-profiles-atomic-openshift-node@3.1.1.10-1.git.0.efeef8d.el7aos?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "atomic-openshift-master-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"product": {
"name": "atomic-openshift-master-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"product_id": "atomic-openshift-master-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/atomic-openshift-master@3.1.1.10-1.git.0.efeef8d.el7aos?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "atomic-openshift-clients-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"product": {
"name": "atomic-openshift-clients-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"product_id": "atomic-openshift-clients-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/atomic-openshift-clients@3.1.1.10-1.git.0.efeef8d.el7aos?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "atomic-openshift-pod-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"product": {
"name": "atomic-openshift-pod-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"product_id": "atomic-openshift-pod-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/atomic-openshift-pod@3.1.1.10-1.git.0.efeef8d.el7aos?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "atomic-openshift-dockerregistry-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"product": {
"name": "atomic-openshift-dockerregistry-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"product_id": "atomic-openshift-dockerregistry-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/atomic-openshift-dockerregistry@3.1.1.10-1.git.0.efeef8d.el7aos?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "atomic-openshift-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"product": {
"name": "atomic-openshift-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"product_id": "atomic-openshift-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/atomic-openshift@3.2.1.21-1.git.0.4250771.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "atomic-openshift-master-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"product": {
"name": "atomic-openshift-master-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"product_id": "atomic-openshift-master-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/atomic-openshift-master@3.2.1.21-1.git.0.4250771.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "tuned-profiles-atomic-openshift-node-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"product": {
"name": "tuned-profiles-atomic-openshift-node-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"product_id": "tuned-profiles-atomic-openshift-node-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/tuned-profiles-atomic-openshift-node@3.2.1.21-1.git.0.4250771.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "atomic-openshift-clients-redistributable-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"product": {
"name": "atomic-openshift-clients-redistributable-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"product_id": "atomic-openshift-clients-redistributable-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/atomic-openshift-clients-redistributable@3.2.1.21-1.git.0.4250771.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "atomic-openshift-clients-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"product": {
"name": "atomic-openshift-clients-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"product_id": "atomic-openshift-clients-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/atomic-openshift-clients@3.2.1.21-1.git.0.4250771.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "atomic-openshift-sdn-ovs-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"product": {
"name": "atomic-openshift-sdn-ovs-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"product_id": "atomic-openshift-sdn-ovs-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/atomic-openshift-sdn-ovs@3.2.1.21-1.git.0.4250771.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "atomic-openshift-pod-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"product": {
"name": "atomic-openshift-pod-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"product_id": "atomic-openshift-pod-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/atomic-openshift-pod@3.2.1.21-1.git.0.4250771.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "atomic-openshift-dockerregistry-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"product": {
"name": "atomic-openshift-dockerregistry-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"product_id": "atomic-openshift-dockerregistry-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/atomic-openshift-dockerregistry@3.2.1.21-1.git.0.4250771.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "atomic-openshift-recycle-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"product": {
"name": "atomic-openshift-recycle-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"product_id": "atomic-openshift-recycle-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/atomic-openshift-recycle@3.2.1.21-1.git.0.4250771.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "atomic-openshift-tests-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"product": {
"name": "atomic-openshift-tests-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"product_id": "atomic-openshift-tests-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/atomic-openshift-tests@3.2.1.21-1.git.0.4250771.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "atomic-openshift-node-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"product": {
"name": "atomic-openshift-node-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"product_id": "atomic-openshift-node-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/atomic-openshift-node@3.2.1.21-1.git.0.4250771.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "atomic-openshift-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"product": {
"name": "atomic-openshift-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"product_id": "atomic-openshift-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/atomic-openshift@3.3.1.7-1.git.0.0988966.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "atomic-openshift-clients-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"product": {
"name": "atomic-openshift-clients-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"product_id": "atomic-openshift-clients-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/atomic-openshift-clients@3.3.1.7-1.git.0.0988966.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "atomic-openshift-master-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"product": {
"name": "atomic-openshift-master-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"product_id": "atomic-openshift-master-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/atomic-openshift-master@3.3.1.7-1.git.0.0988966.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "atomic-openshift-clients-redistributable-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"product": {
"name": "atomic-openshift-clients-redistributable-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"product_id": "atomic-openshift-clients-redistributable-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/atomic-openshift-clients-redistributable@3.3.1.7-1.git.0.0988966.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "atomic-openshift-pod-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"product": {
"name": "atomic-openshift-pod-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"product_id": "atomic-openshift-pod-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/atomic-openshift-pod@3.3.1.7-1.git.0.0988966.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "atomic-openshift-dockerregistry-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"product": {
"name": "atomic-openshift-dockerregistry-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"product_id": "atomic-openshift-dockerregistry-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/atomic-openshift-dockerregistry@3.3.1.7-1.git.0.0988966.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "atomic-openshift-node-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"product": {
"name": "atomic-openshift-node-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"product_id": "atomic-openshift-node-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/atomic-openshift-node@3.3.1.7-1.git.0.0988966.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "atomic-openshift-sdn-ovs-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"product": {
"name": "atomic-openshift-sdn-ovs-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"product_id": "atomic-openshift-sdn-ovs-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/atomic-openshift-sdn-ovs@3.3.1.7-1.git.0.0988966.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "tuned-profiles-atomic-openshift-node-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"product": {
"name": "tuned-profiles-atomic-openshift-node-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"product_id": "tuned-profiles-atomic-openshift-node-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/tuned-profiles-atomic-openshift-node@3.3.1.7-1.git.0.0988966.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "atomic-openshift-tests-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"product": {
"name": "atomic-openshift-tests-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"product_id": "atomic-openshift-tests-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/atomic-openshift-tests@3.3.1.7-1.git.0.0988966.el7?arch=x86_64"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "atomic-openshift-0:3.1.1.10-1.git.0.efeef8d.el7aos.src",
"product": {
"name": "atomic-openshift-0:3.1.1.10-1.git.0.efeef8d.el7aos.src",
"product_id": "atomic-openshift-0:3.1.1.10-1.git.0.efeef8d.el7aos.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/atomic-openshift@3.1.1.10-1.git.0.efeef8d.el7aos?arch=src"
}
}
},
{
"category": "product_version",
"name": "atomic-openshift-0:3.2.1.21-1.git.0.4250771.el7.src",
"product": {
"name": "atomic-openshift-0:3.2.1.21-1.git.0.4250771.el7.src",
"product_id": "atomic-openshift-0:3.2.1.21-1.git.0.4250771.el7.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/atomic-openshift@3.2.1.21-1.git.0.4250771.el7?arch=src"
}
}
},
{
"category": "product_version",
"name": "atomic-openshift-0:3.3.1.7-1.git.0.0988966.el7.src",
"product": {
"name": "atomic-openshift-0:3.3.1.7-1.git.0.0988966.el7.src",
"product_id": "atomic-openshift-0:3.3.1.7-1.git.0.0988966.el7.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/atomic-openshift@3.3.1.7-1.git.0.0988966.el7?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "atomic-openshift-excluder-0:3.1.1.10-1.git.0.efeef8d.el7aos.noarch",
"product": {
"name": "atomic-openshift-excluder-0:3.1.1.10-1.git.0.efeef8d.el7aos.noarch",
"product_id": "atomic-openshift-excluder-0:3.1.1.10-1.git.0.efeef8d.el7aos.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/atomic-openshift-excluder@3.1.1.10-1.git.0.efeef8d.el7aos?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "atomic-openshift-docker-excluder-0:3.1.1.10-1.git.0.efeef8d.el7aos.noarch",
"product": {
"name": "atomic-openshift-docker-excluder-0:3.1.1.10-1.git.0.efeef8d.el7aos.noarch",
"product_id": "atomic-openshift-docker-excluder-0:3.1.1.10-1.git.0.efeef8d.el7aos.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/atomic-openshift-docker-excluder@3.1.1.10-1.git.0.efeef8d.el7aos?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "atomic-openshift-docker-excluder-0:3.2.1.21-1.git.0.4250771.el7.noarch",
"product": {
"name": "atomic-openshift-docker-excluder-0:3.2.1.21-1.git.0.4250771.el7.noarch",
"product_id": "atomic-openshift-docker-excluder-0:3.2.1.21-1.git.0.4250771.el7.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/atomic-openshift-docker-excluder@3.2.1.21-1.git.0.4250771.el7?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "atomic-openshift-excluder-0:3.2.1.21-1.git.0.4250771.el7.noarch",
"product": {
"name": "atomic-openshift-excluder-0:3.2.1.21-1.git.0.4250771.el7.noarch",
"product_id": "atomic-openshift-excluder-0:3.2.1.21-1.git.0.4250771.el7.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/atomic-openshift-excluder@3.2.1.21-1.git.0.4250771.el7?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "atomic-openshift-docker-excluder-0:3.3.1.7-1.git.0.0988966.el7.noarch",
"product": {
"name": "atomic-openshift-docker-excluder-0:3.3.1.7-1.git.0.0988966.el7.noarch",
"product_id": "atomic-openshift-docker-excluder-0:3.3.1.7-1.git.0.0988966.el7.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/atomic-openshift-docker-excluder@3.3.1.7-1.git.0.0988966.el7?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "atomic-openshift-excluder-0:3.3.1.7-1.git.0.0988966.el7.noarch",
"product": {
"name": "atomic-openshift-excluder-0:3.3.1.7-1.git.0.0988966.el7.noarch",
"product_id": "atomic-openshift-excluder-0:3.3.1.7-1.git.0.0988966.el7.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/atomic-openshift-excluder@3.3.1.7-1.git.0.0988966.el7?arch=noarch"
}
}
}
],
"category": "architecture",
"name": "noarch"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "atomic-openshift-0:3.1.1.10-1.git.0.efeef8d.el7aos.src as a component of Red Hat OpenShift Enterprise 3.1",
"product_id": "7Server-RH7-RHOSE-3.1:atomic-openshift-0:3.1.1.10-1.git.0.efeef8d.el7aos.src"
},
"product_reference": "atomic-openshift-0:3.1.1.10-1.git.0.efeef8d.el7aos.src",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "atomic-openshift-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64 as a component of Red Hat OpenShift Enterprise 3.1",
"product_id": "7Server-RH7-RHOSE-3.1:atomic-openshift-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64"
},
"product_reference": "atomic-openshift-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "atomic-openshift-clients-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64 as a component of Red Hat OpenShift Enterprise 3.1",
"product_id": "7Server-RH7-RHOSE-3.1:atomic-openshift-clients-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64"
},
"product_reference": "atomic-openshift-clients-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "atomic-openshift-clients-redistributable-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64 as a component of Red Hat OpenShift Enterprise 3.1",
"product_id": "7Server-RH7-RHOSE-3.1:atomic-openshift-clients-redistributable-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64"
},
"product_reference": "atomic-openshift-clients-redistributable-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "atomic-openshift-docker-excluder-0:3.1.1.10-1.git.0.efeef8d.el7aos.noarch as a component of Red Hat OpenShift Enterprise 3.1",
"product_id": "7Server-RH7-RHOSE-3.1:atomic-openshift-docker-excluder-0:3.1.1.10-1.git.0.efeef8d.el7aos.noarch"
},
"product_reference": "atomic-openshift-docker-excluder-0:3.1.1.10-1.git.0.efeef8d.el7aos.noarch",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "atomic-openshift-dockerregistry-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64 as a component of Red Hat OpenShift Enterprise 3.1",
"product_id": "7Server-RH7-RHOSE-3.1:atomic-openshift-dockerregistry-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64"
},
"product_reference": "atomic-openshift-dockerregistry-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "atomic-openshift-excluder-0:3.1.1.10-1.git.0.efeef8d.el7aos.noarch as a component of Red Hat OpenShift Enterprise 3.1",
"product_id": "7Server-RH7-RHOSE-3.1:atomic-openshift-excluder-0:3.1.1.10-1.git.0.efeef8d.el7aos.noarch"
},
"product_reference": "atomic-openshift-excluder-0:3.1.1.10-1.git.0.efeef8d.el7aos.noarch",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "atomic-openshift-master-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64 as a component of Red Hat OpenShift Enterprise 3.1",
"product_id": "7Server-RH7-RHOSE-3.1:atomic-openshift-master-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64"
},
"product_reference": "atomic-openshift-master-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "atomic-openshift-node-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64 as a component of Red Hat OpenShift Enterprise 3.1",
"product_id": "7Server-RH7-RHOSE-3.1:atomic-openshift-node-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64"
},
"product_reference": "atomic-openshift-node-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "atomic-openshift-pod-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64 as a component of Red Hat OpenShift Enterprise 3.1",
"product_id": "7Server-RH7-RHOSE-3.1:atomic-openshift-pod-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64"
},
"product_reference": "atomic-openshift-pod-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "atomic-openshift-recycle-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64 as a component of Red Hat OpenShift Enterprise 3.1",
"product_id": "7Server-RH7-RHOSE-3.1:atomic-openshift-recycle-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64"
},
"product_reference": "atomic-openshift-recycle-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "atomic-openshift-sdn-ovs-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64 as a component of Red Hat OpenShift Enterprise 3.1",
"product_id": "7Server-RH7-RHOSE-3.1:atomic-openshift-sdn-ovs-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64"
},
"product_reference": "atomic-openshift-sdn-ovs-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-atomic-openshift-node-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64 as a component of Red Hat OpenShift Enterprise 3.1",
"product_id": "7Server-RH7-RHOSE-3.1:tuned-profiles-atomic-openshift-node-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64"
},
"product_reference": "tuned-profiles-atomic-openshift-node-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "atomic-openshift-0:3.2.1.21-1.git.0.4250771.el7.src as a component of Red Hat OpenShift Container Platform 3.2",
"product_id": "7Server-RH7-RHOSE-3.2:atomic-openshift-0:3.2.1.21-1.git.0.4250771.el7.src"
},
"product_reference": "atomic-openshift-0:3.2.1.21-1.git.0.4250771.el7.src",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "atomic-openshift-0:3.2.1.21-1.git.0.4250771.el7.x86_64 as a component of Red Hat OpenShift Container Platform 3.2",
"product_id": "7Server-RH7-RHOSE-3.2:atomic-openshift-0:3.2.1.21-1.git.0.4250771.el7.x86_64"
},
"product_reference": "atomic-openshift-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "atomic-openshift-clients-0:3.2.1.21-1.git.0.4250771.el7.x86_64 as a component of Red Hat OpenShift Container Platform 3.2",
"product_id": "7Server-RH7-RHOSE-3.2:atomic-openshift-clients-0:3.2.1.21-1.git.0.4250771.el7.x86_64"
},
"product_reference": "atomic-openshift-clients-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "atomic-openshift-clients-redistributable-0:3.2.1.21-1.git.0.4250771.el7.x86_64 as a component of Red Hat OpenShift Container Platform 3.2",
"product_id": "7Server-RH7-RHOSE-3.2:atomic-openshift-clients-redistributable-0:3.2.1.21-1.git.0.4250771.el7.x86_64"
},
"product_reference": "atomic-openshift-clients-redistributable-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "atomic-openshift-docker-excluder-0:3.2.1.21-1.git.0.4250771.el7.noarch as a component of Red Hat OpenShift Container Platform 3.2",
"product_id": "7Server-RH7-RHOSE-3.2:atomic-openshift-docker-excluder-0:3.2.1.21-1.git.0.4250771.el7.noarch"
},
"product_reference": "atomic-openshift-docker-excluder-0:3.2.1.21-1.git.0.4250771.el7.noarch",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "atomic-openshift-dockerregistry-0:3.2.1.21-1.git.0.4250771.el7.x86_64 as a component of Red Hat OpenShift Container Platform 3.2",
"product_id": "7Server-RH7-RHOSE-3.2:atomic-openshift-dockerregistry-0:3.2.1.21-1.git.0.4250771.el7.x86_64"
},
"product_reference": "atomic-openshift-dockerregistry-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "atomic-openshift-excluder-0:3.2.1.21-1.git.0.4250771.el7.noarch as a component of Red Hat OpenShift Container Platform 3.2",
"product_id": "7Server-RH7-RHOSE-3.2:atomic-openshift-excluder-0:3.2.1.21-1.git.0.4250771.el7.noarch"
},
"product_reference": "atomic-openshift-excluder-0:3.2.1.21-1.git.0.4250771.el7.noarch",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "atomic-openshift-master-0:3.2.1.21-1.git.0.4250771.el7.x86_64 as a component of Red Hat OpenShift Container Platform 3.2",
"product_id": "7Server-RH7-RHOSE-3.2:atomic-openshift-master-0:3.2.1.21-1.git.0.4250771.el7.x86_64"
},
"product_reference": "atomic-openshift-master-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "atomic-openshift-node-0:3.2.1.21-1.git.0.4250771.el7.x86_64 as a component of Red Hat OpenShift Container Platform 3.2",
"product_id": "7Server-RH7-RHOSE-3.2:atomic-openshift-node-0:3.2.1.21-1.git.0.4250771.el7.x86_64"
},
"product_reference": "atomic-openshift-node-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "atomic-openshift-pod-0:3.2.1.21-1.git.0.4250771.el7.x86_64 as a component of Red Hat OpenShift Container Platform 3.2",
"product_id": "7Server-RH7-RHOSE-3.2:atomic-openshift-pod-0:3.2.1.21-1.git.0.4250771.el7.x86_64"
},
"product_reference": "atomic-openshift-pod-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "atomic-openshift-recycle-0:3.2.1.21-1.git.0.4250771.el7.x86_64 as a component of Red Hat OpenShift Container Platform 3.2",
"product_id": "7Server-RH7-RHOSE-3.2:atomic-openshift-recycle-0:3.2.1.21-1.git.0.4250771.el7.x86_64"
},
"product_reference": "atomic-openshift-recycle-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "atomic-openshift-sdn-ovs-0:3.2.1.21-1.git.0.4250771.el7.x86_64 as a component of Red Hat OpenShift Container Platform 3.2",
"product_id": "7Server-RH7-RHOSE-3.2:atomic-openshift-sdn-ovs-0:3.2.1.21-1.git.0.4250771.el7.x86_64"
},
"product_reference": "atomic-openshift-sdn-ovs-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "atomic-openshift-tests-0:3.2.1.21-1.git.0.4250771.el7.x86_64 as a component of Red Hat OpenShift Container Platform 3.2",
"product_id": "7Server-RH7-RHOSE-3.2:atomic-openshift-tests-0:3.2.1.21-1.git.0.4250771.el7.x86_64"
},
"product_reference": "atomic-openshift-tests-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-atomic-openshift-node-0:3.2.1.21-1.git.0.4250771.el7.x86_64 as a component of Red Hat OpenShift Container Platform 3.2",
"product_id": "7Server-RH7-RHOSE-3.2:tuned-profiles-atomic-openshift-node-0:3.2.1.21-1.git.0.4250771.el7.x86_64"
},
"product_reference": "tuned-profiles-atomic-openshift-node-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "atomic-openshift-0:3.3.1.7-1.git.0.0988966.el7.src as a component of Red Hat OpenShift Container Platform 3.3",
"product_id": "7Server-RH7-RHOSE-3.3:atomic-openshift-0:3.3.1.7-1.git.0.0988966.el7.src"
},
"product_reference": "atomic-openshift-0:3.3.1.7-1.git.0.0988966.el7.src",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "atomic-openshift-0:3.3.1.7-1.git.0.0988966.el7.x86_64 as a component of Red Hat OpenShift Container Platform 3.3",
"product_id": "7Server-RH7-RHOSE-3.3:atomic-openshift-0:3.3.1.7-1.git.0.0988966.el7.x86_64"
},
"product_reference": "atomic-openshift-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "atomic-openshift-clients-0:3.3.1.7-1.git.0.0988966.el7.x86_64 as a component of Red Hat OpenShift Container Platform 3.3",
"product_id": "7Server-RH7-RHOSE-3.3:atomic-openshift-clients-0:3.3.1.7-1.git.0.0988966.el7.x86_64"
},
"product_reference": "atomic-openshift-clients-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "atomic-openshift-clients-redistributable-0:3.3.1.7-1.git.0.0988966.el7.x86_64 as a component of Red Hat OpenShift Container Platform 3.3",
"product_id": "7Server-RH7-RHOSE-3.3:atomic-openshift-clients-redistributable-0:3.3.1.7-1.git.0.0988966.el7.x86_64"
},
"product_reference": "atomic-openshift-clients-redistributable-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "atomic-openshift-docker-excluder-0:3.3.1.7-1.git.0.0988966.el7.noarch as a component of Red Hat OpenShift Container Platform 3.3",
"product_id": "7Server-RH7-RHOSE-3.3:atomic-openshift-docker-excluder-0:3.3.1.7-1.git.0.0988966.el7.noarch"
},
"product_reference": "atomic-openshift-docker-excluder-0:3.3.1.7-1.git.0.0988966.el7.noarch",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "atomic-openshift-dockerregistry-0:3.3.1.7-1.git.0.0988966.el7.x86_64 as a component of Red Hat OpenShift Container Platform 3.3",
"product_id": "7Server-RH7-RHOSE-3.3:atomic-openshift-dockerregistry-0:3.3.1.7-1.git.0.0988966.el7.x86_64"
},
"product_reference": "atomic-openshift-dockerregistry-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "atomic-openshift-excluder-0:3.3.1.7-1.git.0.0988966.el7.noarch as a component of Red Hat OpenShift Container Platform 3.3",
"product_id": "7Server-RH7-RHOSE-3.3:atomic-openshift-excluder-0:3.3.1.7-1.git.0.0988966.el7.noarch"
},
"product_reference": "atomic-openshift-excluder-0:3.3.1.7-1.git.0.0988966.el7.noarch",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "atomic-openshift-master-0:3.3.1.7-1.git.0.0988966.el7.x86_64 as a component of Red Hat OpenShift Container Platform 3.3",
"product_id": "7Server-RH7-RHOSE-3.3:atomic-openshift-master-0:3.3.1.7-1.git.0.0988966.el7.x86_64"
},
"product_reference": "atomic-openshift-master-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "atomic-openshift-node-0:3.3.1.7-1.git.0.0988966.el7.x86_64 as a component of Red Hat OpenShift Container Platform 3.3",
"product_id": "7Server-RH7-RHOSE-3.3:atomic-openshift-node-0:3.3.1.7-1.git.0.0988966.el7.x86_64"
},
"product_reference": "atomic-openshift-node-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "atomic-openshift-pod-0:3.3.1.7-1.git.0.0988966.el7.x86_64 as a component of Red Hat OpenShift Container Platform 3.3",
"product_id": "7Server-RH7-RHOSE-3.3:atomic-openshift-pod-0:3.3.1.7-1.git.0.0988966.el7.x86_64"
},
"product_reference": "atomic-openshift-pod-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "atomic-openshift-sdn-ovs-0:3.3.1.7-1.git.0.0988966.el7.x86_64 as a component of Red Hat OpenShift Container Platform 3.3",
"product_id": "7Server-RH7-RHOSE-3.3:atomic-openshift-sdn-ovs-0:3.3.1.7-1.git.0.0988966.el7.x86_64"
},
"product_reference": "atomic-openshift-sdn-ovs-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "atomic-openshift-tests-0:3.3.1.7-1.git.0.0988966.el7.x86_64 as a component of Red Hat OpenShift Container Platform 3.3",
"product_id": "7Server-RH7-RHOSE-3.3:atomic-openshift-tests-0:3.3.1.7-1.git.0.0988966.el7.x86_64"
},
"product_reference": "atomic-openshift-tests-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-atomic-openshift-node-0:3.3.1.7-1.git.0.0988966.el7.x86_64 as a component of Red Hat OpenShift Container Platform 3.3",
"product_id": "7Server-RH7-RHOSE-3.3:tuned-profiles-atomic-openshift-node-0:3.3.1.7-1.git.0.0988966.el7.x86_64"
},
"product_reference": "tuned-profiles-atomic-openshift-node-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.3"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2016-8651",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"discovery_date": "2016-10-26T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1397987"
}
],
"notes": [
{
"category": "description",
"text": "An input validation flaw was found in the way OpenShift handles requests for images. A user, with a copy of the manifest associated with an image, can pull an image even if they do not have access to the image normally, resulting in the disclosure of any information contained within the image.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "3: Pulling of any image is possible with it manifest",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-RH7-RHOSE-3.1:atomic-openshift-0:3.1.1.10-1.git.0.efeef8d.el7aos.src",
"7Server-RH7-RHOSE-3.1:atomic-openshift-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"7Server-RH7-RHOSE-3.1:atomic-openshift-clients-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"7Server-RH7-RHOSE-3.1:atomic-openshift-clients-redistributable-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"7Server-RH7-RHOSE-3.1:atomic-openshift-docker-excluder-0:3.1.1.10-1.git.0.efeef8d.el7aos.noarch",
"7Server-RH7-RHOSE-3.1:atomic-openshift-dockerregistry-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"7Server-RH7-RHOSE-3.1:atomic-openshift-excluder-0:3.1.1.10-1.git.0.efeef8d.el7aos.noarch",
"7Server-RH7-RHOSE-3.1:atomic-openshift-master-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"7Server-RH7-RHOSE-3.1:atomic-openshift-node-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"7Server-RH7-RHOSE-3.1:atomic-openshift-pod-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"7Server-RH7-RHOSE-3.1:atomic-openshift-recycle-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"7Server-RH7-RHOSE-3.1:atomic-openshift-sdn-ovs-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"7Server-RH7-RHOSE-3.1:tuned-profiles-atomic-openshift-node-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"7Server-RH7-RHOSE-3.2:atomic-openshift-0:3.2.1.21-1.git.0.4250771.el7.src",
"7Server-RH7-RHOSE-3.2:atomic-openshift-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"7Server-RH7-RHOSE-3.2:atomic-openshift-clients-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"7Server-RH7-RHOSE-3.2:atomic-openshift-clients-redistributable-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"7Server-RH7-RHOSE-3.2:atomic-openshift-docker-excluder-0:3.2.1.21-1.git.0.4250771.el7.noarch",
"7Server-RH7-RHOSE-3.2:atomic-openshift-dockerregistry-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"7Server-RH7-RHOSE-3.2:atomic-openshift-excluder-0:3.2.1.21-1.git.0.4250771.el7.noarch",
"7Server-RH7-RHOSE-3.2:atomic-openshift-master-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"7Server-RH7-RHOSE-3.2:atomic-openshift-node-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"7Server-RH7-RHOSE-3.2:atomic-openshift-pod-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"7Server-RH7-RHOSE-3.2:atomic-openshift-recycle-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"7Server-RH7-RHOSE-3.2:atomic-openshift-sdn-ovs-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"7Server-RH7-RHOSE-3.2:atomic-openshift-tests-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"7Server-RH7-RHOSE-3.2:tuned-profiles-atomic-openshift-node-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"7Server-RH7-RHOSE-3.3:atomic-openshift-0:3.3.1.7-1.git.0.0988966.el7.src",
"7Server-RH7-RHOSE-3.3:atomic-openshift-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"7Server-RH7-RHOSE-3.3:atomic-openshift-clients-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"7Server-RH7-RHOSE-3.3:atomic-openshift-clients-redistributable-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"7Server-RH7-RHOSE-3.3:atomic-openshift-docker-excluder-0:3.3.1.7-1.git.0.0988966.el7.noarch",
"7Server-RH7-RHOSE-3.3:atomic-openshift-dockerregistry-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"7Server-RH7-RHOSE-3.3:atomic-openshift-excluder-0:3.3.1.7-1.git.0.0988966.el7.noarch",
"7Server-RH7-RHOSE-3.3:atomic-openshift-master-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"7Server-RH7-RHOSE-3.3:atomic-openshift-node-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"7Server-RH7-RHOSE-3.3:atomic-openshift-pod-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"7Server-RH7-RHOSE-3.3:atomic-openshift-sdn-ovs-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"7Server-RH7-RHOSE-3.3:atomic-openshift-tests-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"7Server-RH7-RHOSE-3.3:tuned-profiles-atomic-openshift-node-0:3.3.1.7-1.git.0.0988966.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2016-8651"
},
{
"category": "external",
"summary": "RHBZ#1397987",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1397987"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2016-8651",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-8651"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2016-8651",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2016-8651"
}
],
"release_date": "2016-12-07T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2016-12-07T20:58:10+00:00",
"details": "Before applying this update, make sure all previously released errata \nrelevant to your system have been applied.\n\nTo apply this update, see the following cluster upgrade documentation that \nrelates to your installed version of OpenShift Container Platform.\n\nFor OpenShift Container Platform 3.3:\n\nhttps://docs.openshift.com/container-platform/3.3/install_config/upgrading/automated_upgrades.html#upgrading-to-ocp-3-3-asynchronous-releases\n\nFor OpenShift Container Platform 3.2:\n\nhttps://docs.openshift.com/enterprise/3.2/install_config/upgrading/automated_upgrades.html#upgrading-to-openshift-enterprise-3-2-asynchronous-releases\n\nFor OpenShift Container Platform 3.1:\n\nhttps://docs.openshift.com/enterprise/3.1/install_config/upgrading/automated_upgrades.html#upgrading-to-openshift-enterprise-3-1-asynchronous-releases",
"product_ids": [
"7Server-RH7-RHOSE-3.1:atomic-openshift-0:3.1.1.10-1.git.0.efeef8d.el7aos.src",
"7Server-RH7-RHOSE-3.1:atomic-openshift-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"7Server-RH7-RHOSE-3.1:atomic-openshift-clients-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"7Server-RH7-RHOSE-3.1:atomic-openshift-clients-redistributable-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"7Server-RH7-RHOSE-3.1:atomic-openshift-docker-excluder-0:3.1.1.10-1.git.0.efeef8d.el7aos.noarch",
"7Server-RH7-RHOSE-3.1:atomic-openshift-dockerregistry-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"7Server-RH7-RHOSE-3.1:atomic-openshift-excluder-0:3.1.1.10-1.git.0.efeef8d.el7aos.noarch",
"7Server-RH7-RHOSE-3.1:atomic-openshift-master-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"7Server-RH7-RHOSE-3.1:atomic-openshift-node-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"7Server-RH7-RHOSE-3.1:atomic-openshift-pod-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"7Server-RH7-RHOSE-3.1:atomic-openshift-recycle-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"7Server-RH7-RHOSE-3.1:atomic-openshift-sdn-ovs-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"7Server-RH7-RHOSE-3.1:tuned-profiles-atomic-openshift-node-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"7Server-RH7-RHOSE-3.2:atomic-openshift-0:3.2.1.21-1.git.0.4250771.el7.src",
"7Server-RH7-RHOSE-3.2:atomic-openshift-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"7Server-RH7-RHOSE-3.2:atomic-openshift-clients-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"7Server-RH7-RHOSE-3.2:atomic-openshift-clients-redistributable-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"7Server-RH7-RHOSE-3.2:atomic-openshift-docker-excluder-0:3.2.1.21-1.git.0.4250771.el7.noarch",
"7Server-RH7-RHOSE-3.2:atomic-openshift-dockerregistry-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"7Server-RH7-RHOSE-3.2:atomic-openshift-excluder-0:3.2.1.21-1.git.0.4250771.el7.noarch",
"7Server-RH7-RHOSE-3.2:atomic-openshift-master-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"7Server-RH7-RHOSE-3.2:atomic-openshift-node-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"7Server-RH7-RHOSE-3.2:atomic-openshift-pod-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"7Server-RH7-RHOSE-3.2:atomic-openshift-recycle-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"7Server-RH7-RHOSE-3.2:atomic-openshift-sdn-ovs-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"7Server-RH7-RHOSE-3.2:atomic-openshift-tests-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"7Server-RH7-RHOSE-3.2:tuned-profiles-atomic-openshift-node-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"7Server-RH7-RHOSE-3.3:atomic-openshift-0:3.3.1.7-1.git.0.0988966.el7.src",
"7Server-RH7-RHOSE-3.3:atomic-openshift-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"7Server-RH7-RHOSE-3.3:atomic-openshift-clients-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"7Server-RH7-RHOSE-3.3:atomic-openshift-clients-redistributable-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"7Server-RH7-RHOSE-3.3:atomic-openshift-docker-excluder-0:3.3.1.7-1.git.0.0988966.el7.noarch",
"7Server-RH7-RHOSE-3.3:atomic-openshift-dockerregistry-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"7Server-RH7-RHOSE-3.3:atomic-openshift-excluder-0:3.3.1.7-1.git.0.0988966.el7.noarch",
"7Server-RH7-RHOSE-3.3:atomic-openshift-master-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"7Server-RH7-RHOSE-3.3:atomic-openshift-node-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"7Server-RH7-RHOSE-3.3:atomic-openshift-pod-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"7Server-RH7-RHOSE-3.3:atomic-openshift-sdn-ovs-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"7Server-RH7-RHOSE-3.3:atomic-openshift-tests-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"7Server-RH7-RHOSE-3.3:tuned-profiles-atomic-openshift-node-0:3.3.1.7-1.git.0.0988966.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2016:2915"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "ADJACENT_NETWORK",
"authentication": "SINGLE",
"availabilityImpact": "NONE",
"baseScore": 2.3,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "NONE",
"vectorString": "AV:A/AC:M/Au:S/C:P/I:N/A:N",
"version": "2.0"
},
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 3.1,
"baseSeverity": "LOW",
"confidentialityImpact": "LOW",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:N/A:N",
"version": "3.0"
},
"products": [
"7Server-RH7-RHOSE-3.1:atomic-openshift-0:3.1.1.10-1.git.0.efeef8d.el7aos.src",
"7Server-RH7-RHOSE-3.1:atomic-openshift-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"7Server-RH7-RHOSE-3.1:atomic-openshift-clients-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"7Server-RH7-RHOSE-3.1:atomic-openshift-clients-redistributable-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"7Server-RH7-RHOSE-3.1:atomic-openshift-docker-excluder-0:3.1.1.10-1.git.0.efeef8d.el7aos.noarch",
"7Server-RH7-RHOSE-3.1:atomic-openshift-dockerregistry-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"7Server-RH7-RHOSE-3.1:atomic-openshift-excluder-0:3.1.1.10-1.git.0.efeef8d.el7aos.noarch",
"7Server-RH7-RHOSE-3.1:atomic-openshift-master-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"7Server-RH7-RHOSE-3.1:atomic-openshift-node-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"7Server-RH7-RHOSE-3.1:atomic-openshift-pod-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"7Server-RH7-RHOSE-3.1:atomic-openshift-recycle-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"7Server-RH7-RHOSE-3.1:atomic-openshift-sdn-ovs-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"7Server-RH7-RHOSE-3.1:tuned-profiles-atomic-openshift-node-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"7Server-RH7-RHOSE-3.2:atomic-openshift-0:3.2.1.21-1.git.0.4250771.el7.src",
"7Server-RH7-RHOSE-3.2:atomic-openshift-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"7Server-RH7-RHOSE-3.2:atomic-openshift-clients-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"7Server-RH7-RHOSE-3.2:atomic-openshift-clients-redistributable-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"7Server-RH7-RHOSE-3.2:atomic-openshift-docker-excluder-0:3.2.1.21-1.git.0.4250771.el7.noarch",
"7Server-RH7-RHOSE-3.2:atomic-openshift-dockerregistry-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"7Server-RH7-RHOSE-3.2:atomic-openshift-excluder-0:3.2.1.21-1.git.0.4250771.el7.noarch",
"7Server-RH7-RHOSE-3.2:atomic-openshift-master-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"7Server-RH7-RHOSE-3.2:atomic-openshift-node-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"7Server-RH7-RHOSE-3.2:atomic-openshift-pod-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"7Server-RH7-RHOSE-3.2:atomic-openshift-recycle-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"7Server-RH7-RHOSE-3.2:atomic-openshift-sdn-ovs-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"7Server-RH7-RHOSE-3.2:atomic-openshift-tests-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"7Server-RH7-RHOSE-3.2:tuned-profiles-atomic-openshift-node-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"7Server-RH7-RHOSE-3.3:atomic-openshift-0:3.3.1.7-1.git.0.0988966.el7.src",
"7Server-RH7-RHOSE-3.3:atomic-openshift-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"7Server-RH7-RHOSE-3.3:atomic-openshift-clients-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"7Server-RH7-RHOSE-3.3:atomic-openshift-clients-redistributable-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"7Server-RH7-RHOSE-3.3:atomic-openshift-docker-excluder-0:3.3.1.7-1.git.0.0988966.el7.noarch",
"7Server-RH7-RHOSE-3.3:atomic-openshift-dockerregistry-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"7Server-RH7-RHOSE-3.3:atomic-openshift-excluder-0:3.3.1.7-1.git.0.0988966.el7.noarch",
"7Server-RH7-RHOSE-3.3:atomic-openshift-master-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"7Server-RH7-RHOSE-3.3:atomic-openshift-node-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"7Server-RH7-RHOSE-3.3:atomic-openshift-pod-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"7Server-RH7-RHOSE-3.3:atomic-openshift-sdn-ovs-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"7Server-RH7-RHOSE-3.3:atomic-openshift-tests-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"7Server-RH7-RHOSE-3.3:tuned-profiles-atomic-openshift-node-0:3.3.1.7-1.git.0.0988966.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "3: Pulling of any image is possible with it manifest"
}
]
}
RHSA-2016:2915
Vulnerability from csaf_redhat - Published: 2016-12-07 20:58 - Updated: 2025-11-21 17:58Summary
Red Hat Security Advisory: atomic-openshift security and bug fix update
Notes
Topic
An update for atomic-openshift is now available for Red Hat OpenShift
Container Platform 3.1, 3.2, and 3.3.
Red Hat Product Security has rated this update as having a security impact
of Important. A Common Vulnerability Scoring System (CVSS) base score,
which gives a detailed severity rating, is available for each vulnerability
from the CVE link(s) in the References section.
Details
Red Hat OpenShift Container Platform is the company's cloud computing
Platform-as-a-Service (PaaS) solution designed for on-premise or private
cloud deployments.
This advisory contains the RPM packages for Red Hat OpenShift Container
Platform releases 3.3.1.7, 3.2.1.21, and 3.1.1.10. See the following
advisory for the container images for these releases:
https://access.redhat.com/errata/RHBA-2016:2916
Security Fix(es):
* An input validation flaw was found in the way OpenShift handles requests
for images. A user, with a copy of the manifest associated with an image,
can pull an image even if they do not have access to the image normally,
resulting in the disclosure of any information contained within the image.
(CVE-2016-8651)
Bug Fix(es) for OpenShift Container Platform 3.3:
* Previously when rapidly updating multiple namespaces
controlled by a single ClusterResourceQuota, the status.total.used can get
out of sync with the sum of the status.namespaces[*].used. This bug fix
ensures the ClusterResourceQuota objects are properly updated. (BZ#1400200)
* When using the `oc new-app --search` command in an environment where
OpenShift Container Platform (OCP) could not reach Docker Hub, the command
failed for any query. OCP now prints a warning and continues with what was
found in other sources. (BZ#1388524)
* The OpenShift Container Platform node daemon did not recover properly
from restarts, and it lost information about attached and mounted volumes.
In rare cases, the daemon deleted all data on a mounted volume, thinking
that it has been already unmounted while it was only missing its node's
cache. This bug fix ensures node caches are recovered after restarts, and
as a result no data loss occurs on the mounted volumes. (BZ#1398417)
* Previously, ScheduledJobs were not cleaned up on project deletion. If a
new project was created with the same project name, the previously-defined
ScheduledJobs would re-appear. This bug fix ensures ScheduledJobs are
removed when a project is removed. (BZ#1399700)
Bug Fix(es) for OpenShift Container Platform 3.2:
* When using the `oc new-app --search` command in an environment where
OpenShift Container Platform (OCP) could not reach Docker Hub, the command
failed for any query. OCP now prints a warning and continues with what was
found in other sources. (BZ#1388522)
All OpenShift Container Platform users are advised to upgrade to these
updated packages and images.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for atomic-openshift is now available for Red Hat OpenShift \nContainer Platform 3.1, 3.2, and 3.3.\n\nRed Hat Product Security has rated this update as having a security impact \nof Important. A Common Vulnerability Scoring System (CVSS) base score, \nwhich gives a detailed severity rating, is available for each vulnerability \nfrom the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "Red Hat OpenShift Container Platform is the company\u0027s cloud computing \nPlatform-as-a-Service (PaaS) solution designed for on-premise or private \ncloud deployments.\n\nThis advisory contains the RPM packages for Red Hat OpenShift Container \nPlatform releases 3.3.1.7, 3.2.1.21, and 3.1.1.10. See the following \nadvisory for the container images for these releases:\n\nhttps://access.redhat.com/errata/RHBA-2016:2916\n\nSecurity Fix(es):\n\n* An input validation flaw was found in the way OpenShift handles requests \nfor images. A user, with a copy of the manifest associated with an image, \ncan pull an image even if they do not have access to the image normally, \nresulting in the disclosure of any information contained within the image. \n(CVE-2016-8651)\n\nBug Fix(es) for OpenShift Container Platform 3.3:\n\n* Previously when rapidly updating multiple namespaces \ncontrolled by a single ClusterResourceQuota, the status.total.used can get\nout of sync with the sum of the status.namespaces[*].used. This bug fix \nensures the ClusterResourceQuota objects are properly updated. (BZ#1400200)\n\n* When using the `oc new-app --search` command in an environment where \nOpenShift Container Platform (OCP) could not reach Docker Hub, the command \nfailed for any query. OCP now prints a warning and continues with what was \nfound in other sources. (BZ#1388524)\n\n* The OpenShift Container Platform node daemon did not recover properly \nfrom restarts, and it lost information about attached and mounted volumes. \nIn rare cases, the daemon deleted all data on a mounted volume, thinking \nthat it has been already unmounted while it was only missing its node\u0027s \ncache. This bug fix ensures node caches are recovered after restarts, and \nas a result no data loss occurs on the mounted volumes. (BZ#1398417)\n\n* Previously, ScheduledJobs were not cleaned up on project deletion. If a \nnew project was created with the same project name, the previously-defined \nScheduledJobs would re-appear. This bug fix ensures ScheduledJobs are \nremoved when a project is removed. (BZ#1399700)\n\nBug Fix(es) for OpenShift Container Platform 3.2:\n\n* When using the `oc new-app --search` command in an environment where \nOpenShift Container Platform (OCP) could not reach Docker Hub, the command \nfailed for any query. OCP now prints a warning and continues with what was \nfound in other sources. (BZ#1388522)\n\nAll OpenShift Container Platform users are advised to upgrade to these \nupdated packages and images.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2016:2915",
"url": "https://access.redhat.com/errata/RHSA-2016:2915"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "1388522",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1388522"
},
{
"category": "external",
"summary": "1388524",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1388524"
},
{
"category": "external",
"summary": "1397987",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1397987"
},
{
"category": "external",
"summary": "1398417",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1398417"
},
{
"category": "external",
"summary": "1399700",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1399700"
},
{
"category": "external",
"summary": "1400200",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1400200"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2016/rhsa-2016_2915.json"
}
],
"title": "Red Hat Security Advisory: atomic-openshift security and bug fix update",
"tracking": {
"current_release_date": "2025-11-21T17:58:48+00:00",
"generator": {
"date": "2025-11-21T17:58:48+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.6.12"
}
},
"id": "RHSA-2016:2915",
"initial_release_date": "2016-12-07T20:58:10+00:00",
"revision_history": [
{
"date": "2016-12-07T20:58:10+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2016-12-07T20:58:10+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-11-21T17:58:48+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat OpenShift Enterprise 3.1",
"product": {
"name": "Red Hat OpenShift Enterprise 3.1",
"product_id": "7Server-RH7-RHOSE-3.1",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:openshift:3.1::el7"
}
}
},
{
"category": "product_name",
"name": "Red Hat OpenShift Container Platform 3.2",
"product": {
"name": "Red Hat OpenShift Container Platform 3.2",
"product_id": "7Server-RH7-RHOSE-3.2",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:openshift:3.2::el7"
}
}
},
{
"category": "product_name",
"name": "Red Hat OpenShift Container Platform 3.3",
"product": {
"name": "Red Hat OpenShift Container Platform 3.3",
"product_id": "7Server-RH7-RHOSE-3.3",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:openshift:3.3::el7"
}
}
}
],
"category": "product_family",
"name": "Red Hat OpenShift Enterprise"
},
{
"branches": [
{
"category": "product_version",
"name": "atomic-openshift-clients-redistributable-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"product": {
"name": "atomic-openshift-clients-redistributable-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"product_id": "atomic-openshift-clients-redistributable-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/atomic-openshift-clients-redistributable@3.1.1.10-1.git.0.efeef8d.el7aos?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "atomic-openshift-sdn-ovs-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"product": {
"name": "atomic-openshift-sdn-ovs-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"product_id": "atomic-openshift-sdn-ovs-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/atomic-openshift-sdn-ovs@3.1.1.10-1.git.0.efeef8d.el7aos?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "atomic-openshift-recycle-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"product": {
"name": "atomic-openshift-recycle-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"product_id": "atomic-openshift-recycle-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/atomic-openshift-recycle@3.1.1.10-1.git.0.efeef8d.el7aos?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "atomic-openshift-node-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"product": {
"name": "atomic-openshift-node-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"product_id": "atomic-openshift-node-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/atomic-openshift-node@3.1.1.10-1.git.0.efeef8d.el7aos?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "atomic-openshift-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"product": {
"name": "atomic-openshift-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"product_id": "atomic-openshift-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/atomic-openshift@3.1.1.10-1.git.0.efeef8d.el7aos?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "tuned-profiles-atomic-openshift-node-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"product": {
"name": "tuned-profiles-atomic-openshift-node-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"product_id": "tuned-profiles-atomic-openshift-node-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/tuned-profiles-atomic-openshift-node@3.1.1.10-1.git.0.efeef8d.el7aos?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "atomic-openshift-master-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"product": {
"name": "atomic-openshift-master-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"product_id": "atomic-openshift-master-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/atomic-openshift-master@3.1.1.10-1.git.0.efeef8d.el7aos?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "atomic-openshift-clients-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"product": {
"name": "atomic-openshift-clients-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"product_id": "atomic-openshift-clients-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/atomic-openshift-clients@3.1.1.10-1.git.0.efeef8d.el7aos?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "atomic-openshift-pod-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"product": {
"name": "atomic-openshift-pod-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"product_id": "atomic-openshift-pod-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/atomic-openshift-pod@3.1.1.10-1.git.0.efeef8d.el7aos?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "atomic-openshift-dockerregistry-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"product": {
"name": "atomic-openshift-dockerregistry-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"product_id": "atomic-openshift-dockerregistry-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/atomic-openshift-dockerregistry@3.1.1.10-1.git.0.efeef8d.el7aos?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "atomic-openshift-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"product": {
"name": "atomic-openshift-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"product_id": "atomic-openshift-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/atomic-openshift@3.2.1.21-1.git.0.4250771.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "atomic-openshift-master-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"product": {
"name": "atomic-openshift-master-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"product_id": "atomic-openshift-master-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/atomic-openshift-master@3.2.1.21-1.git.0.4250771.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "tuned-profiles-atomic-openshift-node-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"product": {
"name": "tuned-profiles-atomic-openshift-node-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"product_id": "tuned-profiles-atomic-openshift-node-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/tuned-profiles-atomic-openshift-node@3.2.1.21-1.git.0.4250771.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "atomic-openshift-clients-redistributable-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"product": {
"name": "atomic-openshift-clients-redistributable-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"product_id": "atomic-openshift-clients-redistributable-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/atomic-openshift-clients-redistributable@3.2.1.21-1.git.0.4250771.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "atomic-openshift-clients-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"product": {
"name": "atomic-openshift-clients-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"product_id": "atomic-openshift-clients-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/atomic-openshift-clients@3.2.1.21-1.git.0.4250771.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "atomic-openshift-sdn-ovs-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"product": {
"name": "atomic-openshift-sdn-ovs-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"product_id": "atomic-openshift-sdn-ovs-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/atomic-openshift-sdn-ovs@3.2.1.21-1.git.0.4250771.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "atomic-openshift-pod-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"product": {
"name": "atomic-openshift-pod-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"product_id": "atomic-openshift-pod-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/atomic-openshift-pod@3.2.1.21-1.git.0.4250771.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "atomic-openshift-dockerregistry-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"product": {
"name": "atomic-openshift-dockerregistry-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"product_id": "atomic-openshift-dockerregistry-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/atomic-openshift-dockerregistry@3.2.1.21-1.git.0.4250771.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "atomic-openshift-recycle-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"product": {
"name": "atomic-openshift-recycle-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"product_id": "atomic-openshift-recycle-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/atomic-openshift-recycle@3.2.1.21-1.git.0.4250771.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "atomic-openshift-tests-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"product": {
"name": "atomic-openshift-tests-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"product_id": "atomic-openshift-tests-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/atomic-openshift-tests@3.2.1.21-1.git.0.4250771.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "atomic-openshift-node-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"product": {
"name": "atomic-openshift-node-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"product_id": "atomic-openshift-node-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/atomic-openshift-node@3.2.1.21-1.git.0.4250771.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "atomic-openshift-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"product": {
"name": "atomic-openshift-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"product_id": "atomic-openshift-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/atomic-openshift@3.3.1.7-1.git.0.0988966.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "atomic-openshift-clients-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"product": {
"name": "atomic-openshift-clients-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"product_id": "atomic-openshift-clients-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/atomic-openshift-clients@3.3.1.7-1.git.0.0988966.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "atomic-openshift-master-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"product": {
"name": "atomic-openshift-master-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"product_id": "atomic-openshift-master-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/atomic-openshift-master@3.3.1.7-1.git.0.0988966.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "atomic-openshift-clients-redistributable-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"product": {
"name": "atomic-openshift-clients-redistributable-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"product_id": "atomic-openshift-clients-redistributable-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/atomic-openshift-clients-redistributable@3.3.1.7-1.git.0.0988966.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "atomic-openshift-pod-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"product": {
"name": "atomic-openshift-pod-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"product_id": "atomic-openshift-pod-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/atomic-openshift-pod@3.3.1.7-1.git.0.0988966.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "atomic-openshift-dockerregistry-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"product": {
"name": "atomic-openshift-dockerregistry-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"product_id": "atomic-openshift-dockerregistry-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/atomic-openshift-dockerregistry@3.3.1.7-1.git.0.0988966.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "atomic-openshift-node-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"product": {
"name": "atomic-openshift-node-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"product_id": "atomic-openshift-node-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/atomic-openshift-node@3.3.1.7-1.git.0.0988966.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "atomic-openshift-sdn-ovs-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"product": {
"name": "atomic-openshift-sdn-ovs-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"product_id": "atomic-openshift-sdn-ovs-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/atomic-openshift-sdn-ovs@3.3.1.7-1.git.0.0988966.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "tuned-profiles-atomic-openshift-node-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"product": {
"name": "tuned-profiles-atomic-openshift-node-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"product_id": "tuned-profiles-atomic-openshift-node-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/tuned-profiles-atomic-openshift-node@3.3.1.7-1.git.0.0988966.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "atomic-openshift-tests-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"product": {
"name": "atomic-openshift-tests-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"product_id": "atomic-openshift-tests-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/atomic-openshift-tests@3.3.1.7-1.git.0.0988966.el7?arch=x86_64"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "atomic-openshift-0:3.1.1.10-1.git.0.efeef8d.el7aos.src",
"product": {
"name": "atomic-openshift-0:3.1.1.10-1.git.0.efeef8d.el7aos.src",
"product_id": "atomic-openshift-0:3.1.1.10-1.git.0.efeef8d.el7aos.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/atomic-openshift@3.1.1.10-1.git.0.efeef8d.el7aos?arch=src"
}
}
},
{
"category": "product_version",
"name": "atomic-openshift-0:3.2.1.21-1.git.0.4250771.el7.src",
"product": {
"name": "atomic-openshift-0:3.2.1.21-1.git.0.4250771.el7.src",
"product_id": "atomic-openshift-0:3.2.1.21-1.git.0.4250771.el7.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/atomic-openshift@3.2.1.21-1.git.0.4250771.el7?arch=src"
}
}
},
{
"category": "product_version",
"name": "atomic-openshift-0:3.3.1.7-1.git.0.0988966.el7.src",
"product": {
"name": "atomic-openshift-0:3.3.1.7-1.git.0.0988966.el7.src",
"product_id": "atomic-openshift-0:3.3.1.7-1.git.0.0988966.el7.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/atomic-openshift@3.3.1.7-1.git.0.0988966.el7?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "atomic-openshift-excluder-0:3.1.1.10-1.git.0.efeef8d.el7aos.noarch",
"product": {
"name": "atomic-openshift-excluder-0:3.1.1.10-1.git.0.efeef8d.el7aos.noarch",
"product_id": "atomic-openshift-excluder-0:3.1.1.10-1.git.0.efeef8d.el7aos.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/atomic-openshift-excluder@3.1.1.10-1.git.0.efeef8d.el7aos?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "atomic-openshift-docker-excluder-0:3.1.1.10-1.git.0.efeef8d.el7aos.noarch",
"product": {
"name": "atomic-openshift-docker-excluder-0:3.1.1.10-1.git.0.efeef8d.el7aos.noarch",
"product_id": "atomic-openshift-docker-excluder-0:3.1.1.10-1.git.0.efeef8d.el7aos.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/atomic-openshift-docker-excluder@3.1.1.10-1.git.0.efeef8d.el7aos?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "atomic-openshift-docker-excluder-0:3.2.1.21-1.git.0.4250771.el7.noarch",
"product": {
"name": "atomic-openshift-docker-excluder-0:3.2.1.21-1.git.0.4250771.el7.noarch",
"product_id": "atomic-openshift-docker-excluder-0:3.2.1.21-1.git.0.4250771.el7.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/atomic-openshift-docker-excluder@3.2.1.21-1.git.0.4250771.el7?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "atomic-openshift-excluder-0:3.2.1.21-1.git.0.4250771.el7.noarch",
"product": {
"name": "atomic-openshift-excluder-0:3.2.1.21-1.git.0.4250771.el7.noarch",
"product_id": "atomic-openshift-excluder-0:3.2.1.21-1.git.0.4250771.el7.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/atomic-openshift-excluder@3.2.1.21-1.git.0.4250771.el7?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "atomic-openshift-docker-excluder-0:3.3.1.7-1.git.0.0988966.el7.noarch",
"product": {
"name": "atomic-openshift-docker-excluder-0:3.3.1.7-1.git.0.0988966.el7.noarch",
"product_id": "atomic-openshift-docker-excluder-0:3.3.1.7-1.git.0.0988966.el7.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/atomic-openshift-docker-excluder@3.3.1.7-1.git.0.0988966.el7?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "atomic-openshift-excluder-0:3.3.1.7-1.git.0.0988966.el7.noarch",
"product": {
"name": "atomic-openshift-excluder-0:3.3.1.7-1.git.0.0988966.el7.noarch",
"product_id": "atomic-openshift-excluder-0:3.3.1.7-1.git.0.0988966.el7.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/atomic-openshift-excluder@3.3.1.7-1.git.0.0988966.el7?arch=noarch"
}
}
}
],
"category": "architecture",
"name": "noarch"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "atomic-openshift-0:3.1.1.10-1.git.0.efeef8d.el7aos.src as a component of Red Hat OpenShift Enterprise 3.1",
"product_id": "7Server-RH7-RHOSE-3.1:atomic-openshift-0:3.1.1.10-1.git.0.efeef8d.el7aos.src"
},
"product_reference": "atomic-openshift-0:3.1.1.10-1.git.0.efeef8d.el7aos.src",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "atomic-openshift-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64 as a component of Red Hat OpenShift Enterprise 3.1",
"product_id": "7Server-RH7-RHOSE-3.1:atomic-openshift-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64"
},
"product_reference": "atomic-openshift-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "atomic-openshift-clients-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64 as a component of Red Hat OpenShift Enterprise 3.1",
"product_id": "7Server-RH7-RHOSE-3.1:atomic-openshift-clients-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64"
},
"product_reference": "atomic-openshift-clients-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "atomic-openshift-clients-redistributable-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64 as a component of Red Hat OpenShift Enterprise 3.1",
"product_id": "7Server-RH7-RHOSE-3.1:atomic-openshift-clients-redistributable-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64"
},
"product_reference": "atomic-openshift-clients-redistributable-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "atomic-openshift-docker-excluder-0:3.1.1.10-1.git.0.efeef8d.el7aos.noarch as a component of Red Hat OpenShift Enterprise 3.1",
"product_id": "7Server-RH7-RHOSE-3.1:atomic-openshift-docker-excluder-0:3.1.1.10-1.git.0.efeef8d.el7aos.noarch"
},
"product_reference": "atomic-openshift-docker-excluder-0:3.1.1.10-1.git.0.efeef8d.el7aos.noarch",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "atomic-openshift-dockerregistry-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64 as a component of Red Hat OpenShift Enterprise 3.1",
"product_id": "7Server-RH7-RHOSE-3.1:atomic-openshift-dockerregistry-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64"
},
"product_reference": "atomic-openshift-dockerregistry-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "atomic-openshift-excluder-0:3.1.1.10-1.git.0.efeef8d.el7aos.noarch as a component of Red Hat OpenShift Enterprise 3.1",
"product_id": "7Server-RH7-RHOSE-3.1:atomic-openshift-excluder-0:3.1.1.10-1.git.0.efeef8d.el7aos.noarch"
},
"product_reference": "atomic-openshift-excluder-0:3.1.1.10-1.git.0.efeef8d.el7aos.noarch",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "atomic-openshift-master-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64 as a component of Red Hat OpenShift Enterprise 3.1",
"product_id": "7Server-RH7-RHOSE-3.1:atomic-openshift-master-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64"
},
"product_reference": "atomic-openshift-master-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "atomic-openshift-node-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64 as a component of Red Hat OpenShift Enterprise 3.1",
"product_id": "7Server-RH7-RHOSE-3.1:atomic-openshift-node-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64"
},
"product_reference": "atomic-openshift-node-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "atomic-openshift-pod-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64 as a component of Red Hat OpenShift Enterprise 3.1",
"product_id": "7Server-RH7-RHOSE-3.1:atomic-openshift-pod-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64"
},
"product_reference": "atomic-openshift-pod-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "atomic-openshift-recycle-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64 as a component of Red Hat OpenShift Enterprise 3.1",
"product_id": "7Server-RH7-RHOSE-3.1:atomic-openshift-recycle-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64"
},
"product_reference": "atomic-openshift-recycle-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "atomic-openshift-sdn-ovs-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64 as a component of Red Hat OpenShift Enterprise 3.1",
"product_id": "7Server-RH7-RHOSE-3.1:atomic-openshift-sdn-ovs-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64"
},
"product_reference": "atomic-openshift-sdn-ovs-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-atomic-openshift-node-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64 as a component of Red Hat OpenShift Enterprise 3.1",
"product_id": "7Server-RH7-RHOSE-3.1:tuned-profiles-atomic-openshift-node-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64"
},
"product_reference": "tuned-profiles-atomic-openshift-node-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "atomic-openshift-0:3.2.1.21-1.git.0.4250771.el7.src as a component of Red Hat OpenShift Container Platform 3.2",
"product_id": "7Server-RH7-RHOSE-3.2:atomic-openshift-0:3.2.1.21-1.git.0.4250771.el7.src"
},
"product_reference": "atomic-openshift-0:3.2.1.21-1.git.0.4250771.el7.src",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "atomic-openshift-0:3.2.1.21-1.git.0.4250771.el7.x86_64 as a component of Red Hat OpenShift Container Platform 3.2",
"product_id": "7Server-RH7-RHOSE-3.2:atomic-openshift-0:3.2.1.21-1.git.0.4250771.el7.x86_64"
},
"product_reference": "atomic-openshift-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "atomic-openshift-clients-0:3.2.1.21-1.git.0.4250771.el7.x86_64 as a component of Red Hat OpenShift Container Platform 3.2",
"product_id": "7Server-RH7-RHOSE-3.2:atomic-openshift-clients-0:3.2.1.21-1.git.0.4250771.el7.x86_64"
},
"product_reference": "atomic-openshift-clients-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "atomic-openshift-clients-redistributable-0:3.2.1.21-1.git.0.4250771.el7.x86_64 as a component of Red Hat OpenShift Container Platform 3.2",
"product_id": "7Server-RH7-RHOSE-3.2:atomic-openshift-clients-redistributable-0:3.2.1.21-1.git.0.4250771.el7.x86_64"
},
"product_reference": "atomic-openshift-clients-redistributable-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "atomic-openshift-docker-excluder-0:3.2.1.21-1.git.0.4250771.el7.noarch as a component of Red Hat OpenShift Container Platform 3.2",
"product_id": "7Server-RH7-RHOSE-3.2:atomic-openshift-docker-excluder-0:3.2.1.21-1.git.0.4250771.el7.noarch"
},
"product_reference": "atomic-openshift-docker-excluder-0:3.2.1.21-1.git.0.4250771.el7.noarch",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "atomic-openshift-dockerregistry-0:3.2.1.21-1.git.0.4250771.el7.x86_64 as a component of Red Hat OpenShift Container Platform 3.2",
"product_id": "7Server-RH7-RHOSE-3.2:atomic-openshift-dockerregistry-0:3.2.1.21-1.git.0.4250771.el7.x86_64"
},
"product_reference": "atomic-openshift-dockerregistry-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "atomic-openshift-excluder-0:3.2.1.21-1.git.0.4250771.el7.noarch as a component of Red Hat OpenShift Container Platform 3.2",
"product_id": "7Server-RH7-RHOSE-3.2:atomic-openshift-excluder-0:3.2.1.21-1.git.0.4250771.el7.noarch"
},
"product_reference": "atomic-openshift-excluder-0:3.2.1.21-1.git.0.4250771.el7.noarch",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "atomic-openshift-master-0:3.2.1.21-1.git.0.4250771.el7.x86_64 as a component of Red Hat OpenShift Container Platform 3.2",
"product_id": "7Server-RH7-RHOSE-3.2:atomic-openshift-master-0:3.2.1.21-1.git.0.4250771.el7.x86_64"
},
"product_reference": "atomic-openshift-master-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "atomic-openshift-node-0:3.2.1.21-1.git.0.4250771.el7.x86_64 as a component of Red Hat OpenShift Container Platform 3.2",
"product_id": "7Server-RH7-RHOSE-3.2:atomic-openshift-node-0:3.2.1.21-1.git.0.4250771.el7.x86_64"
},
"product_reference": "atomic-openshift-node-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "atomic-openshift-pod-0:3.2.1.21-1.git.0.4250771.el7.x86_64 as a component of Red Hat OpenShift Container Platform 3.2",
"product_id": "7Server-RH7-RHOSE-3.2:atomic-openshift-pod-0:3.2.1.21-1.git.0.4250771.el7.x86_64"
},
"product_reference": "atomic-openshift-pod-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "atomic-openshift-recycle-0:3.2.1.21-1.git.0.4250771.el7.x86_64 as a component of Red Hat OpenShift Container Platform 3.2",
"product_id": "7Server-RH7-RHOSE-3.2:atomic-openshift-recycle-0:3.2.1.21-1.git.0.4250771.el7.x86_64"
},
"product_reference": "atomic-openshift-recycle-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "atomic-openshift-sdn-ovs-0:3.2.1.21-1.git.0.4250771.el7.x86_64 as a component of Red Hat OpenShift Container Platform 3.2",
"product_id": "7Server-RH7-RHOSE-3.2:atomic-openshift-sdn-ovs-0:3.2.1.21-1.git.0.4250771.el7.x86_64"
},
"product_reference": "atomic-openshift-sdn-ovs-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "atomic-openshift-tests-0:3.2.1.21-1.git.0.4250771.el7.x86_64 as a component of Red Hat OpenShift Container Platform 3.2",
"product_id": "7Server-RH7-RHOSE-3.2:atomic-openshift-tests-0:3.2.1.21-1.git.0.4250771.el7.x86_64"
},
"product_reference": "atomic-openshift-tests-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-atomic-openshift-node-0:3.2.1.21-1.git.0.4250771.el7.x86_64 as a component of Red Hat OpenShift Container Platform 3.2",
"product_id": "7Server-RH7-RHOSE-3.2:tuned-profiles-atomic-openshift-node-0:3.2.1.21-1.git.0.4250771.el7.x86_64"
},
"product_reference": "tuned-profiles-atomic-openshift-node-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "atomic-openshift-0:3.3.1.7-1.git.0.0988966.el7.src as a component of Red Hat OpenShift Container Platform 3.3",
"product_id": "7Server-RH7-RHOSE-3.3:atomic-openshift-0:3.3.1.7-1.git.0.0988966.el7.src"
},
"product_reference": "atomic-openshift-0:3.3.1.7-1.git.0.0988966.el7.src",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "atomic-openshift-0:3.3.1.7-1.git.0.0988966.el7.x86_64 as a component of Red Hat OpenShift Container Platform 3.3",
"product_id": "7Server-RH7-RHOSE-3.3:atomic-openshift-0:3.3.1.7-1.git.0.0988966.el7.x86_64"
},
"product_reference": "atomic-openshift-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "atomic-openshift-clients-0:3.3.1.7-1.git.0.0988966.el7.x86_64 as a component of Red Hat OpenShift Container Platform 3.3",
"product_id": "7Server-RH7-RHOSE-3.3:atomic-openshift-clients-0:3.3.1.7-1.git.0.0988966.el7.x86_64"
},
"product_reference": "atomic-openshift-clients-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "atomic-openshift-clients-redistributable-0:3.3.1.7-1.git.0.0988966.el7.x86_64 as a component of Red Hat OpenShift Container Platform 3.3",
"product_id": "7Server-RH7-RHOSE-3.3:atomic-openshift-clients-redistributable-0:3.3.1.7-1.git.0.0988966.el7.x86_64"
},
"product_reference": "atomic-openshift-clients-redistributable-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "atomic-openshift-docker-excluder-0:3.3.1.7-1.git.0.0988966.el7.noarch as a component of Red Hat OpenShift Container Platform 3.3",
"product_id": "7Server-RH7-RHOSE-3.3:atomic-openshift-docker-excluder-0:3.3.1.7-1.git.0.0988966.el7.noarch"
},
"product_reference": "atomic-openshift-docker-excluder-0:3.3.1.7-1.git.0.0988966.el7.noarch",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "atomic-openshift-dockerregistry-0:3.3.1.7-1.git.0.0988966.el7.x86_64 as a component of Red Hat OpenShift Container Platform 3.3",
"product_id": "7Server-RH7-RHOSE-3.3:atomic-openshift-dockerregistry-0:3.3.1.7-1.git.0.0988966.el7.x86_64"
},
"product_reference": "atomic-openshift-dockerregistry-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "atomic-openshift-excluder-0:3.3.1.7-1.git.0.0988966.el7.noarch as a component of Red Hat OpenShift Container Platform 3.3",
"product_id": "7Server-RH7-RHOSE-3.3:atomic-openshift-excluder-0:3.3.1.7-1.git.0.0988966.el7.noarch"
},
"product_reference": "atomic-openshift-excluder-0:3.3.1.7-1.git.0.0988966.el7.noarch",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "atomic-openshift-master-0:3.3.1.7-1.git.0.0988966.el7.x86_64 as a component of Red Hat OpenShift Container Platform 3.3",
"product_id": "7Server-RH7-RHOSE-3.3:atomic-openshift-master-0:3.3.1.7-1.git.0.0988966.el7.x86_64"
},
"product_reference": "atomic-openshift-master-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "atomic-openshift-node-0:3.3.1.7-1.git.0.0988966.el7.x86_64 as a component of Red Hat OpenShift Container Platform 3.3",
"product_id": "7Server-RH7-RHOSE-3.3:atomic-openshift-node-0:3.3.1.7-1.git.0.0988966.el7.x86_64"
},
"product_reference": "atomic-openshift-node-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "atomic-openshift-pod-0:3.3.1.7-1.git.0.0988966.el7.x86_64 as a component of Red Hat OpenShift Container Platform 3.3",
"product_id": "7Server-RH7-RHOSE-3.3:atomic-openshift-pod-0:3.3.1.7-1.git.0.0988966.el7.x86_64"
},
"product_reference": "atomic-openshift-pod-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "atomic-openshift-sdn-ovs-0:3.3.1.7-1.git.0.0988966.el7.x86_64 as a component of Red Hat OpenShift Container Platform 3.3",
"product_id": "7Server-RH7-RHOSE-3.3:atomic-openshift-sdn-ovs-0:3.3.1.7-1.git.0.0988966.el7.x86_64"
},
"product_reference": "atomic-openshift-sdn-ovs-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "atomic-openshift-tests-0:3.3.1.7-1.git.0.0988966.el7.x86_64 as a component of Red Hat OpenShift Container Platform 3.3",
"product_id": "7Server-RH7-RHOSE-3.3:atomic-openshift-tests-0:3.3.1.7-1.git.0.0988966.el7.x86_64"
},
"product_reference": "atomic-openshift-tests-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-atomic-openshift-node-0:3.3.1.7-1.git.0.0988966.el7.x86_64 as a component of Red Hat OpenShift Container Platform 3.3",
"product_id": "7Server-RH7-RHOSE-3.3:tuned-profiles-atomic-openshift-node-0:3.3.1.7-1.git.0.0988966.el7.x86_64"
},
"product_reference": "tuned-profiles-atomic-openshift-node-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.3"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2016-8651",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"discovery_date": "2016-10-26T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1397987"
}
],
"notes": [
{
"category": "description",
"text": "An input validation flaw was found in the way OpenShift handles requests for images. A user, with a copy of the manifest associated with an image, can pull an image even if they do not have access to the image normally, resulting in the disclosure of any information contained within the image.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "3: Pulling of any image is possible with it manifest",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-RH7-RHOSE-3.1:atomic-openshift-0:3.1.1.10-1.git.0.efeef8d.el7aos.src",
"7Server-RH7-RHOSE-3.1:atomic-openshift-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"7Server-RH7-RHOSE-3.1:atomic-openshift-clients-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"7Server-RH7-RHOSE-3.1:atomic-openshift-clients-redistributable-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"7Server-RH7-RHOSE-3.1:atomic-openshift-docker-excluder-0:3.1.1.10-1.git.0.efeef8d.el7aos.noarch",
"7Server-RH7-RHOSE-3.1:atomic-openshift-dockerregistry-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"7Server-RH7-RHOSE-3.1:atomic-openshift-excluder-0:3.1.1.10-1.git.0.efeef8d.el7aos.noarch",
"7Server-RH7-RHOSE-3.1:atomic-openshift-master-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"7Server-RH7-RHOSE-3.1:atomic-openshift-node-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"7Server-RH7-RHOSE-3.1:atomic-openshift-pod-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"7Server-RH7-RHOSE-3.1:atomic-openshift-recycle-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"7Server-RH7-RHOSE-3.1:atomic-openshift-sdn-ovs-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"7Server-RH7-RHOSE-3.1:tuned-profiles-atomic-openshift-node-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"7Server-RH7-RHOSE-3.2:atomic-openshift-0:3.2.1.21-1.git.0.4250771.el7.src",
"7Server-RH7-RHOSE-3.2:atomic-openshift-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"7Server-RH7-RHOSE-3.2:atomic-openshift-clients-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"7Server-RH7-RHOSE-3.2:atomic-openshift-clients-redistributable-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"7Server-RH7-RHOSE-3.2:atomic-openshift-docker-excluder-0:3.2.1.21-1.git.0.4250771.el7.noarch",
"7Server-RH7-RHOSE-3.2:atomic-openshift-dockerregistry-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"7Server-RH7-RHOSE-3.2:atomic-openshift-excluder-0:3.2.1.21-1.git.0.4250771.el7.noarch",
"7Server-RH7-RHOSE-3.2:atomic-openshift-master-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"7Server-RH7-RHOSE-3.2:atomic-openshift-node-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"7Server-RH7-RHOSE-3.2:atomic-openshift-pod-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"7Server-RH7-RHOSE-3.2:atomic-openshift-recycle-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"7Server-RH7-RHOSE-3.2:atomic-openshift-sdn-ovs-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"7Server-RH7-RHOSE-3.2:atomic-openshift-tests-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"7Server-RH7-RHOSE-3.2:tuned-profiles-atomic-openshift-node-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"7Server-RH7-RHOSE-3.3:atomic-openshift-0:3.3.1.7-1.git.0.0988966.el7.src",
"7Server-RH7-RHOSE-3.3:atomic-openshift-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"7Server-RH7-RHOSE-3.3:atomic-openshift-clients-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"7Server-RH7-RHOSE-3.3:atomic-openshift-clients-redistributable-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"7Server-RH7-RHOSE-3.3:atomic-openshift-docker-excluder-0:3.3.1.7-1.git.0.0988966.el7.noarch",
"7Server-RH7-RHOSE-3.3:atomic-openshift-dockerregistry-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"7Server-RH7-RHOSE-3.3:atomic-openshift-excluder-0:3.3.1.7-1.git.0.0988966.el7.noarch",
"7Server-RH7-RHOSE-3.3:atomic-openshift-master-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"7Server-RH7-RHOSE-3.3:atomic-openshift-node-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"7Server-RH7-RHOSE-3.3:atomic-openshift-pod-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"7Server-RH7-RHOSE-3.3:atomic-openshift-sdn-ovs-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"7Server-RH7-RHOSE-3.3:atomic-openshift-tests-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"7Server-RH7-RHOSE-3.3:tuned-profiles-atomic-openshift-node-0:3.3.1.7-1.git.0.0988966.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2016-8651"
},
{
"category": "external",
"summary": "RHBZ#1397987",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1397987"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2016-8651",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-8651"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2016-8651",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2016-8651"
}
],
"release_date": "2016-12-07T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2016-12-07T20:58:10+00:00",
"details": "Before applying this update, make sure all previously released errata \nrelevant to your system have been applied.\n\nTo apply this update, see the following cluster upgrade documentation that \nrelates to your installed version of OpenShift Container Platform.\n\nFor OpenShift Container Platform 3.3:\n\nhttps://docs.openshift.com/container-platform/3.3/install_config/upgrading/automated_upgrades.html#upgrading-to-ocp-3-3-asynchronous-releases\n\nFor OpenShift Container Platform 3.2:\n\nhttps://docs.openshift.com/enterprise/3.2/install_config/upgrading/automated_upgrades.html#upgrading-to-openshift-enterprise-3-2-asynchronous-releases\n\nFor OpenShift Container Platform 3.1:\n\nhttps://docs.openshift.com/enterprise/3.1/install_config/upgrading/automated_upgrades.html#upgrading-to-openshift-enterprise-3-1-asynchronous-releases",
"product_ids": [
"7Server-RH7-RHOSE-3.1:atomic-openshift-0:3.1.1.10-1.git.0.efeef8d.el7aos.src",
"7Server-RH7-RHOSE-3.1:atomic-openshift-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"7Server-RH7-RHOSE-3.1:atomic-openshift-clients-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"7Server-RH7-RHOSE-3.1:atomic-openshift-clients-redistributable-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"7Server-RH7-RHOSE-3.1:atomic-openshift-docker-excluder-0:3.1.1.10-1.git.0.efeef8d.el7aos.noarch",
"7Server-RH7-RHOSE-3.1:atomic-openshift-dockerregistry-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"7Server-RH7-RHOSE-3.1:atomic-openshift-excluder-0:3.1.1.10-1.git.0.efeef8d.el7aos.noarch",
"7Server-RH7-RHOSE-3.1:atomic-openshift-master-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"7Server-RH7-RHOSE-3.1:atomic-openshift-node-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"7Server-RH7-RHOSE-3.1:atomic-openshift-pod-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"7Server-RH7-RHOSE-3.1:atomic-openshift-recycle-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"7Server-RH7-RHOSE-3.1:atomic-openshift-sdn-ovs-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"7Server-RH7-RHOSE-3.1:tuned-profiles-atomic-openshift-node-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"7Server-RH7-RHOSE-3.2:atomic-openshift-0:3.2.1.21-1.git.0.4250771.el7.src",
"7Server-RH7-RHOSE-3.2:atomic-openshift-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"7Server-RH7-RHOSE-3.2:atomic-openshift-clients-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"7Server-RH7-RHOSE-3.2:atomic-openshift-clients-redistributable-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"7Server-RH7-RHOSE-3.2:atomic-openshift-docker-excluder-0:3.2.1.21-1.git.0.4250771.el7.noarch",
"7Server-RH7-RHOSE-3.2:atomic-openshift-dockerregistry-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"7Server-RH7-RHOSE-3.2:atomic-openshift-excluder-0:3.2.1.21-1.git.0.4250771.el7.noarch",
"7Server-RH7-RHOSE-3.2:atomic-openshift-master-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"7Server-RH7-RHOSE-3.2:atomic-openshift-node-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"7Server-RH7-RHOSE-3.2:atomic-openshift-pod-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"7Server-RH7-RHOSE-3.2:atomic-openshift-recycle-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"7Server-RH7-RHOSE-3.2:atomic-openshift-sdn-ovs-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"7Server-RH7-RHOSE-3.2:atomic-openshift-tests-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"7Server-RH7-RHOSE-3.2:tuned-profiles-atomic-openshift-node-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"7Server-RH7-RHOSE-3.3:atomic-openshift-0:3.3.1.7-1.git.0.0988966.el7.src",
"7Server-RH7-RHOSE-3.3:atomic-openshift-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"7Server-RH7-RHOSE-3.3:atomic-openshift-clients-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"7Server-RH7-RHOSE-3.3:atomic-openshift-clients-redistributable-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"7Server-RH7-RHOSE-3.3:atomic-openshift-docker-excluder-0:3.3.1.7-1.git.0.0988966.el7.noarch",
"7Server-RH7-RHOSE-3.3:atomic-openshift-dockerregistry-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"7Server-RH7-RHOSE-3.3:atomic-openshift-excluder-0:3.3.1.7-1.git.0.0988966.el7.noarch",
"7Server-RH7-RHOSE-3.3:atomic-openshift-master-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"7Server-RH7-RHOSE-3.3:atomic-openshift-node-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"7Server-RH7-RHOSE-3.3:atomic-openshift-pod-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"7Server-RH7-RHOSE-3.3:atomic-openshift-sdn-ovs-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"7Server-RH7-RHOSE-3.3:atomic-openshift-tests-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"7Server-RH7-RHOSE-3.3:tuned-profiles-atomic-openshift-node-0:3.3.1.7-1.git.0.0988966.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2016:2915"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "ADJACENT_NETWORK",
"authentication": "SINGLE",
"availabilityImpact": "NONE",
"baseScore": 2.3,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "NONE",
"vectorString": "AV:A/AC:M/Au:S/C:P/I:N/A:N",
"version": "2.0"
},
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 3.1,
"baseSeverity": "LOW",
"confidentialityImpact": "LOW",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:N/A:N",
"version": "3.0"
},
"products": [
"7Server-RH7-RHOSE-3.1:atomic-openshift-0:3.1.1.10-1.git.0.efeef8d.el7aos.src",
"7Server-RH7-RHOSE-3.1:atomic-openshift-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"7Server-RH7-RHOSE-3.1:atomic-openshift-clients-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"7Server-RH7-RHOSE-3.1:atomic-openshift-clients-redistributable-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"7Server-RH7-RHOSE-3.1:atomic-openshift-docker-excluder-0:3.1.1.10-1.git.0.efeef8d.el7aos.noarch",
"7Server-RH7-RHOSE-3.1:atomic-openshift-dockerregistry-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"7Server-RH7-RHOSE-3.1:atomic-openshift-excluder-0:3.1.1.10-1.git.0.efeef8d.el7aos.noarch",
"7Server-RH7-RHOSE-3.1:atomic-openshift-master-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"7Server-RH7-RHOSE-3.1:atomic-openshift-node-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"7Server-RH7-RHOSE-3.1:atomic-openshift-pod-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"7Server-RH7-RHOSE-3.1:atomic-openshift-recycle-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"7Server-RH7-RHOSE-3.1:atomic-openshift-sdn-ovs-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"7Server-RH7-RHOSE-3.1:tuned-profiles-atomic-openshift-node-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"7Server-RH7-RHOSE-3.2:atomic-openshift-0:3.2.1.21-1.git.0.4250771.el7.src",
"7Server-RH7-RHOSE-3.2:atomic-openshift-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"7Server-RH7-RHOSE-3.2:atomic-openshift-clients-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"7Server-RH7-RHOSE-3.2:atomic-openshift-clients-redistributable-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"7Server-RH7-RHOSE-3.2:atomic-openshift-docker-excluder-0:3.2.1.21-1.git.0.4250771.el7.noarch",
"7Server-RH7-RHOSE-3.2:atomic-openshift-dockerregistry-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"7Server-RH7-RHOSE-3.2:atomic-openshift-excluder-0:3.2.1.21-1.git.0.4250771.el7.noarch",
"7Server-RH7-RHOSE-3.2:atomic-openshift-master-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"7Server-RH7-RHOSE-3.2:atomic-openshift-node-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"7Server-RH7-RHOSE-3.2:atomic-openshift-pod-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"7Server-RH7-RHOSE-3.2:atomic-openshift-recycle-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"7Server-RH7-RHOSE-3.2:atomic-openshift-sdn-ovs-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"7Server-RH7-RHOSE-3.2:atomic-openshift-tests-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"7Server-RH7-RHOSE-3.2:tuned-profiles-atomic-openshift-node-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"7Server-RH7-RHOSE-3.3:atomic-openshift-0:3.3.1.7-1.git.0.0988966.el7.src",
"7Server-RH7-RHOSE-3.3:atomic-openshift-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"7Server-RH7-RHOSE-3.3:atomic-openshift-clients-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"7Server-RH7-RHOSE-3.3:atomic-openshift-clients-redistributable-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"7Server-RH7-RHOSE-3.3:atomic-openshift-docker-excluder-0:3.3.1.7-1.git.0.0988966.el7.noarch",
"7Server-RH7-RHOSE-3.3:atomic-openshift-dockerregistry-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"7Server-RH7-RHOSE-3.3:atomic-openshift-excluder-0:3.3.1.7-1.git.0.0988966.el7.noarch",
"7Server-RH7-RHOSE-3.3:atomic-openshift-master-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"7Server-RH7-RHOSE-3.3:atomic-openshift-node-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"7Server-RH7-RHOSE-3.3:atomic-openshift-pod-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"7Server-RH7-RHOSE-3.3:atomic-openshift-sdn-ovs-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"7Server-RH7-RHOSE-3.3:atomic-openshift-tests-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"7Server-RH7-RHOSE-3.3:tuned-profiles-atomic-openshift-node-0:3.3.1.7-1.git.0.0988966.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "3: Pulling of any image is possible with it manifest"
}
]
}
GHSA-8X5V-7R3G-JGFJ
Vulnerability from github – Published: 2022-05-13 01:38 – Updated: 2022-05-13 01:38
VLAI?
Details
An input validation flaw was found in the way OpenShift 3 handles requests for images. A user, with a copy of the manifest associated with an image, can pull an image even if they do not have access to the image normally, resulting in the disclosure of any information contained within the image.
Severity ?
{
"affected": [],
"aliases": [
"CVE-2016-8651"
],
"database_specific": {
"cwe_ids": [
"CWE-20"
],
"github_reviewed": false,
"github_reviewed_at": null,
"nvd_published_at": "2018-08-01T16:29:00Z",
"severity": "LOW"
},
"details": "An input validation flaw was found in the way OpenShift 3 handles requests for images. A user, with a copy of the manifest associated with an image, can pull an image even if they do not have access to the image normally, resulting in the disclosure of any information contained within the image.",
"id": "GHSA-8x5v-7r3g-jgfj",
"modified": "2022-05-13T01:38:36Z",
"published": "2022-05-13T01:38:36Z",
"references": [
{
"type": "ADVISORY",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2016-8651"
},
{
"type": "WEB",
"url": "https://access.redhat.com/errata/RHSA-2016:2915"
},
{
"type": "WEB",
"url": "https://access.redhat.com/security/cve/CVE-2016-8651"
},
{
"type": "WEB",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1397987"
},
{
"type": "WEB",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2016-8651"
},
{
"type": "WEB",
"url": "http://www.securityfocus.com/bid/94935"
}
],
"schema_version": "1.4.0",
"severity": [
{
"score": "CVSS:3.0/AV:A/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N",
"type": "CVSS_V3"
}
]
}
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.
Loading…
Loading…